Notebook zamrzá

[klemar]

Dobrý den

mám XP

notebook stále zamrzá

nejde nainstalovat Antimalware ani v nouzovém režimu

zasílám logy a chybovou hlášku z MAMB

prosím o radu a děkuji


frst:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-07-2015
Ran by Mar (administrator) on MARIAN on 25-07-2015 10:28:52
Running from C:\Documents and Settings\Mar\Plocha
Loaded Profiles: Mar (Available Profiles: Mar & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser path: "C:\Documents and Settings\Mar\Local Settings\Data aplikací\360browser\Browser\Application\360browser.exe" -- "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
() C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Realtek Semiconductor Corp.) C:\DOCUME~1\Mar\LOCALS~1\Temp\RtkBtMnt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\taskmgr.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16871936 2010-02-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [QHSafeTray] => C:\Program Files\360\Total Security\safemon\QHSafeTray.exe [1537864 2014-05-15] ()
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKU\S-1-5-21-436374069-1078145449-1801674531-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [DWQueuedReporting] => c:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [437160 2007-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute:

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-436374069-1078145449-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-436374069-1078145449-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-436374069-1078145449-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?pc=UP97&ocid=UP97DHP
SearchScopes: HKU\S-1-5-21-436374069-1078145449-1801674531-1004 -> DefaultScope {8F4A0B70-2D82-4DEF-BB7B-E2F5A843AA9E} URL = http://search.seznam.cz/?q={searchTerms ... chmodule_2
SearchScopes: HKU\S-1-5-21-436374069-1078145449-1801674531-1004 -> {8F4A0B70-2D82-4DEF-BB7B-E2F5A843AA9E} URL = http://search.seznam.cz/?q={searchTerms ... chmodule_2
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-09-16] (Skype Technologies S.A.)
Toolbar: HKU\S-1-5-21-436374069-1078145449-1801674531-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-09-16] (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{27B89E51-31FF-42AD-80CA-DD841BF39704}: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Mar\Data aplikací\Mozilla\Firefox\Profiles\7xi1c9xx.default
FF DefaultSearchEngine: Bing
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Homepage: hxxp://www.google.cz/firefox?gfe_rd=cr&ei=_jha ... 8gf0_4CIBA
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll [2014-05-14] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-18] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF user.js: detected! => C:\Documents and Settings\Mar\Data aplikací\Mozilla\Firefox\Profiles\7xi1c9xx.default\user.js [2013-07-20]
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2013-06-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2013-06-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2013-06-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2013-06-07] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2013-06-07] (Apple Inc.)
FF Extension: Seznam lištička - C:\Documents and Settings\Mar\Data aplikací\Mozilla\Firefox\Profiles\7xi1c9xx.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2013-04-01]
FF Extension: Adblock Plus - C:\Documents and Settings\Mar\Data aplikací\Mozilla\Firefox\Profiles\7xi1c9xx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-20]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-03-30]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-03-30]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-10-18]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR Profile: C:\Documents and Settings\Mar\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Documents and Settings\Mar\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-13]
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Mar\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-03-13]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Mar\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-13]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-09-16]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
R2 QHActiveDefense; C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe [607560 2014-05-15] ()
R2 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3273088 2013-09-16] (Skype Technologies S.A.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [65872 2014-05-15] (360.cn)
R1 360SelfProtection; C:\WINDOWS\System32\drivers\360SelfProtection.sys [174816 2014-05-15] (360安全中心)
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1574112 2009-06-22] (Atheros Communications, Inc.)
R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV.sys [165968 2014-05-15] (Qihu 360 Software Co., Ltd.)
R1 EfiMon; C:\WINDOWS\System32\Drivers\Efimon.sys [22448 2014-05-15] (360安全中心)
R0 HookPort; C:\WINDOWS\System32\Drivers\Hookport.sys [76216 2014-05-15] (360安全中心)
R0 MpFilter; C:\WINDOWS\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R1 MpKslfaa76d44; c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{B5367495-FD66-4070-9BBE-116B30AEAF6D}\MpKslfaa76d44.sys [39168 2015-07-25] (Microsoft Corporation)
R1 qutmdserv; C:\WINDOWS\system32\drivers\qutmdrv.sys [248624 2014-05-15] (360.cn)
U3 DfSdkS; No ImagePath
S4 IntelIde; No ImagePath
S3 ProcObsrv; \??\C:\Program Files\Glary Utilities 3\ProcObsrv.sys [X]
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-25 10:28 - 2015-07-25 10:29 - 00011301 _____ C:\Documents and Settings\Mar\Plocha\FRST.txt
2015-07-25 10:28 - 2015-07-25 10:28 - 00000000 ____D C:\FRST
2015-07-25 10:26 - 2015-07-25 10:26 - 01638912 _____ (Farbar) C:\Documents and Settings\Mar\Plocha\FRST.exe
2015-07-25 10:25 - 2015-07-25 10:25 - 00000000 __SHD C:\Documents and Settings\All Users\Data aplikací\360Quarant
2015-07-25 10:25 - 2015-07-25 10:25 - 00000000 __SHD C:\$360Section
2015-07-25 10:20 - 2015-07-25 10:20 - 00000000 ____D C:\Program Files\IrfanView
2015-07-25 10:19 - 2015-07-25 10:19 - 00000167 _____ C:\Documents and Settings\Mar\Plocha\VIRY.txt
2015-07-25 09:59 - 2015-07-25 09:59 - 21545336 _____ (Malwarebytes Corporation ) C:\Documents and Settings\Mar\Plocha\mbam-setup-sem-2.1.6.1022.exe
2015-07-25 09:52 - 2015-07-25 09:52 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google
2015-07-25 09:51 - 2015-07-25 09:51 - 00256512 ___SH C:\Documents and Settings\Mar\Dokumenty\Thumbs.db
2015-07-25 09:50 - 2015-07-25 09:50 - 00000000 __SHD C:\Documents and Settings\Administrator\IETldCache
2015-07-25 09:49 - 2015-07-25 10:07 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2015-07-25 09:49 - 2015-07-25 10:05 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Temp
2015-07-25 09:49 - 2015-07-25 09:52 - 00000000 ___HD C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2015-07-25 09:49 - 2015-07-25 09:50 - 00000000 ____D C:\Documents and Settings\Administrator
2015-07-25 09:49 - 2010-02-05 00:31 - 00000000 __RHD C:\Documents and Settings\Administrator\Data aplikací
2015-07-25 09:49 - 2010-02-05 00:31 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění
2015-07-25 09:49 - 2010-02-05 00:31 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start
2015-07-25 09:49 - 2010-02-05 00:31 - 00000000 ___HD C:\Documents and Settings\Administrator\Okolní tiskárny
2015-07-25 09:49 - 2010-02-05 00:31 - 00000000 ___HD C:\Documents and Settings\Administrator\Okolní síť
2015-07-25 09:49 - 2010-02-05 00:31 - 00000000 ____D C:\Documents and Settings\Administrator\Plocha
2015-07-25 09:49 - 2010-02-05 00:31 - 00000000 ____D C:\Documents and Settings\Administrator\Oblíbené položky
2015-07-25 09:49 - 2010-02-05 00:31 - 00000000 ____D C:\Documents and Settings\Administrator\Dokumenty
2015-07-25 09:49 - 2010-02-04 16:34 - 00001599 _____ C:\Documents and Settings\Administrator\Nabídka Start\Programy\Vzdálená pomoc.lnk
2015-07-25 09:49 - 2010-02-04 16:34 - 00000792 _____ C:\Documents and Settings\Administrator\Nabídka Start\Programy\Windows Media Player.lnk
2015-07-25 09:49 - 2010-02-04 16:34 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy\Příslušenství
2015-07-25 09:49 - 2010-02-04 16:34 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy
2015-07-25 09:49 - 2010-02-04 16:30 - 00000000 ___HD C:\Documents and Settings\Administrator\Šablony
2015-07-25 09:28 - 2015-07-25 09:28 - 00006319 _____ C:\Documents and Settings\Mar\Plocha\hijackthis.log
2015-07-16 08:50 - 2015-07-16 08:50 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes Anti-Malware
2015-07-16 08:49 - 2015-07-16 08:49 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2015-07-16 08:49 - 2015-06-18 08:41 - 00121560 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-07-16 08:49 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-25 10:29 - 2010-02-04 16:38 - 00000000 ____D C:\Documents and Settings\Mar\Local Settings\Temp
2015-07-25 10:28 - 2010-02-04 16:38 - 00000000 ____D C:\Documents and Settings\Mar\Plocha
2015-07-25 10:25 - 2010-02-05 00:30 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-07-25 10:24 - 2014-05-25 12:56 - 00000000 ____D C:\Documents and Settings\Mar\Data aplikací\360safe
2015-07-25 10:20 - 2014-05-25 12:55 - 00000000 ____D C:\Documents and Settings\Mar\Data aplikací\360WD
2015-07-25 10:14 - 2015-03-13 18:56 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-25 10:09 - 2010-02-04 16:33 - 01569134 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-25 10:08 - 2015-03-13 18:56 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-25 10:08 - 2010-02-04 16:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-25 10:02 - 2010-02-04 16:38 - 00000178 ___SH C:\Documents and Settings\Mar\ntuser.ini
2015-07-25 10:02 - 2010-02-04 16:36 - 00032524 _____ C:\WINDOWS\SchedLgU.Txt
2015-07-25 09:51 - 2010-03-16 19:41 - 00000000 ____D C:\Documents and Settings\Mar\Dokumenty\Stažené soubory
2015-07-25 09:51 - 2010-02-04 16:38 - 00000000 ___RD C:\Documents and Settings\Mar\Dokumenty\Hudba
2015-07-25 09:51 - 2010-02-04 16:38 - 00000000 ___RD C:\Documents and Settings\Mar\Dokumenty
2015-07-25 09:37 - 2010-02-04 19:24 - 00000000 __SHD C:\Documents and Settings\Mar\UserData
2015-07-25 09:37 - 2010-02-04 16:38 - 00000000 ____D C:\Documents and Settings\Mar
2015-07-25 09:23 - 2010-02-04 16:36 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Temp
2015-07-25 09:13 - 2008-04-14 14:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2015-07-18 00:14 - 2010-02-04 16:38 - 00000000 ___HD C:\Documents and Settings\Mar\Local Settings\Data aplikací
2015-07-16 09:15 - 2015-03-13 19:00 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-07-16 09:09 - 2010-02-05 00:31 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-07-16 09:01 - 2013-07-20 11:45 - 00065536 _____ C:\WINDOWS\system32\config\TuneUp.evt
2015-07-16 09:01 - 2010-06-13 09:53 - 00000000 ____D C:\WINDOWS\Minidump
2015-07-16 08:55 - 2010-02-05 00:31 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-07-16 08:52 - 2013-07-20 23:45 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-07-16 08:33 - 2015-03-13 17:26 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\GlarySoft
2015-07-16 08:29 - 2010-02-04 16:38 - 00000000 ___HD C:\Documents and Settings\Mar\Šablony
2015-07-05 12:11 - 2010-02-09 19:31 - 00246952 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-07-03 08:49 - 2010-02-06 10:43 - 127070192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories =======

2010-03-17 11:42 - 2012-12-26 18:22 - 0003584 _____ () C:\Documents and Settings\Mar\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
C:\Documents and Settings\Mar\Local Settings\Temp\RtkBtMnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of log ============================



addition:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-07-2015
Ran by Mar at 2015-07-25 10:29:33
Running from C:\Documents and Settings\Mar\Plocha
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-436374069-1078145449-1801674531-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
Guest (S-1-5-21-436374069-1078145449-1801674531-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-436374069-1078145449-1801674531-1000 - Limited - Disabled)
Mar (S-1-5-21-436374069-1078145449-1801674531-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Mar
SUPPORT_388945a0 (S-1-5-21-436374069-1078145449-1801674531-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: 360 Total Security (Enabled - Up to date) {5EEE8B0C-BEB2-4f05-BA7E-5EF3A65B8ECC}
AV: Microsoft Security Essentials (Enabled - Up to date) {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
AV: Microsoft Security Essentials (Disabled - Up to date) {BCF43643-A118-4432-AEDE-D861FCBCFCDF}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

360 Browser (HKU\S-1-5-21-436374069-1078145449-1801674531-1004\...\360Browser) (Version: 7.5.2.106 - 360 Security Center)
360 Total Security (HKLM\...\360TotalSecurity) (Version: 3.0.0.1202 - 360 Security Center)
Adobe Flash Player 13 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-A95000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Aktualizace systému Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2862772) (HKLM\...\KB2862772-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Apple Application Support (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Driver Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.7.0.348 - Atheros)
CCleaner (HKLM\...\CCleaner) (Version: 4.03 - Piriform)
Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)
Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden
ICQ7.5 (HKLM\...\{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}) (Version: 7.5 - ICQ)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5643 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.12.13601 - Skype Technologies S.A.)
Skype™ 6.18 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
TuneUp Utilities Language Pack (en-US) (Version: 13.0.4000.124 - TuneUp Software) Hidden
VLC media player 1.0.5 (HKLM\...\VLC media player) (Version: 1.0.5 - VideoLAN Team)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

24-04-2015 09:04:19 Software Distribution Service 3.0
25-04-2015 20:11:07 Software Distribution Service 3.0
26-04-2015 20:56:19 Kontrolní bod systému
27-04-2015 09:32:40 Software Distribution Service 3.0
28-04-2015 10:09:19 Kontrolní bod systému
28-04-2015 10:18:00 Software Distribution Service 3.0
29-04-2015 12:32:10 Software Distribution Service 3.0
30-04-2015 12:43:21 Kontrolní bod systému
30-04-2015 19:57:37 Software Distribution Service 3.0
02-05-2015 08:27:46 Software Distribution Service 3.0
04-05-2015 00:48:27 Software Distribution Service 3.0
05-05-2015 08:25:47 Software Distribution Service 3.0
06-05-2015 09:06:39 Software Distribution Service 3.0
07-05-2015 12:04:30 Software Distribution Service 3.0
10-05-2015 10:30:09 Software Distribution Service 3.0
11-05-2015 11:11:56 Kontrolní bod systému
11-05-2015 15:40:48 Software Distribution Service 3.0
13-05-2015 09:10:27 Software Distribution Service 3.0
13-05-2015 10:00:18 Software Distribution Service 3.0
17-05-2015 08:28:39 Software Distribution Service 3.0
20-05-2015 21:02:42 Software Distribution Service 3.0
21-05-2015 23:59:14 Software Distribution Service 3.0
22-05-2015 00:06:53 Software Distribution Service 3.0
22-05-2015 09:11:30 Software Distribution Service 3.0
22-05-2015 20:51:39 Software Distribution Service 3.0
26-05-2015 00:03:06 Software Distribution Service 3.0
26-05-2015 01:06:54 Software Distribution Service 3.0
26-05-2015 23:05:07 Software Distribution Service 3.0
30-05-2015 08:39:31 Software Distribution Service 3.0
01-06-2015 23:05:10 Software Distribution Service 3.0
03-06-2015 23:15:58 Software Distribution Service 3.0
05-06-2015 00:13:43 Software Distribution Service 3.0
05-06-2015 08:20:38 Software Distribution Service 3.0
06-06-2015 00:28:13 Software Distribution Service 3.0
08-06-2015 22:34:01 Software Distribution Service 3.0
08-06-2015 22:43:36 Software Distribution Service 3.0
10-06-2015 22:56:18 Software Distribution Service 3.0
14-06-2015 00:03:26 Software Distribution Service 3.0
14-06-2015 10:00:22 Software Distribution Service 3.0
15-06-2015 07:10:11 Software Distribution Service 3.0
16-06-2015 08:15:37 Software Distribution Service 3.0
17-06-2015 08:38:22 Software Distribution Service 3.0
18-06-2015 22:58:52 Software Distribution Service 3.0
19-06-2015 23:30:54 Kontrolní bod systému
21-06-2015 23:52:30 Software Distribution Service 3.0
24-06-2015 20:47:34 Software Distribution Service 3.0
25-06-2015 22:17:58 Software Distribution Service 3.0
27-06-2015 08:44:45 Software Distribution Service 3.0
29-06-2015 00:26:41 Software Distribution Service 3.0
30-06-2015 08:30:33 Software Distribution Service 3.0
01-07-2015 09:02:17 Software Distribution Service 3.0
02-07-2015 23:27:18 Software Distribution Service 3.0
06-07-2015 07:04:25 Software Distribution Service 3.0
07-07-2015 08:23:32 Software Distribution Service 3.0
08-07-2015 00:56:50 Software Distribution Service 3.0
09-07-2015 09:07:52 Software Distribution Service 3.0
10-07-2015 21:56:00 Software Distribution Service 3.0
11-07-2015 23:12:27 Software Distribution Service 3.0
13-07-2015 09:56:49 Software Distribution Service 3.0
15-07-2015 09:07:17 Software Distribution Service 3.0
16-07-2015 08:22:54 Software Distribution Service 3.0
16-07-2015 08:55:12 Odebráno: TuneUp Utilities 2014
16-07-2015 08:55:54 Removed TuneUp Utilities 2014 (en-US)
16-07-2015 09:17:33 Software Distribution Service 3.0
18-07-2015 00:10:46 Software Distribution Service 3.0
22-07-2015 18:51:52 Software Distribution Service 3.0
24-07-2015 20:40:35 Software Distribution Service 3.0
25-07-2015 09:25:59 Software Distribution Service 3.0

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2008-04-14 14:00 - 2008-04-14 14:00 - 00000737 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe

==================== Loaded Modules (Whitelisted) ==============

2014-05-25 12:53 - 2014-05-15 13:21 - 00607560 _____ () C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe
2013-04-21 21:44 - 2013-04-21 21:44 - 00087952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2013-04-21 21:44 - 2013-04-21 21:44 - 01242952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-05-08 15:51 - 2013-05-08 15:51 - 00019056 _____ () C:\Program Files\Adobe\Reader 9.0\Reader\viewerps.dll
2008-04-14 14:00 - 2008-04-14 14:00 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2015-07-16 09:15 - 2015-07-13 23:55 - 16308040 _____ () C:\Program Files\Google\Chrome\Application\43.0.2357.134\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-436374069-1078145449-1801674531-1004\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Mar\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
DNS Servers: 10.0.0.138
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Google Update => "C:\Documents and Settings\Mar\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: NeroFilterCheck => C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\qttask.exe" -atboottime

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

DomainProfile\AuthorizedApplications: [C:\Program Files\ICQ7.5\ICQ.exe] => Enabled:ICQ7.5
StandardProfile\AuthorizedApplications: [C:\Program Files\ICQ7.5\ICQ.exe] => Enabled:ICQ7.5
StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe] => Enabled:WebKit
StandardProfile\AuthorizedApplications: [C:\Program Files\Skype\Phone\Skype.exe] => Enabled:Skype
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome

==================== Faulty Device Manager Devices =============

Name: Zvukové zařízení na sběrnici High Definition Audio
Description: Zvukové zařízení na sběrnici High Definition Audio
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/16/2015 09:12:45 AM) (Source: MsiInstaller) (EventID: 1013) (User: MARIAN)
Description: Produkt: Microsoft .NET Framework 3.0 Service Pack 2 - Microsoft .NET Framework 3.0 Service Pack 2 cannot be uninstalled because it will affect other applications that are installed. For more information, see http://go.microsoft.com/fwlink/?LinkId=91126.

Error: (07/16/2015 08:51:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace mbam.exe, verze 2.3.55.0, chybující modul msvcr100.dll, verze 10.0.40219.325, adresa chyby 0x0008d6fd.
Zpracování události, specifické pro médium ([mbam.exe!ws!])

Error: (07/16/2015 08:50:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace mbam.exe, verze 2.3.55.0, chybující modul msvcr100.dll, verze 10.0.40219.325, adresa chyby 0x0008d6fd.
Zpracování události, specifické pro médium ([mbam.exe!ws!])

Error: (06/13/2015 09:06:09 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: EventType mptelemetry, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094), P2 4.5.216.0, P3 timeout, P4 1.1.11701.0, P5 fixed, P6 1 _ 1024, P7 5 _ not boot, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (06/13/2015 09:06:07 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: EventType mptelemetry, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094), P2 4.5.216.0, P3 timeout, P4 1.1.11701.0, P5 fixed, P6 1 _ 1024, P7 5 _ not boot, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (06/08/2015 10:41:23 PM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: EventType mptelemetry, P1 0x80508007, P2 mpupdateengine, P3 am fe, P4 11.1.5020.0, P5 mpsigstub.exe, P6 4.5.216.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (06/08/2015 10:35:50 PM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: EventType mptelemetry, P1 0x80508007, P2 mpupdateengine, P3 am delta, P4 11.1.5020.0, P5 mpsigstub.exe, P6 4.5.216.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (06/08/2015 08:23:13 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: EventType mptelemetry, P1 0x80508007, P2 mpupdateengine, P3 am fe, P4 11.1.5020.0, P5 mpsigstub.exe, P6 4.5.216.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (06/06/2015 12:28:58 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: EventType mptelemetry, P1 0x80508007, P2 mpupdateengine, P3 am delta, P4 11.1.5020.0, P5 mpsigstub.exe, P6 4.5.216.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (06/05/2015 08:22:21 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: EventType mptelemetry, P1 0x80508007, P2 mpupdateengine, P3 am delta, P4 11.1.5020.0, P5 mpsigstub.exe, P6 4.5.216.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.


System errors:
=============
Error: (07/25/2015 10:18:08 AM) (Source: Microsoft Antimalware) (EventID: 2041) (User: )
Description: The support for your operating system has expired. Running %%860 on an out of support operating system is not an adequate solution to protect against threats.

Error: (07/25/2015 10:08:31 AM) (Source: Microsoft Antimalware) (EventID: 2041) (User: )
Description: The support for your operating system has expired. Running %%860 on an out of support operating system is not an adequate solution to protect against threats.

Error: (07/25/2015 10:07:20 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu %%1084 při pokusu o spuštění služby EventSystem s argumenty
za účelem spuštění serveru:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/25/2015 10:05:32 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
360SelfProtection
EfiMon
Fips
HookPort
intelppm
MpFilter
qutmdserv

Error: (07/25/2015 10:04:15 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu %%1084 při pokusu o spuštění služby EventSystem s argumenty
za účelem spuštění serveru:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/25/2015 10:04:13 AM) (Source: Microsoft Antimalware) (EventID: 2041) (User: )
Description: The support for your operating system has expired. Running %%860 on an out of support operating system is not an adequate solution to protect against threats.

Error: (07/25/2015 10:01:36 AM) (Source: Microsoft Antimalware) (EventID: 2041) (User: )
Description: The support for your operating system has expired. Running %%860 on an out of support operating system is not an adequate solution to protect against threats.

Error: (07/25/2015 09:56:29 AM) (Source: Microsoft Antimalware) (EventID: 2041) (User: )
Description: The support for your operating system has expired. Running %%860 on an out of support operating system is not an adequate solution to protect against threats.

Error: (07/25/2015 09:54:59 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu %%1084 při pokusu o spuštění služby EventSystem s argumenty
za účelem spuštění serveru:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/25/2015 09:52:54 AM) (Source: DCOM) (EventID: 10005) (User: MARIAN)
Description: Služba DCOM zjistila chybu %%1084 při pokusu o spuštění služby netman s argumenty
za účelem spuštění serveru:
{BA126AE5-2166-11D1-B1D0-00805FC1270E}


Microsoft Office:
=========================
Error: (07/16/2015 09:12:45 AM) (Source: MsiInstaller) (EventID: 1013) (User: MARIAN)
Description: Produkt: Microsoft .NET Framework 3.0 Service Pack 2 - Microsoft .NET Framework 3.0 Service Pack 2 cannot be uninstalled because it will affect other applications that are installed. For more information, see http://go.microsoft.com/fwlink/?LinkId= ... ULL)(NULL)

Error: (07/16/2015 08:51:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe2.3.55.0msvcr100.dll10.0.40219.3250008d6fd

Error: (07/16/2015 08:50:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe2.3.55.0msvcr100.dll10.0.40219.3250008d6fd

Error: (06/13/2015 09:06:09 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: mptelemetrymicrosoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094)4.5.216.0timeout1.1.11701.0fixed1 _ 10245 _ not bootNILNILNIL

Error: (06/13/2015 09:06:07 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: mptelemetrymicrosoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094)4.5.216.0timeout1.1.11701.0fixed1 _ 10245 _ not bootNILNILNIL

Error: (06/08/2015 10:41:23 PM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: mptelemetry0x80508007mpupdateengineam fe11.1.5020.0mpsigstub.exe4.5.216.0microsoft security essentialsNILNILNIL

Error: (06/08/2015 10:35:50 PM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: mptelemetry0x80508007mpupdateengineam delta11.1.5020.0mpsigstub.exe4.5.216.0microsoft security essentialsNILNILNIL

Error: (06/08/2015 08:23:13 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: mptelemetry0x80508007mpupdateengineam fe11.1.5020.0mpsigstub.exe4.5.216.0microsoft security essentialsNILNILNIL

Error: (06/06/2015 12:28:58 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: mptelemetry0x80508007mpupdateengineam delta11.1.5020.0mpsigstub.exe4.5.216.0microsoft security essentialsNILNILNIL

Error: (06/05/2015 08:22:21 AM) (Source: MPSampleSubmission) (EventID: 5000) (User: )
Description: mptelemetry0x80508007mpupdateengineam delta11.1.5020.0mpsigstub.exe4.5.216.0microsoft security essentialsNILNILNIL


==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU 900 @ 2.20GHz
Percentage of memory in use: 74%
Total physical RAM: 952.8 MB
Available physical RAM: 245.82 MB
Total Virtual: 2297.92 MB
Available Virtual: 1544.16 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:143.56 GB) (Free:118.12 GB) NTFS ==>[drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 149.1 GB) (Disk ID: 3A343A33)
Partition 1: (Not Active) - (Size=1004 MB) - (Type=82)
Partition 2: (Active) - (Size=143.6 GB) - (Type=07 NTFS)

==================== End of log ============================


hijackthis:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:28:26, on 25.7.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\360\Total Security\safemon\QHSafeTray.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\DOCUME~1\Mar\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Mar\Dokumenty\Downloads\hijackthis (1).exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\360\Total Security\modules\360isafeup.exe
C:\Program Files\360\Total Security\safemon\360SPTool.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [QHSafeTray] "C:\Program Files\360\Total Security\safemon\QHSafeTray.exe" /start
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: 360 Total Security (QHActiveDefense) - Unknown owner - C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 6318 bytes

[cernohous13]

Zdravím,

máš tam dva AV a může docházet ke kolizím - jeden odinstaluj

nejprve odinstaluj MBAM ver.2 http://www.malwarebytes.org/mbam-clean.exe - ta na WinXP nechodí

Stáhni a nainstaluj MBAM zde http://www.bleepingcomputer.com/downloa ... re/dl/241/ verzi 1.75
Při instalaci ti jako první nabídne instalaci nové verze (případně i při spuštění) - dáš Storno - bude aktualizována jen databáze
Po instalaci Spustit -> na 1.záložce "Kontrolor" -> Úplná kontrola -> Prohledat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení a program nezavírej, jen minimalizuj

[klemar]

Ahoj.. Nepovolil jsem tu aktualizaci programu, pouze databáze, snad se program jako takový neaktualizoval, a zde je log



Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2015.07.25.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Mar :: MARIAN [administrátor]

Ochrana: Povolena

25.7.2015 16:11:16
MBAM-log-2015-07-25 (17-05-00).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 364997
Uplynulý čas: 52 minut, 28 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 1
C:\Program Files\ICQ7.5\upgrade\2dcd1d63cb45e6613582211c3d5f4b23 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

(konec)

[cernohous13]

nález MBAM nech odstranit a program odinstaluj http://www.malwarebytes.org/mbam-clean.exe

Stáhni AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
nebo https://toolslib.net/downloads/finish/1/
nebo http://www.bleepingcomputer.com/download/adwcleaner/
Ulož nejlépe na plochu -> ukonči všechny programy -> spusť AdwCleaner -> klikni na Scan po dokončení na Cleaning
bude provedena oprava, restartuje se - (případně restartuj) a vypadne log C:\AdwCleaner\AdwCleaner[S?].txt , jeho obsah vložíš sem

pravděpodobně budeš nucen vypnout na tu chvíli antivir - je to čisté, prověřeno

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Log bude zde C:\zoek-results.log

pak napiš jak se PC daří - budu až ráno

[klemar]

Ahoj. Moc děkuji. Sice to není úplně co to bývalo ale již je notebook mnohem rychlejší.

Co blbne: Youtube video se načte a po 20 sekundách zamrzá. Připojení mám rychlé.

Na google dám něco vyhledávat, místo výsledků je prázdná stránka, až po druhém načtení to načte výsledky.

Logy:

MBAM:
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2015.07.25.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Mar :: MARIAN [administrátor]

Ochrana: Povolena

25.7.2015 16:11:16
mbam-log-2015-07-25 (16-11-16).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 364997
Uplynulý čas: 52 minut, 28 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 1
C:\Program Files\ICQ7.5\upgrade\2dcd1d63cb45e6613582211c3d5f4b23 (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.

(konec)



ADW:
# AdwCleaner v4.208 - Log vytvořen 26/07/2015 v 09:16:11
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-15.1 [Server]
# Operační system : Microsoft Windows XP Service Pack 3 (x86)
# Uživatelské jméno : Mar - MARIAN
# Spuštěno z : C:\Documents and Settings\Mar\Dokumenty\Downloads\adwcleaner_4.208.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Složka Smazáno : C:\Documents and Settings\Mar\Data aplikací\Mozilla\Firefox\Profiles\7xi1c9xx.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Soubor Smazáno : C:\Documents and Settings\Mar\Data aplikací\Mozilla\Firefox\Profiles\7xi1c9xx.default\user.js

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****


***** [ Prohlížeče ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v


-\\ Google Chrome v44.0.2403.107


*************************

AdwCleaner[R0].txt - [1075 bytů] - [26/07/2015 09:02:24]
AdwCleaner[S0].txt - [1000 bytů] - [26/07/2015 09:16:11]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1058 bytů] ##########


ZOEK:

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Mar on ne 26.07.2015 at 9:21:42,78.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Mar\Plocha\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

26.7.2015 9:22:39 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\Program Files\MSXML 4.0 deleted successfully
C:\DOCUME~1\ALLUSE~1\DATAAP~1\GlarySoft deleted successfully
C:\DOCUME~1\ALLUSE~1\DATAAP~1\{755AC846-7372-4AC8-8550-C52491DAA8BD} deleted successfully
C:\DOCUME~1\ALLUSE~1\DATAAP~1\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} deleted successfully
C:\DOCUME~1\ALLUSE~1\DATAAP~1\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-436374069-1078145449-1801674531-1004\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\wrc@avast.com deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\DOCUME~1\ALLUSE~1\DATAAP~1\{755AC846-7372-4AC8-8550-C52491DAA8BD} not found
C:\DOCUME~1\ALLUSE~1\DATAAP~1\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} not found
C:\DOCUME~1\ALLUSE~1\DATAAP~1\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} not found
C:\Program Files\ComPlus Applications deleted
C:\Program Files\WindowsUpdate deleted
C:\WINDOWS\System32\SET5C.tmp deleted
C:\WINDOWS\System32\SET61.tmp deleted
C:\WINDOWS\System32\SET68.tmp deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [18.10.2013 23:26]

==== Chromium Look ======================

Google Chrome Version: 44.0.2403.107

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[16.09.2013 12:31]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{8F4A0B70-2D82-4DEF-BB7B-E2F5A843AA9E} Seznam Url="http://search.seznam.cz/?q={searchTerms ... chmodule_2"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Mar\Local Settings\Data aplikací\360Browser\Browser\User Data\Default\CacheIE\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\Mar\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=4 folders=2 3611815 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\Mar\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\Mar\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on ne 26.07.2015 at 9:39:41,34 ======================

[cernohous13]

Jsou ty problémy ve všech prohlížečích?