VIRY.CZ

Zdravím,
prosím Vás o kontrolu netbooku AspireOne, který nepatří mě, ale mojí mamince, stěžuje si, že pracuje velmi pomalu. Programů tam moc nainstalovaných nemá, ale je dost možné, že ji nějaký vir pc napadl. Prosíme o pomoc a děkujeme.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Dana at 2015-02-07 15:57:53
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 87 GB (60%) free of 145 GB
Total RAM: 1014 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:58:11, on 7.2.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\WebCam\M3000\M3000Mnt.exe
C:\WINDOWS\WebCam\S6000\S6000Mnt.exe
C:\WINDOWS\system32\igfxext.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Documents and Settings\Dana\Data aplikací\Search Protection\SP.EXE
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\C2MP\UpdateChecker.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Dana\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Dana.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... aspire_one
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... aspire_one
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://homepage.acer.com/rdr.aspx?b=ACA ... aspire_one
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Extensions - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O3 - Toolbar: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (file missing)
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [M3000Mnt] Rundll32.exe M3000Rmv.dll ,WinMainRmv /StartStillMnt
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [S6000Mnt] Rundll32.exe S6000Rmv.dll ,WinMainRmv /StartStillMnt
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Browser Extensions] "C:\Documents and Settings\Dana\Data aplikací\Browser Extensions\CouponsHelper.exe"
O4 - HKCU\..\Run: [Search Protection] "C:\Documents and Settings\Dana\Data aplikací\Search Protection\SP.EXE" /autostart
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Documents and Settings\Dana\Data aplikací\Seznam.cz\szninstall.exe" -c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3485517607-2966927733-1597234714-1006\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Mirek')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: CodecPackUpdateChecker.lnk = C:\WINDOWS\system32\C2MP\UpdateChecker.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe

--
End of file - 9783 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-12-18 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Surfing Protection - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2014-10-17 669984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{10921475-03CE-4E04-90CE-E2E7EF20C814} - ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-15 178712]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-28 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-28 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-28 137752]
"AzMixerSel"=C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [2006-01-25 53248]
"LManager"=C:\PROGRA~1\LAUNCH~1\LManager.exe [2008-12-30 875016]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2008-04-14 208952]
"MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2008-04-14 59392]
"PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-14 455168]
"PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-14 455168]
"M3000Mnt"=M3000Rmv.dll ,WinMainRmv /StartStillMnt []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-23 5227112]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"S6000Mnt"=S6000Rmv.dll ,WinMainRmv /StartStillMnt []
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2015-01-18 20145368]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Browser Extensions"=C:\Documents and Settings\Dana\Data aplikací\Browser Extensions\CouponsHelper.exe [2015-01-06 544720]
"Search Protection"=C:\Documents and Settings\Dana\Data aplikací\Search Protection\SP.EXE [2015-01-16 1128760]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
"cz.seznam.software.autoupdate"=C:\Documents and Settings\Dana\Data aplikací\Seznam.cz\szninstall.exe [2013-05-16 1062472]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
CodecPackUpdateChecker.lnk - C:\WINDOWS\system32\C2MP\UpdateChecker.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-14 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"vidc.xvid"=xvidvfw.dll
"vidc.x264"=x264vfw.dll
"vidc.lags"=lagarith.dll
"msacm.divxa32"=DivXa32.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2015-02-07 15:57:54 ----D---- C:\Program Files\trend micro
2015-02-07 15:57:53 ----D---- C:\rsit
2015-02-07 15:19:38 ----D---- C:\Documents and Settings\Dana\Data aplikací\Apple Computer
2015-02-05 12:31:07 ----D---- C:\WINDOWS\Minidump
2015-01-18 20:27:50 ----D---- C:\Documents and Settings\Dana\Data aplikací\ProductData
2015-01-18 20:23:23 ----D---- C:\Documents and Settings\Dana\Data aplikací\IObit
2015-01-18 17:50:51 ----A---- C:\WINDOWS\SchedLgU.Txt
2015-01-18 17:36:45 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-18 17:34:15 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-01-18 17:34:14 ----A---- C:\WINDOWS\system32\RtkCoLDRXP.dll
2015-01-18 17:34:13 ----A---- C:\WINDOWS\system32\RtkCoInstIIXP.dll
2015-01-18 17:22:32 ----A---- C:\WINDOWS\system32\S6000DIF.dll
2015-01-18 17:22:32 ----A---- C:\WINDOWS\system32\drivers\S6000KNT.sys
2015-01-18 17:22:32 ----A---- C:\WINDOWS\S6000Twn.src
2015-01-18 17:22:32 ----A---- C:\WINDOWS\S6000Twn.ini
2015-01-18 17:16:09 ----A---- C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-01-18 17:15:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-01-18 17:14:48 ----D---- C:\Program Files\Common Files\IObit
2015-01-18 17:12:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\ProductData
2015-01-18 17:11:51 ----A---- C:\WINDOWS\system32\drivers\HWiNFO32.SYS
2015-01-18 17:06:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2015-01-18 17:06:14 ----D---- C:\Program Files\IObit
2015-01-11 22:14:43 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2015-01-11 20:11:27 ----D---- C:\Program Files\HTC
2015-01-11 20:09:41 ----D---- C:\Temp
2015-01-11 20:09:33 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2015-01-11 20:09:03 ----A---- C:\WINDOWS\system32\ptpusb.dll
2015-01-11 20:08:57 ----A---- C:\WINDOWS\system32\ptpusd.dll

======List of files/folders modified in the last 1 month======

2015-02-07 15:57:54 ----D---- C:\Program Files
2015-02-07 15:53:39 ----D---- C:\Documents and Settings\Dana\Data aplikací\Seznam.cz
2015-02-07 15:46:46 ----D---- C:\WINDOWS\Temp
2015-02-07 15:44:07 ----D---- C:\WINDOWS
2015-02-07 15:43:51 ----D---- C:\WINDOWS\Debug
2015-02-07 15:42:23 ----D---- C:\WINDOWS\system32\CatRoot2
2015-02-07 15:35:28 ----HD---- C:\WINDOWS\inf
2015-02-07 15:34:59 ----AD---- C:\WINDOWS\system32
2015-02-07 15:28:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-02-07 15:26:56 ----D---- C:\WINDOWS\system32\drivers
2015-02-07 15:26:01 ----SHD---- C:\WINDOWS\Installer
2015-02-07 15:26:01 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-02-07 15:25:27 ----SD---- C:\WINDOWS\Tasks
2015-02-07 15:25:02 ----D---- C:\WINDOWS\Screensavers
2015-02-07 15:23:05 ----D---- C:\WINDOWS\system32\ReinstallBackups
2015-02-07 15:14:32 ----D---- C:\WINDOWS\Prefetch
2015-01-30 20:42:03 ----D---- C:\Documents and Settings\Dana\Data aplikací\Browser Extensions
2015-01-18 17:52:00 ----D---- C:\WINDOWS\SoftwareDistribution
2015-01-18 17:35:05 ----D---- C:\WINDOWS\system32\RTCOM
2015-01-18 17:34:50 ----RSHDC---- C:\WINDOWS\system32\dllcache
2015-01-18 17:34:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-01-18 17:34:07 ----A---- C:\WINDOWS\vncutil.exe
2015-01-18 17:34:06 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2015-01-18 17:34:06 ----A---- C:\WINDOWS\RtlUpd.exe
2015-01-18 17:34:05 ----A---- C:\WINDOWS\RTLCPL.EXE
2015-01-18 17:34:01 ----A---- C:\WINDOWS\RtkAudioService.exe
2015-01-18 17:34:01 ----A---- C:\WINDOWS\RTHDCPL.EXE
2015-01-18 17:33:57 ----A---- C:\WINDOWS\MicCal.exe
2015-01-18 17:33:55 ----A---- C:\WINDOWS\ALCWZRD.EXE
2015-01-18 17:33:54 ----A---- C:\WINDOWS\ALCMTR.EXE
2015-01-18 17:27:24 ----D---- C:\WINDOWS\WebCam
2015-01-18 17:27:24 ----D---- C:\WINDOWS\system
2015-01-18 17:27:23 ----D---- C:\WINDOWS\twain_32
2015-01-18 17:14:48 ----D---- C:\Program Files\Common Files
2015-01-16 11:13:51 ----D---- C:\WINDOWS\system32\MRT
2015-01-16 10:56:27 ----A---- C:\WINDOWS\system32\MRT.exe
2015-01-11 22:58:10 ----D---- C:\WINDOWS\system32\config

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 agpCPQ;Filtr Compaq sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
R0 alim1541;Filtr ALI sběrnice AGP; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
R0 amdagp;Ovladač filtru AMD portu AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-12-18 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-12-18 206248]
R0 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2008-04-14 13952]
R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2015-01-18 331288]
R0 sisagp;Filtr SIS sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
R0 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-12-18 55240]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-12-18 787800]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-12-18 423784]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-12-18 57928]
R1 DritekPortIO;Dritek General Port I/O; \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys []
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-12-18 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-12-18 70384]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-03-23 37424]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-11-05 879528]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\DKbFltr.sys [2004-12-08 16896]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2015-01-18 5630168]
R3 L1c;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1c51x86.sys [2015-01-18 89680]
R3 S6000KNT;S6000KNT_WebCam Driver; C:\WINDOWS\System32\Drivers\S6000KNT.sys [2015-01-18 3361408]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2015-01-18 1691480]
S3 AR5416;Qualcomm Atheros Wireless Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys []
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-11-05 539576]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-06-29 156392]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2007-03-31 55352]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-08-27 74656]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 htcnprot;HTC NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [2013-10-17 21248]
S3 int15.sys;int15.sys; \??\c:\acernb\int15.sys []
S3 M3000Srv;WebCam Driver; C:\WINDOWS\System32\Drivers\M3000KNT.sys [2009-01-02 145408]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2015-01-18 1395800]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RTS5121.sys []
S3 Rts516xIR;Realtek IR Driver; C:\WINDOWS\system32\DRIVERS\Rts516xIR.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\WINDOWS\system32\DRIVERS\Rts5161ccid.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-17 123008]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-18 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-11-01 264800]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-15 354840]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2013-10-17 166912]
R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [2009-02-05 237568]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268288]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-09-30 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-18 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-09-30 116648]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Zdravim

Odinstalujte Seznam Software a vsechno od IObitu.

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Spustte jako spravce C:\Program Files\trend micro\Dana.exe

• kliknete na Do a system scan only
• zatrhnete (udelejte fajfku) nasledujici polozky
  • O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-21-3485517607-2966927733-1597234714-1006\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Mirek')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
• kliknete na Fix checked

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )

• ukoncete vsechny programy
• kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
• kliknete na Scan, pote na Clean
• po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

prosím Vás o radu, co znamená Váš pokyn: "Smazat vše od IObitu"? v programech při odinstalování jsem nic takového nenašla!

Oprava:
v proramu files jsem našla složku "IOBIT" a tam bylo asi 6 podsložek, které jsem tedy ručně odstranila včetně IOBiT složky, jinak ty programy jsem na ploše ani v panelu rychlého spuštění nikde neviděla!

Při dalším Vašem kroku abych spustila složku "Dana.exe" jako správně se mi při kliknutím pravým tlačítkem zobrazují pouze možnosti " spustit jako aktuální uživatel "dana" a nebo druhá možnost je " následující uživatel, kde musím vyplnit už.jméno a heslo a správce tu nikde bohužel nevidím, s OS XP nepracuji už x let, a zjištuji, že nevím základní věci, prosím poraďte. děkuji

zde log z AdwCleaner

# AdwCleaner v4.110 - Logfile created 07/02/2015 at 18:23:16
# Updated 05/02/2015 by Xplode
# Database : 2015-02-05.2 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Dana - RODINA
# Running from : C:\Documents and Settings\Dana\Plocha\adwcleaner_4.110.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\Dana\Data aplikací\Browser Extensions
Folder Deleted : C:\Documents and Settings\Dana\Data aplikací\Search Protection

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Search Protection]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Extensions]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{92780B25-18CC-41C8-B9BE-3C9C571A8263}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{92780B25-18CC-41C8-B9BE-3C9C571A8263}
Key Deleted : HKCU\Software\AppDataLow\Software\Search Protection
Key Deleted : HKCU\Software\AppDataLow\Software\Browser Extensions
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Search Protection
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{3A787631-66A2-4634-B928-A37E73B58FB6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Protection

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Google Chrome v40.0.2214.111


*************************

AdwCleaner[R0].txt - [2641 bytes] - [07/02/2015 18:04:29]
AdwCleaner[S0].txt - [2606 bytes] - [07/02/2015 18:23:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2665 bytes] ##########

s16strnadova píše:Při dalším Vašem kroku abych spustila složku "Dana.exe" jako správně se mi při kliknutím pravým tlačítkem zobrazují pouze možnosti " spustit jako aktuální uživatel "dana" a nebo druhá možnost je " následující uživatel, kde musím vyplnit už.jméno a heslo a správce tu nikde bohužel nevidím, s OS XP nepracuji už x let, a zjištuji, že nevím základní věci, prosím poraďte. děkuji

V pripade Win XP staci spustit obycejne dvojklikem.


Dejte pak log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

chci se zeptat, je normální, že test pomocí FRSTlauncher.exe běžel asi 2 minuty a poté zamrzl, a asi už hodinu a půl se nic neděje ? Vidím, že chvílema poblikává světílko, že netbook pracuje, ale nic se stále neděje, mám to nechat přes noc běžet, nebo je někde nějaký problém?

Nastala chyba - akce ma trvat jen nekolik minut. Proces nasilne ukoncete a zkuste stejny postup provest znovu.

bohužel, opakovala jsem test a opět stejný problém, asi je něco na pc v nepořádku, mám vypnutý antivir, protože mi to nestále hlásilo chybu, že jde o vir....

Opakujte tento postup v nouzovem rezimu.

bohužel nastal stejný problém i v nouzovém režimu a vždy se to zasekne na stejném místě při kontrole procesu!



Ale všimla jsem si souboru "FRST.txt" na ploše, který tam vznikl a obsah zasílám:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-02-2015
Ran by Dana (administrator) on RODINA on 08-02-2015 12:09:34
Running from C:\Documents and Settings\Dana\Plocha
Loaded Profiles: Dana (Available profiles: Dana & Mirek)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Safe Mode (minimal)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(forum.viry.cz) C:\Documents and Settings\Dana\Plocha\FRSTLauncher.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
Failed to access process -> ping.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [178712 2008-04-15] (Intel Corporation)
HKLM\...\Run: [AzMixerSel] => C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [53248 2006-01-25] (Realtek Semiconductor Corp.)
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [875016 2008-12-30] (Dritek System Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [IMJPMIG8.1] => C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [208952 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [MSPY2002] => C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [59392 2008-04-14] ()
HKLM\...\Run: [PHIME2002ASync] => C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [PHIME2002A] => C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [M3000Mnt] => Rundll32.exe M3000Rmv.dll ,WinMainRmv /StartStillMnt
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-23] (AVAST Software)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [S6000Mnt] => Rundll32.exe S6000Rmv.dll ,WinMainRmv /StartStillMnt
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2015-01-18] (Realtek Semiconductor Corp.)
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5489944 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\...\MountPoints2: {5d278c7c-99c5-11e4-ac54-00235a8ffb95} - D:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-18\...\Run: [Advanced SystemCare 8] => "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\CodecPackUpdateChecker.lnk
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\WINDOWS\system32\C2MP\UpdateChecker.exe ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... aspire_one
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... aspire_one
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=i ... lz=1I7ACAW
SearchScopes: HKU\.DEFAULT -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3485517607-2966927733-1597234714-1005 -> DefaultScope {441F8156-AA45-4BD2-BCD3-2BD1A69F43D6} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
SearchScopes: HKU\S-1-5-21-3485517607-2966927733-1597234714-1005 -> {441F8156-AA45-4BD2-BCD3-2BD1A69F43D6} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
SearchScopes: HKU\S-1-5-21-3485517607-2966927733-1597234714-1005 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=i ... AW_csCZ608
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll No File
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
Toolbar: HKLM - ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-09-30]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-10-04]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-30]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-30]
CHR Extension: (Disk Google) - C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-30]
CHR Extension: (YouTube) - C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-30]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-30]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-30]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-30]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-30]
CHR Extension: (Gmail) - C:\Documents and Settings\Dana\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-30]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-18]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-18] (AVAST Software)
S2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
S2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [237568 2009-02-05] (Acer Incorporated) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 abp480n5; C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS [23552 2008-04-14] (Microsoft Corporation)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2015-01-18] (Creative)
S2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-12-18] ()
S2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2014-12-18] (AVAST Software)
S1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55240 2014-12-18] (AVAST Software)
S0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-12-18] ()
S1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787800 2014-12-18] (AVAST Software)
S1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [423784 2014-12-18] (AVAST Software)
S1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57928 2014-12-18] (AVAST Software)
S0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [206248 2014-12-18] ()
S3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [539576 2007-11-05] (Broadcom Corporation.)
S3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [37424 2007-03-23] (Broadcom Corporation.)
S3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [879528 2007-11-05] (Broadcom Corporation.)
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [156392 2007-06-29] (Broadcom Corporation.)
S3 btwhid; C:\WINDOWS\System32\DRIVERS\btwhid.sys [55352 2007-03-31] (Broadcom Corporation.)
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [74656 2007-08-27] (Broadcom Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S1 DritekPortIO; C:\Program Files\Launch Manager\DPortIO.sys [20112 2006-11-02] (Dritek System Inc.)
S1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2015-01-18] (REALiX(tm))
S3 L1c; C:\WINDOWS\System32\DRIVERS\l1c51x86.sys [89680 2015-01-18] (Atheros Communications, Inc.)
S3 M3000Srv; C:\WINDOWS\System32\Drivers\M3000KNT.sys [145408 2009-01-02] ()
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2015-01-18] (Creative Technology Ltd.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 S6000KNT; C:\WINDOWS\System32\Drivers\S6000KNT.sys [3361408 2015-01-18] (Windows (R) Win 7 DDK provider)
S3 AR5416; system32\DRIVERS\athw.sys [X]
S3 int15.sys; \??\c:\acernb\int15.sys [X]
S3 RSUSBSTOR; System32\Drivers\RTS5121.sys [X]
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-08 12:09 - 2015-02-08 12:09 - 00015327 _____ () C:\Documents and Settings\Dana\Plocha\LM.bat
2015-02-08 12:09 - 2015-02-08 12:06 - 01124352 _____ (Farbar) C:\Documents and Settings\Dana\Plocha\FRST.exe
2015-02-08 02:56 - 2015-02-08 02:56 - 00090112 _____ () C:\WINDOWS\Minidump\Mini020815-01.dmp
2015-02-08 00:15 - 2015-02-08 12:10 - 00013751 _____ () C:\Documents and Settings\Dana\Plocha\FRST.txt
2015-02-07 22:53 - 2015-02-08 12:09 - 00000000 ____D () C:\FRST
2015-02-07 22:50 - 2015-02-08 12:09 - 00029696 _____ () C:\Documents and Settings\Dana\Local Settings\Data aplikací\MSGBOX.EXE
2015-02-07 22:48 - 2015-02-08 00:12 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Dana\Plocha\FRSTLauncher.exe
2015-02-07 18:04 - 2015-02-07 18:23 - 00000000 ____D () C:\AdwCleaner
2015-02-07 18:01 - 2015-02-07 18:01 - 02112512 _____ () C:\Documents and Settings\Dana\Plocha\adwcleaner_4.110.exe
2015-02-07 15:57 - 2015-02-07 18:01 - 00000000 ____D () C:\Program Files\trend micro
2015-02-07 15:57 - 2015-02-07 15:58 - 00000000 ____D () C:\rsit
2015-02-07 15:57 - 2015-02-07 15:57 - 01107968 _____ () C:\Documents and Settings\Dana\Plocha\RSIT.exe
2015-02-07 15:44 - 2015-02-07 15:44 - 00000408 _____ () C:\WINDOWS\nsw.log
2015-02-07 15:35 - 2015-02-08 12:08 - 00012399 _____ () C:\WINDOWS\setupapi.log
2015-02-07 15:19 - 2015-02-07 15:19 - 00000000 ____D () C:\Documents and Settings\Dana\Data aplikací\Apple Computer
2015-02-05 12:31 - 2015-02-08 02:56 - 00000000 ____D () C:\WINDOWS\Minidump
2015-01-18 20:27 - 2015-01-25 22:11 - 00000000 ____D () C:\Documents and Settings\Dana\Data aplikací\ProductData
2015-01-18 20:23 - 2015-02-07 15:21 - 00000000 ____D () C:\Documents and Settings\Dana\Data aplikací\IObit
2015-01-18 17:51 - 2015-02-08 12:01 - 00000275 _____ () C:\WINDOWS\wiadebug.log
2015-01-18 17:50 - 2015-02-08 12:01 - 00032470 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-18 17:50 - 2015-02-08 11:57 - 00000048 _____ () C:\WINDOWS\wiaservc.log
2015-01-18 17:50 - 2015-01-18 17:50 - 00000000 ____N () C:\WINDOWS\Sti_Trace.log
2015-01-18 17:38 - 2015-01-18 17:38 - 00000000 ____D () C:\Documents and Settings\NetworkService\Data aplikací\IObit
2015-01-18 17:36 - 2015-02-08 02:07 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-18 17:36 - 2015-01-18 17:36 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-18 17:36 - 2015-01-18 17:36 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-18 17:34 - 2015-01-18 17:34 - 00087256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoInstIIXP.dll
2015-01-18 17:34 - 2015-01-18 17:34 - 00011368 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDRXP.dll
2015-01-18 17:34 - 2015-01-18 17:33 - 00026084 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-01-18 17:22 - 2015-01-18 17:22 - 03361408 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\S6000KNT.sys
2015-01-18 17:22 - 2015-01-18 17:22 - 00428632 _____ (ALi) C:\WINDOWS\system\S6000Dex.dll
2015-01-18 17:22 - 2015-01-18 17:22 - 00141912 _____ () C:\WINDOWS\system\S6000Vex.dll
2015-01-18 17:22 - 2015-01-18 17:22 - 00076376 _____ () C:\WINDOWS\system32\S6000DIF.dll
2015-01-18 17:22 - 2015-01-18 17:22 - 00064088 _____ (ALi) C:\WINDOWS\system\S6000Rmv.dll
2015-01-18 17:22 - 2015-01-18 17:22 - 00015190 _____ () C:\WINDOWS\S6000Twn.ini
2015-01-18 17:22 - 2015-01-18 17:22 - 00013448 _____ () C:\WINDOWS\S6000Twn.src
2015-01-18 17:22 - 2015-01-18 17:22 - 00012376 _____ () C:\WINDOWS\system\S6000Remov.exe
2015-01-18 17:18 - 2015-01-18 17:18 - 00000000 __SHD () C:\Documents and Settings\Mirek\PrivacIE
2015-01-18 17:16 - 2014-06-04 15:17 - 00031008 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-01-18 17:15 - 2015-01-18 17:15 - 00000000 ____D () C:\WINDOWS\Tasks\ImCleanDisabled
2015-01-18 17:15 - 2015-01-18 17:15 - 00000000 ____D () C:\Documents and Settings\Mirek\Data aplikací\ProductData
2015-01-18 17:15 - 2015-01-18 17:15 - 00000000 ____D () C:\Documents and Settings\Mirek\Data aplikací\Apple Computer
2015-01-18 17:15 - 2015-01-18 17:15 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-01-18 17:14 - 2015-01-18 17:14 - 00000885 _____ () C:\Documents and Settings\Mirek\Nabídka Start\Uninstall Programs.lnk
2015-01-18 17:14 - 2015-01-18 17:14 - 00000000 ____D () C:\Program Files\Common Files\IObit
2015-01-18 17:12 - 2015-02-07 15:19 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ProductData
2015-01-18 17:11 - 2015-01-18 17:11 - 00023840 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32.SYS
2015-01-18 17:06 - 2015-01-18 17:15 - 00000000 ____D () C:\Documents and Settings\Mirek\Data aplikací\IObit
2015-01-18 17:06 - 2015-01-18 17:15 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\IObit
2015-01-18 17:04 - 2015-01-18 17:04 - 00000000 ____D () C:\Documents and Settings\Mirek\Data aplikací\WinRAR
2015-01-11 22:14 - 2008-04-14 13:00 - 00010368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidusb.sys
2015-01-11 22:14 - 2008-04-14 13:00 - 00010368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2015-01-11 20:11 - 2015-01-11 20:11 - 00000000 ____D () C:\Program Files\HTC
2015-01-11 20:09 - 2015-02-07 15:27 - 00000000 ____D () C:\Temp
2015-01-11 20:09 - 2008-04-14 07:44 - 00058496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\redbook.sys
2015-01-11 20:09 - 2008-04-14 07:44 - 00058496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\redbook.sys
2015-01-11 20:09 - 2001-10-24 12:25 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpusb.dll
2015-01-11 20:08 - 2008-04-14 08:51 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpusd.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-08 12:10 - 2014-09-30 13:44 - 00000000 ____D () C:\Documents and Settings\Dana\Local Settings\Temp
2015-02-08 12:09 - 2014-09-30 13:44 - 00000000 ___HD () C:\Documents and Settings\Dana\Local Settings\Data aplikací
2015-02-08 12:09 - 2014-09-30 13:44 - 00000000 ____D () C:\Documents and Settings\Dana\Plocha
2015-02-08 12:01 - 2014-09-30 13:44 - 00000178 ___SH () C:\Documents and Settings\Dana\ntuser.ini
2015-02-08 12:01 - 2009-03-16 11:20 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-08 12:01 - 2009-03-16 11:16 - 01808179 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-08 11:57 - 2014-10-02 09:39 - 00000220 _____ () C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-02-08 11:57 - 2014-09-30 14:23 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-02-08 11:57 - 2014-09-30 14:05 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-08 02:27 - 2014-09-30 14:05 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-07 18:25 - 2014-12-30 10:39 - 00000000 ____D () C:\Documents and Settings\Dana\Data aplikací\Seznam.cz
2015-02-07 18:23 - 2014-10-02 07:48 - 00000178 ___SH () C:\Documents and Settings\Mirek\ntuser.ini
2015-02-07 18:23 - 2014-09-30 13:44 - 00000000 __RHD () C:\Documents and Settings\Dana\Data aplikací
2015-02-07 15:47 - 2014-10-02 07:48 - 00000000 ___RD () C:\Documents and Settings\Mirek\Dokumenty\Obrázky
2015-02-07 15:47 - 2014-10-02 07:48 - 00000000 ____D () C:\Documents and Settings\Mirek\Plocha
2015-02-07 15:47 - 2014-10-02 07:48 - 00000000 ____D () C:\Documents and Settings\Mirek\Local Settings\Temp
2015-02-07 15:30 - 2014-09-30 13:44 - 00000000 ____D () C:\Documents and Settings\Dana
2015-02-07 15:29 - 2009-03-16 12:12 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2015-02-07 15:28 - 2009-03-16 12:12 - 01034542 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-02-07 15:27 - 2009-03-16 12:12 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-02-07 15:26 - 2009-03-16 12:12 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-02-07 15:25 - 2014-09-30 13:52 - 00000000 ____D () C:\WINDOWS\Screensavers
2015-02-07 15:23 - 2009-03-16 12:01 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2015-02-06 23:33 - 2014-09-30 14:08 - 00001817 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-02-05 12:31 - 2014-12-21 15:59 - 00000374 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-01-18 21:54 - 2014-10-02 07:48 - 00000000 ____D () C:\Documents and Settings\Mirek
2015-01-18 17:38 - 2009-03-16 11:20 - 00000000 ____D () C:\Documents and Settings\NetworkService\Data aplikací
2015-01-18 17:35 - 2009-03-16 13:23 - 00000000 ____D () C:\WINDOWS\system32\RTCOM
2015-01-18 17:34 - 2009-03-16 13:23 - 20145368 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
2015-01-18 17:34 - 2009-03-16 13:23 - 09721960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RTLCPL.EXE
2015-01-18 17:34 - 2009-03-16 13:23 - 05630168 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtkHDAud.sys
2015-01-18 17:34 - 2009-03-16 13:23 - 01523416 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlUpd.exe
2015-01-18 17:34 - 2009-03-16 13:23 - 00891976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSndMgr.CPL
2015-01-18 17:34 - 2009-03-16 13:23 - 00359016 _____ (Realtek Semiconductor Crop.) C:\WINDOWS\vncutil.exe
2015-01-18 17:34 - 2009-03-16 13:23 - 00129640 _____ (Realtek Semiconductor) C:\WINDOWS\RtkAudioService.exe
2015-01-18 17:34 - 2009-03-16 13:23 - 00084584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE
2015-01-18 17:33 - 2009-03-16 13:23 - 02815592 _____ (RealTek Semicoductor Corp.) C:\WINDOWS\ALCWZRD.EXE
2015-01-18 17:33 - 2009-03-16 13:23 - 02180712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\MicCal.exe
2015-01-18 17:33 - 2009-03-16 13:23 - 01691480 _____ (Creative) C:\WINDOWS\system32\Drivers\Ambfilt.sys
2015-01-18 17:33 - 2009-03-16 13:23 - 01395800 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\Monfilt.sys
2015-01-18 17:33 - 2009-03-16 13:23 - 00285288 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\ALSNDMGR.CPL
2015-01-18 17:33 - 2009-03-16 13:23 - 00064104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\ALCMTR.EXE
2015-01-18 17:27 - 2009-03-16 12:06 - 00000000 ____D () C:\WINDOWS\twain_32
2015-01-18 17:27 - 2009-03-16 12:06 - 00000000 ____D () C:\WINDOWS\system
2015-01-18 17:22 - 2009-03-04 04:03 - 00089680 _____ (Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\l1c51x86.sys
2015-01-18 17:21 - 2009-03-16 20:05 - 00331288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStor.sys
2015-01-18 17:15 - 2014-10-02 07:48 - 00000000 __RHD () C:\Documents and Settings\Mirek\Data aplikací
2015-01-18 17:15 - 2014-10-02 07:48 - 00000000 ___HD () C:\Documents and Settings\Mirek\Šablony
2015-01-18 17:15 - 2009-03-16 12:12 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2015-01-18 17:14 - 2014-10-02 07:48 - 00000000 ___RD () C:\Documents and Settings\Mirek\Nabídka Start
2015-01-16 11:13 - 2014-11-02 18:42 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-16 10:56 - 2014-10-02 08:38 - 110348472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-11 23:55 - 2009-03-16 13:29 - 00065536 _____ () C:\WINDOWS\system32\config\ODiag.evt
2015-01-11 23:55 - 2009-03-16 11:25 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt

==================== Files in the root of some directories =======

2014-09-30 15:31 - 2014-10-11 20:39 - 0003584 ____C () C:\Documents and Settings\Dana\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-07 22:50 - 2015-02-08 12:09 - 0029696 _____ () C:\Documents and Settings\Dana\Local Settings\Data aplikací\MSGBOX.EXE

Some content of TEMP:
====================
C:\Documents and Settings\Dana\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Dana\Local Settings\Temp\SearchProtectionSetup.exe
C:\Documents and Settings\Dana\Local Settings\Temp\sqlite3.dll
C:\Documents and Settings\Dana\Local Settings\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

• Stahnete Crystal Disk Info (CDI) http://sourceforge.jp/frs/redir.php?m=j ... o6_2_2.zip
• archiv extrahujte a spustte vyextrahovany soubor DiskInfo.exe
• ve spustenem programu kliknete nahore na Upravy -> Kopirovat (log mate nyni zkopirovany ve schrance)
• log vlozte do dalsi odpovedi (Ctrl + V)

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CloseProcesses:
  HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [875016 2008-12-30] (Dritek System Inc.)
  HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
  HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
  HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5489944 2014-12-12] (Piriform Ltd)
  HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\...\MountPoints2: {5d278c7c-99c5-11e4-ac54-00235a8ffb95} - D:\HTC_Sync_Manager_PC.exe
  HKU\S-1-5-18\...\Run: [Advanced SystemCare 8] => "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
  
  SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
  SearchScopes: HKU\.DEFAULT -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-21-3485517607-2966927733-1597234714-1005 -> DefaultScope {441F8156-AA45-4BD2-BCD3-2BD1A69F43D6} URL = https://search.yahoo.com/search?fr=chr- ... =888596&p={searchTerms}
  SearchScopes: HKU\S-1-5-21-3485517607-2966927733-1597234714-1005 -> {441F8156-AA45-4BD2-BCD3-2BD1A69F43D6} URL = https://search.yahoo.com/search?fr=chr- ... =888596&p={searchTerms}
  SearchScopes: HKU\S-1-5-21-3485517607-2966927733-1597234714-1005 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_csCZ608
  BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll No File
  Toolbar: HKLM - ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll No File
  
  S3 AR5416; system32\DRIVERS\athw.sys [X]
  S3 int15.sys; \??\c:\acernb\int15.sys [X]
  S3 RSUSBSTOR; System32\Drivers\RTS5121.sys [X]
  S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [X]
  S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]
  
  2015-02-08 12:09 - 2015-02-08 12:09 - 00015327 _____ () C:\Documents and Settings\Dana\Plocha\LM.bat
  2015-02-07 22:50 - 2015-02-08 12:09 - 00029696 _____ () C:\Documents and Settings\Dana\Local Settings\Data aplikací\MSGBOX.EXE
  2015-02-07 18:04 - 2015-02-07 18:23 - 00000000 ____D () C:\AdwCleaner
  2015-02-07 18:01 - 2015-02-07 18:01 - 02112512 _____ () C:\Documents and Settings\Dana\Plocha\adwcleaner_4.110.exe
  2015-02-07 15:57 - 2015-02-07 18:01 - 00000000 ____D () C:\Program Files\trend micro
  2015-02-07 15:57 - 2015-02-07 15:58 - 00000000 ____D () C:\rsit
  2015-02-07 15:57 - 2015-02-07 15:57 - 01107968 _____ () C:\Documents and Settings\Dana\Plocha\RSIT.exe
  2015-01-18 17:38 - 2015-01-18 17:38 - 00000000 ____D () C:\Documents and Settings\NetworkService\Data aplikací\IObit
  2015-01-18 17:14 - 2015-01-18 17:14 - 00000000 ____D () C:\Program Files\Common Files\IObit
  2015-01-18 17:06 - 2015-01-18 17:15 - 00000000 ____D () C:\Documents and Settings\Mirek\Data aplikací\IObit
  2015-01-18 17:06 - 2015-01-18 17:15 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\IObit
  
  Folder: C:\Windows\Tasks
  C:\Program Files\IObit
  Hosts:
  EmptyTemp:
  End
  

Zkuste pak udelat log pomoci samotneho FRST.exe (bez FRSTLauncheru), jestli se opet zasekne.

----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Home Edition SP3 [5.1 Build 2600] (x86)
Date : 2015/02/08 15:08:44

-- Controller Map ----------------------------------------------------------
+ Intel(R) 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF [ATA]
- Primární kanál IDE (0)
+ Intel(R) ICH7M/MDH SATA AHCI Controller [ATA]
- ST9160310AS

-- Disk List ---------------------------------------------------------------
(1) ST9160310AS : 160,0 GB [0/0/0, pd1] - st

----------------------------------------------------------------------------
(1) ST9160310AS
----------------------------------------------------------------------------
Model : ST9160310AS
Firmware : 0303
Serial Number : 5SV6MZX9
Disk Size : 160,0 GB (8,4/137,4/160,0/160,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 312581808
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 8812 hod.
Power On Count : 8065 krát
Temperature : 41 C (105 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 113 _99 __6 0000034D0B81 Počet chyb čtení
03 _99 _96 __0 000000000000 Čas na roztočení ploten
04 _93 _93 _20 000000001F8F Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _81 _60 _30 000008F971AF Počet chybných hledání
09 _90 _90 __0 00000000226C Hodin v činnosti
0A 100 100 _97 000000000001 Počet opakovaných pokusů o roztočení ploten
0C _93 _93 _20 000000001F81 Počet cyklů zapnutí zařízení
B8 100 100 _99 000000000000 Ukončovacích chyb
BB _98 _98 __0 000000000002 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _59 _51 _45 000029200029 Teplota toku vzduchu
BF 100 100 __0 000000000283 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000057 Počet vypnutí disku
C1 _31 _31 __0 000000021D4D Počet cyklů načítání/vymazání
C2 _41 _49 __0 FFFF00000029 Teplota
C3 _57 _49 __0 0000034D0B81 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 3553 5636 4D5A 5839
020: 0000 4000 0004 3033 3033 2020 2020 5354 3931 3630
030: 3331 3041 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0506 0000 0048 0048
080: 01F0 0029 346B 7D09 61E3 3469 BC09 61E3 407F 001B
090: 001B 8080 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 9EB0 12A1 0000 0000 0000 0000 0000 0000 5000 C500
110: 15FD 4B08 0000 0000 0000 0000 0000 0000 0000 400E
120: 400E 0000 0000 0000 0000 0000 0000 0000 0021 9EB0
130: 12A1 9EB0 12A1 0000 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 000F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 3400 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0002 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 04A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 71 63 81 0B 4D 03 00 00 00 03 03
010: 00 63 60 00 00 00 00 00 00 00 04 32 00 5D 5D 8F
020: 1F 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 51 3C AF 71 F9 08 00 00 00 09 32
040: 00 5A 5A 6C 22 00 00 00 00 00 0A 13 00 64 64 01
050: 00 00 00 00 00 00 0C 32 00 5D 5D 81 1F 00 00 00
060: 00 00 B8 32 00 64 64 00 00 00 00 00 00 00 BB 32
070: 00 62 62 02 00 00 00 00 00 00 BC 32 00 64 64 00
080: 00 00 00 00 00 00 BD 3A 00 64 64 00 00 00 00 00
090: 00 00 BE 22 00 3B 33 29 00 20 29 00 00 00 BF 32
0A0: 00 64 64 83 02 00 00 00 00 00 C0 32 00 64 64 57
0B0: 00 00 00 00 00 00 C1 32 00 1F 1F 4D 1D 02 00 00
0C0: 00 00 C2 22 00 29 31 29 00 00 00 FF FF 00 C3 1A
0D0: 00 39 31 81 0B 4D 03 00 00 00 C5 12 00 64 64 00
0E0: 00 00 00 00 00 00 C6 10 00 64 64 00 00 00 00 00
0F0: 00 00 C7 3E 00 C8 C8 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 C8 02 00 73
170: 03 00 01 00 01 3E 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 87 15 00 00 04 01 01 01 01 01 01 01
190: 01 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 83 02 00 00 84 56 69 74 DA 1C 00 00
1B0: 00 00 00 00 01 00 35 07 26 7F 06 9E 6A 33 01 00
1C0: FA 3F FB 4E 0E 4B 0C 00 00 00 00 00 9A 6B 06 00
1D0: 00 00 00 00 00 00 00 00 4F 04 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 69

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B8 63 00 00 00 00 00 00 00 00 00 00 BB 00
070: 00 00 00 00 00 00 00 00 00 00 BC 00 00 00 00 00
080: 00 00 00 00 00 00 BD 00 00 00 00 00 00 00 00 00
090: 00 00 BE 2D 00 00 00 00 00 00 00 00 00 00 BF 00
0A0: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
0B0: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
0C0: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C3 00
0D0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0E0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0F0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 A1

zde je fixlog:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 07-02-2015
Ran by Dana at 2015-02-08 15:12:54 Run:2
Running from C:\Documents and Settings\Dana\Plocha
Loaded Profiles: Dana (Available profiles: Dana & Mirek)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [875016 2008-12-30] (Dritek System Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5489944 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\...\MountPoints2: {5d278c7c-99c5-11e4-ac54-00235a8ffb95} - D:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-18\...\Run: [Advanced SystemCare 8] => "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto

SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=i ... lz=1I7ACAW
SearchScopes: HKU\.DEFAULT -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3485517607-2966927733-1597234714-1005 -> DefaultScope {441F8156-AA45-4BD2-BCD3-2BD1A69F43D6} URL = https://search.yahoo.com/search?fr=chr- ... =888596&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3485517607-2966927733-1597234714-1005 -> {441F8156-AA45-4BD2-BCD3-2BD1A69F43D6} URL = https://search.yahoo.com/search?fr=chr- ... =888596&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3485517607-2966927733-1597234714-1005 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=i ... AW_csCZ608
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll No File
Toolbar: HKLM - ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll No File

S3 AR5416; system32\DRIVERS\athw.sys [X]
S3 int15.sys; \??\c:\acernb\int15.sys [X]
S3 RSUSBSTOR; System32\Drivers\RTS5121.sys [X]
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]

2015-02-08 12:09 - 2015-02-08 12:09 - 00015327 _____ () C:\Documents and Settings\Dana\Plocha\LM.bat
2015-02-07 22:50 - 2015-02-08 12:09 - 00029696 _____ () C:\Documents and Settings\Dana\Local Settings\Data aplikací\MSGBOX.EXE
2015-02-07 18:04 - 2015-02-07 18:23 - 00000000 ____D () C:\AdwCleaner
2015-02-07 18:01 - 2015-02-07 18:01 - 02112512 _____ () C:\Documents and Settings\Dana\Plocha\adwcleaner_4.110.exe
2015-02-07 15:57 - 2015-02-07 18:01 - 00000000 ____D () C:\Program Files\trend micro
2015-02-07 15:57 - 2015-02-07 15:58 - 00000000 ____D () C:\rsit
2015-02-07 15:57 - 2015-02-07 15:57 - 01107968 _____ () C:\Documents and Settings\Dana\Plocha\RSIT.exe
2015-01-18 17:38 - 2015-01-18 17:38 - 00000000 ____D () C:\Documents and Settings\NetworkService\Data aplikací\IObit
2015-01-18 17:14 - 2015-01-18 17:14 - 00000000 ____D () C:\Program Files\Common Files\IObit
2015-01-18 17:06 - 2015-01-18 17:15 - 00000000 ____D () C:\Documents and Settings\Mirek\Data aplikací\IObit
2015-01-18 17:06 - 2015-01-18 17:15 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\IObit

Folder: C:\Windows\Tasks
C:\Program Files\IObit
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\LManager => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => Value not found.
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => Value not found.
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5d278c7c-99c5-11e4-ac54-00235a8ffb95} => Key not found.
HKCR\CLSID\{5d278c7c-99c5-11e4-ac54-00235a8ffb95} => Key not found.
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\Advanced SystemCare 8 => Value not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Key not found.
HKCR\CLSID\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Key not found.
HKCR\CLSID\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Key not found.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{441F8156-AA45-4BD2-BCD3-2BD1A69F43D6} => Key not found.
HKCR\CLSID\{441F8156-AA45-4BD2-BCD3-2BD1A69F43D6} => Key not found.
HKU\S-1-5-21-3485517607-2966927733-1597234714-1005\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Key not found.
HKCR\CLSID\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} => Key not found.
HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{10921475-03CE-4E04-90CE-E2E7EF20C814} => Value not found.
HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} => Key not found.
AR5416 => Service not found.
int15.sys => Service not found.
RSUSBSTOR => Service not found.
Rts516xIR => Service not found.
USBCCID => Service not found.
"C:\Documents and Settings\Dana\Plocha\LM.bat" => File/Directory not found.
"C:\Documents and Settings\Dana\Local Settings\Data aplikací\MSGBOX.EXE" => File/Directory not found.
"C:\AdwCleaner" => File/Directory not found.
"C:\Documents and Settings\Dana\Plocha\adwcleaner_4.110.exe" => File/Directory not found.
"C:\Program Files\trend micro" => File/Directory not found.
"C:\rsit" => File/Directory not found.
"C:\Documents and Settings\Dana\Plocha\RSIT.exe" => File/Directory not found.
"C:\Documents and Settings\NetworkService\Data aplikací\IObit" => File/Directory not found.
"C:\Program Files\Common Files\IObit" => File/Directory not found.
"C:\Documents and Settings\Mirek\Data aplikací\IObit" => File/Directory not found.
"C:\Documents and Settings\All Users\Data aplikací\IObit" => File/Directory not found.

========================= Folder: C:\Windows\Tasks ========================

2015-01-18 17:36 - 2015-02-08 15:07 - 0000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-30 14:23 - 2015-02-08 15:05 - 0000364 ____H () C:\Windows\Tasks\avast! Emergency Update.job
2009-03-16 20:01 - 2008-04-14 13:00 - 0000065 ___RH () C:\Windows\Tasks\desktop.ini
2014-09-30 14:05 - 2015-02-08 15:05 - 0000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-30 14:05 - 2015-02-08 14:27 - 0000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-02 09:39 - 2015-02-08 15:00 - 0000214 _____ () C:\Windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2014-10-02 09:39 - 2015-02-08 15:05 - 0000220 _____ () C:\Windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2009-03-16 11:20 - 2015-02-08 12:16 - 0000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-18 17:15 - 2015-01-18 17:15 - 0000000 ____D () C:\Windows\Tasks\ImCleanDisabled

====== End of Folder: ======

"C:\Program Files\IObit" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 370 MB temporary data.


The system needed a reboot.

==== End of Fixlog 15:13:21 ====

při spuštění FRST se test opět seknul na stejném místě při: "Processing Files: Extra check...

Start -> spustit -> cmd
do pole zadejte
sfc /scannow
a odentrujte


Start -> spustit -> eventvwr, vlevo rozkliknete Protokoly systemu Windows, pravej klik na System, vyberte Ulozit vsechny udalosti jako, vysledny soubor zabalte a upnete na leteckou postu - link (odkaz na stazeni) dejte do pristi odpovedi.