Nefungující internet - istartsurf

Zpráva

pinksoudruh · #1 Příspěvek od **pinksoudruh** » 09 lis 2015 08:50

Chtěla bych se zeptat na nefungující prohlížeče. U rodičů na PC přestali jít a neustále to hlásí nějaké chyby. Udělala jsem celkový test (používají Avast) a nahlásilo mi to: Doplňky se špatnou reputací – prý mají na systému nainstalovaný nástroj na ochranu panelů a píše mi to tam: istartsurf a dtools a upozorňuje to na důležitost odstranění. Já bohužel nevím jak.

Ke všemu u rodičů nebydlím, vždy se k nim přihlásím přes TeamViewer. Lze jejich Pc opravit i takto vzdáleně?

Předem děkuji za jakoukoliv odpověď.

#2 Příspěvek od **Rudy** » 09 lis 2015 18:28

Zdravím!
Pokud se přihlásíte vy, neměl by to být problém. Přímo od nás to nelze, nemáme to právně ošetřeno. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

pinksoudruh · #3 Příspěvek od **pinksoudruh** » 14 lis 2015 10:42

Dobrý den,

děkuji za radu. U rodičů jsem to projela podle návodu a mám dané dva soubory:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:07-11-2015
Ran by PC (administrator) on PC-612A6CA9C190 (14-11-2015 10:39:11)
Running from C:\Documents and Settings\PC\Plocha
Loaded Profiles: PC (Available Profiles: PC)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd.exe
(Hewlett-Packard Company) C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
(HP) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
(PixArt Imaging Incorporation) C:\WINDOWS\PixArt\Pac7302\Monitor.exe
(Filefacts.net) C:\Program Files\Smart File Advisor\SFAUpdater.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BitTorrent Inc.) C:\Documents and Settings\PC\Data aplikací\uTorrent\uTorrent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(MyPCBackup.com) C:\Program Files\MyPC Backup\MyPC Backup.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(BitTorrent Inc.) C:\Documents and Settings\PC\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Documents and Settings\PC\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Just Develop It) C:\Program Files\MyPC Backup\BackupStack.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(DTools LIMITED) C:\Documents and Settings\All Users\Data aplikací\cWMiniProc\WMiniPro.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SkyTel] => C:\WINDOWS\SkyTel.EXE [2879488 2006-05-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16270848 2006-11-15] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2011-07-28] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [49152 2003-06-25] (Hewlett-Packard)
HKLM\...\Run: [HP Component Manager] => C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [233472 2003-10-23] (Hewlett-Packard Company)
HKLM\...\Run: [HPDJ Taskbar Utility] => C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe [188416 2003-11-08] (HP)
HKLM\...\Run: [PAC7302_Monitor] => C:\WINDOWS\PixArt\PAC7302\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [SFAUpdater] => C:\Program Files\Smart File Advisor\SFAUpdater.exe [655984 2015-02-04] (Filefacts.net)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-05] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2011-07-28] (ATI Technologies Inc.)
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\...\Run: [uTorrent] => C:\Documents and Settings\PC\Data aplikací\uTorrent\uTorrent.exe [1822048 2015-10-07] (BitTorrent Inc.)
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6490904 2015-08-20] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-11-05] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk [2014-07-21]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\PC\Nabídka Start\Programy\Po spuštění\MyPC Backup.lnk [2014-08-24]
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{D84B9D2F-6A93-44B9-9B6F-F567CE3FFF1A}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-05] (AVAST Software)
Toolbar: HKU\S-1-5-21-1177238915-1960408961-682003330-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll [2003-10-23] (Hewlett-Packard Company)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=14462804 ... 5132051320

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-03] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-07-24] [not signed]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-05]

Chrome:
=======
CHR Profile: C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-04]
CHR Extension: (Disk Google) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-04]
CHR Extension: (YouTube) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-04]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-04]
CHR Extension: (Gmail) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-04]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-05]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-05] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-11-05] (AVAST Software)
R2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [53320 2014-11-13] (Just Develop It) <==== ATTENTION
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [762192 2013-07-18] (Nero AG)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
R2 WdsManPro; C:\Documents and Settings\All Users\Data aplikací\cWMiniProc\WMiniPro.exe [301704 2015-10-31] (DTools LIMITED)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-11-05] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26096 2015-11-05] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [81168 2015-11-05] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2015-11-05] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\system32\Drivers\aswNdis2.sys [257080 2015-11-05] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-11-05] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-11-05] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [794952 2015-11-05] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [435464 2015-11-05] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [167152 2015-11-05] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-11-05] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209432 2015-11-05] (AVAST Software)
R3 AtcL001; C:\WINDOWS\System32\DRIVERS\atl01_xp.sys [35840 2006-10-31] (Attansic Technology corporation.)
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [101392 2011-03-30] (Advanced Micro Devices)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cpuz136; C:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [25320 2013-08-24] (CPUID)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2002-01-01] (Disc Soft Ltd)
R3 IntcAzAudAddService; C:\WINDOWS\System32\drivers\RtkHDAud.sys [4225920 2006-11-15] (Realtek Semiconductor Corp.) [File not signed]
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PAC7302; C:\WINDOWS\System32\DRIVERS\PAC7302.SYS [457856 2007-06-14] (PixArt Imaging Inc.)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-08-24] (Duplex Secure Ltd.)
S3 USB_RNDIS; C:\WINDOWS\System32\DRIVERS\usb8023k.sys [11136 2002-08-12] (Microsoft Corporation) [File not signed]
S4 IntelIde; no ImagePath
S3 MREMP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [X]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S3 MRESP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL; no ImagePath
U3 agcktpl6; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-14 10:28 - 2015-11-14 10:30 - 00043473 _____ C:\Documents and Settings\PC\Plocha\Addition.txt
2015-11-14 10:24 - 2015-11-14 10:39 - 00015743 _____ C:\Documents and Settings\PC\Plocha\FRST.txt
2015-11-14 10:24 - 2015-11-14 10:39 - 00000000 ____D C:\FRST
2015-11-14 10:22 - 2015-11-14 10:22 - 01702400 _____ (Farbar) C:\Documents and Settings\PC\Plocha\FRST.exe
2015-11-06 04:23 - 2015-11-06 04:23 - 00271784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-06 04:23 - 2015-11-06 04:23 - 00069232 _____ C:\Documents and Settings\PC\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-11-05 18:58 - 2015-11-05 18:58 - 00000756 _____ C:\Documents and Settings\All Users\Plocha\Avast SafeZone Browser.lnk
2015-11-05 18:58 - 2015-11-05 18:58 - 00000756 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast SafeZone Browser.lnk
2015-11-05 18:58 - 2015-11-05 18:58 - 00000406 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1446746267.job
2015-11-05 18:25 - 2015-11-05 18:25 - 00001689 _____ C:\Documents and Settings\All Users\Plocha\Avast Internet Security.lnk
2015-11-05 18:25 - 2015-11-05 18:25 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AVAST Software
2015-11-05 18:24 - 2015-11-05 18:23 - 00257080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2015-11-05 18:24 - 2015-11-05 18:23 - 00026096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2015-11-05 18:23 - 2015-11-05 18:23 - 00322760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-05 18:23 - 2015-11-05 18:23 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-11-05 18:23 - 2015-11-05 18:23 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys
2015-11-05 18:11 - 2015-11-05 18:11 - 00000000 __SHD C:\Documents and Settings\PC\IECompatCache
2015-11-03 17:55 - 2015-11-12 15:02 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-11-03 17:55 - 2015-11-03 17:55 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2015-11-03 17:53 - 2015-11-14 09:58 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-03 17:53 - 2015-11-14 08:37 - 00000928 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-31 09:58 - 2015-11-02 19:50 - 00000000 ____D C:\Program Files\TeamViewer
2015-10-31 09:58 - 2015-10-31 09:58 - 00000706 _____ C:\Documents and Settings\All Users\Plocha\TeamViewer 10.lnk
2015-10-31 09:58 - 2015-10-31 09:58 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\TeamViewer
2015-10-31 09:58 - 2015-10-31 09:58 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 10
2015-10-31 09:53 - 2015-10-31 09:55 - 00000000 ____D C:\Documents and Settings\PC\Plocha\Věci válející se na ploše
2015-10-31 09:52 - 2015-10-31 09:52 - 00000000 __SHD C:\Documents and Settings\PC\PrivacIE
2015-10-31 09:49 - 2015-10-31 09:49 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\AVAST Software
2015-10-31 09:43 - 2015-10-31 09:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallWdf01009$
2015-10-31 09:43 - 2008-11-07 18:55 - 00016928 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsgXP_2k3.dll
2015-10-31 09:42 - 2015-11-14 08:43 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-10-31 09:42 - 2015-11-05 18:23 - 00794952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00435464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00209432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00167152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00081168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00055200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00049776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00024016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-10-31 09:38 - 2015-11-05 18:23 - 00000000 ____D C:\Program Files\AVAST Software
2015-10-31 09:36 - 2015-10-31 09:52 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Opera Software
2015-10-31 09:36 - 2015-10-31 09:52 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\Opera Software
2015-10-31 09:36 - 2015-10-31 09:36 - 00000220 _____ C:\WINDOWS\Tasks\Opera N Sunday.job
2015-10-31 09:36 - 2015-10-31 09:36 - 00000220 _____ C:\WINDOWS\Tasks\Opera N Saturday.job
2015-10-31 09:36 - 2015-10-31 09:36 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\Shortcut
2015-10-31 09:35 - 2015-10-31 09:36 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\cWMiniProc
2015-10-31 09:35 - 2015-10-31 09:35 - 00000168 _____ C:\Documents and Settings\All Users\Data aplikací\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-10-31 09:34 - 2015-10-31 09:52 - 00000000 ____D C:\Program Files\Opera
2015-10-31 09:34 - 2015-10-31 09:35 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\istartsurf
2015-10-31 09:34 - 2015-10-31 09:34 - 00000000 ____D C:\Documents and Settings\PC\Nabídka Start\Programy\Sparta
2015-10-31 09:34 - 2015-10-31 09:34 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Sparta
2015-10-31 09:34 - 2015-10-31 09:34 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\sparta111
2015-10-29 10:20 - 2015-10-29 10:20 - 00000000 ____D C:\Documents and Settings\PC\Plocha\poškozená

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-14 10:39 - 2014-08-24 10:14 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\uTorrent
2015-11-14 10:39 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Temp
2015-11-14 10:30 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\PC\Plocha
2015-11-14 09:46 - 2014-07-10 16:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-14 08:42 - 2002-01-01 02:35 - 01030724 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-14 08:40 - 2002-01-01 03:02 - 02078784 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-14 08:38 - 2002-01-01 02:37 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-11-14 08:38 - 2002-01-01 02:37 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-11-14 08:37 - 2014-12-17 19:28 - 00000216 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-11-14 08:37 - 2006-03-02 13:00 - 00002422 _____ C:\WINDOWS\system32\wpa.dbl
2015-11-14 08:37 - 2002-01-01 03:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-13 17:51 - 2002-01-01 03:20 - 00032388 _____ C:\WINDOWS\SchedLgU.Txt
2015-11-13 17:51 - 2002-01-01 03:20 - 00000178 ___SH C:\Documents and Settings\PC\ntuser.ini
2015-11-13 17:51 - 2002-01-01 00:31 - 00327680 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2015-11-12 18:28 - 2002-01-01 00:03 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-12 18:22 - 2014-07-10 19:58 - 143250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-12 17:58 - 2002-01-01 03:20 - 00000000 ___HD C:\Documents and Settings\PC\Local Settings\Data aplikací
2015-11-11 18:12 - 2014-10-26 15:37 - 00000000 ____D C:\Documents and Settings\PC\Plocha\Taťka oslava 50
2015-11-11 17:17 - 2014-07-10 16:17 - 00000288 _____ C:\WINDOWS\Tasks\Nero Info.job
2015-11-11 04:46 - 2014-07-10 16:47 - 00780488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-11-11 04:46 - 2014-07-10 16:47 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-11-08 15:00 - 2014-12-17 19:28 - 00000210 _____ C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-11-05 19:57 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\PC
2015-11-05 18:58 - 2002-01-01 02:35 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-11-05 18:58 - 2002-01-01 02:35 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-11-05 18:23 - 2002-01-01 00:16 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2015-11-05 04:36 - 2014-08-31 15:56 - 00069232 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-11-03 18:39 - 2014-12-24 09:32 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\PhotoScape
2015-11-03 18:38 - 2002-01-01 02:19 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2015-11-03 17:58 - 2002-01-01 00:23 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Deployment
2015-11-03 17:56 - 2002-01-01 00:26 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Google
2015-11-03 17:55 - 2002-01-01 00:26 - 00000000 ____D C:\Program Files\Google
2015-11-01 07:44 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Temp
2015-10-31 09:58 - 2002-01-01 03:20 - 00000000 __RHD C:\Documents and Settings\PC\Data aplikací
2015-10-31 09:38 - 2002-01-01 02:35 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2015-10-31 09:36 - 2002-01-01 00:22 - 00000000 ____D C:\Program Files\CCleaner
2015-10-31 09:35 - 2002-01-01 02:33 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-10-31 09:34 - 2002-01-01 03:20 - 00000000 ___RD C:\Documents and Settings\PC\Nabídka Start\Programy

Some files in TEMP:
====================
C:\Documents and Settings\PC\Local Settings\Temp\downloader_for_ccsetup509.exe
C:\Documents and Settings\PC\Local Settings\Temp\DseShExt-x86.dll
C:\Documents and Settings\PC\Local Settings\Temp\SDShelEx-win32.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

#4 Příspěvek od **Rudy** » 14 lis 2015 11:21

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

pinksoudruh · #5 Příspěvek od **pinksoudruh** » 14 lis 2015 12:09

# AdwCleaner v5.020 - Logfile created 14/11/2015 at 12:04:35
# Updated 13/11/2015 by Xplode
# Database : 2015-11-13.3 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : PC - PC-612A6CA9C190
# Running from : C:\Documents and Settings\PC\Plocha\adwcleaner_5.020.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : BackupStack
[-] Service Deleted : WdsManPro

***** [ Folders ] *****

[-] Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\cWMiniProc
[-] Folder Deleted : C:\Documents and Settings\PC\Data aplikací\istartsurf
[-] Folder Deleted : C:\Documents and Settings\PC\Data aplikací\OpenCandy
[-] Folder Deleted : C:\Documents and Settings\PC\Nabídka Start\Programy\MyPC Backup
[-] Folder Deleted : C:\Program Files\MyPC Backup

***** [ Files ] *****

[-] File Deleted : C:\Documents and Settings\PC\Nabídka Start\Programy\Po spuštění\MyPC Backup.lnk
[-] File Deleted : C:\Documents and Settings\PC\Plocha\MyPC Backup.lnk

***** [ DLLs ] *****

***** [ Shortcuts ] *****

[-] Shortcut Disinfected : C:\Documents and Settings\PC\Nabídka Start\Programy\Sparta\Sparta.lnk

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WdsManPro
[-] Key Deleted : HKCU\Software\InstallCore
[-] Key Deleted : HKCU\Software\PRODUCTSETUP
[-] Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
[-] Key Deleted : HKLM\SOFTWARE\systweak
[-] Key Deleted : HKLM\SOFTWARE\WdsManPro
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\istartsurf uninstall
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Smart File Advisor_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\istartsurf uninstall
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Smart File Advisor_is1
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []

***** [ Web browsers ] *****

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2524 bytes] ##########

#6 Příspěvek od **Rudy** » 14 lis 2015 12:25

Dejte nový log FRST.

pinksoudruh · #7 Příspěvek od **pinksoudruh** » 14 lis 2015 13:07

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:07-11-2015
Ran by PC (administrator) on PC-612A6CA9C190 (14-11-2015 13:04:10)
Running from C:\Documents and Settings\PC\Plocha
Loaded Profiles: PC (Available Profiles: PC)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd.exe
(Hewlett-Packard Company) C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
(HP) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
(PixArt Imaging Incorporation) C:\WINDOWS\PixArt\Pac7302\Monitor.exe
(Filefacts.net) C:\Program Files\Smart File Advisor\SFAUpdater.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BitTorrent Inc.) C:\Documents and Settings\PC\Data aplikací\uTorrent\uTorrent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(BitTorrent Inc.) C:\Documents and Settings\PC\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Documents and Settings\PC\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Documents and Settings\PC\Plocha\FRSTLauncher (3).exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SkyTel] => C:\WINDOWS\SkyTel.EXE [2879488 2006-05-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16270848 2006-11-15] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2011-07-28] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [49152 2003-06-25] (Hewlett-Packard)
HKLM\...\Run: [HP Component Manager] => C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [233472 2003-10-23] (Hewlett-Packard Company)
HKLM\...\Run: [HPDJ Taskbar Utility] => C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe [188416 2003-11-08] (HP)
HKLM\...\Run: [PAC7302_Monitor] => C:\WINDOWS\PixArt\PAC7302\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [SFAUpdater] => C:\Program Files\Smart File Advisor\SFAUpdater.exe [655984 2015-02-04] (Filefacts.net)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-05] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2011-07-28] (ATI Technologies Inc.)
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\...\Run: [uTorrent] => C:\Documents and Settings\PC\Data aplikací\uTorrent\uTorrent.exe [1822048 2015-10-07] (BitTorrent Inc.)
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6490904 2015-08-20] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-11-05] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk [2014-07-21]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{D84B9D2F-6A93-44B9-9B6F-F567CE3FFF1A}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-05] (AVAST Software)
Toolbar: HKU\S-1-5-21-1177238915-1960408961-682003330-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll [2003-10-23] (Hewlett-Packard Company)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-03] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-07-24] [not signed]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-05]

Chrome:
=======
CHR Profile: C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-04]
CHR Extension: (Disk Google) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-04]
CHR Extension: (YouTube) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-04]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-04]
CHR Extension: (Gmail) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-04]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-05]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-05] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-11-05] (AVAST Software)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [762192 2013-07-18] (Nero AG)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-11-05] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26096 2015-11-05] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [81168 2015-11-05] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2015-11-05] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\system32\Drivers\aswNdis2.sys [257080 2015-11-05] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-11-05] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-11-05] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [794952 2015-11-05] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [435464 2015-11-05] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [167152 2015-11-05] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-11-05] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209432 2015-11-05] (AVAST Software)
R3 AtcL001; C:\WINDOWS\System32\DRIVERS\atl01_xp.sys [35840 2006-10-31] (Attansic Technology corporation.)
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [101392 2011-03-30] (Advanced Micro Devices)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cpuz136; C:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [25320 2013-08-24] (CPUID)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2002-01-01] (Disc Soft Ltd)
R3 IntcAzAudAddService; C:\WINDOWS\System32\drivers\RtkHDAud.sys [4225920 2006-11-15] (Realtek Semiconductor Corp.) [File not signed]
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PAC7302; C:\WINDOWS\System32\DRIVERS\PAC7302.SYS [457856 2007-06-14] (PixArt Imaging Inc.)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-08-24] (Duplex Secure Ltd.)
S3 USB_RNDIS; C:\WINDOWS\System32\DRIVERS\usb8023k.sys [11136 2002-08-12] (Microsoft Corporation) [File not signed]
S4 IntelIde; no ImagePath
S3 MREMP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [X]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S3 MRESP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL; no ImagePath
U3 acghh4j2; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-14 13:03 - 2015-11-14 13:03 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\PC\Plocha\FRSTLauncher (3).exe
2015-11-14 12:03 - 2015-11-14 12:04 - 00000000 ____D C:\AdwCleaner
2015-11-14 12:02 - 2015-11-14 12:02 - 01729536 _____ C:\Documents and Settings\PC\Plocha\adwcleaner_5.020.exe
2015-11-14 10:41 - 2015-11-14 10:41 - 00008682 _____ C:\Documents and Settings\PC\Plocha\Addition.zip
2015-11-14 10:24 - 2015-11-14 13:04 - 00015029 _____ C:\Documents and Settings\PC\Plocha\FRST.txt
2015-11-14 10:24 - 2015-11-14 13:04 - 00000000 ____D C:\FRST
2015-11-14 10:22 - 2015-11-14 10:22 - 01702400 _____ (Farbar) C:\Documents and Settings\PC\Plocha\FRST.exe
2015-11-06 04:23 - 2015-11-06 04:23 - 00271784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-06 04:23 - 2015-11-06 04:23 - 00069232 _____ C:\Documents and Settings\PC\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-11-05 18:58 - 2015-11-05 18:58 - 00000756 _____ C:\Documents and Settings\All Users\Plocha\Avast SafeZone Browser.lnk
2015-11-05 18:58 - 2015-11-05 18:58 - 00000756 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast SafeZone Browser.lnk
2015-11-05 18:58 - 2015-11-05 18:58 - 00000406 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1446746267.job
2015-11-05 18:25 - 2015-11-05 18:25 - 00001689 _____ C:\Documents and Settings\All Users\Plocha\Avast Internet Security.lnk
2015-11-05 18:25 - 2015-11-05 18:25 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AVAST Software
2015-11-05 18:24 - 2015-11-05 18:23 - 00257080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2015-11-05 18:24 - 2015-11-05 18:23 - 00026096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2015-11-05 18:23 - 2015-11-05 18:23 - 00322760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-05 18:23 - 2015-11-05 18:23 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-11-05 18:23 - 2015-11-05 18:23 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys
2015-11-05 18:11 - 2015-11-05 18:11 - 00000000 __SHD C:\Documents and Settings\PC\IECompatCache
2015-11-03 17:55 - 2015-11-12 15:02 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-11-03 17:55 - 2015-11-03 17:55 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2015-11-03 17:53 - 2015-11-14 12:58 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-03 17:53 - 2015-11-14 12:06 - 00000928 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-31 09:58 - 2015-11-02 19:50 - 00000000 ____D C:\Program Files\TeamViewer
2015-10-31 09:58 - 2015-10-31 09:58 - 00000706 _____ C:\Documents and Settings\All Users\Plocha\TeamViewer 10.lnk
2015-10-31 09:58 - 2015-10-31 09:58 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\TeamViewer
2015-10-31 09:58 - 2015-10-31 09:58 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 10
2015-10-31 09:53 - 2015-10-31 09:55 - 00000000 ____D C:\Documents and Settings\PC\Plocha\Věci válející se na ploše
2015-10-31 09:52 - 2015-10-31 09:52 - 00000000 __SHD C:\Documents and Settings\PC\PrivacIE
2015-10-31 09:49 - 2015-10-31 09:49 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\AVAST Software
2015-10-31 09:43 - 2015-10-31 09:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallWdf01009$
2015-10-31 09:43 - 2008-11-07 18:55 - 00016928 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsgXP_2k3.dll
2015-10-31 09:42 - 2015-11-14 12:12 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-10-31 09:42 - 2015-11-05 18:23 - 00794952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00435464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00209432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00167152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00081168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00055200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00049776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00024016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-10-31 09:38 - 2015-11-05 18:23 - 00000000 ____D C:\Program Files\AVAST Software
2015-10-31 09:36 - 2015-10-31 09:52 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Opera Software
2015-10-31 09:36 - 2015-10-31 09:52 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\Opera Software
2015-10-31 09:36 - 2015-10-31 09:36 - 00000220 _____ C:\WINDOWS\Tasks\Opera N Sunday.job
2015-10-31 09:36 - 2015-10-31 09:36 - 00000220 _____ C:\WINDOWS\Tasks\Opera N Saturday.job
2015-10-31 09:36 - 2015-10-31 09:36 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\Shortcut
2015-10-31 09:35 - 2015-10-31 09:35 - 00000168 _____ C:\Documents and Settings\All Users\Data aplikací\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-10-31 09:34 - 2015-11-14 12:04 - 00000000 ____D C:\Documents and Settings\PC\Nabídka Start\Programy\Sparta
2015-10-31 09:34 - 2015-10-31 09:52 - 00000000 ____D C:\Program Files\Opera
2015-10-31 09:34 - 2015-10-31 09:34 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Sparta
2015-10-31 09:34 - 2015-10-31 09:34 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\sparta111
2015-10-29 10:20 - 2015-10-29 10:20 - 00000000 ____D C:\Documents and Settings\PC\Plocha\poškozená

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-14 13:04 - 2002-01-01 03:20 - 00000000 ___HD C:\Documents and Settings\PC\Local Settings\Data aplikací
2015-11-14 13:04 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\PC\Plocha
2015-11-14 13:04 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Temp
2015-11-14 13:02 - 2014-08-24 10:14 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\uTorrent
2015-11-14 12:46 - 2014-07-10 16:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-14 12:11 - 2002-01-01 02:35 - 01030724 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-14 12:07 - 2002-01-01 03:02 - 02081882 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-14 12:06 - 2014-12-17 19:28 - 00000216 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-11-14 12:06 - 2002-01-01 03:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-14 12:06 - 2002-01-01 02:37 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-11-14 12:06 - 2002-01-01 02:37 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-11-14 12:06 - 2002-01-01 00:31 - 00393216 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2015-11-14 12:05 - 2002-01-01 03:20 - 00032388 _____ C:\WINDOWS\SchedLgU.Txt
2015-11-14 12:05 - 2002-01-01 03:20 - 00000178 ___SH C:\Documents and Settings\PC\ntuser.ini
2015-11-14 12:04 - 2002-01-01 03:20 - 00000000 __RHD C:\Documents and Settings\PC\Data aplikací
2015-11-14 12:04 - 2002-01-01 03:20 - 00000000 ___RD C:\Documents and Settings\PC\Nabídka Start\Programy\Po spuštění
2015-11-14 12:04 - 2002-01-01 03:20 - 00000000 ___RD C:\Documents and Settings\PC\Nabídka Start\Programy
2015-11-14 12:04 - 2002-01-01 02:33 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-11-14 08:37 - 2006-03-02 13:00 - 00002422 _____ C:\WINDOWS\system32\wpa.dbl
2015-11-12 18:28 - 2002-01-01 00:03 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-12 18:22 - 2014-07-10 19:58 - 143250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-11 18:12 - 2014-10-26 15:37 - 00000000 ____D C:\Documents and Settings\PC\Plocha\Taťka oslava 50
2015-11-11 17:17 - 2014-07-10 16:17 - 00000288 _____ C:\WINDOWS\Tasks\Nero Info.job
2015-11-11 04:46 - 2014-07-10 16:47 - 00780488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-11-11 04:46 - 2014-07-10 16:47 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-11-08 15:00 - 2014-12-17 19:28 - 00000210 _____ C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-11-05 19:57 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\PC
2015-11-05 18:58 - 2002-01-01 02:35 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-11-05 18:58 - 2002-01-01 02:35 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-11-05 18:23 - 2002-01-01 00:16 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2015-11-05 04:36 - 2014-08-31 15:56 - 00069232 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-11-03 18:39 - 2014-12-24 09:32 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\PhotoScape
2015-11-03 18:38 - 2002-01-01 02:19 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2015-11-03 17:58 - 2002-01-01 00:23 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Deployment
2015-11-03 17:56 - 2002-01-01 00:26 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Google
2015-11-03 17:55 - 2002-01-01 00:26 - 00000000 ____D C:\Program Files\Google
2015-11-01 07:44 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Temp
2015-10-31 09:38 - 2002-01-01 02:35 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2015-10-31 09:36 - 2002-01-01 00:22 - 00000000 ____D C:\Program Files\CCleaner

==================== Files in the root of some directories =======

Some files in TEMP:
====================
C:\Documents and Settings\PC\Local Settings\Temp\downloader_for_ccsetup509.exe
C:\Documents and Settings\PC\Local Settings\Temp\DseShExt-x86.dll
C:\Documents and Settings\PC\Local Settings\Temp\SDShelEx-win32.dll
C:\Documents and Settings\PC\Local Settings\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:232.88 GB) (Free:213.43 GB) NTFS ==>[drive with boot components (Windows XP)]

Available physical RAM: 163.22 MB
Total physical RAM: 1023.11 MB
Percentage of memory in use: 84%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 232.9 GB) (Disk ID: FBD4FBD4)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Nero Info.job => C:\Program Files\Common Files\Nero\Nero Info\NeroInfo.exe
Task: C:\WINDOWS\Tasks\Opera N Saturday.job => C:\Program Files\Opera\launcher.exe
Task: C:\WINDOWS\Tasks\Opera N Sunday.job => C:\Program Files\Opera\launcher.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1446746267.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Out of date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus (Disabled) {7591DB91-41F0-48A3-B128-1A293FD8233D}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\PC\Plocha" je -261 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Documents and Settings\\PC\\Data aplikac\\Dropbox\\bin\\Dropbox.exe"="C:\\Documents and Settings\\PC\\Data aplikac\\Dropbox\\bin\\Dropbox.exe:*:Enabled:Dropbox"
"C:\\Documents and Settings\\PC\\Data aplikac\\uTorrent\\uTorrent.exe"="C:\\Documents and Settings\\PC\\Data aplikac\\uTorrent\\uTorrent.exe:*:Enabled:uTorrent"
"C:\\Program Files\\TeamViewer\\TeamViewer.exe"="C:\\Program Files\\TeamViewer\\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe"="C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

==================== End Of Log ==============================

#8 Příspěvek od **Rudy** » 14 lis 2015 18:08

Otevřte poznámkový blok a zkopírujte do něj:

Start
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
U1 WS2IFSL; no ImagePath
U3 acghh4j2; no ImagePath
C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1446746267.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\PC\Local Settings\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

pinksoudruh · #9 Příspěvek od **pinksoudruh** » 15 lis 2015 09:07

Fix result of Farbar Recovery Scan Tool (x86) Version:07-11-2015
Ran by PC (2015-11-15 09:01:04) Run:1
Running from C:\Documents and Settings\PC\Plocha
Loaded Profiles: PC (Available Profiles: PC)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
U1 WS2IFSL; no ImagePath
U3 acghh4j2; no ImagePath
C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1446746267.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\PC\Local Settings\Temp
End
*****************

"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1" => key removed successfully.
HKCR\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2" => key removed successfully.
HKCR\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3" => key removed successfully.
HKCR\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => key not found.
WS2IFSL => service removed successfully.
acghh4j2 => service not found.
C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1446746267.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully

"C:\Documents and Settings\PC\Local Settings\Temp" folder move:

Could not move "C:\Documents and Settings\PC\Local Settings\Temp" => Scheduled to move on reboot.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-11-15 09:05:37)

C:\Documents and Settings\PC\Local Settings\Temp => moved successfully

==== End of Fixlog 09:05:38 ====

#10 Příspěvek od **Rudy** » 15 lis 2015 11:21

Smazáno. Nastala nějaká změna?

pinksoudruh · #11 Příspěvek od **pinksoudruh** » 15 lis 2015 11:36

Skvělé, vypadá to dobře! Antivir už nic nehlásí ani po celkovém testu. Mnohokrát děkuji!!! Jste zlatí!!!!!

#12 Příspěvek od **Rudy** » 15 lis 2015 12:24

Rádo se stalo!

VIRY.CZ

Nefungující internet - istartsurf

Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf

Re: Nefungující internet - istartsurf