
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu - najednou se zpomalil PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o kontrolu logu - najednou se zpomalil PC
Zdravím, prosím o kontrolu logu, otevřel jsem jeden soubor v raru (byla to skripta do Farmakologie, takže podle mě nic rizikového) a zpomalil se mi PC.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Vojta at 2013-12-17 12:39:13
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 22 GB (55%) free of 40 GB
Total RAM: 3033 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:39:48, on 17.12.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2RPK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAB8SWK.EXE
D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre7\bin\jqs.exe
D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\LemurLeap\updateLemurLeap.exe
C:\Program Files\LemurLeap\bin\utilLemurLeap.exe
D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Launch Manager\WisLMSvc.exe
C:\Program Files\Skype\Phone\Skype.exe
D:\Program Files\Pinnacle\Shared Files\Programs\PclePvr\VideoControl.exe
D:\Program Files\Opera\opera.exe
C:\Documents and Settings\Vojta\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\RSIT.exe
C:\Program Files\trend micro\Vojta.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files\LemurLeap\LemurLeapbho.dll
O2 - BHO: Avira SearchFree Toolbar BHO - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" (file missing)
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [CNAP2 Launcher] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE
O4 - HKLM\..\Run: [Pinnacle WebUpdater] "D:\Program Files\Pinnacle\Shared Files\\Programs\WebUpdater\WebUpdater.exe" -s -f=UpdateVersion.xml -url=http://cdn.pinnaclesys.com/SupportFiles
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [Wbutton] C:\Program Files\Launch Manager\WButton.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [PMCS] "D:\Program Files\Pinnacle\Shared Files\\Programs\MediaCenterService\PMC.Service.Main.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Převést do Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Převést výběr do Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést výběr do existujícího PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Přidat do stávajícího PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Pinnacle Systems Media Service (PinnacleSys.MediaServer) - Pinnacle Systems - D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Update LemurLeap - LemurLeap - C:\Program Files\LemurLeap\updateLemurLeap.exe
O23 - Service: Util LemurLeap - LemurLeap - C:\Program Files\LemurLeap\bin\utilLemurLeap.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
--
End of file - 13147 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6\searchplugins\
askcom.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}]
LemurLeap - C:\Program Files\LemurLeap\LemurLeapbho.dll [2013-08-31 149280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7}]
Avira SearchFree Toolbar - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll [2013-10-23 12240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-23 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-22 321120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-23 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-22 321120]
{41564952-412D-5637-00A7-7A786E7484D7} - Avira SearchFree Toolbar - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll [2013-10-23 12240]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-07-17 150040]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-07-17 178712]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-07-17 150040]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-07-21 86016]
"AlcWzrd"=C:\WINDOWS\ALCWZRD.EXE [2006-05-04 2808832]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-10-23 815104]
"HotkeyApp"=C:\Program Files\Launch Manager\HotkeyApp.exe [2007-07-26 192512]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-04-29 2221352]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2007-09-28 75136]
"CNAP2 Launcher"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE [2007-09-06 406944]
"Pinnacle WebUpdater"=D:\Program Files\Pinnacle\Shared Files\\Programs\WebUpdater\WebUpdater.exe [2006-03-26 380928]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"PinnacleDriverCheck"=C:\WINDOWS\system32\PSDrvCheck.exe [2003-11-10 406016]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2013-12-17 684600]
"ApnTBMon"=C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2013-10-23 1673680]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"CtrlVol"=C:\Program Files\Launch Manager\CtrlVol.exe []
"LaunchAp"=C:\Program Files\Launch Manager\LaunchAp.exe []
"Wbutton"=C:\Program Files\Launch Manager\WButton.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2010-03-16 718208]
"PMCS"=D:\Program Files\Pinnacle\Shared Files\\Programs\MediaCenterService\PMC.Service.Main.exe [2006-04-27 65536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-07-03 217088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"D:\Program Files\Java\launch4j-tmp\frd.exe"="D:\Program Files\Java\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre7\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre7\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\totalcmd\TOTALCMD.EXE"="D:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"D:\Program Files\Opera\opera.exe"="D:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"D:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe"="D:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe:*:Enabled:aTube Catcher to download and convert videos."
"C:\Program Files\Microsoft Office\Office14\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace"
"C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote"
"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\WINDOWS\KMSEmulator.exe"="C:\WINDOWS\KMSEmulator.exe:*:Enabled:KMSEmulator"
"C:\Program Files\Pinnacle\MediaCenter\PMC.exe"="C:\Program Files\Pinnacle\MediaCenter\PMC.exe:LocalSubNet:Enabled:Pmc.exe"
"C:\Program Files\Pinnacle\MediaCenter\PSST.exe"="C:\Program Files\Pinnacle\MediaCenter\PSST.exe:LocalSubNet:Enabled:PSST.exe"
"C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe"="C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"D:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe"="D:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe:LocalSubNet:Enabled:PMSManager.exe"
"D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSInstallInit.exe"="D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe"="D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe:LocalSubNet:Disabled:PMCService"
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FMVC"=fmcodec.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"vidc.yv12"=DivX.dll
"vidc.DIVX"=DivX.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
======List of files/folders created in the last 1 month======
2013-12-17 12:39:13 ----D---- C:\rsit
2013-12-17 12:39:13 ----D---- C:\Program Files\trend micro
2013-12-12 19:44:15 ----D---- C:\Program Files\Microsoft Silverlight
2013-12-12 16:18:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2013-12-12 16:18:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2013-12-12 16:15:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2013-12-12 16:15:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2893984$
2013-12-12 16:15:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2013-12-11 18:41:47 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-08 17:13:38 ----D---- C:\Documents and Settings\Vojta\Data aplikací\FreeMoviesToDVD
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\viscomdvdimg.dll
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\VB6FR.DLL
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\inetfr.DLL
2013-12-08 17:13:29 ----A---- C:\WINDOWS\system32\CMDLGFR.DLL
2013-12-08 17:13:03 ----D---- C:\Program Files\Free Videos To DVD
2013-12-08 17:08:11 ----A---- C:\WINDOWS\system32\GenSvcInst.exe
2013-12-08 17:08:11 ----A---- C:\WINDOWS\system32\bgsvcgen.exe
2013-12-04 21:41:10 ----D---- C:\ATF
2013-12-02 11:58:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
======List of files/folders modified in the last 1 month======
2013-12-17 12:39:21 ----D---- C:\WINDOWS\Temp
2013-12-17 12:39:13 ----RD---- C:\Program Files
2013-12-17 12:36:27 ----D---- C:\Documents and Settings\Vojta\Data aplikací\Skype
2013-12-17 12:35:21 ----D---- C:\WINDOWS
2013-12-17 12:34:17 ----A---- C:\checkrun.txt
2013-12-17 12:32:59 ----D---- C:\WINDOWS\system32\CatRoot2
2013-12-17 12:32:59 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-12-16 21:34:58 ----D---- C:\Documents and Settings\Vojta\Data aplikací\vlc
2013-12-16 20:55:28 ----A---- C:\WINDOWS\NeroDigital.ini
2013-12-16 20:48:56 ----D---- C:\Documents and Settings\Vojta\Data aplikací\dvdcss
2013-12-13 16:04:02 ----D---- C:\WINDOWS\system32\NtmsData
2013-12-13 14:56:21 ----D---- C:\WINDOWS\Registration
2013-12-12 22:54:15 ----D---- C:\Documents and Settings\Vojta\Data aplikací\Wise Disk Cleaner
2013-12-12 21:51:33 ----D---- C:\WINDOWS\Help
2013-12-12 19:44:23 ----SHD---- C:\WINDOWS\Installer
2013-12-12 19:44:23 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-12-12 19:29:09 ----D---- C:\WINDOWS\Debug
2013-12-12 16:37:58 ----D---- C:\WINDOWS\system32
2013-12-12 16:18:52 ----HD---- C:\WINDOWS\inf
2013-12-12 16:18:51 ----DC---- C:\WINDOWS\system32\dllcache
2013-12-12 16:18:48 ----D---- C:\Program Files\Internet Explorer
2013-12-12 16:18:38 ----D---- C:\WINDOWS\ie8updates
2013-12-12 16:18:19 ----D---- C:\WINDOWS\system32\MRT
2013-12-12 16:16:06 ----A---- C:\WINDOWS\system32\MRT.exe
2013-12-11 18:41:50 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-09 22:51:05 ----D---- C:\Program Files\CCleaner
2013-12-09 20:21:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2013-12-09 20:21:34 ----RD---- C:\Program Files\Skype
2013-12-09 15:14:26 ----D---- C:\WINDOWS\Prefetch
2013-12-09 00:27:30 ----D---- C:\WINDOWS\system32\config
2013-12-09 00:22:21 ----SD---- C:\WINDOWS\Downloaded Program Files
2013-12-08 23:51:22 ----A---- C:\WINDOWS\wincmd.ini
2013-12-08 17:12:09 ----HD---- C:\Program Files\InstallShield Installation Information
2013-12-08 17:10:06 ----D---- C:\Program Files\Common Files
2013-12-02 15:12:18 ----D---- C:\Program Files\Google
2013-12-02 13:07:51 ----SD---- C:\WINDOWS\Tasks
2013-11-29 00:08:34 ----D---- C:\WINDOWS\Network Diagnostic
2013-11-28 23:58:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-28 22:50:32 ----D---- C:\WINDOWS\Minidump
2013-11-18 22:08:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2012-11-24 466008]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2013-12-17 135648]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2013-11-14 37352]
R1 Hotkey;Hotkey; C:\WINDOWS\system32\drivers\Hotkey.sys [2003-04-28 9867]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2013-10-13 28520]
R1 Tosrfcom;Bluetooth RFCOMM; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2007-10-02 64128]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2013-12-17 90400]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2005-05-26 11264]
R3 DTV-DVBM9205;DTV-DVB USB Hybrid Analog/Capture; C:\WINDOWS\System32\Drivers\M9205.sys [2005-10-14 70272]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-07-03 6043040]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-03-26 4713472]
R3 JMCR;JMCR; C:\WINDOWS\system32\DRIVERS\jmcr.sys [2008-04-11 84240]
R3 M9207;DTV-DVB M9207 USB DVB-T / TV BOX; C:\WINDOWS\system32\DRIVERS\M9207BDA.sys [2005-10-14 37248]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NETw5x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-04-28 3626112]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-10-23 179896]
R3 tosporte;Bluetooth COM Port; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2008-03-25 41472]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2005-11-30 474184]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 VirtualCam;VirtualCamera; C:\WINDOWS\system32\DRIVERS\VirtualCam.sys [2006-12-09 192512]
S3 akgcbooy;akgcbooy; C:\WINDOWS\system32\drivers\akgcbooy.sys []
S3 azvusb;Virtual USB Hub; C:\WINDOWS\system32\DRIVERS\azvusb.sys [2009-08-24 44544]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cglptnt;cglptnt; \??\D:\totalcmd\cglptnt.sys []
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys []
S3 IObitUnlocker;IObitUnlocker; \??\D:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2008-03-25 131712]
S3 tosrfbnp;Bluetooth RFBNEP; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2007-11-29 36608]
S3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2008-03-19 74112]
S3 tosrfnds;Bluetooth Personal Area Network; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-07 18612]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-10-18 41856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2013-11-14 440376]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2013-12-17 440376]
R2 AntiVirWebService;Avira Web Protection; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-12-17 1011768]
R2 APNMCP;Ask Update Service; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [2013-10-23 166352]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-10-23 182696]
R2 MSSQL$PINNACLESYS;MSSQL$PINNACLESYS; D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe [2005-05-03 9150464]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-04-29 877864]
R2 PinnacleSys.MediaServer;Pinnacle Systems Media Service; D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe [2006-01-19 49152]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-09-28 128360]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R2 Update LemurLeap;Update LemurLeap; C:\Program Files\LemurLeap\updateLemurLeap.exe [2013-10-03 65312]
R2 Util LemurLeap;Util LemurLeap; C:\Program Files\LemurLeap\bin\utilLemurLeap.exe [2013-10-03 65312]
R3 WisLMSvc;WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [2006-11-17 118784]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-09-05 171680]
S2 StarWindServiceAE;StarWind AE Service; D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-07-17 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-10-24 118680]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2005-05-03 73728]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 SQLAgent$PINNACLESYS;SQLAgent$PINNACLESYS; D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE [2005-05-03 323584]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Vojta at 2013-12-17 12:39:13
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 22 GB (55%) free of 40 GB
Total RAM: 3033 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:39:48, on 17.12.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2RPK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAB8SWK.EXE
D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre7\bin\jqs.exe
D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\LemurLeap\updateLemurLeap.exe
C:\Program Files\LemurLeap\bin\utilLemurLeap.exe
D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Launch Manager\WisLMSvc.exe
C:\Program Files\Skype\Phone\Skype.exe
D:\Program Files\Pinnacle\Shared Files\Programs\PclePvr\VideoControl.exe
D:\Program Files\Opera\opera.exe
C:\Documents and Settings\Vojta\Local Settings\Data aplikací\Opera\Opera\temporary_downloads\RSIT.exe
C:\Program Files\trend micro\Vojta.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files\LemurLeap\LemurLeapbho.dll
O2 - BHO: Avira SearchFree Toolbar BHO - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" (file missing)
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [CNAP2 Launcher] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE
O4 - HKLM\..\Run: [Pinnacle WebUpdater] "D:\Program Files\Pinnacle\Shared Files\\Programs\WebUpdater\WebUpdater.exe" -s -f=UpdateVersion.xml -url=http://cdn.pinnaclesys.com/SupportFiles
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [CtrlVol] C:\Program Files\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Program Files\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [Wbutton] C:\Program Files\Launch Manager\WButton.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [PMCS] "D:\Program Files\Pinnacle\Shared Files\\Programs\MediaCenterService\PMC.Service.Main.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Převést do Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Převést výběr do Adobe PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést výběr do existujícího PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Přidat do stávajícího PDF - res://D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Pinnacle Systems Media Service (PinnacleSys.MediaServer) - Pinnacle Systems - D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Update LemurLeap - LemurLeap - C:\Program Files\LemurLeap\updateLemurLeap.exe
O23 - Service: Util LemurLeap - LemurLeap - C:\Program Files\LemurLeap\bin\utilLemurLeap.exe
O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe
--
End of file - 13147 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6\searchplugins\
askcom.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}]
LemurLeap - C:\Program Files\LemurLeap\LemurLeapbho.dll [2013-08-31 149280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7}]
Avira SearchFree Toolbar - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll [2013-10-23 12240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-23 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-22 321120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-23 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-22 321120]
{41564952-412D-5637-00A7-7A786E7484D7} - Avira SearchFree Toolbar - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll [2013-10-23 12240]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-07-17 150040]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-07-17 178712]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-07-17 150040]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-07-21 86016]
"AlcWzrd"=C:\WINDOWS\ALCWZRD.EXE [2006-05-04 2808832]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-10-23 815104]
"HotkeyApp"=C:\Program Files\Launch Manager\HotkeyApp.exe [2007-07-26 192512]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-04-29 2221352]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2007-09-28 75136]
"CNAP2 Launcher"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP2LAK.EXE [2007-09-06 406944]
"Pinnacle WebUpdater"=D:\Program Files\Pinnacle\Shared Files\\Programs\WebUpdater\WebUpdater.exe [2006-03-26 380928]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"PinnacleDriverCheck"=C:\WINDOWS\system32\PSDrvCheck.exe [2003-11-10 406016]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2013-12-17 684600]
"ApnTBMon"=C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2013-10-23 1673680]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"CtrlVol"=C:\Program Files\Launch Manager\CtrlVol.exe []
"LaunchAp"=C:\Program Files\Launch Manager\LaunchAp.exe []
"Wbutton"=C:\Program Files\Launch Manager\WButton.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2010-03-16 718208]
"PMCS"=D:\Program Files\Pinnacle\Shared Files\\Programs\MediaCenterService\PMC.Service.Main.exe [2006-04-27 65536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-07-03 217088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"D:\Program Files\Java\launch4j-tmp\frd.exe"="D:\Program Files\Java\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre7\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre7\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\totalcmd\TOTALCMD.EXE"="D:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"D:\Program Files\Opera\opera.exe"="D:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"D:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe"="D:\Program Files\DsNET Corp\aTube Catcher 2.0\yct.exe:*:Enabled:aTube Catcher to download and convert videos."
"C:\Program Files\Microsoft Office\Office14\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace"
"C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote"
"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\WINDOWS\KMSEmulator.exe"="C:\WINDOWS\KMSEmulator.exe:*:Enabled:KMSEmulator"
"C:\Program Files\Pinnacle\MediaCenter\PMC.exe"="C:\Program Files\Pinnacle\MediaCenter\PMC.exe:LocalSubNet:Enabled:Pmc.exe"
"C:\Program Files\Pinnacle\MediaCenter\PSST.exe"="C:\Program Files\Pinnacle\MediaCenter\PSST.exe:LocalSubNet:Enabled:PSST.exe"
"C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe"="C:\Program Files\Pinnacle\MediaCenter\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"D:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe"="D:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe:LocalSubNet:Enabled:PMSManager.exe"
"D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSInstallInit.exe"="D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe"="D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe:LocalSubNet:Disabled:PMCService"
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FMVC"=fmcodec.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"vidc.yv12"=DivX.dll
"vidc.DIVX"=DivX.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
======List of files/folders created in the last 1 month======
2013-12-17 12:39:13 ----D---- C:\rsit
2013-12-17 12:39:13 ----D---- C:\Program Files\trend micro
2013-12-12 19:44:15 ----D---- C:\Program Files\Microsoft Silverlight
2013-12-12 16:18:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2013-12-12 16:18:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2013-12-12 16:15:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2013-12-12 16:15:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2893984$
2013-12-12 16:15:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2013-12-11 18:41:47 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-08 17:13:38 ----D---- C:\Documents and Settings\Vojta\Data aplikací\FreeMoviesToDVD
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\viscomdvdimg.dll
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\VB6FR.DLL
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL
2013-12-08 17:13:30 ----A---- C:\WINDOWS\system32\inetfr.DLL
2013-12-08 17:13:29 ----A---- C:\WINDOWS\system32\CMDLGFR.DLL
2013-12-08 17:13:03 ----D---- C:\Program Files\Free Videos To DVD
2013-12-08 17:08:11 ----A---- C:\WINDOWS\system32\GenSvcInst.exe
2013-12-08 17:08:11 ----A---- C:\WINDOWS\system32\bgsvcgen.exe
2013-12-04 21:41:10 ----D---- C:\ATF
2013-12-02 11:58:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
======List of files/folders modified in the last 1 month======
2013-12-17 12:39:21 ----D---- C:\WINDOWS\Temp
2013-12-17 12:39:13 ----RD---- C:\Program Files
2013-12-17 12:36:27 ----D---- C:\Documents and Settings\Vojta\Data aplikací\Skype
2013-12-17 12:35:21 ----D---- C:\WINDOWS
2013-12-17 12:34:17 ----A---- C:\checkrun.txt
2013-12-17 12:32:59 ----D---- C:\WINDOWS\system32\CatRoot2
2013-12-17 12:32:59 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-12-16 21:34:58 ----D---- C:\Documents and Settings\Vojta\Data aplikací\vlc
2013-12-16 20:55:28 ----A---- C:\WINDOWS\NeroDigital.ini
2013-12-16 20:48:56 ----D---- C:\Documents and Settings\Vojta\Data aplikací\dvdcss
2013-12-13 16:04:02 ----D---- C:\WINDOWS\system32\NtmsData
2013-12-13 14:56:21 ----D---- C:\WINDOWS\Registration
2013-12-12 22:54:15 ----D---- C:\Documents and Settings\Vojta\Data aplikací\Wise Disk Cleaner
2013-12-12 21:51:33 ----D---- C:\WINDOWS\Help
2013-12-12 19:44:23 ----SHD---- C:\WINDOWS\Installer
2013-12-12 19:44:23 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-12-12 19:29:09 ----D---- C:\WINDOWS\Debug
2013-12-12 16:37:58 ----D---- C:\WINDOWS\system32
2013-12-12 16:18:52 ----HD---- C:\WINDOWS\inf
2013-12-12 16:18:51 ----DC---- C:\WINDOWS\system32\dllcache
2013-12-12 16:18:48 ----D---- C:\Program Files\Internet Explorer
2013-12-12 16:18:38 ----D---- C:\WINDOWS\ie8updates
2013-12-12 16:18:19 ----D---- C:\WINDOWS\system32\MRT
2013-12-12 16:16:06 ----A---- C:\WINDOWS\system32\MRT.exe
2013-12-11 18:41:50 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-09 22:51:05 ----D---- C:\Program Files\CCleaner
2013-12-09 20:21:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2013-12-09 20:21:34 ----RD---- C:\Program Files\Skype
2013-12-09 15:14:26 ----D---- C:\WINDOWS\Prefetch
2013-12-09 00:27:30 ----D---- C:\WINDOWS\system32\config
2013-12-09 00:22:21 ----SD---- C:\WINDOWS\Downloaded Program Files
2013-12-08 23:51:22 ----A---- C:\WINDOWS\wincmd.ini
2013-12-08 17:12:09 ----HD---- C:\Program Files\InstallShield Installation Information
2013-12-08 17:10:06 ----D---- C:\Program Files\Common Files
2013-12-02 15:12:18 ----D---- C:\Program Files\Google
2013-12-02 13:07:51 ----SD---- C:\WINDOWS\Tasks
2013-11-29 00:08:34 ----D---- C:\WINDOWS\Network Diagnostic
2013-11-28 23:58:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-28 22:50:32 ----D---- C:\WINDOWS\Minidump
2013-11-18 22:08:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2012-11-24 466008]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2013-12-17 135648]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2013-11-14 37352]
R1 Hotkey;Hotkey; C:\WINDOWS\system32\drivers\Hotkey.sys [2003-04-28 9867]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2013-10-13 28520]
R1 Tosrfcom;Bluetooth RFCOMM; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2007-10-02 64128]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2013-12-17 90400]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2005-05-26 11264]
R3 DTV-DVBM9205;DTV-DVB USB Hybrid Analog/Capture; C:\WINDOWS\System32\Drivers\M9205.sys [2005-10-14 70272]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-07-03 6043040]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-03-26 4713472]
R3 JMCR;JMCR; C:\WINDOWS\system32\DRIVERS\jmcr.sys [2008-04-11 84240]
R3 M9207;DTV-DVB M9207 USB DVB-T / TV BOX; C:\WINDOWS\system32\DRIVERS\M9207BDA.sys [2005-10-14 37248]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NETw5x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-04-28 3626112]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-10-23 179896]
R3 tosporte;Bluetooth COM Port; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2008-03-25 41472]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2005-11-30 474184]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 VirtualCam;VirtualCamera; C:\WINDOWS\system32\DRIVERS\VirtualCam.sys [2006-12-09 192512]
S3 akgcbooy;akgcbooy; C:\WINDOWS\system32\drivers\akgcbooy.sys []
S3 azvusb;Virtual USB Hub; C:\WINDOWS\system32\DRIVERS\azvusb.sys [2009-08-24 44544]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cglptnt;cglptnt; \??\D:\totalcmd\cglptnt.sys []
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys []
S3 IObitUnlocker;IObitUnlocker; \??\D:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2008-03-25 131712]
S3 tosrfbnp;Bluetooth RFBNEP; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2007-11-29 36608]
S3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2008-03-19 74112]
S3 tosrfnds;Bluetooth Personal Area Network; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-07 18612]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-10-18 41856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2013-11-14 440376]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2013-12-17 440376]
R2 AntiVirWebService;Avira Web Protection; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-12-17 1011768]
R2 APNMCP;Ask Update Service; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [2013-10-23 166352]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-10-23 182696]
R2 MSSQL$PINNACLESYS;MSSQL$PINNACLESYS; D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe [2005-05-03 9150464]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-04-29 877864]
R2 PinnacleSys.MediaServer;Pinnacle Systems Media Service; D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe [2006-01-19 49152]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-09-28 128360]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R2 Update LemurLeap;Update LemurLeap; C:\Program Files\LemurLeap\updateLemurLeap.exe [2013-10-03 65312]
R2 Util LemurLeap;Util LemurLeap; C:\Program Files\LemurLeap\bin\utilLemurLeap.exe [2013-10-03 65312]
R3 WisLMSvc;WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [2006-11-17 118784]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-09-05 171680]
S2 StarWindServiceAE;StarWind AE Service; D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-07-17 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-10-24 118680]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2005-05-03 73728]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 SQLAgent$PINNACLESYS;SQLAgent$PINNACLESYS; D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE [2005-05-03 323584]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Re: Prosím o kontrolu logu - najednou se zpomalil PC
Zdravim
Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner


- Ulozte nejlepe na plochu
- Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
- Probehne vytvoreni zalohy a nasledne prohledavani
- Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Kliknete na Scan a nasledne Clean
- Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
Re: Prosím o kontrolu logu - najednou se zpomalil PC
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Microsoft Windows XP x86
Ran by Vojta on Łt 17.12.2013 at 12:51:12,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Failed to stop: [Service] update lemurleap
~~~ Registry Values
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0d5d3e67-8328-4a83-8d2c-4bd27231e508}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{415419c3-dad0-4df1-ac37-22c72ad81878}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Documents and Settings\Vojta\Data aplikacˇ\babylon"
Failed to delete: [Folder] "C:\Program Files\lemurleap"
Successfully deleted: [Folder] "C:\Program Files\minibar"
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 17.12.2013 at 12:55:18,23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Microsoft Windows XP x86
Ran by Vojta on Łt 17.12.2013 at 12:51:12,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Failed to stop: [Service] update lemurleap
~~~ Registry Values
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0d5d3e67-8328-4a83-8d2c-4bd27231e508}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{415419c3-dad0-4df1-ac37-22c72ad81878}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Documents and Settings\Vojta\Data aplikacˇ\babylon"
Failed to delete: [Folder] "C:\Program Files\lemurleap"
Successfully deleted: [Folder] "C:\Program Files\minibar"
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 17.12.2013 at 12:55:18,23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: Prosím o kontrolu logu - najednou se zpomalil PC
Pockam na AdwCleaner
Re: Prosím o kontrolu logu - najednou se zpomalil PC
# AdwCleaner v3.015 - Report created 17/12/2013 at 13:00:57
# Updated 10/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Vojta - VOJTA-A17EB0072
# Running from : C:\Documents and Settings\Vojta\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : Update LemurLeap
[#] Service Deleted : Util LemurLeap
***** [ Files / Folders ] *****
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Ask
Folder Deleted : C:\Program Files\LemurLeap
Folder Deleted : C:\Documents and Settings\Vojta\Local Settings\Data aplikací\eSupport.com
Folder Deleted : C:\Documents and Settings\Vojta\Local Settings\Data aplikací\Minibar
Folder Deleted : C:\Documents and Settings\Vojta\Local Settings\Data aplikací\webplayer
Folder Deleted : C:\Documents and Settings\Vojta\Dokumenty\optimizer pro
File Deleted : C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6\searchplugins\Askcom.xml
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\Minibar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AppsHat Mobile Apps
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bi_uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FilesFrog Update Checker
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v24.0 (cs)
[ File : C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6\prefs.js ]
Line Deleted : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=80110016EA7EC578&affID=121564&tsp=4982");
*************************
AdwCleaner[R0].txt - [2605 octets] - [17/12/2013 13:00:24]
AdwCleaner[S0].txt - [2588 octets] - [17/12/2013 13:00:57]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2648 octets] ##########
# Updated 10/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Vojta - VOJTA-A17EB0072
# Running from : C:\Documents and Settings\Vojta\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : Update LemurLeap
[#] Service Deleted : Util LemurLeap
***** [ Files / Folders ] *****
Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\Ask
Folder Deleted : C:\Program Files\LemurLeap
Folder Deleted : C:\Documents and Settings\Vojta\Local Settings\Data aplikací\eSupport.com
Folder Deleted : C:\Documents and Settings\Vojta\Local Settings\Data aplikací\Minibar
Folder Deleted : C:\Documents and Settings\Vojta\Local Settings\Data aplikací\webplayer
Folder Deleted : C:\Documents and Settings\Vojta\Dokumenty\optimizer pro
File Deleted : C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6\searchplugins\Askcom.xml
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\Minibar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AppsHat Mobile Apps
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bi_uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FilesFrog Update Checker
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v24.0 (cs)
[ File : C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6\prefs.js ]
Line Deleted : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=80110016EA7EC578&affID=121564&tsp=4982");
*************************
AdwCleaner[R0].txt - [2605 octets] - [17/12/2013 13:00:24]
AdwCleaner[S0].txt - [2588 octets] - [17/12/2013 13:00:57]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2648 octets] ##########
Re: Prosím o kontrolu logu - najednou se zpomalil PC
Poprosim o log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100
Re: Prosím o kontrolu logu - najednou se zpomalil PC
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-12-2013 01
Ran by Vojta (administrator) on VOJTA-A17EB0072 on 17-12-2013 13:20:02
Running from C:\Documents and Settings\Vojta\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\SoundMan.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Wistron) C:\Program Files\Launch Manager\HotkeyApp.exe
( TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAP2LAK.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Pinnacle Systems) D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAP2RPK.EXE
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAB8SWK.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Computer, Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Microsoft Corporation) D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\WINDOWS\system32\IoctlSvc.exe
(TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
(Pinnacle Systems) D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(Wistron Corp.) C:\Program Files\Launch Manager\WisLMSvc.exe
(Opera Software) D:\Program Files\Opera\opera.exe
(Pinnacle Systems GmbH) D:\Program Files\Pinnacle\Shared Files\Programs\PclePvr\VideoControl.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\Vojta\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SoundMan] - C:\WINDOWS\SoundMan.exe [86016 2006-07-21] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AlcWzrd] - C:\WINDOWS\alcwzrd.exe [2808832 2006-05-04] (RealTek Semicoductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\Alcmtr.exe [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [815104 2006-10-23] (Synaptics, Inc.)
HKLM\...\Run: [HotkeyApp] - C:\Program Files\Launch Manager\HotkeyApp.exe [192512 2007-07-26] (Wistron)
HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-04-29] (Nero AG)
HKLM\...\Run: [ITSecMng] - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe [75136 2007-09-28] ( TOSHIBA CORPORATION)
HKLM\...\Run: [CNAP2 Launcher] - C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAP2LAK.EXE [406944 2007-09-06] (CANON INC.)
HKLM\...\Run: [Pinnacle WebUpdater] - "D:\Program Files\Pinnacle\Shared Files\\Programs\WebUpdater\WebUpdater.exe" -s -f=UpdateVersion.xml -url=http://cdn.pinnaclesys.com/SupportFiles
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [PinnacleDriverCheck] - C:\WINDOWS\system32\PSDrvCheck.exe [406016 2003-11-10] ()
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-17] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [CtrlVol] - C:\Program Files\Launch Manager\CtrlVol.exe
HKLM\...\Run: [LaunchAp] - C:\Program Files\Launch Manager\LaunchAp.exe
HKLM\...\Run: [Wbutton] - C:\Program Files\Launch Manager\WButton.exe
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [718208 2010-03-16] (Microsoft Corporation)
HKCU\...\Run: [PMCS] - D:\Program Files\Pinnacle\Shared Files\\Programs\MediaCenterService\PMC.Service.Main.exe [65536 2006-04-27] (Pinnacle Systems)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AppInit_DLLs: [ ] ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {90cce221-c007-46d0-bc72-539911fe5c8e} URL = http://www.mapy.cz/?query={searchTerms} ... ckSearch_5
SearchScopes: HKCU - {ac33af2c-a96f-460c-8266-738fcaa9ae44} URL = http://www.firmy.cz/?q={searchTerms}&so ... ckSearch_5
SearchScopes: HKCU - {bbbe6fc3-00a8-4ad0-a94d-2e5d262c910a} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... rceid=IE_5
SearchScopes: HKCU - {CE93CEBC-69DC-41B1-A06C-D1ED091460DA} URL = http://encyklopedie.seznam.cz/search?q= ... ckSearch_5
SearchScopes: HKCU - {E223669F-19C1-4EB0-8C20-FE68A7014751} URL = http://slovnik.seznam.cz/?q={searchTerm ... ckSearch_5
BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net ... plugin.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 26 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6
FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Ask.com
FF Homepage: http://www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Extension: toolbar_AVIRA-V7 - C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF StartMenuInternet: FIREFOX.EXE - D:\Program Files\EdskesMFC\Mozilla Firefox 3.6\firefox.exe
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.)
R2 MSSQL$PINNACLESYS; D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe [9150464 2005-05-03] (Microsoft Corporation)
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [73728 2005-05-03] (Microsoft Corporation)
R2 PinnacleSys.MediaServer; D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe [49152 2006-01-19] (Pinnacle Systems)
S3 SQLAgent$PINNACLESYS; D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE [323584 2005-05-03] (Microsoft Corporation)
S2 StarWindServiceAE; D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software)
R3 WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [118784 2006-11-17] (Wistron Corp.)
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"
==================== Drivers (Whitelisted) ====================
R3 ASAPIW2k; C:\Windows\System32\drivers\ASAPIW2k.sys [11264 2005-05-26] (VOB Computersysteme GmbH)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-14] (Avira Operations GmbH & Co. KG)
S3 azvusb; C:\Windows\System32\DRIVERS\azvusb.sys [44544 2009-08-24] (AzureWave Technologies, Inc.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cglptnt; D:\totalcmd\cglptnt.sys [7888 2007-06-21] (C. Ghisler & Co.)
R3 DTV-DVBM9205; C:\Windows\System32\Drivers\M9205.sys [70272 2005-10-14] ()
R1 Hotkey; C:\Windows\System32\Drivers\Hotkey.sys [9867 2003-04-28] ()
S3 IObitUnlocker; D:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys [26248 2011-03-09] ()
R3 M9207; C:\Windows\System32\DRIVERS\M9207BDA.sys [37248 2005-10-14] ()
S3 MPE; C:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 NETw5x32; C:\Windows\System32\DRIVERS\NETw5x32.sys [3626112 2008-04-28] (Intel Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2012-11-24] (Duplex Secure Ltd.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-10-13] (Avira GmbH)
S2 VirtualCam; C:\Windows\System32\DRIVERS\VirtualCam.sys [192512 2006-12-09] (MorningSound Co., Ltd.)
U3 apb1jivb; C:\Windows\System32\Drivers\apb1jivb.sys [0 ] (JMicron Technology Corp.)
S4 IntelIde; No ImagePath
U5 P3; C:\Windows\System32\Drivers\P3.sys [46592 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-17 13:20 - 2013-12-17 13:20 - 00014616 _____ C:\Documents and Settings\Vojta\Plocha\FRST.txt
2013-12-17 13:18 - 2013-12-17 13:18 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Vojta\Plocha\FRSTLauncher.exe
2013-12-17 13:17 - 2013-12-17 13:17 - 00000000 ____D C:\FRST
2013-12-17 13:16 - 2013-12-17 13:18 - 01061167 _____ (Farbar) C:\Documents and Settings\Vojta\Plocha\FRST.exe
2013-12-17 13:00 - 2013-12-17 13:10 - 00000000 ____D C:\AdwCleaner
2013-12-17 13:00 - 2013-12-17 13:00 - 05693440 _____ C:\Documents and Settings\Vojta\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 01226750 _____ C:\Documents and Settings\Vojta\Plocha\adwcleaner.exe
2013-12-17 13:00 - 2013-12-17 13:00 - 00307200 _____ C:\Documents and Settings\NetworkService\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00270336 _____ C:\WINDOWS\system32\config\default.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00245760 _____ C:\Documents and Settings\LocalService\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00024576 _____ C:\WINDOWS\system32\config\SAM.rhk
2013-12-17 12:59 - 2013-12-17 13:00 - 44769280 _____ C:\WINDOWS\system32\config\software.rhk
2013-12-17 12:59 - 2013-12-17 12:59 - 00053248 _____ C:\WINDOWS\system32\config\SECURITY.rhk
2013-12-17 12:50 - 2013-12-17 12:50 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-17 12:49 - 2013-12-17 12:49 - 01034531 _____ (Thisisu) C:\Documents and Settings\Vojta\Plocha\JRT.exe
2013-12-17 12:39 - 2013-12-17 12:39 - 00000000 ____D C:\rsit
2013-12-17 12:39 - 2013-12-17 12:39 - 00000000 ____D C:\Program Files\trend micro
2013-12-17 12:25 - 2008-10-03 14:57 - 00000000 ____D C:\Documents and Settings\Vojta\Plocha\Skripta farmakologie
2013-12-13 15:11 - 2013-12-14 16:19 - 00011429 _____ C:\Documents and Settings\Vojta\Plocha\Kopie - Latinské názvy.xlsx
2013-12-12 21:49 - 2013-12-12 21:49 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Mafia
2013-12-12 19:44 - 2013-12-12 19:44 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-12 19:44 - 2013-12-12 19:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
2013-12-12 16:18 - 2013-12-12 16:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-12 16:18 - 2013-12-12 16:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-11 18:41 - 2013-12-11 18:41 - 09272200 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-09 00:15 - 2013-12-09 00:15 - 00000476 _____ C:\Documents and Settings\Vojta\Dokumenty\Obrázky.lnk
2013-12-09 00:08 - 2013-12-09 22:51 - 00000000 ___RD C:\Documents and Settings\Vojta\Plocha\Údržba
2013-12-08 17:13 - 2013-12-08 19:40 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\FreeMoviesToDVD
2013-12-08 17:13 - 2013-12-08 17:13 - 00000803 _____ C:\Documents and Settings\Vojta\Nabídka Start\Programy\Free Videos To DVD.lnk
2013-12-08 17:13 - 2013-12-08 17:13 - 00000767 _____ C:\Documents and Settings\Vojta\Plocha\Free Videos To DVD.lnk
2013-12-08 17:13 - 2013-12-08 17:13 - 00000000 ____D C:\Program Files\Free Videos To DVD
2013-12-08 17:13 - 2013-12-08 17:13 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Videos To DVD
2013-12-08 17:13 - 2009-01-23 21:21 - 00327680 _____ (Viscom Software http://www.viscomsoft.com) C:\WINDOWS\system32\dvdauthor.ocx
2013-12-08 17:13 - 2009-01-23 21:21 - 00000401 _____ C:\WINDOWS\system32\dvdauthor.lic
2013-12-08 17:13 - 2009-01-23 21:20 - 00233472 _____ (Viscom Software http://www.viscomsoft.com) C:\WINDOWS\system32\viscomdvdimg.dll
2013-12-08 17:13 - 2009-01-23 21:08 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSCMCFR.DLL
2013-12-08 17:13 - 2009-01-23 21:08 - 00119568 _____ (Microsoft Corporation) C:\WINDOWS\system32\VB6FR.DLL
2013-12-08 17:13 - 2009-01-23 21:08 - 00115920 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinet.OCX
2013-12-08 17:13 - 2009-01-23 21:08 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\VB6STKIT.DLL
2013-12-08 17:13 - 2009-01-23 21:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CMDLGFR.DLL
2013-12-08 17:13 - 2009-01-23 21:08 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetfr.DLL
2013-12-08 17:08 - 2006-12-28 21:18 - 00122512 _____ (B.H.A Corporation) C:\WINDOWS\system32\bgsvcgen.exe
2013-12-08 17:08 - 2006-12-28 21:18 - 00056976 _____ (B.H.A Corporation) C:\WINDOWS\system32\GenSvcInst.exe
2013-12-04 21:41 - 2013-12-04 21:41 - 00000000 ____D C:\ATF
2013-12-02 11:58 - 2013-12-02 12:07 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Google
2013-11-29 01:09 - 2013-11-29 01:09 - 00000000 ____H C:\Documents and Settings\Vojta\Dokumenty\Default.rdp
2013-11-28 21:53 - 2013-12-13 15:16 - 00000000 ____D C:\Documents and Settings\Vojta\Plocha\otázky
2013-11-27 16:19 - 2013-11-27 16:19 - 01283072 _____ C:\Documents and Settings\Vojta\Plocha\Nutriční podpora v intenzivní péči.ppt
2013-11-25 15:36 - 2013-11-25 15:36 - 00000000 _____ C:\Documents and Settings\Vojta\ping
2013-11-25 15:36 - 2013-11-25 15:36 - 00000000 _____ C:\Documents and Settings\Vojta\Odpověď
==================== One Month Modified Files and Folders =======
2013-12-17 13:20 - 2013-12-17 13:20 - 00014616 _____ C:\Documents and Settings\Vojta\Plocha\FRST.txt
2013-12-17 13:20 - 2012-07-17 04:25 - 00000000 ____D C:\Documents and Settings\Vojta\Plocha
2013-12-17 13:19 - 2012-07-17 04:25 - 00000000 ___HD C:\Documents and Settings\Vojta\Local Settings\Data aplikací
2013-12-17 13:18 - 2013-12-17 13:18 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Vojta\Plocha\FRSTLauncher.exe
2013-12-17 13:18 - 2013-12-17 13:16 - 01061167 _____ (Farbar) C:\Documents and Settings\Vojta\Plocha\FRST.exe
2013-12-17 13:17 - 2013-12-17 13:17 - 00000000 ____D C:\FRST
2013-12-17 13:13 - 2012-07-22 12:02 - 00049152 _____ ( ) C:\Documents and Settings\Vojta\CompiledAdapter
2013-12-17 13:13 - 2012-07-22 10:26 - 00000349 _____ C:\Documents and Settings\All Users\Dokumenty\PCLECHAL.INI
2013-12-17 13:13 - 2012-07-17 04:25 - 00000000 ____D C:\Documents and Settings\Vojta
2013-12-17 13:13 - 2012-07-17 04:13 - 01155037 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-17 13:12 - 2012-07-22 10:51 - 00008911 _____ C:\checkrun.txt
2013-12-17 13:12 - 2012-07-17 04:24 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-17 13:12 - 2012-07-16 22:45 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-12-17 13:12 - 2012-07-16 22:45 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-12-17 13:11 - 2012-07-17 04:25 - 00000178 ___SH C:\Documents and Settings\Vojta\ntuser.ini
2013-12-17 13:11 - 2012-07-17 04:24 - 00032362 _____ C:\WINDOWS\SchedLgU.Txt
2013-12-17 13:10 - 2013-12-17 13:00 - 00000000 ____D C:\AdwCleaner
2013-12-17 13:10 - 2012-07-17 17:23 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\Skype
2013-12-17 13:01 - 2012-07-17 04:25 - 00000000 ___RD C:\Documents and Settings\Vojta\Dokumenty
2013-12-17 13:01 - 2012-07-16 22:41 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-12-17 13:00 - 2013-12-17 13:00 - 05693440 _____ C:\Documents and Settings\Vojta\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 01226750 _____ C:\Documents and Settings\Vojta\Plocha\adwcleaner.exe
2013-12-17 13:00 - 2013-12-17 13:00 - 00307200 _____ C:\Documents and Settings\NetworkService\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00270336 _____ C:\WINDOWS\system32\config\default.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00245760 _____ C:\Documents and Settings\LocalService\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00024576 _____ C:\WINDOWS\system32\config\SAM.rhk
2013-12-17 13:00 - 2013-12-17 12:59 - 44769280 _____ C:\WINDOWS\system32\config\software.rhk
2013-12-17 13:00 - 2012-07-17 04:24 - 00000000 __SHD C:\Documents and Settings\LocalService
2013-12-17 13:00 - 2012-07-17 04:16 - 00000000 __SHD C:\Documents and Settings\NetworkService
2013-12-17 12:59 - 2013-12-17 12:59 - 00053248 _____ C:\WINDOWS\system32\config\SECURITY.rhk
2013-12-17 12:52 - 2012-07-17 04:25 - 00000000 __RHD C:\Documents and Settings\Vojta\Data aplikací
2013-12-17 12:50 - 2013-12-17 12:50 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-17 12:49 - 2013-12-17 12:49 - 01034531 _____ (Thisisu) C:\Documents and Settings\Vojta\Plocha\JRT.exe
2013-12-17 12:41 - 2013-04-15 11:19 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-17 12:39 - 2013-12-17 12:39 - 00000000 ____D C:\rsit
2013-12-17 12:39 - 2013-12-17 12:39 - 00000000 ____D C:\Program Files\trend micro
2013-12-17 12:10 - 2013-10-13 19:20 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-12-17 12:10 - 2013-10-13 19:20 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-12-16 21:34 - 2012-07-17 20:03 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\vlc
2013-12-16 20:55 - 2012-07-17 16:18 - 00107520 _____ C:\Documents and Settings\Vojta\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-16 20:55 - 2012-07-17 16:18 - 00000069 _____ C:\WINDOWS\NeroDigital.ini
2013-12-16 20:48 - 2012-07-17 20:03 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\dvdcss
2013-12-16 20:02 - 2012-07-17 17:23 - 00002283 _____ C:\Documents and Settings\All Users\Plocha\Skype.lnk
2013-12-14 16:28 - 2013-09-13 20:35 - 00065536 _____ C:\WINDOWS\system32\config\OAlerts.evt
2013-12-14 16:19 - 2013-12-13 15:11 - 00011429 _____ C:\Documents and Settings\Vojta\Plocha\Kopie - Latinské názvy.xlsx
2013-12-13 19:59 - 2013-03-01 16:51 - 00012245 _____ C:\Documents and Settings\Vojta\Plocha\Latinské názvy.xlsx
2013-12-13 16:04 - 2013-10-13 19:34 - 00000000 ____D C:\WINDOWS\system32\NtmsData
2013-12-13 15:16 - 2013-11-28 21:53 - 00000000 ____D C:\Documents and Settings\Vojta\Plocha\otázky
2013-12-13 14:56 - 2012-07-17 04:10 - 00000000 ____D C:\WINDOWS\Registration
2013-12-12 22:54 - 2012-08-30 21:47 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\Wise Disk Cleaner
2013-12-12 21:57 - 2012-07-16 22:42 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-12-12 21:51 - 2012-07-16 22:36 - 00000000 ____D C:\WINDOWS\Help
2013-12-12 21:49 - 2013-12-12 21:49 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Mafia
2013-12-12 21:49 - 2012-07-16 22:42 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-12-12 19:44 - 2013-12-12 19:44 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-12 19:44 - 2013-12-12 19:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
2013-12-12 16:38 - 2012-07-16 22:41 - 01648944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-12 16:18 - 2013-12-12 16:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-12 16:18 - 2013-12-12 16:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-12 16:18 - 2013-07-27 15:04 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-12 16:18 - 2012-07-18 20:41 - 00000000 ____D C:\WINDOWS\ie8updates
2013-12-12 16:18 - 2012-07-17 16:02 - 00030756 _____ C:\WINDOWS\system32\TZLog.log
2013-12-12 16:16 - 2012-07-17 16:05 - 88123800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-11 18:41 - 2013-12-11 18:41 - 09272200 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-11 18:41 - 2012-07-17 16:25 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-11 18:41 - 2012-07-17 16:25 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-10 20:07 - 2012-07-17 04:25 - 00000000 ___RD C:\Documents and Settings\Vojta\Oblíbené položky
2013-12-10 11:20 - 2001-10-25 13:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-12-09 22:51 - 2013-12-09 00:08 - 00000000 ___RD C:\Documents and Settings\Vojta\Plocha\Údržba
2013-12-09 22:51 - 2012-07-17 15:35 - 00000000 ____D C:\Program Files\CCleaner
2013-12-09 20:21 - 2012-07-17 17:23 - 00000000 ___RD C:\Program Files\Skype
2013-12-09 20:21 - 2012-07-17 17:23 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Skype
2013-12-09 00:34 - 2013-11-13 21:06 - 00000000 ____D C:\Documents and Settings\Vojta\Dokumenty\Soubory aplikace Outlook
2013-12-09 00:21 - 2012-07-16 22:42 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2013-12-09 00:15 - 2013-12-09 00:15 - 00000476 _____ C:\Documents and Settings\Vojta\Dokumenty\Obrázky.lnk
2013-12-08 23:51 - 2012-07-17 19:54 - 00001316 _____ C:\WINDOWS\wincmd.ini
2013-12-08 19:40 - 2013-12-08 17:13 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\FreeMoviesToDVD
2013-12-08 17:13 - 2013-12-08 17:13 - 00000803 _____ C:\Documents and Settings\Vojta\Nabídka Start\Programy\Free Videos To DVD.lnk
2013-12-08 17:13 - 2013-12-08 17:13 - 00000767 _____ C:\Documents and Settings\Vojta\Plocha\Free Videos To DVD.lnk
2013-12-08 17:13 - 2013-12-08 17:13 - 00000000 ____D C:\Program Files\Free Videos To DVD
2013-12-08 17:13 - 2013-12-08 17:13 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Videos To DVD
2013-12-08 17:13 - 2012-07-17 04:25 - 00000000 ___RD C:\Documents and Settings\Vojta\Nabídka Start\Programy
2013-12-08 17:12 - 2012-07-17 13:59 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-07 20:18 - 2012-07-17 04:25 - 00000000 ___HD C:\Documents and Settings\Vojta\Okolní síť
2013-12-04 21:41 - 2013-12-04 21:41 - 00000000 ____D C:\ATF
2013-12-02 19:36 - 2013-09-13 21:16 - 00002547 _____ C:\Documents and Settings\Vojta\Plocha\Microsoft Word 2010.lnk
2013-12-02 16:07 - 2012-07-17 16:18 - 00000000 ____D C:\Documents and Settings\Vojta\Dokumenty\Laski
2013-12-02 15:12 - 2013-01-16 12:52 - 00000000 ____D C:\Program Files\Google
2013-12-02 12:07 - 2013-12-02 11:58 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Google
2013-12-02 12:07 - 2013-01-11 12:57 - 00000000 ____D C:\Documents and Settings\Vojta\Local Settings\Data aplikací\Google
2013-12-02 12:06 - 2012-07-17 17:11 - 00000000 ____D C:\Documents and Settings\Vojta\Local Settings\Data aplikací\Adobe
2013-11-29 01:09 - 2013-11-29 01:09 - 00000000 ____H C:\Documents and Settings\Vojta\Dokumenty\Default.rdp
2013-11-28 23:58 - 2012-07-16 22:42 - 01108858 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-28 22:50 - 2012-07-21 12:19 - 00000000 ____D C:\WINDOWS\Minidump
2013-11-27 16:19 - 2013-11-27 16:19 - 01283072 _____ C:\Documents and Settings\Vojta\Plocha\Nutriční podpora v intenzivní péči.ppt
2013-11-25 15:36 - 2013-11-25 15:36 - 00000000 _____ C:\Documents and Settings\Vojta\ping
2013-11-25 15:36 - 2013-11-25 15:36 - 00000000 _____ C:\Documents and Settings\Vojta\Odpověď
2013-11-18 22:08 - 2012-07-17 15:49 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
Some content of TEMP:
====================
C:\Documents and Settings\Vojta\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\Vojta\Local Settings\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\Windows\System32\winlogon.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0507904 ____N (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\Windows\System32\svchost.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0014336 ____N (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2008-04-14 07:52] - [2009-02-09 12:25] - 0111104 ____N (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2008-04-14 07:52] - [2008-04-14 07:52] - 0578560 ____N (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\Windows\System32\userinit.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0026112 ____N (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\Drivers\volsnap.sys
[2008-04-14 06:42] - [2008-04-14 06:42] - 0052480 ____N (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avira Desktop (Disabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\Vojta\Plocha" je 495 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour"
"D:\\Program Files\\Java\\launch4j-tmp\\frd.exe"="D:\\Program Files\\Java\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\\totalcmd\\TOTALCMD.EXE"="D:\\totalcmd\\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"D:\\Program Files\\Opera\\opera.exe"="D:\\Program Files\\Opera\\opera.exe:*:Enabled:Opera Internet Browser"
"D:\\Program Files\\DsNET Corp\\aTube Catcher 2.0\\yct.exe"="D:\\Program Files\\DsNET Corp\\aTube Catcher 2.0\\yct.exe:*:Enabled:aTube Catcher to download and convert videos."
"C:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace"
"C:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE:*:Enabled:Microsoft OneNote"
"C:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\WINDOWS\\KMSEmulator.exe"="C:\\WINDOWS\\KMSEmulator.exe:*:Enabled:KMSEmulator"
"C:\\Program Files\\Pinnacle\\MediaCenter\\PMC.exe"="C:\\Program Files\\Pinnacle\\MediaCenter\\PMC.exe:LocalSubNet:Enabled:Pmc.exe"
"C:\\Program Files\\Pinnacle\\MediaCenter\\PSST.exe"="C:\\Program Files\\Pinnacle\\MediaCenter\\PSST.exe:LocalSubNet:Enabled:PSST.exe"
"C:\\Program Files\\Pinnacle\\MediaCenter\\PMSInstallInit.exe"="C:\\Program Files\\Pinnacle\\MediaCenter\\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaManager\\PMSManager.exe"="D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaManager\\PMSManager.exe:LocalSubNet:Enabled:PMSManager.exe"
"D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaServer\\PMSInstallInit.exe"="D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaServer\\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaCenterService\\PMC.Service.Main.exe"="D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaCenterService\\PMC.Service.Main.exe:LocalSubNet:Disabled:PMCService"
"C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"="C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe:*:Enabled:WebKit"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by Vojta (administrator) on VOJTA-A17EB0072 on 17-12-2013 13:20:02
Running from C:\Documents and Settings\Vojta\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\SoundMan.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Wistron) C:\Program Files\Launch Manager\HotkeyApp.exe
( TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAP2LAK.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Pinnacle Systems) D:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAP2RPK.EXE
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAB8SWK.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Computer, Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Microsoft Corporation) D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\WINDOWS\system32\IoctlSvc.exe
(TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
(Pinnacle Systems) D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(Wistron Corp.) C:\Program Files\Launch Manager\WisLMSvc.exe
(Opera Software) D:\Program Files\Opera\opera.exe
(Pinnacle Systems GmbH) D:\Program Files\Pinnacle\Shared Files\Programs\PclePvr\VideoControl.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\Vojta\Plocha\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SoundMan] - C:\WINDOWS\SoundMan.exe [86016 2006-07-21] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AlcWzrd] - C:\WINDOWS\alcwzrd.exe [2808832 2006-05-04] (RealTek Semicoductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\Alcmtr.exe [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [815104 2006-10-23] (Synaptics, Inc.)
HKLM\...\Run: [HotkeyApp] - C:\Program Files\Launch Manager\HotkeyApp.exe [192512 2007-07-26] (Wistron)
HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-04-29] (Nero AG)
HKLM\...\Run: [ITSecMng] - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe [75136 2007-09-28] ( TOSHIBA CORPORATION)
HKLM\...\Run: [CNAP2 Launcher] - C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAP2LAK.EXE [406944 2007-09-06] (CANON INC.)
HKLM\...\Run: [Pinnacle WebUpdater] - "D:\Program Files\Pinnacle\Shared Files\\Programs\WebUpdater\WebUpdater.exe" -s -f=UpdateVersion.xml -url=http://cdn.pinnaclesys.com/SupportFiles
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [PinnacleDriverCheck] - C:\WINDOWS\system32\PSDrvCheck.exe [406016 2003-11-10] ()
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-17] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [CtrlVol] - C:\Program Files\Launch Manager\CtrlVol.exe
HKLM\...\Run: [LaunchAp] - C:\Program Files\Launch Manager\LaunchAp.exe
HKLM\...\Run: [Wbutton] - C:\Program Files\Launch Manager\WButton.exe
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [718208 2010-03-16] (Microsoft Corporation)
HKCU\...\Run: [PMCS] - D:\Program Files\Pinnacle\Shared Files\\Programs\MediaCenterService\PMC.Service.Main.exe [65536 2006-04-27] (Pinnacle Systems)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AppInit_DLLs: [ ] ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {90cce221-c007-46d0-bc72-539911fe5c8e} URL = http://www.mapy.cz/?query={searchTerms} ... ckSearch_5
SearchScopes: HKCU - {ac33af2c-a96f-460c-8266-738fcaa9ae44} URL = http://www.firmy.cz/?q={searchTerms}&so ... ckSearch_5
SearchScopes: HKCU - {bbbe6fc3-00a8-4ad0-a94d-2e5d262c910a} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... rceid=IE_5
SearchScopes: HKCU - {CE93CEBC-69DC-41B1-A06C-D1ED091460DA} URL = http://encyklopedie.seznam.cz/search?q= ... ckSearch_5
SearchScopes: HKCU - {E223669F-19C1-4EB0-8C20-FE68A7014751} URL = http://slovnik.seznam.cz/?q={searchTerm ... ckSearch_5
BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net ... plugin.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 26 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6
FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Ask.com
FF Homepage: http://www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Extension: toolbar_AVIRA-V7 - C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF StartMenuInternet: FIREFOX.EXE - D:\Program Files\EdskesMFC\Mozilla Firefox 3.6\firefox.exe
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.)
R2 MSSQL$PINNACLESYS; D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe [9150464 2005-05-03] (Microsoft Corporation)
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [73728 2005-05-03] (Microsoft Corporation)
R2 PinnacleSys.MediaServer; D:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe [49152 2006-01-19] (Pinnacle Systems)
S3 SQLAgent$PINNACLESYS; D:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE [323584 2005-05-03] (Microsoft Corporation)
S2 StarWindServiceAE; D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software)
R3 WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [118784 2006-11-17] (Wistron Corp.)
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"
==================== Drivers (Whitelisted) ====================
R3 ASAPIW2k; C:\Windows\System32\drivers\ASAPIW2k.sys [11264 2005-05-26] (VOB Computersysteme GmbH)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-14] (Avira Operations GmbH & Co. KG)
S3 azvusb; C:\Windows\System32\DRIVERS\azvusb.sys [44544 2009-08-24] (AzureWave Technologies, Inc.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cglptnt; D:\totalcmd\cglptnt.sys [7888 2007-06-21] (C. Ghisler & Co.)
R3 DTV-DVBM9205; C:\Windows\System32\Drivers\M9205.sys [70272 2005-10-14] ()
R1 Hotkey; C:\Windows\System32\Drivers\Hotkey.sys [9867 2003-04-28] ()
S3 IObitUnlocker; D:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys [26248 2011-03-09] ()
R3 M9207; C:\Windows\System32\DRIVERS\M9207BDA.sys [37248 2005-10-14] ()
S3 MPE; C:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 NETw5x32; C:\Windows\System32\DRIVERS\NETw5x32.sys [3626112 2008-04-28] (Intel Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2012-11-24] (Duplex Secure Ltd.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-10-13] (Avira GmbH)
S2 VirtualCam; C:\Windows\System32\DRIVERS\VirtualCam.sys [192512 2006-12-09] (MorningSound Co., Ltd.)
U3 apb1jivb; C:\Windows\System32\Drivers\apb1jivb.sys [0 ] (JMicron Technology Corp.)
S4 IntelIde; No ImagePath
U5 P3; C:\Windows\System32\Drivers\P3.sys [46592 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-17 13:20 - 2013-12-17 13:20 - 00014616 _____ C:\Documents and Settings\Vojta\Plocha\FRST.txt
2013-12-17 13:18 - 2013-12-17 13:18 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Vojta\Plocha\FRSTLauncher.exe
2013-12-17 13:17 - 2013-12-17 13:17 - 00000000 ____D C:\FRST
2013-12-17 13:16 - 2013-12-17 13:18 - 01061167 _____ (Farbar) C:\Documents and Settings\Vojta\Plocha\FRST.exe
2013-12-17 13:00 - 2013-12-17 13:10 - 00000000 ____D C:\AdwCleaner
2013-12-17 13:00 - 2013-12-17 13:00 - 05693440 _____ C:\Documents and Settings\Vojta\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 01226750 _____ C:\Documents and Settings\Vojta\Plocha\adwcleaner.exe
2013-12-17 13:00 - 2013-12-17 13:00 - 00307200 _____ C:\Documents and Settings\NetworkService\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00270336 _____ C:\WINDOWS\system32\config\default.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00245760 _____ C:\Documents and Settings\LocalService\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00024576 _____ C:\WINDOWS\system32\config\SAM.rhk
2013-12-17 12:59 - 2013-12-17 13:00 - 44769280 _____ C:\WINDOWS\system32\config\software.rhk
2013-12-17 12:59 - 2013-12-17 12:59 - 00053248 _____ C:\WINDOWS\system32\config\SECURITY.rhk
2013-12-17 12:50 - 2013-12-17 12:50 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-17 12:49 - 2013-12-17 12:49 - 01034531 _____ (Thisisu) C:\Documents and Settings\Vojta\Plocha\JRT.exe
2013-12-17 12:39 - 2013-12-17 12:39 - 00000000 ____D C:\rsit
2013-12-17 12:39 - 2013-12-17 12:39 - 00000000 ____D C:\Program Files\trend micro
2013-12-17 12:25 - 2008-10-03 14:57 - 00000000 ____D C:\Documents and Settings\Vojta\Plocha\Skripta farmakologie
2013-12-13 15:11 - 2013-12-14 16:19 - 00011429 _____ C:\Documents and Settings\Vojta\Plocha\Kopie - Latinské názvy.xlsx
2013-12-12 21:49 - 2013-12-12 21:49 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Mafia
2013-12-12 19:44 - 2013-12-12 19:44 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-12 19:44 - 2013-12-12 19:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
2013-12-12 16:18 - 2013-12-12 16:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-12 16:18 - 2013-12-12 16:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-11 18:41 - 2013-12-11 18:41 - 09272200 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-09 00:15 - 2013-12-09 00:15 - 00000476 _____ C:\Documents and Settings\Vojta\Dokumenty\Obrázky.lnk
2013-12-09 00:08 - 2013-12-09 22:51 - 00000000 ___RD C:\Documents and Settings\Vojta\Plocha\Údržba
2013-12-08 17:13 - 2013-12-08 19:40 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\FreeMoviesToDVD
2013-12-08 17:13 - 2013-12-08 17:13 - 00000803 _____ C:\Documents and Settings\Vojta\Nabídka Start\Programy\Free Videos To DVD.lnk
2013-12-08 17:13 - 2013-12-08 17:13 - 00000767 _____ C:\Documents and Settings\Vojta\Plocha\Free Videos To DVD.lnk
2013-12-08 17:13 - 2013-12-08 17:13 - 00000000 ____D C:\Program Files\Free Videos To DVD
2013-12-08 17:13 - 2013-12-08 17:13 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Videos To DVD
2013-12-08 17:13 - 2009-01-23 21:21 - 00327680 _____ (Viscom Software http://www.viscomsoft.com) C:\WINDOWS\system32\dvdauthor.ocx
2013-12-08 17:13 - 2009-01-23 21:21 - 00000401 _____ C:\WINDOWS\system32\dvdauthor.lic
2013-12-08 17:13 - 2009-01-23 21:20 - 00233472 _____ (Viscom Software http://www.viscomsoft.com) C:\WINDOWS\system32\viscomdvdimg.dll
2013-12-08 17:13 - 2009-01-23 21:08 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSCMCFR.DLL
2013-12-08 17:13 - 2009-01-23 21:08 - 00119568 _____ (Microsoft Corporation) C:\WINDOWS\system32\VB6FR.DLL
2013-12-08 17:13 - 2009-01-23 21:08 - 00115920 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinet.OCX
2013-12-08 17:13 - 2009-01-23 21:08 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\VB6STKIT.DLL
2013-12-08 17:13 - 2009-01-23 21:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CMDLGFR.DLL
2013-12-08 17:13 - 2009-01-23 21:08 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetfr.DLL
2013-12-08 17:08 - 2006-12-28 21:18 - 00122512 _____ (B.H.A Corporation) C:\WINDOWS\system32\bgsvcgen.exe
2013-12-08 17:08 - 2006-12-28 21:18 - 00056976 _____ (B.H.A Corporation) C:\WINDOWS\system32\GenSvcInst.exe
2013-12-04 21:41 - 2013-12-04 21:41 - 00000000 ____D C:\ATF
2013-12-02 11:58 - 2013-12-02 12:07 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Google
2013-11-29 01:09 - 2013-11-29 01:09 - 00000000 ____H C:\Documents and Settings\Vojta\Dokumenty\Default.rdp
2013-11-28 21:53 - 2013-12-13 15:16 - 00000000 ____D C:\Documents and Settings\Vojta\Plocha\otázky
2013-11-27 16:19 - 2013-11-27 16:19 - 01283072 _____ C:\Documents and Settings\Vojta\Plocha\Nutriční podpora v intenzivní péči.ppt
2013-11-25 15:36 - 2013-11-25 15:36 - 00000000 _____ C:\Documents and Settings\Vojta\ping
2013-11-25 15:36 - 2013-11-25 15:36 - 00000000 _____ C:\Documents and Settings\Vojta\Odpověď
==================== One Month Modified Files and Folders =======
2013-12-17 13:20 - 2013-12-17 13:20 - 00014616 _____ C:\Documents and Settings\Vojta\Plocha\FRST.txt
2013-12-17 13:20 - 2012-07-17 04:25 - 00000000 ____D C:\Documents and Settings\Vojta\Plocha
2013-12-17 13:19 - 2012-07-17 04:25 - 00000000 ___HD C:\Documents and Settings\Vojta\Local Settings\Data aplikací
2013-12-17 13:18 - 2013-12-17 13:18 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Vojta\Plocha\FRSTLauncher.exe
2013-12-17 13:18 - 2013-12-17 13:16 - 01061167 _____ (Farbar) C:\Documents and Settings\Vojta\Plocha\FRST.exe
2013-12-17 13:17 - 2013-12-17 13:17 - 00000000 ____D C:\FRST
2013-12-17 13:13 - 2012-07-22 12:02 - 00049152 _____ ( ) C:\Documents and Settings\Vojta\CompiledAdapter
2013-12-17 13:13 - 2012-07-22 10:26 - 00000349 _____ C:\Documents and Settings\All Users\Dokumenty\PCLECHAL.INI
2013-12-17 13:13 - 2012-07-17 04:25 - 00000000 ____D C:\Documents and Settings\Vojta
2013-12-17 13:13 - 2012-07-17 04:13 - 01155037 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-17 13:12 - 2012-07-22 10:51 - 00008911 _____ C:\checkrun.txt
2013-12-17 13:12 - 2012-07-17 04:24 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-17 13:12 - 2012-07-16 22:45 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-12-17 13:12 - 2012-07-16 22:45 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-12-17 13:11 - 2012-07-17 04:25 - 00000178 ___SH C:\Documents and Settings\Vojta\ntuser.ini
2013-12-17 13:11 - 2012-07-17 04:24 - 00032362 _____ C:\WINDOWS\SchedLgU.Txt
2013-12-17 13:10 - 2013-12-17 13:00 - 00000000 ____D C:\AdwCleaner
2013-12-17 13:10 - 2012-07-17 17:23 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\Skype
2013-12-17 13:01 - 2012-07-17 04:25 - 00000000 ___RD C:\Documents and Settings\Vojta\Dokumenty
2013-12-17 13:01 - 2012-07-16 22:41 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-12-17 13:00 - 2013-12-17 13:00 - 05693440 _____ C:\Documents and Settings\Vojta\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 01226750 _____ C:\Documents and Settings\Vojta\Plocha\adwcleaner.exe
2013-12-17 13:00 - 2013-12-17 13:00 - 00307200 _____ C:\Documents and Settings\NetworkService\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00270336 _____ C:\WINDOWS\system32\config\default.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00245760 _____ C:\Documents and Settings\LocalService\NTUSER.rhk
2013-12-17 13:00 - 2013-12-17 13:00 - 00024576 _____ C:\WINDOWS\system32\config\SAM.rhk
2013-12-17 13:00 - 2013-12-17 12:59 - 44769280 _____ C:\WINDOWS\system32\config\software.rhk
2013-12-17 13:00 - 2012-07-17 04:24 - 00000000 __SHD C:\Documents and Settings\LocalService
2013-12-17 13:00 - 2012-07-17 04:16 - 00000000 __SHD C:\Documents and Settings\NetworkService
2013-12-17 12:59 - 2013-12-17 12:59 - 00053248 _____ C:\WINDOWS\system32\config\SECURITY.rhk
2013-12-17 12:52 - 2012-07-17 04:25 - 00000000 __RHD C:\Documents and Settings\Vojta\Data aplikací
2013-12-17 12:50 - 2013-12-17 12:50 - 00000000 ____D C:\WINDOWS\ERUNT
2013-12-17 12:49 - 2013-12-17 12:49 - 01034531 _____ (Thisisu) C:\Documents and Settings\Vojta\Plocha\JRT.exe
2013-12-17 12:41 - 2013-04-15 11:19 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-17 12:39 - 2013-12-17 12:39 - 00000000 ____D C:\rsit
2013-12-17 12:39 - 2013-12-17 12:39 - 00000000 ____D C:\Program Files\trend micro
2013-12-17 12:10 - 2013-10-13 19:20 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-12-17 12:10 - 2013-10-13 19:20 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-12-16 21:34 - 2012-07-17 20:03 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\vlc
2013-12-16 20:55 - 2012-07-17 16:18 - 00107520 _____ C:\Documents and Settings\Vojta\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-16 20:55 - 2012-07-17 16:18 - 00000069 _____ C:\WINDOWS\NeroDigital.ini
2013-12-16 20:48 - 2012-07-17 20:03 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\dvdcss
2013-12-16 20:02 - 2012-07-17 17:23 - 00002283 _____ C:\Documents and Settings\All Users\Plocha\Skype.lnk
2013-12-14 16:28 - 2013-09-13 20:35 - 00065536 _____ C:\WINDOWS\system32\config\OAlerts.evt
2013-12-14 16:19 - 2013-12-13 15:11 - 00011429 _____ C:\Documents and Settings\Vojta\Plocha\Kopie - Latinské názvy.xlsx
2013-12-13 19:59 - 2013-03-01 16:51 - 00012245 _____ C:\Documents and Settings\Vojta\Plocha\Latinské názvy.xlsx
2013-12-13 16:04 - 2013-10-13 19:34 - 00000000 ____D C:\WINDOWS\system32\NtmsData
2013-12-13 15:16 - 2013-11-28 21:53 - 00000000 ____D C:\Documents and Settings\Vojta\Plocha\otázky
2013-12-13 14:56 - 2012-07-17 04:10 - 00000000 ____D C:\WINDOWS\Registration
2013-12-12 22:54 - 2012-08-30 21:47 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\Wise Disk Cleaner
2013-12-12 21:57 - 2012-07-16 22:42 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-12-12 21:51 - 2012-07-16 22:36 - 00000000 ____D C:\WINDOWS\Help
2013-12-12 21:49 - 2013-12-12 21:49 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Mafia
2013-12-12 21:49 - 2012-07-16 22:42 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-12-12 19:44 - 2013-12-12 19:44 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-12 19:44 - 2013-12-12 19:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
2013-12-12 16:38 - 2012-07-16 22:41 - 01648944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-12 16:18 - 2013-12-12 16:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-12 16:18 - 2013-12-12 16:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-12 16:18 - 2013-07-27 15:04 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-12 16:18 - 2012-07-18 20:41 - 00000000 ____D C:\WINDOWS\ie8updates
2013-12-12 16:18 - 2012-07-17 16:02 - 00030756 _____ C:\WINDOWS\system32\TZLog.log
2013-12-12 16:16 - 2012-07-17 16:05 - 88123800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-12 16:15 - 2013-12-12 16:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-11 18:41 - 2013-12-11 18:41 - 09272200 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-11 18:41 - 2012-07-17 16:25 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-11 18:41 - 2012-07-17 16:25 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-10 20:07 - 2012-07-17 04:25 - 00000000 ___RD C:\Documents and Settings\Vojta\Oblíbené položky
2013-12-10 11:20 - 2001-10-25 13:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-12-09 22:51 - 2013-12-09 00:08 - 00000000 ___RD C:\Documents and Settings\Vojta\Plocha\Údržba
2013-12-09 22:51 - 2012-07-17 15:35 - 00000000 ____D C:\Program Files\CCleaner
2013-12-09 20:21 - 2012-07-17 17:23 - 00000000 ___RD C:\Program Files\Skype
2013-12-09 20:21 - 2012-07-17 17:23 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Skype
2013-12-09 00:34 - 2013-11-13 21:06 - 00000000 ____D C:\Documents and Settings\Vojta\Dokumenty\Soubory aplikace Outlook
2013-12-09 00:21 - 2012-07-16 22:42 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2013-12-09 00:15 - 2013-12-09 00:15 - 00000476 _____ C:\Documents and Settings\Vojta\Dokumenty\Obrázky.lnk
2013-12-08 23:51 - 2012-07-17 19:54 - 00001316 _____ C:\WINDOWS\wincmd.ini
2013-12-08 19:40 - 2013-12-08 17:13 - 00000000 ____D C:\Documents and Settings\Vojta\Data aplikací\FreeMoviesToDVD
2013-12-08 17:13 - 2013-12-08 17:13 - 00000803 _____ C:\Documents and Settings\Vojta\Nabídka Start\Programy\Free Videos To DVD.lnk
2013-12-08 17:13 - 2013-12-08 17:13 - 00000767 _____ C:\Documents and Settings\Vojta\Plocha\Free Videos To DVD.lnk
2013-12-08 17:13 - 2013-12-08 17:13 - 00000000 ____D C:\Program Files\Free Videos To DVD
2013-12-08 17:13 - 2013-12-08 17:13 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Videos To DVD
2013-12-08 17:13 - 2012-07-17 04:25 - 00000000 ___RD C:\Documents and Settings\Vojta\Nabídka Start\Programy
2013-12-08 17:12 - 2012-07-17 13:59 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-07 20:18 - 2012-07-17 04:25 - 00000000 ___HD C:\Documents and Settings\Vojta\Okolní síť
2013-12-04 21:41 - 2013-12-04 21:41 - 00000000 ____D C:\ATF
2013-12-02 19:36 - 2013-09-13 21:16 - 00002547 _____ C:\Documents and Settings\Vojta\Plocha\Microsoft Word 2010.lnk
2013-12-02 16:07 - 2012-07-17 16:18 - 00000000 ____D C:\Documents and Settings\Vojta\Dokumenty\Laski
2013-12-02 15:12 - 2013-01-16 12:52 - 00000000 ____D C:\Program Files\Google
2013-12-02 12:07 - 2013-12-02 11:58 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Google
2013-12-02 12:07 - 2013-01-11 12:57 - 00000000 ____D C:\Documents and Settings\Vojta\Local Settings\Data aplikací\Google
2013-12-02 12:06 - 2012-07-17 17:11 - 00000000 ____D C:\Documents and Settings\Vojta\Local Settings\Data aplikací\Adobe
2013-11-29 01:09 - 2013-11-29 01:09 - 00000000 ____H C:\Documents and Settings\Vojta\Dokumenty\Default.rdp
2013-11-28 23:58 - 2012-07-16 22:42 - 01108858 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-28 22:50 - 2012-07-21 12:19 - 00000000 ____D C:\WINDOWS\Minidump
2013-11-27 16:19 - 2013-11-27 16:19 - 01283072 _____ C:\Documents and Settings\Vojta\Plocha\Nutriční podpora v intenzivní péči.ppt
2013-11-25 15:36 - 2013-11-25 15:36 - 00000000 _____ C:\Documents and Settings\Vojta\ping
2013-11-25 15:36 - 2013-11-25 15:36 - 00000000 _____ C:\Documents and Settings\Vojta\Odpověď
2013-11-18 22:08 - 2012-07-17 15:49 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
Some content of TEMP:
====================
C:\Documents and Settings\Vojta\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\Vojta\Local Settings\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\Windows\System32\winlogon.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0507904 ____N (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\Windows\System32\svchost.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0014336 ____N (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2008-04-14 07:52] - [2009-02-09 12:25] - 0111104 ____N (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2008-04-14 07:52] - [2008-04-14 07:52] - 0578560 ____N (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\Windows\System32\userinit.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0026112 ____N (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\Drivers\volsnap.sys
[2008-04-14 06:42] - [2008-04-14 06:42] - 0052480 ____N (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avira Desktop (Disabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\Vojta\Plocha" je 495 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour"
"D:\\Program Files\\Java\\launch4j-tmp\\frd.exe"="D:\\Program Files\\Java\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe"="C:\\Program Files\\Java\\jre7\\launch4j-tmp\\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\\totalcmd\\TOTALCMD.EXE"="D:\\totalcmd\\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"D:\\Program Files\\Opera\\opera.exe"="D:\\Program Files\\Opera\\opera.exe:*:Enabled:Opera Internet Browser"
"D:\\Program Files\\DsNET Corp\\aTube Catcher 2.0\\yct.exe"="D:\\Program Files\\DsNET Corp\\aTube Catcher 2.0\\yct.exe:*:Enabled:aTube Catcher to download and convert videos."
"C:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace"
"C:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE:*:Enabled:Microsoft OneNote"
"C:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\WINDOWS\\KMSEmulator.exe"="C:\\WINDOWS\\KMSEmulator.exe:*:Enabled:KMSEmulator"
"C:\\Program Files\\Pinnacle\\MediaCenter\\PMC.exe"="C:\\Program Files\\Pinnacle\\MediaCenter\\PMC.exe:LocalSubNet:Enabled:Pmc.exe"
"C:\\Program Files\\Pinnacle\\MediaCenter\\PSST.exe"="C:\\Program Files\\Pinnacle\\MediaCenter\\PSST.exe:LocalSubNet:Enabled:PSST.exe"
"C:\\Program Files\\Pinnacle\\MediaCenter\\PMSInstallInit.exe"="C:\\Program Files\\Pinnacle\\MediaCenter\\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaManager\\PMSManager.exe"="D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaManager\\PMSManager.exe:LocalSubNet:Enabled:PMSManager.exe"
"D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaServer\\PMSInstallInit.exe"="D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaServer\\PMSInstallInit.exe:LocalSubNet:Enabled:PMSInstallInit.exe"
"D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaCenterService\\PMC.Service.Main.exe"="D:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaCenterService\\PMC.Service.Main.exe:LocalSubNet:Disabled:PMCService"
"C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"="C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe:*:Enabled:WebKit"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:*:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:*:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:*:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:*:Enabled:@xpsp2res.dll,-22002"
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
- Přílohy
-
- Addition.rar
- (4.52 KiB) Staženo 34 x
Re: Prosím o kontrolu logu - najednou se zpomalil PC
Tak už jsem asi přišel, čím to zpomalení je. Stane se tak, když zapnu skype a nepomůže, když ho vypnu. Myslíte, že postačí jej přeinstalovat nebo mám někde pořád nějaký vir?
Re: Prosím o kontrolu logu - najednou se zpomalil PC

- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-04-29] (Nero AG) HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM\...\Run: [PinnacleDriverCheck] - C:\WINDOWS\system32\PSDrvCheck.exe [406016 2003-11-10] () HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0 HKLM\...\Policies\Explorer: [NoResolveSearch] 1 HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [718208 2010-03-16] (Microsoft Corporation) AppInit_DLLs: [ ] () HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File FF DefaultSearchEngine: Ask.com FF SearchEngineOrder.1: Ask.com FF SelectedSearchEngine: Ask.com FF Extension: toolbar_AVIRA-V7 - C:\Documents and Settings\Vojta\Data aplikací\Mozilla\Firefox\Profiles\4dri0t4o.Mozilla_Firefox_3.6\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.) S3 IObitUnlocker; D:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys [26248 2011-03-09] () Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Program Files\AskPartnerNetwork D:\Program Files\IObit CMD: shutdown /r /f /t 2 End
- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST

- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
