RSIT

Zpráva

mikizloku · #1 Příspěvek od **mikizloku** » 19 lis 2014 13:50

Dobrý deň, prosím o preventívku-posielam RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by - at 2014-11-19 13:45:26
Systém Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 63 GB (82%) free of 76 GB
Total RAM: 447 MB (11% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:45:48, on 19.11.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\WINDOWS\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\NewSoft\Smart Start UP\PnPDetect.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\-\My Documents\Preberanie\RSIT.exe
C:\Program Files\trend micro\-.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/burn4free/{DC ... 62B269559D}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files\Burn4Free DB Toolbar\tbhelper.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: (no name) - {D3626E66-B13B-C628-ACDF-BDABCFA265E1} - (no file)
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Burn4Free DB Toolbar\tbcore3.dll
O3 - Toolbar: Burn4Free DB Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\Burn4Free DB Toolbar\tbcore3.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Smart Start UP] C:\Program Files\NewSoft\Smart Start UP\PnPDetect.exe /Automation
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StatusAlerts] "C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASWLSVC - Unknown owner - C:\WINDOWS\system32\ASWLSVC.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate1c9bf6c37ca6dda) (gupdate1c9bf6c37ca6dda) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP DS Service - Hewlett-Packard Company - C:\Program Files\HP\HPBDSService\HPBDSService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 8843 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\At1.job - C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe /UA
C:\WINDOWS\tasks\At2.job - C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe /UA
C:\WINDOWS\tasks\At3.job - C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe /UA
C:\WINDOWS\tasks\At4.job - C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe /UA
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Logon.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Monthly.job - C:\WINDOWS\system32\xp_eos.exe

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\o82i6njj.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.centrum.sk/"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:0.0.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.24"
prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=UP21DF& ... =043013&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Program Files\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
libdivx.dll
npdivx32.dll
npdivx32.xpt
npDivxPlayerPlugin.dll
NPOFFICE.DLL
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nsIDivxPlayerPlugin.xpt
QuickTimePlugin.class
ssldivx.dll

C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\o82i6njj.default\searchplugins\
bingp.xml
search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-09-16 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3626E66-B13B-C628-ACDF-BDABCFA265E1}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
SMTTB2009 Class - C:\Program Files\Burn4Free DB Toolbar\tbcore3.dll [2010-02-16 2495488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{338B4DFE-2E2C-4338-9E41-E176D497299E} - Burn4Free DB Toolbar - C:\Program Files\Burn4Free DB Toolbar\tbcore3.dll [2010-02-16 2495488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2006-10-14 110592]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe [2006-05-10 90112]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-10-30 16269312]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SMSERIAL"=C:\WINDOWS\sm56hlpr.exe [2006-03-21 544768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-05-25 786521]
"Wireless Console 2"=C:\Program Files\Wireless Console 2\wcourier.exe [2005-10-17 987136]
"Control Center"=C:\Program Files\ASUS\WLAN Card Utilities\Center.exe [2006-11-10 1725440]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2006-01-30 98304]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"Smart Start UP"=C:\Program Files\NewSoft\Smart Start UP\PnPDetect.exe [2006-12-19 104528]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-04-17 155648]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-11-16 3117384]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2011-10-28 49208]
""= []
"StatusAlerts"=C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe [2012-07-18 313248]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-30 4826904]

C:\Documents and Settings\-\Start Menu\Programs\Startup
OpenOffice.org 3.2.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-08-08 86016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{0FAD2E16-C8EF-5AC1-1E6A-AE3FD8EF56B3}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\HP\HP LaserJet 200 color MFP M276\Bin\FaxApplications.exe"="C:\Program Files\HP\HP LaserJet 200 color MFP M276\Bin\FaxApplications.exe:LocalSubNet:Enabled:HP LaserJet 200 color MFP M276 FaxApplications"
"C:\Program Files\HP\HP LaserJet 200 color MFP M276\Bin\DigitalWizards.exe"="C:\Program Files\HP\HP LaserJet 200 color MFP M276\Bin\DigitalWizards.exe:LocalSubNet:Enabled:HP LaserJet 200 color MFP M276 DigitalWizards"
"C:\Program Files\HP\HP LaserJet 200 color MFP M276\Bin\HPNetworkCommunicator.exe"="C:\Program Files\HP\HP LaserJet 200 color MFP M276\Bin\HPNetworkCommunicator.exe:LocalSubNet:Enabled:HP Network Communicator (HP LaserJet 200 color MFP M276)"
"C:\Program Files\HP\HP LaserJet 200 color MFP M276\Bin\EWSProxy.exe"="C:\Program Files\HP\HP LaserJet 200 color MFP M276\Bin\EWSProxy.exe:LocalSubNet:Enabled:HP LaserJet 200 color MFP M276 EWSProxy"
"C:\WINDOWS\system32\spoolsv.exe"="C:\WINDOWS\system32\spoolsv.exe:*:Enabled:HP Networked Printer Installer"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=serwvdrv.dll
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll

======List of files/folders created in the last 1 month======

2014-11-19 13:45:28 ----D---- C:\Program Files\trend micro
2014-11-19 13:45:26 ----D---- C:\rsit
2014-11-18 19:10:02 ----D---- C:\Program Files\Mozilla Firefox
2014-11-18 18:52:47 ----D---- C:\Program Files\CCleaner

======List of files/folders modified in the last 1 month======

2014-11-19 13:45:28 ----D---- C:\Program Files
2014-11-19 13:30:30 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-19 13:30:14 ----SHD---- C:\Config.Msi
2014-11-19 13:29:59 ----SHD---- C:\WINDOWS\Installer
2014-11-19 13:13:46 ----D---- C:\WINDOWS\Temp
2014-11-19 12:44:47 ----D---- C:\WINDOWS\Prefetch
2014-11-19 12:12:41 ----A---- C:\ASWL2K.ini
2014-11-18 21:13:13 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-11-18 20:24:33 ----D---- C:\WINDOWS
2014-11-18 20:22:23 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-18 18:54:41 ----D---- C:\WINDOWS\Debug
2014-11-18 18:54:40 ----D---- C:\WINDOWS\Minidump
2014-11-18 18:11:20 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-11-18 18:01:49 ----D---- C:\Program Files\Burn4Free
2014-11-18 16:34:11 ----HD---- C:\WINDOWS\inf
2014-11-18 16:34:11 ----D---- C:\WINDOWS\system32
2014-11-18 16:33:46 ----D---- C:\Program Files\MSN
2014-11-18 16:01:03 ----D---- C:\WINDOWS\system32\CatRoot2
2014-11-17 10:36:28 ----D---- C:\WINDOWS\system32\MRT
2014-11-17 10:27:23 ----SD---- C:\WINDOWS\Tasks
2014-11-17 10:12:59 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-14 13:10:55 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-10-30 13:34:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-02-24 43528]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2012-11-16 160856]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2012-03-14 120152]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2012-11-16 62512]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2007-05-24 20747]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2012-03-14 148504]
R3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\ATK0100\ASNDIS5.SYS []
R3 AtcL002;NDIS Miniport Driver for Attansic L2 Fast Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\atl02_xp.sys [2006-08-14 27776]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-08-08 1681408]
R3 BCM43XX;ASUS 802.11 - ovládač sieťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2006-10-12 604928]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2012-03-14 40336]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys [2014-04-09 73984]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-03 4394496]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 RTSTOR;USB Mass Stroage Device; C:\WINDOWS\system32\drivers\RTSTOR.SYS [2006-06-09 27520]
R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2006-03-21 889472]
R3 SynMini;USB2.0 1.3M WebCam; C:\WINDOWS\System32\Drivers\SynMini.sys [2006-08-09 1116544]
R3 SynScan;USB2.0 1.3M WebCam Still Image; C:\WINDOWS\System32\Drivers\SynScan.sys [2006-08-09 7808]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-05-25 193088]
R3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2014-04-09 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\WINDOWS\system32\DRIVERS\ew_usbenumfilter.sys [2014-04-09 11136]
S3 huawei_cdcacm;huawei_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [2014-04-09 89856]
S3 huawei_cdcecm;huawei_cdcecm; C:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys [2014-04-09 66688]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\WINDOWS\system32\DRIVERS\ew_juextctrl.sys [2014-04-09 26624]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2014-04-09 195200]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\WINDOWS\system32\DRIVERS\ewusbdev.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S4 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-02-28 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-08-08 401408]
R2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2012-11-16 913184]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [2012-05-02 164864]
R2 HWDeviceService.exe;HWDeviceService.exe; C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-10-19 61440]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-09-16 3273088]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
S2 ASWLSVC;ASWLSVC; C:\WINDOWS\system32\ASWLSVC.exe [2004-05-06 496640]
S2 gupdate1c9bf6c37ca6dda;Služba Google Update (gupdate1c9bf6c37ca6dda); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-04 107912]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files\Mobile Partner\UpdateDog\ouc.exe [2014-04-09 655712]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-07-25 162672]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-14 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-04 107912]
S3 HP DS Service;HP DS Service; C:\Program Files\HP\HPBDSService\HPBDSService.exe [2011-10-17 13824]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-18 114288]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-12-05 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 19 lis 2014 13:59

Dobry den Vam preju

Aktualizujte Adobe Reader na aktualni verzi XI. Spustte Adobe Reader a nahore klik na Napoveda -> Zkontrolovat aktualizace...

Odinstalujte Skype Click to Call

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Spustte jako spravce C:\Program Files\trend micro\-.exe

kliknete na Do a system scan only
zatrhnete (udelejte fajfku) nasledujici polozky
- O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
  O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
  O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
kliknete na Fix checked

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Clean
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

mikizloku · #3 Příspěvek od **mikizloku** » 19 lis 2014 15:15

# AdwCleaner v4.101 - Report created 19/11/2014 at 15:04:28
# Updated 09/11/2014 by Xplode
# Database : 2014-11-07.1 [Local]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : - - STAMOL
# Running from : C:\Documents and Settings\-\My Documents\Preberanie\adwcleaner_4.101.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : ASWLSVC

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\-\Application Data\Toolbar4
Folder Deleted : C:\Documents and Settings\-\Application Data\Uniblue
File Deleted : C:\WINDOWS\system32\ASWLSVC.exe
File Deleted : C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\o82i6njj.default\searchplugins\bingp.xml
File Deleted : C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\o82i6njj.default\searchplugins\search.xml

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009
Key Deleted : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009.3
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{338B4DFE-2E2C-4338-9E41-E176D497299E}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{338B4DFE-2E2C-4338-9E41-E176D497299E}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{CA3EB689-8F09-4026-AA10-B9534C691CE0}]
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
Key Deleted : HKCU\Software\Somoto Toolbar
Key Deleted : HKLM\SOFTWARE\Uniblue
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe

***** [ Browsers ] *****

-\\ Internet Explorer v6.0.2900.5512

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
Posielam log z AdwCleaner-u

-\\ Mozilla Firefox v33.1.1 (x86 sk)

-\\ Google Chrome v38.0.2125.111

*************************

AdwCleaner[R0].txt - [7276 octets] - [19/11/2014 14:44:02]
AdwCleaner[R1].txt - [7336 octets] - [19/11/2014 14:57:32]
AdwCleaner[S0].txt - [7258 octets] - [19/11/2014 15:04:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7318 octets] ##########

#4 Příspěvek od **altrok** » 19 lis 2014 15:19

Doinstalujte Internet Explorer 8 a dalsi dulezite Microsoft aktualizace.

Odinstalujte Burn4Free DB Toolbar

Jsou s PC nejake konkretnejsi problemy?

Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

mikizloku · #5 Příspěvek od **mikizloku** » 19 lis 2014 17:30

Problém s notebookom mám, že je pomalý ale to už asi nezmením. Má už svoje za sebou.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-11-2014
Ran by - (administrator) on STAMOL on 19-11-2014 17:23:25
Running from C:\Documents and Settings\-\My Documents\Downloads
Loaded Profile: - (Available profiles: -)
Platform: Systém Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Angličtina (USA)
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
() C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
() C:\WINDOWS\ATK0100\HControl.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
() C:\WINDOWS\ATK0100\ATKOSD.exe
(Motorola Inc.) C:\WINDOWS\sm56hlpr.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
(NewSoft Technology Corporation) C:\Program Files\NewSoft\Smart Start UP\PnPDetect.exe
(Apple Computer, Inc.) C:\Program Files\QuickTime\qttask.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Company) C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
() C:\Documents and Settings\All Users\Application Data\Mobile Partner\OnlineUpdate\ouc.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HControl] => C:\WINDOWS\ATK0100\HControl.exe [110592 2006-10-14] ()
HKLM\...\Run: [ATICCC] => C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe [90112 2006-05-10] ()
HKLM\...\Run: [SkyTel] => C:\WINDOWS\SkyTel.EXE [2879488 2006-05-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16269312 2006-10-30] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SMSERIAL] => C:\WINDOWS\sm56hlpr.exe [544768 2006-03-21] (Motorola Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [786521 2006-05-25] (Synaptics, Inc.)
HKLM\...\Run: [Wireless Console 2] => C:\Program Files\Wireless Console 2\wcourier.exe [987136 2005-10-17] ()
HKLM\...\Run: [Control Center] => C:\Program Files\ASUS\WLAN Card Utilities\Center.exe [1725440 2006-11-10] (ASUSTeK COMPUTER INC.)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [OrderReminder] => C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [98304 2006-01-30] (Hewlett-Packard)
HKLM\...\Run: [Smart Start UP] => C:\Program Files\NewSoft\Smart Start UP\PnPDetect.exe [104528 2006-12-19] (NewSoft Technology Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [155648 2009-04-17] (Apple Computer, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [3117384 2012-11-16] (ESET)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [StatusAlerts] => C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe [313248 2012-07-18] (Hewlett-Packard Company)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-30] (Piriform Ltd)
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {0f67d1b2-bfba-11e3-baf2-aad7544b45ad} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {11dad0ca-8dc4-11e3-ba93-001bfc3dd402} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {1726f2b0-d41f-11e3-bb1e-dbbcf9b44b3a} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {18c5b121-c1e8-11e2-b843-001bfc3dd402} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {ade54870-bfb4-11e3-baf1-84aee2687244} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {eb25e368-ab41-11dc-a529-001bfc3dd402} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Ghost.pif
Startup: C:\Documents and Settings\-\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
ShortcutTarget: OpenOffice.org 3.2.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=UP21&ocid=UP21DHP&dt=043013
SearchScopes: HKU\S-1-5-21-1229272821-2139871995-1417001333-1004 -> DefaultScope {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} URL =
SearchScopes: HKU\S-1-5-21-1229272821-2139871995-1417001333-1004 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
BHO: No Name -> {D3626E66-B13B-C628-ACDF-BDABCFA265E1} -> No File
Toolbar: HKU\S-1-5-21-1229272821-2139871995-1417001333-1004 -> &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1229272821-2139871995-1417001333-1004 -> &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: - {0FAD2E16-C8EF-5AC1-1E6A-AE3FD8EF56B3} - No File [ ]
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 10.20.30.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\-\Application Data\Mozilla\Firefox\Profiles\o82i6njj.default
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.centrum.sk/
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP21DF&PC=UP21&dt=043013&q=
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\libdivx.dll (The OpenSSL Project, http://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdivx32.dll (DivX,Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ssldivx.dll (The OpenSSL Project, http://www.openssl.org/)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-17]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-01-22]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.sk/
CHR StartupUrls: Default -> "hxxp://www.google.sk/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\38.0.2125.111\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Computer, Inc.)
CHR Plugin: (DivX Web Player) - C:\Program Files\Mozilla Firefox\plugins\npdivx32.dll (DivX,Inc.)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\38.0.2125.111\pdf.dll ()
CHR Plugin: (Google Gears 0.5.33.0) - C:\Program Files\Google\Chrome\Application\38.0.2125.111\gears.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (DivX Player Netscape Plugin) - C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Profile: C:\Documents and Settings\-\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Peňaženka Google) - C:\Documents and Settings\-\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [913184 2012-11-16] (ESET)
S2 gupdate1c9bf6c37ca6dda; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-11-04] (Google Inc.)
S3 HP DS Service; C:\Program Files\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [164864 2012-05-02] (HP) [File not signed]
R2 HWDeviceService.exe; C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2006-10-19] (Hewlett-Packard Company) [File not signed]
S2 Mobile Partner. RunOuc; C:\Program Files\Mobile Partner\UpdateDog\ouc.exe [655712 2014-04-09] ()
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-12-05] (Nero AG) [File not signed]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [45568 2011-04-13] (Hewlett-Packard) [File not signed]
S3 NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [262144 2006-12-23] (Nero AG) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [55808 2011-04-13] (Hewlett-Packard) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [20747 2007-05-24] (Meetinghouse Data Communications) [File not signed]
R3 ASNDIS5; C:\WINDOWS\ATK0100\ASNDIS5.SYS [16269 2004-05-28] (Printing Communications Assoc., Inc. (PCAUSA))
R3 AtcL002; C:\WINDOWS\System32\DRIVERS\atl02_xp.sys [27776 2006-08-14] (Attansic Technology corporation.)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [604928 2006-10-12] (Broadcom Corporation)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [160856 2012-11-16] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [120152 2012-03-14] (ESET)
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [148504 2012-03-14] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [40336 2012-03-14] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [62512 2012-11-16] (ESET)
S3 huawei_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys [89856 2014-04-09] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\WINDOWS\System32\DRIVERS\ew_jucdcecm.sys [66688 2014-04-09] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\WINDOWS\System32\DRIVERS\ew_juextctrl.sys [26624 2014-04-09] (Huawei Technologies Co., Ltd.)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ATKACPI.sys [5632 2005-02-17] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 SynMini; C:\WINDOWS\System32\Drivers\SynMini.sys [1116544 2006-08-09] ()
R3 SynScan; C:\WINDOWS\System32\Drivers\SynScan.sys [7808 2006-08-09] ()
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [239488 2014-04-09] (Huawei Technologies Co., Ltd.)
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-19 17:22 - 2014-11-19 17:23 - 00000000 ____D () C:\FRST
2014-11-19 17:09 - 2014-11-19 17:09 - 00000000 __SHD () C:\Documents and Settings\-\IETldCache
2014-11-19 17:05 - 2014-11-19 17:06 - 00039084 _____ () C:\WINDOWS\KB2936068-IE8.log
2014-11-19 17:04 - 2014-11-19 17:05 - 00045697 _____ () C:\WINDOWS\KB2909921-IE8.log
2014-11-19 17:04 - 2014-11-19 17:04 - 00040430 _____ () C:\WINDOWS\KB2598845-IE8.log
2014-11-19 17:03 - 2014-11-19 17:03 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-11-19 17:02 - 2014-11-19 17:11 - 00007520 _____ () C:\WINDOWS\spupdsvc.log
2014-11-19 17:02 - 2014-11-19 17:04 - 00053831 _____ () C:\WINDOWS\KB982381-IE8.log
2014-11-19 17:01 - 2014-11-19 17:08 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-11-19 17:01 - 2014-11-19 17:06 - 00028123 _____ () C:\WINDOWS\updspapi.log
2014-11-19 16:59 - 2014-11-19 17:02 - 00000000 __HDC () C:\WINDOWS\ie8
2014-11-19 16:59 - 2014-11-19 17:01 - 00000000 ____D () C:\WINDOWS\system32\sk-SK
2014-11-19 16:58 - 2014-11-19 17:02 - 00054938 _____ () C:\WINDOWS\ie8.log
2014-11-19 16:48 - 2014-03-06 18:59 - 00522240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2014-11-19 16:47 - 2014-03-06 18:59 - 11113472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2014-11-19 16:47 - 2014-03-06 18:59 - 02006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2014-11-19 16:47 - 2014-03-06 18:59 - 00743424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2014-11-19 16:47 - 2014-03-06 18:59 - 00630272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2014-11-19 16:47 - 2014-03-06 18:59 - 00247808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2014-11-19 16:47 - 2014-03-06 18:59 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2014-11-19 16:47 - 2014-03-06 18:59 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2014-11-19 16:47 - 2011-08-16 11:45 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2014-11-19 16:46 - 2014-11-19 17:06 - 00145955 _____ () C:\WINDOWS\ie8_main.log
2014-11-19 16:46 - 2009-03-08 04:32 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieudinit.exe
2014-11-19 16:46 - 2009-01-07 18:20 - 00265720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdbg2.dll
2014-11-19 16:46 - 2009-01-07 18:20 - 00066384 _____ () C:\WINDOWS\system32\normnfkc.nls
2014-11-19 16:46 - 2009-01-07 18:20 - 00060294 _____ () C:\WINDOWS\system32\normnfkd.nls
2014-11-19 16:46 - 2009-01-07 18:20 - 00059342 _____ () C:\WINDOWS\system32\normidna.nls
2014-11-19 16:46 - 2009-01-07 18:20 - 00045794 _____ () C:\WINDOWS\system32\normnfc.nls
2014-11-19 16:46 - 2009-01-07 18:20 - 00039284 _____ () C:\WINDOWS\system32\normnfd.nls
2014-11-19 16:46 - 2009-01-07 18:20 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\idndl.dll
2014-11-19 16:46 - 2009-01-07 18:20 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlsdl.dll
2014-11-19 16:46 - 2009-01-07 18:20 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\normaliz.dll
2014-11-19 16:45 - 2014-03-06 18:59 - 11113472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-11-19 16:45 - 2014-03-06 18:59 - 02006016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-11-19 16:45 - 2014-03-06 18:59 - 01469440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcpl.cpl
2014-11-19 16:45 - 2014-03-06 18:59 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-11-19 16:45 - 2014-03-06 18:59 - 00387584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedkcs32.dll
2014-11-19 16:45 - 2014-03-06 18:59 - 00206848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\occache.dll
2014-11-19 16:45 - 2014-03-06 18:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-11-19 16:45 - 2014-03-06 06:17 - 00174592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ie4uinit.exe
2014-11-19 16:45 - 2009-04-11 13:49 - 01298432 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll.mui
2014-11-19 16:45 - 2009-04-11 13:49 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll.mui
2014-11-19 16:45 - 2009-04-11 13:48 - 00002560 ____N (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe.mui
2014-11-19 16:45 - 2009-04-11 13:47 - 00011264 ____N (Microsoft Corporation) C:\WINDOWS\system32\advpack.dll.mui
2014-11-19 16:45 - 2009-04-11 13:47 - 00004096 ____N (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe.mui
2014-11-19 16:45 - 2009-04-11 13:46 - 00081920 ____N (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll.mui
2014-11-19 16:45 - 2009-03-08 14:09 - 00638816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexplore.exe
2014-11-19 16:45 - 2009-03-08 04:34 - 00236544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\webcheck.dll
2014-11-19 16:45 - 2009-03-08 04:34 - 00208384 ____N (Microsoft Corporation) C:\WINDOWS\system32\WinFXDocObj.exe
2014-11-19 16:45 - 2009-03-08 04:32 - 00128512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advpack.dll
2014-11-19 16:45 - 2009-03-08 04:31 - 01638912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.tlb
2014-11-19 16:45 - 2009-03-08 04:31 - 00059904 ____N (Microsoft Corporation) C:\WINDOWS\system32\icardie.dll
2014-11-19 16:45 - 2009-03-08 04:31 - 00046592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pngfilt.dll
2014-11-19 16:45 - 2009-03-08 04:31 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshta.exe
2014-11-19 16:45 - 2009-03-08 04:31 - 00034816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imgutil.dll
2014-11-19 16:45 - 2009-03-08 04:31 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2014-11-19 16:45 - 2009-03-08 04:24 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hmmapi.dll
2014-11-19 16:45 - 2009-03-08 04:22 - 00164352 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2014-11-19 16:45 - 2009-03-08 04:11 - 00445952 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-11-19 16:45 - 2009-02-06 21:07 - 03698584 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dat
2014-11-19 16:45 - 2009-01-07 18:20 - 00134144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sqmapi.dll
2014-11-19 16:45 - 2009-01-07 18:20 - 00008798 _____ () C:\WINDOWS\system32\icrav03.rat
2014-11-19 16:45 - 2009-01-07 18:20 - 00001988 ____N () C:\WINDOWS\system32\ticrf.rat
2014-11-19 15:29 - 2014-11-19 15:29 - 00000000 ____D () C:\Documents and Settings\-\Application Data\Toolbar4
2014-11-19 14:44 - 2014-11-19 15:04 - 00000000 ____D () C:\AdwCleaner
2014-11-19 14:43 - 2014-11-19 14:43 - 00000910 _____ () C:\Documents and Settings\-\Desktop\Odkaz na adwcleaner_4.101.lnk
2014-11-19 14:38 - 2014-11-19 17:06 - 00037704 _____ () C:\WINDOWS\FaxSetup.log
2014-11-19 14:38 - 2014-11-19 17:06 - 00020549 _____ () C:\WINDOWS\ocgen.log
2014-11-19 14:38 - 2014-11-19 17:06 - 00015719 _____ () C:\WINDOWS\tsoc.log
2014-11-19 14:38 - 2014-11-19 17:06 - 00012392 _____ () C:\WINDOWS\comsetup.log
2014-11-19 14:38 - 2014-11-19 17:06 - 00008077 _____ () C:\WINDOWS\setupapi.log
2014-11-19 14:38 - 2014-11-19 17:06 - 00007719 _____ () C:\WINDOWS\ntdtcsetup.log
2014-11-19 14:38 - 2014-11-19 17:06 - 00005906 _____ () C:\WINDOWS\iis6.log
2014-11-19 14:38 - 2014-11-19 17:06 - 00002179 _____ () C:\WINDOWS\ocmsn.log
2014-11-19 14:38 - 2014-11-19 17:06 - 00002024 _____ () C:\WINDOWS\msgsocm.log
2014-11-19 14:38 - 2014-11-19 17:06 - 00001393 _____ () C:\WINDOWS\imsins.log
2014-11-19 14:38 - 2014-11-19 17:05 - 00001393 _____ () C:\WINDOWS\imsins.BAK
2014-11-19 14:38 - 2014-11-19 14:38 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-11-19 14:38 - 2014-11-19 14:38 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-11-19 14:28 - 2014-11-19 15:25 - 00002347 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-19 14:28 - 2014-11-19 14:28 - 00001734 _____ () C:\Documents and Settings\All Users\Desktop\Adobe Reader XI.lnk
2014-11-19 13:45 - 2014-11-19 14:41 - 00000000 ____D () C:\Program Files\trend micro
2014-11-19 13:45 - 2014-11-19 13:45 - 00000000 ____D () C:\rsit
2014-11-18 19:10 - 2014-11-18 19:15 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-11-18 18:52 - 2014-11-18 18:52 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-18 18:52 - 2014-11-18 18:52 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
2014-11-18 16:33 - 2014-11-18 16:34 - 00001857 _____ () C:\Documents and Settings\All Users\Desktop\MSN Installer.lnk
2014-11-18 14:29 - 2014-11-18 18:42 - 00000435 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-19 17:24 - 2007-05-24 20:27 - 00000000 ____D () C:\Documents and Settings\-\Local Settings\Temp
2014-11-19 17:20 - 2007-05-24 20:21 - 01515621 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-19 17:12 - 2007-05-24 15:13 - 00000168 _____ () C:\ASWL2K.ini
2014-11-19 17:11 - 2013-04-10 10:01 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-11-19 17:10 - 2007-05-24 22:05 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2014-11-19 17:10 - 2007-05-24 22:05 - 00000052 _____ () C:\WINDOWS\wiaservc.log
2014-11-19 17:09 - 2014-03-12 12:56 - 00000214 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2014-11-19 17:09 - 2009-07-01 06:39 - 00000920 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-19 17:09 - 2007-05-24 21:53 - 00000000 ____D () C:\WINDOWS\Help
2014-11-19 17:09 - 2007-05-24 20:27 - 00000803 _____ () C:\Documents and Settings\-\Start Menu\Programs\Internet Explorer.lnk
2014-11-19 17:09 - 2007-05-24 20:27 - 00000000 ___RD () C:\Documents and Settings\-\Start Menu\Programs\Accessories
2014-11-19 17:09 - 2007-05-24 20:27 - 00000000 ____D () C:\Documents and Settings\-
2014-11-19 17:09 - 2007-05-24 20:26 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-19 17:08 - 2007-05-24 20:27 - 00000278 ___SH () C:\Documents and Settings\-\ntuser.ini
2014-11-19 17:08 - 2007-05-24 20:26 - 00032546 _____ () C:\WINDOWS\SchedLgU.Txt
2014-11-19 17:08 - 2007-05-24 15:13 - 00524288 _____ () C:\WINDOWS\system32\config\ACEEvent.evt
2014-11-19 17:04 - 2007-05-24 20:23 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-11-19 17:01 - 2007-05-24 21:53 - 00000000 ____D () C:\WINDOWS\Media
2014-11-19 16:58 - 2007-05-24 20:35 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-11-19 16:44 - 2007-10-15 17:36 - 00000000 ____D () C:\Documents and Settings\-\Application Data\Adobe
2014-11-19 16:39 - 2011-02-12 14:47 - 00000000 ____D () C:\Documents and Settings\-\My Documents\Preberanie
2014-11-19 16:32 - 2009-07-01 06:39 - 00000924 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-19 16:25 - 2006-02-28 13:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-11-19 15:06 - 2007-10-15 17:34 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adobe
2014-11-19 14:36 - 2013-04-30 11:58 - 00000000 ___RD () C:\Program Files\Skype
2014-11-19 14:36 - 2007-09-12 13:06 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-11-19 14:32 - 2007-10-15 17:35 - 00000000 ____D () C:\Documents and Settings\-\Local Settings\Application Data\Adobe
2014-11-19 14:30 - 2014-07-31 19:36 - 00000370 _____ () C:\WINDOWS\Tasks\At4.job
2014-11-19 14:28 - 2008-05-28 11:04 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-11-19 14:27 - 2008-05-28 11:04 - 00000000 ____D () C:\Program Files\Adobe
2014-11-18 21:05 - 2013-07-23 14:40 - 00000000 ____D () C:\Documents and Settings\-\Desktop\Nový priečinok
2014-11-18 20:45 - 2014-07-31 19:36 - 00000370 _____ () C:\WINDOWS\Tasks\At2.job
2014-11-18 20:42 - 2007-11-22 17:39 - 00000000 ____D () C:\Documents and Settings\-\My Documents\POSTA
2014-11-18 20:36 - 2014-07-31 19:36 - 00000370 _____ () C:\WINDOWS\Tasks\At3.job
2014-11-18 20:22 - 2013-12-05 16:22 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-11-18 18:54 - 2011-08-17 06:26 - 00000000 ____D () C:\WINDOWS\Minidump
2014-11-18 18:01 - 2011-03-29 20:22 - 00000000 ____D () C:\Program Files\Burn4Free
2014-11-18 16:33 - 2007-05-24 20:17 - 00000000 ____D () C:\Program Files\MSN
2014-11-17 11:02 - 2014-08-01 08:52 - 00345520 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2014-11-17 10:36 - 2013-07-16 04:17 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-17 10:32 - 2014-07-31 19:36 - 00000370 _____ () C:\WINDOWS\Tasks\At1.job
2014-11-17 10:12 - 2007-05-26 11:05 - 100445232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-11-14 13:10 - 2013-04-10 10:01 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-11-14 13:10 - 2011-07-19 14:25 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-11-10 10:27 - 2014-03-12 12:56 - 00000208 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2014-11-04 10:23 - 2013-05-12 13:12 - 00001825 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-11-04 10:20 - 2013-05-12 12:33 - 00000000 ____D () C:\Documents and Settings\-\Desktop\STAMOL
2014-10-30 13:34 - 2007-05-24 22:03 - 00513916 _____ () C:\WINDOWS\system32\PerfStringBackup.INI

Files to move or delete:
====================
C:\Windows\Tasks\At1.job
C:\Windows\Tasks\At2.job
C:\Windows\Tasks\At3.job
C:\Windows\Tasks\At4.job

Some content of TEMP:
====================
C:\Documents and Settings\-\Local Settings\Temp\install_reader11_sk_mssa_aaa_aih.exe
C:\Documents and Settings\-\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\-\Local Settings\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 19-11-2014
Ran by - at 2014-11-19 17:25:03
Running from C:\Documents and Settings\-\My Documents\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 5.2 (Disabled - Up to date) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall (Disabled) {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 8.1.4 - Hewlett-Packard) Hidden
AAC Decoder (HKLM\...\{AEF9DC35ADDF4825B049ACBFD1C6EB37}) (Version: 7.1.0 - DivX, Inc.)
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Slovak (HKLM\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
ASUS WLAN Card Utilities/Driver (HKLM\...\{8F722FA9-B994-4C9B-B292-FD32D6206EDF}) (Version: 3.0.1.0 - )
ATI - Software Uninstall Utility (HKLM\...\All ATI Software) (Version: 6.14.10.1014 - )
ATI Catalyst Control Center (HKLM\...\{379B5735-78C9-43A4-91F0-6274D2D8280E}) (Version: 1.2.2411.37329 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.283-060808a-038831C-Asus - )
ATI Parental Control & Encoder (HKLM\...\{36CDA33B-909B-4719-97D1-C4B99309BDC7}) (Version: 3.0 - ATI Technologies Inc.)
ATK0100 ACPI UTILITY (HKLM\...\HControl) (Version: - )
Attansic Giga Ethernet Utility (HKLM\...\{1F698102-5739-441E-96F0-74F4EA540F06}) (Version: 1.0 - )
Attansic L2 Fast Ethernet Driver (HKLM\...\AtcL2) (Version: - )
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
AutoUpdate (HKLM\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - )
Balík Compatibility Pack pre systém Office 2007 (HKLM\...\{90120000-0020-041B-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
Burn4Free CD & DVD 5.4.0.0 (HKLM\...\Burn4Free CD & DVD_is1) (Version: - Ikysasoft s.r.l. uninominale)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
DivX Codec (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.8.5 - DivX, Inc.)
DivX Converter (HKLM\...\{13F3917B56CD4C25848BDC69916971BB}) (Version: 7.0.0 - DivX, Inc.)
DivX Converter (HKLM\...\{B13A7C41581B411290FBC0395694E2A9}) (Version: 7.0.0 - DivX, Inc.)
DivX Player (HKLM\...\{8ADFC4160D694100B5B8A22DE9DCABD9}) (Version: 7.1.0 - DivX, Inc.)
DivX Plus DirectShow Filters (HKLM\...\DivX Plus DirectShow Filters) (Version: - DivX, Inc.)
DivX Version Checker (HKLM\...\{3FC7CBBC4C1E11DCA1A752EA55D89593}) (Version: 7.0.0.19 - DivX, Inc.)
DivX Web Player (HKLM\...\{B7050CBDB2504B34BC2A9CA0A692CC29}) (Version: 1.4.3 - DivX,Inc.)
ESET Smart Security (HKLM\...\{834548DF-483A-401F-A257-7702B52C1C0F}) (Version: 5.2.15.1 - ESET, spol s r. o.)
Google Chrome (HKLM\...\Google Chrome) (Version: 38.0.2125.111 - Spoločnosť Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
H.264 Decoder (HKLM\...\{A96E97134CA649888820BCDE5E300BBD}) (Version: 1.0.0 - DivX, Inc.)
High Definition Audio Driver Package - KB888111 (HKLM\...\KB888111WXPSP2) (Version: 20040219.000000 - Microsoft Corporation)
HP LaserJet 200 color MFP M276 (HKLM\...\{CC38C23C-7824-4DBB-AC73-997CD0BBFEC7}) (Version: 5.0.14057.1503 - Hewlett-Packard)
HP OrderReminder (HKLM\...\HP OrderReminder) (Version: 2.1 - )
HP Update (HKLM\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
hpbDSService (Version: 002.002.07399 - Hewlett-Packard) Hidden
hpbM276DSService (Version: 001.001.05874 - Hewlett-Packard) Hidden
HPLaserJet200color-MFPM276_HelpLearnCenter_SI (HKLM\...\{0F044C7A-6EE1-4F03-90AC-329AAF2FCF12}) (Version: 1.01.0000 - Hewlett-Packard)
HPLJUTCore (Version: 004.005.0001 - HP) Hidden
HPLJUTM276 (Version: 3.00.0003 - HP) Hidden
hppFaxDrvM276 (Version: 003.000.00002 - Hewlett-Packard) Hidden
hppLaserJetService (Version: 009.027.00856 - Hewlett-Packard) Hidden
hppM276LaserJetService (Version: 001.019.00639 - Hewlett-Packard) Hidden
hppSendFaxM276 (Version: 003.000.00002 - Hewlett-Packard) Hidden
hpStatusAlerts (Version: 050.037.00142 - Hewlett Packard) Hidden
hpStatusAlertsM276 (Version: 050.034.00131 - Hewlett-Packard) Hidden
LaserJet 1018 (HKLM\...\HP-LaserJet 1018) (Version: - )
LightScribe 1.4.124.1 (Version: 1.4.124.1 - http://www.lightscribe.com) Hidden
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft Office Basic Edition 2003 (HKLM\...\{9113041B-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
MKV Splitter (HKLM\...\{AAC389499AEF40428987B3D30CFC76C9}) (Version: 1.0.0 - DivX, Inc.)
Mobile Partner (HKLM\...\Mobile Partner) (Version: 21.005.22.00.85 - Huawei Technologies Co.,Ltd)
Motorola SM56 Speakerphone Modem (HKLM\...\SMSERIAL) (Version: - )
Mozilla Firefox 33.1.1 (x86 sk) (HKLM\...\Mozilla Firefox 33.1.1 (x86 sk)) (Version: 33.1.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Mozilla Thunderbird 24.1.1 (x86 sk) (HKLM\...\Mozilla Thunderbird 24.1.1 (x86 sk)) (Version: 24.1.1 - Mozilla)
MSN (HKLM\...\MSNINST) (Version: - )
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM\...\{8A8C4EAC-9AB7-45FA-9480-5716FD261051}) (Version: 7.02.4129 - Nero AG)
OMEGA 12.01.00 (HKLM\...\{33D5AD86-F82B-427E-A36B-FCE7773B9DF7}) (Version: 12.01.00 - Kros a.s.)
OpenOffice.org 3.2 (HKLM\...\{28B94253-5729-4C30-8DE4-F2A0A63149B0}) (Version: 3.2.9505 - OpenOffice.org)
PACIOLI Repair 7 (HKLM\...\ST6UNST #1) (Version: - )
Presto! Mr. Photo 4 (HKLM\...\{CAF7A270-55D5-455F-B0D1-6C51EADC1C3A}) (Version: 4.00.05 - NewSoft Technology Corporation)
QuickTime (HKLM\...\InstallShield_{0B69DA57-BC7D-461D-B7D6-2AA9F08869CD}) (Version: 7.0.3 - Apple Computer, Inc.)
QuickTime (Version: 7.0.3 - Apple Computer, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5319 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version: - )
Skype™ 6.7 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.7.102 - Skype Technologies S.A.)
Smart Fortress 2012 (HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\Smart Fortress 2012) (Version: - )
Smart Start UP (HKLM\...\{2C9241DC-E141-4BB9-99F2-0BC54D81862F}) (Version: 1.00.000 - NewSoft)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 8.3.5.0 - Synaptics)
USB2.0 1.3M WebCam (HKLM\...\USB2.0 1.3M WebCam) (Version: - )
VC80CRTRedist - 8.0.50727.762 (Version: 1.0.0 - DivX, Inc) Hidden
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Doctor 2.0 (HKLM\...\Windows Doctor_is1) (Version: - WindowsDoctor International LLC)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.7.0018.5 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090411.134454 - Microsoft Corporation)
Windows Media Format Runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
WinRAR archivátor (HKLM\...\WinRAR archiver) (Version: - )
Wireless Console 2 (HKLM\...\{83F73CB1-7705-49D1-9852-84D839CA2A45}) (Version: 2.0.2 - ATK)
Xvid 1.1.2 final uninstall (HKLM\...\Xvid_is1) (Version: 1.1 - Xvid team (Koepi))

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1229272821-2139871995-1417001333-1004_Classes\CLSID\{53B5243F-8302-4DAD-BE8F-1D0665E8225E}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO3.dll (Hewlett-Packard Company)

==================== Restore Points =========================

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\At1.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\At2.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\At3.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\At4.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe

==================== Loaded Modules (whitelisted) =============

2011-03-14 16:27 - 2011-03-14 16:27 - 00271712 _____ () C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
2007-05-24 20:33 - 2006-10-14 10:37 - 00110592 ____R () C:\WINDOWS\ATK0100\HControl.exe
2007-05-24 20:33 - 2004-05-28 03:13 - 00057344 ____R () C:\WINDOWS\ATK0100\CMSSC.dll
2007-05-24 20:33 - 2006-08-24 08:32 - 00163840 ____R () C:\WINDOWS\ATK0100\ASUSNET.dll
2007-05-24 20:33 - 2006-08-10 15:08 - 02379776 ____R () C:\WINDOWS\ATK0100\ATKOSD.exe
2007-05-24 15:05 - 2005-10-17 16:09 - 00987136 _____ () C:\Program Files\Wireless Console 2\wcourier.exe
2007-05-24 15:10 - 2006-09-18 14:16 - 00172032 _____ () C:\Program Files\ASUS\WLAN Card Utilities\ASAUTHEN.DLL
2014-10-23 20:19 - 2014-10-23 20:19 - 00042496 _____ () C:\Program Files\CCleaner\lang\lang-1051.dll
2013-09-13 08:10 - 2014-04-09 08:01 - 00655712 _____ () C:\Documents and Settings\All Users\Application Data\Mobile Partner\OnlineUpdate\ouc.exe
2013-05-21 08:31 - 2013-05-21 08:30 - 00011362 _____ () C:\Documents and Settings\All Users\Application Data\Mobile Partner\OnlineUpdate\mingwm10.dll
2013-05-21 08:31 - 2013-05-21 08:30 - 00043008 _____ () C:\Documents and Settings\All Users\Application Data\Mobile Partner\OnlineUpdate\libgcc_s_dw2-1.dll
2013-05-21 08:31 - 2013-05-21 08:30 - 02415104 _____ () C:\Documents and Settings\All Users\Application Data\Mobile Partner\OnlineUpdate\QtCore4.dll
2013-05-21 08:31 - 2013-05-21 08:30 - 01148416 _____ () C:\Documents and Settings\All Users\Application Data\Mobile Partner\OnlineUpdate\QtNetwork4.dll
2013-05-21 08:31 - 2013-05-21 08:30 - 00843264 _____ () C:\Documents and Settings\All Users\Application Data\Mobile Partner\OnlineUpdate\QueryStrategy.dll
2013-05-21 08:31 - 2013-05-21 08:30 - 00398336 _____ () C:\Documents and Settings\All Users\Application Data\Mobile Partner\OnlineUpdate\QtXml4.dll
2010-06-07 12:19 - 2011-11-10 08:47 - 00970752 _____ () C:\Program Files\OpenOffice.org 3\program\libxml2.dll
2006-02-28 13:00 - 2008-04-14 01:11 - 00059904 _____ () C:\WINDOWS\system32\devenum.dll
2006-02-28 13:00 - 2008-04-14 01:11 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-11-04 10:22 - 2014-10-22 05:04 - 08910664 _____ () C:\Program Files\Google\Chrome\Application\38.0.2125.111\pdf.dll
2014-11-04 10:22 - 2014-10-22 05:04 - 01681224 _____ () C:\Program Files\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

- (S-1-5-21-1229272821-2139871995-1417001333-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\-
Administrator (S-1-5-21-1229272821-2139871995-1417001333-500 - Administrator - Enabled)
Guest (S-1-5-21-1229272821-2139871995-1417001333-501 - Limited - Enabled)
HelpAssistant (S-1-5-21-1229272821-2139871995-1417001333-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1229272821-2139871995-1417001333-1002 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (11/19/2014 03:29:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Zlyhanie aplikácie plugin-container.exe, verzia 33.1.1.5430, zlyhanie modulu mozalloc.dll, verzia 33.1.1.5430, adresa zlyhania 0x00001425.
Spracováva sa udalosť viažuca sa konkrétne médium pre [plugin-container.exe!ws!]

Error: (11/19/2014 02:20:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Zlyhanie aplikácie plugin-container.exe, verzia 33.1.1.5430, zlyhanie modulu mozalloc.dll, verzia 33.1.1.5430, adresa zlyhania 0x00001425.
Spracováva sa udalosť viažuca sa konkrétne médium pre [plugin-container.exe!ws!]

Error: (11/19/2014 09:37:57 AM) (Source: Application Error) (EventID: 1001) (User: )
Description: Chybný blok 643929445.
Výsledkom výmeny kľúčov WEP po overení 802.1x nebolo nastavenie zabezpečeného pripojenia. Aktuálne nastavenie bolo označené ako nastavenie, ktoré zlyhalo, a bezdrôtové pripojenie sa preruší.

Error: (11/19/2014 09:08:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Zlyhanie aplikácie plugin-container.exe, verzia 33.1.1.5430, zlyhanie modulu mozalloc.dll, verzia 33.1.1.5430, adresa zlyhania 0x00001425.
Spracováva sa udalosť viažuca sa konkrétne médium pre [plugin-container.exe!ws!]

Error: (11/18/2014 08:41:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Zlyhanie aplikácie explorer.exe, verzia 6.0.2900.5512, zlyhanie modulu mspfilt.dll, verzia 11.0.1897.0, adresa zlyhania 0x0005bca6.
Spracováva sa udalosť viažuca sa konkrétne médium pre [explorer.exe!ws!]

Error: (11/18/2014 08:25:57 PM) (Source: MsiInstaller) (EventID: 1013) (User: NT AUTHORITY)
Description: Product: Skype Click to Call -- Installation cannot proceed on this operating system.

Error: (11/18/2014 07:12:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Zlyhanie aplikácie plugin-container.exe, verzia 33.0.3.5422, zlyhanie modulu mozalloc.dll, verzia 33.0.3.5422, adresa zlyhania 0x00001425.
Spracováva sa udalosť viažuca sa konkrétne médium pre [plugin-container.exe!ws!]

Error: (11/18/2014 11:04:24 AM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 5000) (User: )
Description: EventType clr20r3, P1 hplaserjetservice.exe, P2 9.27.856.0, P3 4fa1f537, P4 ledmxmlobjects, P5 8.11.1313.0, P6 4fa1f535, P7 c8f, P8 d, P9 clr20r30, P10 clr20r31.

Error: (11/04/2014 09:43:48 AM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 5000) (User: )
Description: EventType clr20r3, P1 hpstatusalerts.exe, P2 50.34.153.0, P3 5006f9fa, P4 hptoolkit, P5 45.30.125.0, P6 5006f9ea, P7 68, P8 10, P9 clr20r30, P10 clr20r31.

Error: (10/31/2014 00:30:08 PM) (Source: HotFixInstaller) (EventID: 5000) (User: )
Description: EventType visualstudio8setup, P1 microsoft .net framework 2.0-kb2844285, P2 1051, P3 1603, P4 msi, P5 f, P6 9.0.40215.0, P7 install, P8 x86, P9 visualstudio8setup0, P10 visualstudio8setup1.

System errors:
=============
Error: (11/19/2014 04:23:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Mobile Partner. OUC zlyhalo kvôli nasledujúcej chybe:
%%1053

Error: (11/19/2014 04:23:46 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Časový limit (30000 ms) čakania na pripojenie služby Mobile Partner. OUC.

Error: (11/19/2014 04:23:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby HP LaserJet Service zlyhalo kvôli nasledujúcej chybe:
%%1053

Error: (11/19/2014 04:23:46 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Časový limit (30000 ms) čakania na pripojenie služby HP LaserJet Service.

Error: (11/19/2014 03:33:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Mobile Partner. OUC zlyhalo kvôli nasledujúcej chybe:
%%1053

Error: (11/19/2014 03:33:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Časový limit (30000 ms) čakania na pripojenie služby Mobile Partner. OUC.

Error: (11/19/2014 03:07:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Mobile Partner. OUC zlyhalo kvôli nasledujúcej chybe:
%%1053

Error: (11/19/2014 03:07:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Časový limit (30000 ms) čakania na pripojenie služby Mobile Partner. OUC.

Error: (11/19/2014 03:06:08 PM) (Source: Dhcp) (EventID: 1002) (User: )
Description: Server DHCP 10.20.30.1 odmietol prenájom 10.20.30.107 adresy IP
pre sieťovú kartu so sieťovou adresou 001BFC3DD402 (server DHCP odoslal hlásenie DHCPNACK).

Error: (11/19/2014 03:04:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Application Layer Gateway Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát.

Microsoft Office Sessions:
=========================
Error: (11/19/2014 03:29:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe33.1.1.5430mozalloc.dll33.1.1.543000001425

Error: (11/19/2014 02:20:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe33.1.1.5430mozalloc.dll33.1.1.543000001425

Error: (11/19/2014 09:37:57 AM) (Source: Application Error) (EventID: 1001) (User: )
Description: 643929445

Error: (11/19/2014 09:08:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe33.1.1.5430mozalloc.dll33.1.1.543000001425

Error: (11/18/2014 08:41:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: explorer.exe6.0.2900.5512mspfilt.dll11.0.1897.00005bca6

Error: (11/18/2014 08:25:57 PM) (Source: MsiInstaller) (EventID: 1013) (User: NT AUTHORITY)
Description: Product: Skype Click to Call -- Installation cannot proceed on this operating system.(NULL)(NULL)(NULL)

Error: (11/18/2014 07:12:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe33.0.3.5422mozalloc.dll33.0.3.542200001425

Error: (11/18/2014 11:04:24 AM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 5000) (User: )
Description: clr20r3hplaserjetservice.exe9.27.856.04fa1f537ledmxmlobjects8.11.1313.04fa1f535c8fdsystem.invalidoperationexceptionNIL

Error: (11/04/2014 09:43:48 AM) (Source: .NET Runtime 2.0 Error Reporting) (EventID: 5000) (User: )
Description: clr20r3hpstatusalerts.exe50.34.153.05006f9fahptoolkit45.30.125.05006f9ea6810kflj1gicd5apjdg1v0ezd5113cwoaainNIL

Error: (10/31/2014 00:30:08 PM) (Source: HotFixInstaller) (EventID: 5000) (User: )
Description: visualstudio8setupmicrosoft .net framework 2.0-kb284428510511603msif9.0.40215.0installx86xp1719

==================== Memory info ===========================

Processor: Intel(R) Celeron(R) M CPU 520 @ 1.60GHz
Percentage of memory in use: 87%
Total physical RAM: 447.17 MB
Available physical RAM: 53.94 MB
Total Pagefile: 1054.38 MB
Available Pagefile: 228.83 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.95 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:74.53 GB) (Free:60.62 GB) NTFS ==>[Drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 74.5 GB) (Disk ID: A8D32665)
Partition 1: (Active) - (Size=74.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================

#6 Příspěvek od **altrok** » 19 lis 2014 17:47

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [155648 2009-04-17] (Apple Computer, Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-30] (Piriform Ltd)
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {0f67d1b2-bfba-11e3-baf2-aad7544b45ad} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {11dad0ca-8dc4-11e3-ba93-001bfc3dd402} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {1726f2b0-d41f-11e3-bb1e-dbbcf9b44b3a} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {18c5b121-c1e8-11e2-b843-001bfc3dd402} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {ade54870-bfb4-11e3-baf1-84aee2687244} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {eb25e368-ab41-11dc-a529-001bfc3dd402} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Ghost.pif
Startup: C:\Documents and Settings\-\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk

HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=UP21&ocid=UP21DHP&dt=043013
SearchScopes: HKU\S-1-5-21-1229272821-2139871995-1417001333-1004 -> DefaultScope {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} URL =
SearchScopes: HKU\S-1-5-21-1229272821-2139871995-1417001333-1004 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
BHO: No Name -> {D3626E66-B13B-C628-ACDF-BDABCFA265E1} -> No File
ShellExecuteHooks: - {0FAD2E16-C8EF-5AC1-1E6A-AE3FD8EF56B3} - No File [ ]

FF SearchEngineOrder.3: Bing 
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP21DF& ... =043013&q=
FF NetworkProxy: "type", 4

CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\38.0.2125.111\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Google Gears 0.5.33.0) - C:\Program Files\Google\Chrome\Application\38.0.2125.111\gears.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File

S4 IntelIde; No ImagePath
2014-11-19 13:45 - 2014-11-19 14:41 - 00000000 ____D () C:\Program Files\trend micro

Task: C:\WINDOWS\Tasks\At1.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\At2.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\At3.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\At4.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
Hosts:
EmptyTemp:
End

mikizloku · #7 Příspěvek od **mikizloku** » 19 lis 2014 18:33

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 19-11-2014
Ran by - at 2014-11-19 18:18:35 Run:1
Running from C:\Documents and Settings\-\My Documents\Downloads
Loaded Profile: - (Available profiles: -)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [155648 2009-04-17] (Apple Computer, Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-30] (Piriform Ltd)
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {0f67d1b2-bfba-11e3-baf2-aad7544b45ad} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {11dad0ca-8dc4-11e3-ba93-001bfc3dd402} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {1726f2b0-d41f-11e3-bb1e-dbbcf9b44b3a} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {18c5b121-c1e8-11e2-b843-001bfc3dd402} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {ade54870-bfb4-11e3-baf1-84aee2687244} - D:\AutoRun.exe
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\...\MountPoints2: {eb25e368-ab41-11dc-a529-001bfc3dd402} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Ghost.pif
Startup: C:\Documents and Settings\-\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk

HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=UP21&ocid=UP21DHP&dt=043013
SearchScopes: HKU\S-1-5-21-1229272821-2139871995-1417001333-1004 -> DefaultScope {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} URL =
SearchScopes: HKU\S-1-5-21-1229272821-2139871995-1417001333-1004 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
BHO: No Name -> {D3626E66-B13B-C628-ACDF-BDABCFA265E1} -> No File
ShellExecuteHooks: - {0FAD2E16-C8EF-5AC1-1E6A-AE3FD8EF56B3} - No File [ ]

FF SearchEngineOrder.3: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP21DF& ... =043013&q=
FF NetworkProxy: "type", 4

CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\38.0.2125.111\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Google Gears 0.5.33.0) - C:\Program Files\Google\Chrome\Application\38.0.2125.111\gears.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File

S4 IntelIde; No ImagePath
2014-11-19 13:45 - 2014-11-19 14:41 - 00000000 ____D () C:\Program Files\trend micro

Task: C:\WINDOWS\Tasks\At1.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\At2.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\At3.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\At4.job => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Run\\MSMSGS => value deleted successfully.
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value deleted successfully.
"HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0f67d1b2-bfba-11e3-baf2-aad7544b45ad}" => Key deleted successfully.
"HKCR\CLSID\{0f67d1b2-bfba-11e3-baf2-aad7544b45ad}" => Key not found.
"HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11dad0ca-8dc4-11e3-ba93-001bfc3dd402}" => Key deleted successfully.
"HKCR\CLSID\{11dad0ca-8dc4-11e3-ba93-001bfc3dd402}" => Key not found.
"HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1726f2b0-d41f-11e3-bb1e-dbbcf9b44b3a}" => Key deleted successfully.
"HKCR\CLSID\{1726f2b0-d41f-11e3-bb1e-dbbcf9b44b3a}" => Key not found.
"HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{18c5b121-c1e8-11e2-b843-001bfc3dd402}" => Key deleted successfully.
"HKCR\CLSID\{18c5b121-c1e8-11e2-b843-001bfc3dd402}" => Key not found.
"HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ade54870-bfb4-11e3-baf1-84aee2687244}" => Key deleted successfully.
"HKCR\CLSID\{ade54870-bfb4-11e3-baf1-84aee2687244}" => Key not found.
"HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{eb25e368-ab41-11dc-a529-001bfc3dd402}" => Key deleted successfully.
"HKCR\CLSID\{eb25e368-ab41-11dc-a529-001bfc3dd402}" => Key not found.
C:\Documents and Settings\-\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk => Moved successfully.
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-21-1229272821-2139871995-1417001333-1004\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\ToolbarSearchProviderProgress => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3626E66-B13B-C628-ACDF-BDABCFA265E1}" => Key deleted successfully.
"HKCR\CLSID\{D3626E66-B13B-C628-ACDF-BDABCFA265E1}" => Key deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{0FAD2E16-C8EF-5AC1-1E6A-AE3FD8EF56B3} => value deleted successfully.
"HKCR\CLSID\{0FAD2E16-C8EF-5AC1-1E6A-AE3FD8EF56B3}" => Key deleted successfully.
Firefox SearchEngineOrder.3 deleted successfully.
Firefox Keyword.URL deleted successfully.
Firefox Proxy settings were reset.
C:\Program Files\Google\Chrome\Application\38.0.2125.111\gcswf32.dll not found.
C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll not found.
C:\Program Files\Google\Chrome\Application\38.0.2125.111\gears.dll not found.
C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll not found.
C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll not found.
IntelIde => Service deleted successfully.
C:\Program Files\trend micro => Moved successfully.
C:\WINDOWS\Tasks\At1.job => Moved successfully.
C:\WINDOWS\Tasks\At2.job => Moved successfully.
C:\WINDOWS\Tasks\At3.job => Moved successfully.
C:\WINDOWS\Tasks\At4.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job => Moved successfully.
C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 9.7 GB temporary data.

The system needed a reboot.

==== End of Fixlog ====

#8 Příspěvek od **altrok** » 19 lis 2014 19:03

Drzte se presne navodu! Win XP neni podporovan novou verzi 2.0

Stahnete a nainstalujte MBAM 1.75 http://www.bleepingcomputer.com/downloa ... i-malware/
na konci instalace zruste zatrzitko u polozky Povolit bezplatnou zkusebni verzi Malwarebytes Anti-Malware PRO
ted je dulezity krok - stahuje se aktualizace celeho programu a na konci vyskoci hlaska - zvolte Cancel, pripadne Zrusit
jako dalsi se sama stahla aktualizace virove databaze a dava Vam jedinou moznost -> OK
opet je Vam nabizena aktualizace celeho programu -> zvolte opet Cancel
v zalozce Kontrolor vyberte moznost Kompletni kontrola a kliknete na Prohledat
po dokonceni skenovani, ktere se muze protahnout az na nekolik hodin, na Vas vyskoci log, ktery mi zkopirujte do pristi odpovedi... pripadne jej najdete v karte Slozka protokolu

mikizloku · #9 Příspěvek od **mikizloku** » 19 lis 2014 22:12

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2014.11.19.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
- :: STAMOL [administrátor]

19.11.2014 20:09:17
MBAM-log-2014-11-19 (22-08-45).txt

Typ kontroly: Úplná kontrola (C:\|E:\|G:\|)
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 332405
Uplynutý čas: 1 hod, 51 min, 7 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 0
(Škodlivé položky neboli zistené)

Detegované registračné hodnoty: 2
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{338B4DFE-2E2C-4338-9E41-E176D497299E} (PUP.Optional.BestToolbar.A) -> Dáta: -> Žiadna úloha nevykonaná.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ShellBrowser|{338B4DFE-2E2C-4338-9E41-E176D497299E} (PUP.Optional.BestToolbar.A) -> Dáta: ䷾㎋⸬䌸䆞盡韔鸩 -> Žiadna úloha nevykonaná.

Detegované položky registračných dát: 1
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Škodlivý: (1) Dobrý: (0) -> Žiadna úloha nevykonaná.

Detegované priečinky: 0
(Škodlivé položky neboli zistené)

Detegované súbory: 0
(Škodlivé položky neboli zistené)

(koniec)

#10 Příspěvek od **altrok** » 19 lis 2014 22:30

Nalezy smazte/presunte do karanteny.

Zlepsil se stav PC alespon trochu?

mikizloku · #11 Příspěvek od **mikizloku** » 19 lis 2014 23:04

Áno. Ďakujem a pekný večer prajem. M.

#12 Příspěvek od **altrok** » 19 lis 2014 23:05

Takze jeste uklidime.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

VIRY.CZ

RSIT

RSIT

Re: RSIT

Re: RSIT

Re: RSIT

Re: RSIT

Re: RSIT

Re: RSIT

Re: RSIT

Re: RSIT

Re: RSIT

Re: RSIT

Re: RSIT