v HJT úspěšně fixnuto
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by Uživatel (administrator) on UZIVATEL-8E8F10 on 05-04-2015 18:04:21
Running from C:\Documents and Settings\Uživatel\Plocha
Loaded Profiles: Uživatel (Available profiles: Uživatel)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ASUSTeK COMPUTER INC.) C:\WINDOWS\ATKKBService.exe
(Comodo Security Solutions, Inc.) C:\Program Files\Comodo\Dragon\dragon_updater.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Mobile Leader Co.,Ltd.) C:\WINDOWS\system32\LGScsiCommandService.exe
(Micro-Star International) C:\Program Files\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MSI) C:\Program Files\MSI\Super Charger\ChargeService.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files\AMT Media Manager\AMTDeviceService.exe
(Seagate) C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe
(Acronis) C:\Program Files\Seagate\DiscWizard\TimounterMonitor.exe
(Seagate) C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe
(ali) C:\Program Files\USB Disk Win98 Driver\Res.exe
() C:\Program Files\Winamp\winampa.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(MSI) C:\Program Files\MSI\Super Charger\Super Charger.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(TuneUp Software GmbH) C:\Program Files\TuneUp Utilities 2008\MemOptimizer.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL$AUTODESKVAULT\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(Seagate) C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [2054360 2009-11-16] (ESET)
HKLM\...\Run: [AMTDeviceService] => C:\Program Files\AMT Media Manager\AMTDeviceService.exe [184320 2009-01-21] ()
HKLM\...\Run: [DiscWizardMonitor.exe] => C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe [1346000 2009-11-02] (Seagate)
HKLM\...\Run: [AcronisTimounterMonitor] => C:\Program Files\Seagate\DiscWizard\TimounterMonitor.exe [906288 2009-11-02] (Acronis)
HKLM\...\Run: [Seagate Scheduler2 Service] => C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe [136544 2009-11-02] (Seagate)
HKLM\...\Run: [USB Storage Toolbox] => C:\Program Files\USB Disk Win98 Driver\Res.EXE [65536 2005-09-14] (ali)
HKLM\...\Run: [WinampAgent] => C:\Program Files\Winamp\winampa.exe [36352 2008-07-09] ()
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2012-12-29] ()
HKLM\...\Run: [Live Update] => C:\Program Files\MSI\Live Update\Live Update.exe [3484624 2014-11-27] (Micro-Star International)
HKLM\...\Run: [Super Charger] => C:\Program Files\MSI\Super Charger\Super Charger.exe [1014736 2014-07-22] (MSI)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2013-04-11] (Advanced Micro Devices, Inc.)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-1715567821-1229272821-725345543-1004\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [139264 2006-07-31] (Nero AG)
HKU\S-1-5-21-1715567821-1229272821-725345543-1004\...\Run: [TuneUp MemOptimizer] => C:\Program Files\TuneUp Utilities 2008\MemOptimizer.exe [154368 2008-04-16] (TuneUp Software GmbH)
HKU\S-1-5-21-1715567821-1229272821-725345543-1004\...\Run: [Math Optimize] => "C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Math Problem Solver\Optimize.exe" /path="Software\Math Problem Solver"
HKU\S-1-5-21-1715567821-1229272821-725345543-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssstars.scr [14336 2008-04-14] (Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0 relog_ap
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll (Autodesk, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1715567821-1229272821-725345543-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearchHKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.microsoft.com/isapi/redir.dl ... ar=msnhomeHKU\S-1-5-21-1715567821-1229272821-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft.com/isapi/redir.dl ... r=iesearchHKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1715567821-1229272821-725345543-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL =
http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1715567821-1229272821-725345543-1004 -> {B095BCF3-9EEF-4A7B-8380-0F48E5384782} URL =
http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-12-27] (Oracle Corporation)
BHO: EpsonToolBandKicker Class -> {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} -> C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22] (SEIKO EPSON CORPORATION)
Toolbar: HKU\S-1-5-21-1715567821-1229272821-725345543-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2012-06-28] (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-1715567821-1229272821-725345543-1004 -> EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22] (SEIKO EPSON CORPORATION)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.7.0/jinsta ... s-i586.cabDPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}
http://java.sun.com/update/1.7.0/jinsta ... s-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.7.0/jinsta ... s-i586.cabHandler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Uživatel\Data aplikací\Mozilla\Firefox\Profiles\t05in2fb.default-1353513489031
FF Homepage:
https://www.seznam.cz/FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-05] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2013-09-17] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2013-12-27] (DivX, LLC)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll [2012-12-27] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1715567821-1229272821-725345543-1004: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1715567821-1229272821-725345543-1004: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1715567821-1229272821-725345543-1004: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2012-08-05] (Ubisoft)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2012-12-27] (Oracle Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Extension: jid1sNL73VCI4UB0Fwjetpack - C:\Documents and Settings\Uživatel\Data aplikací\Mozilla\Firefox\Profiles\t05in2fb.default-1353513489031\Extensions\jid1-sNL73VCI4UB0Fw@jetpack [2015-04-02]
FF Extension: Adblock Plus - C:\Documents and Settings\Uživatel\Data aplikací\Mozilla\Firefox\Profiles\t05in2fb.default-1353513489031\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-15]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-02-21]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011-10-11]
Chrome:
=======
CHR Profile: C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-05]
CHR Extension: (Google Docs) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-05]
CHR Extension: (Google Drive) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-05]
CHR Extension: (YouTube) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-05]
CHR Extension: (Google Search) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-05]
CHR Extension: (Google Sheets) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-05]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-05]
CHR Profile: C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-05]
CHR Extension: (Google Docs) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-05]
CHR Extension: (Google Drive) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-05]
CHR Extension: (YouTube) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-05]
CHR Extension: (Google Search) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-05]
CHR Extension: (Google Sheets) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-05]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]
CHR Extension: (Gmail) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-05]
StartMenuInternet: chrome.exe - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2010-11-21] (Adobe Systems) [File not signed]
R2 ATKKeyboardService; C:\WINDOWS\ATKKBService.exe [257024 2007-07-12] (ASUSTeK COMPUTER INC.) [File not signed]
S3 Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [72704 2010-02-21] (Autodesk) [File not signed]
R2 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
S3 EhttpSrv; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [20680 2009-11-16] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [735960 2009-11-16] (ESET)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2013-10-20] (Macrovision Europe Ltd.) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [161664 2012-12-27] (Oracle Corporation)
R2 LGScsiCommandService; C:\WINDOWS\system32\LGScsiCommandService.exe [47616 2010-04-12] (Mobile Leader Co.,Ltd.) [File not signed]
R2 MSI_LiveUpdate_Service; C:\Program Files\MSI\Live Update\MSI_LiveUpdate_Service.exe [1732048 2014-11-27] (Micro-Star International)
R2 MSI_SuperCharger; C:\Program Files\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI)
R2 MSSQL$AUTODESKVAULT; C:\Program Files\Microsoft SQL Server\MSSQL$AUTODESKVAULT\Binn\sqlservr.exe [9158656 2008-12-18] (Microsoft Corporation)
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [73728 2005-05-03] (Microsoft Corporation) [File not signed]
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [720896 2006-07-31] (Nero AG) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-01-16] (NVIDIA Corporation)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2015-03-10] ()
R2 SgtSch2Svc; C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe [431456 2009-11-02] (Seagate)
S3 SQLAgent$AUTODESKVAULT; C:\Program Files\Microsoft SQL Server\MSSQL$AUTODESKVAULT\Binn\sqlagent.EXE [323584 2005-05-03] (Microsoft Corporation) [File not signed]
S2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
S3 TuneUp.Defrag; C:\WINDOWS\System32\TuneUpDefragService.exe [354560 2012-08-25] (TuneUp Software GmbH)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2015-02-11] (Cisco Systems, Inc.) [File not signed]
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2006-07-01] (Advanced Micro Devices)
R3 asusgsb; C:\WINDOWS\System32\drivers\asusgsb.sys [12416 2007-07-12] (ASUSTeK Computer Inc.) [File not signed]
R1 asuskbnt; C:\WINDOWS\System32\drivers\atkkbnt.sys [11136 2007-07-12] (ASUSTeK COMPUTER INC.) [File not signed]
R3 ASUSVRC; C:\WINDOWS\System32\DRIVERS\AsusVRC.sys [18432 2007-01-29] (ASUSTeK COMPUTER INC.) [File not signed]
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [103040 2012-05-14] (Advanced Micro Devices)
R3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [34704 2007-05-11] (IVT Corporation.)
R3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [27792 2007-03-05] (IVT Corporation.)
R3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [18320 2007-03-05] (IVT Corporation.)
R3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [36496 2007-05-09] (IVT Corporation.)
R0 BTHidEnum; C:\WINDOWS\System32\Drivers\vbtenum.sys [20880 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [35600 2007-03-05] (IVT Corporation.)
S3 BTNetFilter; C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys [22416 2006-11-21] (IVT Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R3 cm102u32; C:\WINDOWS\System32\drivers\c6501.sys [1419968 2006-09-05] (C-Media Inc)
R2 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [116520 2009-11-16] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [108792 2009-11-16] (ESET)
R1 EIO; C:\WINDOWS\system32\drivers\EIO.sys [12288 2007-07-12] (ASUSTeK Computer Inc.) [File not signed]
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [135048 2009-11-16] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [33096 2009-06-19] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [55768 2009-11-16] (ESET)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [13192 2011-07-29] () [File not signed]
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [8456 2011-07-29] () [File not signed]
S3 hid3331; C:\WINDOWS\System32\drivers\hid3331.sys [41336 2008-05-19] ( )
S3 motandroidusb; C:\WINDOWS\System32\Drivers\motoandroid.sys [25856 2009-07-10] (Motorola) [File not signed]
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 NTIOLib_1_0_3; C:\Program Files\MSI\Super Charger\NTIOLib.sys [14392 2012-10-26] (MSI)
R3 NTIOLib_1_0_4; C:\Program Files\MSI\Live Update\NTIOLib.sys [7680 2010-10-20] (MSI) [File not signed]
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [93568 2005-08-18] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [34048 2005-09-30] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13056 2005-09-30] (NVIDIA Corporation)
S3 pneteth; C:\WINDOWS\System32\DRIVERS\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.) [File not signed]
S4 RsFx0102; C:\WINDOWS\System32\DRIVERS\RsFx0102.sys [242712 2008-07-10] (Microsoft Corporation)
R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [56268 2009-03-15] (PowerISO Computing, Inc.) [File not signed]
R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [50688 2005-08-10] (Protection Technology) [File not signed]
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2005-05-16] (Protection Technology) [File not signed]
R0 sfsync02; C:\WINDOWS\System32\drivers\sfsync02.sys [19968 2005-04-14] (Protection Technology) [File not signed]
R0 sfsync03; C:\WINDOWS\System32\drivers\sfsync03.sys [35328 2005-10-13] (Protection Technology) [File not signed]
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [715248 2012-11-19] () [File not signed]
R0 tdrpman; C:\WINDOWS\System32\DRIVERS\tdrpman.sys [368480 2012-08-25] (Acronis)
R2 tifsfilter; C:\WINDOWS\System32\DRIVERS\tifsfilt.sys [44384 2012-08-25] (Acronis)
U3 TrueSight; C:\WINDOWS\system32\drivers\TrueSight.sys [35064 2015-04-05] ()
S3 usbbus; C:\WINDOWS\System32\DRIVERS\lgusbbus.sys [13056 2010-01-21] (LG Electronics Inc.)
S3 UsbDiag; C:\WINDOWS\System32\DRIVERS\lgusbdiag.sys [20864 2010-01-21] (LG Electronics Inc.)
S3 USBModem; C:\WINDOWS\System32\DRIVERS\lgusbmodem.sys [24960 2010-01-21] (LG Electronics Inc.)
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [34448 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [44304 2007-03-05] (IVT Corporation.)
R3 Video3D; C:\WINDOWS\System32\Drivers\Video3D32.sys [10752 2007-07-12] (ASUSTeK COMPUTER INC.) [File not signed]
U3 asn0qaf6; C:\WINDOWS\system32\Drivers\asn0qaf6.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero size file/folder)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U3 TlntSvr; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-05 18:04 - 2015-04-05 18:04 - 00024430 _____ () C:\Documents and Settings\Uživatel\Plocha\FRST.txt
2015-04-05 18:04 - 2015-04-05 18:04 - 00000000 ____D () C:\FRST
2015-04-05 18:02 - 2015-04-05 18:02 - 01135104 _____ (Farbar) C:\Documents and Settings\Uživatel\Plocha\FRST.exe
2015-04-05 11:37 - 2015-04-05 18:04 - 00000000 ____D () C:\Documents and Settings\Uživatel\Local Settings\Temp
2015-04-05 11:37 - 2015-04-05 11:37 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\temp
2015-04-05 11:37 - 2015-04-05 11:37 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\temp
2015-04-05 11:37 - 2015-04-05 11:37 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\temp
2015-04-05 11:37 - 2015-04-05 11:37 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\temp
2015-04-05 11:37 - 2015-04-05 11:09 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2015-04-05 11:12 - 2015-04-05 11:40 - 00017729 _____ () C:\zoek-results.log
2015-04-05 11:09 - 2015-04-05 11:32 - 00000000 ____D () C:\zoek_backup
2015-04-05 11:07 - 2015-04-05 11:08 - 01305600 _____ () C:\Documents and Settings\Uživatel\Plocha\zoek.exe
2015-04-04 18:46 - 2015-04-05 10:54 - 00035064 _____ () C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-04-04 18:46 - 2015-04-04 18:58 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\RogueKiller
2015-04-04 18:43 - 2015-04-04 18:44 - 16748632 _____ () C:\Documents and Settings\Uživatel\Plocha\RogueKiller.exe
2015-04-04 18:34 - 2015-04-04 18:34 - 00000000 ____D () C:\RegBackup
2015-04-04 18:31 - 2015-04-04 18:32 - 02690981 _____ (Thisisu) C:\Documents and Settings\Uživatel\Plocha\JRT.exe
2015-04-04 14:46 - 2015-04-04 17:53 - 00000000 ____D () C:\AdwCleaner
2015-04-02 17:07 - 2015-04-02 17:07 - 00000004 _____ () C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7
2015-04-01 19:58 - 2013-01-27 06:43 - 1027064218 _____ () C:\Documents and Settings\Uživatel\Plocha\Rok-jedna-2009-DVDrip-cz-dabing-(Xvid.mp3).avi
2015-03-22 23:49 - 2015-04-02 16:08 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-03-21 22:13 - 2015-03-21 22:13 - 00000000 ____D () C:\Documents and Settings\Uživatel\Dokumenty\The Witcher 2
2015-03-21 22:11 - 2015-03-21 22:13 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\The Witcher 2
2015-03-21 22:11 - 2015-03-21 22:11 - 00000539 _____ () C:\Documents and Settings\All Users\Plocha\Start The Witcher 2.lnk
2015-03-21 21:46 - 2015-03-21 22:20 - 00000000 ____D () C:\Program Files\The Witcher 2
2015-03-10 13:36 - 2015-03-10 13:36 - 00000959 _____ () C:\Documents and Settings\Uživatel\Plocha\Far Cry 3.lnk
2015-03-10 13:36 - 2015-03-10 13:36 - 00000000 ____D () C:\Documents and Settings\Uživatel\Data aplikací\Far Cry 3
2015-03-10 13:36 - 2015-03-10 13:36 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\R.G. Mechanics
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-05 18:04 - 2010-02-15 21:09 - 00000000 ____D () C:\Documents and Settings\Uživatel\Plocha
2015-04-05 18:03 - 2010-02-16 21:39 - 00000000 ____D () C:\Documents and Settings\Uživatel\Dokumenty\Stažené soubory
2015-04-05 18:00 - 2014-09-11 23:06 - 00000518 _____ () C:\WINDOWS\Tasks\Automatická údržba.job
2015-04-05 17:59 - 2014-08-24 23:16 - 00000000 ____D () C:\Documents and Settings\Uživatel\Plocha\udržba
2015-04-05 17:42 - 2013-02-11 23:26 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-05 17:24 - 2013-05-28 20:06 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-04-05 17:12 - 2013-02-25 19:45 - 00001038 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-1229272821-725345543-1004UA.job
2015-04-05 11:43 - 2010-02-15 21:02 - 01719934 _____ () C:\WINDOWS\WindowsUpdate.log
2015-04-05 11:40 - 2014-03-22 09:12 - 00000228 _____ () C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-04-05 11:40 - 2013-02-11 23:26 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-05 11:40 - 2010-02-15 21:05 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-05 11:40 - 2010-02-15 20:51 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-04-05 11:40 - 2010-02-15 20:51 - 00000048 _____ () C:\WINDOWS\wiaservc.log
2015-04-05 11:39 - 2015-03-04 13:40 - 00524288 _____ () C:\WINDOWS\system32\config\ACEEvent.evt
2015-04-05 11:39 - 2010-02-15 21:09 - 00000178 ___SH () C:\Documents and Settings\Uživatel\ntuser.ini
2015-04-05 11:39 - 2010-02-15 21:05 - 00032422 _____ () C:\WINDOWS\SchedLgU.Txt
2015-04-05 11:33 - 2010-02-15 21:09 - 00000000 __RHD () C:\Documents and Settings\Uživatel\Data aplikací
2015-04-05 11:33 - 2010-02-15 20:48 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2015-04-05 11:32 - 2010-02-15 21:09 - 00000000 ____D () C:\Documents and Settings\Uživatel
2015-04-05 11:15 - 2010-02-15 21:09 - 00000000 ___RD () C:\Documents and Settings\Uživatel\Nabídka Start\Programy
2015-04-05 11:15 - 2010-02-15 21:09 - 00000000 ___HD () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací
2015-04-05 11:15 - 2010-02-15 21:05 - 00000000 ___HD () C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2015-04-04 19:12 - 2013-02-25 19:45 - 00000986 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-1229272821-725345543-1004Core.job
2015-04-04 17:53 - 2010-02-15 21:09 - 00000000 ___RD () C:\Documents and Settings\Uživatel\Dokumenty
2015-04-04 17:46 - 2014-08-30 23:38 - 00000000 ____D () C:\Documents and Settings\Uživatel\Data aplikací\Winamp
2015-04-04 17:46 - 2010-02-15 20:30 - 00000000 ____D () C:\WINDOWS\Minidump
2015-04-04 17:45 - 2012-11-21 00:16 - 00000000 __SHD () C:\Documents and Settings\Uživatel\UserData
2015-04-04 14:22 - 2011-11-24 16:55 - 00000000 ____D () C:\Documents and Settings\Uivatel\Local Settings\Temp
2015-04-04 09:42 - 2010-02-15 20:49 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2015-04-04 09:42 - 2010-02-15 20:49 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-04-02 16:28 - 2012-12-30 12:39 - 00116736 _____ () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-02 16:28 - 2010-02-20 23:14 - 00000229 _____ () C:\WINDOWS\NeroDigital.ini
2015-04-01 12:14 - 2010-02-17 21:37 - 00000000 ____D () C:\Documents and Settings\Uživatel\Data aplikací\HLSW
2015-04-01 10:32 - 2010-02-18 19:46 - 00281768 _____ () C:\WINDOWS\system32\PnkBstrB.xtr
2015-04-01 10:32 - 2010-02-16 22:29 - 00281768 _____ () C:\WINDOWS\system32\PnkBstrB.exe
2015-04-01 10:32 - 2010-02-16 22:29 - 00139832 _____ () C:\WINDOWS\system32\Drivers\PnkBstrK.sys
2015-03-31 12:57 - 2010-02-16 22:29 - 00281768 _____ () C:\WINDOWS\system32\PnkBstrB.ex0
2015-03-29 09:05 - 2006-03-02 14:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2015-03-21 22:29 - 2010-02-20 23:15 - 00000112 _____ () C:\Documents and Settings\Uživatel\default.pls
2015-03-21 22:03 - 2011-01-03 21:22 - 00000000 ____D () C:\Documents and Settings\Uživatel\Dokumenty\filmy
2015-03-21 21:47 - 2010-03-14 13:20 - 00000000 ___RD () C:\Documents and Settings\Uživatel\Dokumenty\HRY na vypaleni
2015-03-21 21:46 - 2010-02-15 21:14 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2015-03-14 14:39 - 2013-09-05 20:03 - 00000000 ___RD () C:\Documents and Settings\Uživatel\Dokumenty\tata
2015-03-14 14:35 - 2014-09-23 11:18 - 00002563 _____ () C:\Documents and Settings\Uživatel\Plocha\Microsoft Office Word 2007.lnk
2015-03-11 21:29 - 2010-02-18 17:16 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2015-03-11 21:26 - 2013-07-22 20:00 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-03-11 21:08 - 2010-02-16 22:17 - 119837696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-03-10 13:32 - 2010-02-16 22:29 - 00138904 _____ () C:\Documents and Settings\Uživatel\Data aplikací\PnkBstrK.sys
2015-03-10 13:32 - 2010-02-16 22:29 - 00076888 _____ () C:\WINDOWS\system32\PnkBstrA.exe
2015-03-10 13:30 - 2012-12-29 00:30 - 02186609 _____ () C:\WINDOWS\setupapi.log
2015-03-10 13:30 - 2010-02-15 21:02 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2015-03-10 12:54 - 2013-12-14 20:59 - 00000000 ____D () C:\Program Files\R.G. Mechanics
2015-03-08 16:50 - 2014-03-22 09:12 - 00000222 _____ () C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
==================== Files in the root of some directories =======
2010-02-16 22:29 - 2015-03-10 13:32 - 0138904 _____ () C:\Documents and Settings\Uživatel\Data aplikací\PnkBstrK.sys
2012-12-30 12:39 - 2015-04-02 16:28 - 0116736 _____ () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-02-21 17:49 - 2010-02-21 17:49 - 0000128 _____ () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\fusioncache.dat
Files to move or delete:
====================
C:\Documents and Settings\Uživatel\backup.reg
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
