VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Starší PC kontrola logu z RSIT

https://forum.viry.cz:443/viewtopic.php?t=145309

Stránka 1 z 1

Starší PC kontrola logu z RSIT

Napsal: 20 črc 2015 21:23
od Blein
Zdravím Vás.

Švigrmutra mi donesla svůj starý PC tak jsem chtěl požádat Vás zda by jste se mi koukli na log, případně pomohli z odvšivením.
Zatím projedu CCleaner a udělám aspoň defragmentaci.

Díky zdarví Blein.

info.txt logfile of random's system information tool 1.10 2015-07-20 22:22:07

======MBR======

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

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Avast Free Antivirus-->C:\Program Files\AVAST Software\Avast\Setup\Instup.exe /control_panel /instop:uninstall
D-Link GO-USB-N150-->C:\Program Files\InstallShield Installation Information\{9C222509-055C-4CFF-A116-1774517825EB}\Install.exe -uninst -l0x5
EVEREST Ultimate Edition v5.50-->"C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe"
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_BA9226F4C70BECC2.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}
Mozilla Firefox 39.0 (x86 cs)-->"C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
NVIDIA Ovladače nForce pro Windows 2000/XP-->rundll32.exe C:\WINDOWS\system32\NVNFINST.DLL,NvUninstallCrush
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
VLC media player-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

======Security center information======

AV: avast! Antivirus

======System event log======

Computer Name: MICHAL-46C97027
Event Code: 26
Message: Místní nabídka aplikace: Windows - Systémová chyba : Adresa IP koliduje s jiným systémem v síti.

Record Number: 3006
Source Name: Application Popup
Time Written: 20150619103113.000000+120
Event Type: Informace
User:

Computer Name: MICHAL-46C97027
Event Code: 4199
Message: Systém zjistil konflikt adresy IP 10.0.0.34 se systémem,
jehož síťová hardwarová adresa je 50:85:69:1C:1E:34. Síťové operace v systému mohou
být přerušeny.

Record Number: 3005
Source Name: Tcpip
Time Written: 20150619103113.000000+120
Event Type: Chyba
User:

Computer Name: MICHAL-46C97027
Event Code: 26
Message: Místní nabídka aplikace: Windows - Systémová chyba : Adresa IP koliduje s jiným systémem v síti.

Record Number: 3004
Source Name: Application Popup
Time Written: 20150619103110.000000+120
Event Type: Informace
User:

Computer Name: MICHAL-46C97027
Event Code: 4199
Message: Systém zjistil konflikt adresy IP 10.0.0.34 se systémem,
jehož síťová hardwarová adresa je 50:85:69:1C:1E:34. Síťové operace v systému mohou
být přerušeny.

Record Number: 3003
Source Name: Tcpip
Time Written: 20150619103110.000000+120
Event Type: Chyba
User:

Computer Name: MICHAL-46C97027
Event Code: 26
Message: Místní nabídka aplikace: Windows - Systémová chyba : Adresa IP koliduje s jiným systémem v síti.

Record Number: 3002
Source Name: Application Popup
Time Written: 20150619103107.000000+120
Event Type: Informace
User:

=====Application event log=====

Computer Name: MICHAL-46C97027
Event Code: 11
Message: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.


Record Number: 179
Source Name: crypt32
Time Written: 20020101000217.000000+060
Event Type: Chyba
User:

Computer Name: MICHAL-46C97027
Event Code: 11
Message: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.


Record Number: 178
Source Name: crypt32
Time Written: 20020101000217.000000+060
Event Type: Chyba
User:

Computer Name: MICHAL-46C97027
Event Code: 2
Message: Úspěšné načtení automatické aktualizace kořenového seznamu instalačního souboru (CAB) jiné společnosti z tohoto umístění: <http://www.download.windowsupdate.com/m ... ootstl.cab>

Record Number: 177
Source Name: crypt32
Time Written: 20020101000217.000000+060
Event Type: Informace
User:

Computer Name: MICHAL-46C97027
Event Code: 7
Message: Úspěšné načtení automatické aktualizace pořadového čísla kořenového seznamu jiné společnosti z tohoto umístění: <http://www.download.windowsupdate.com/m ... ootseq.txt>

Record Number: 176
Source Name: crypt32
Time Written: 20020101000216.000000+060
Event Type: Informace
User:

Computer Name: MICHAL-46C97027
Event Code: 7
Message: Úspěšné načtení automatické aktualizace pořadového čísla kořenového seznamu jiné společnosti z tohoto umístění: <http://www.download.windowsupdate.com/m ... ootseq.txt>

Record Number: 175
Source Name: crypt32
Time Written: 20020101000216.000000+060
Event Type: Informace
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 10 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION"=0a00
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------


Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2015-07-20 22:18:24
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 84 GB (84%) free of 100 GB
Total RAM: 1023 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:21:55, on 20.7.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
c:\docume~1\michal\locals~1\temp\teamviewer\TeamViewer_Service.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\D-Link\GO-USB-N150\RtWlan.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Michal\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Michal.exe
C:\Program Files\AVAST Software\Avast\setup\New\instup.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.10.11023.1534\swg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: D-Link GO-USB-N150 WPS Utility.lnk = C:\Program Files\D-Link\GO-USB-N150\RtWlan.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - c:\docume~1\michal\locals~1\temp\teamviewer\TeamViewer_Service.exe
O24 - Desktop Component 0: (no name) - http://www.spaceworld.cz/img/slides/01.jpg

--
End of file - 4327 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Michal\Data aplikací\Mozilla\Firefox\Profiles\yahk46od.default

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-07 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.10.11023.1534\swg.dll [2015-03-07 981320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-07 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-01 5535048]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
D-Link GO-USB-N150 WPS Utility.lnk - C:\Program Files\D-Link\GO-USB-N150\RtWlan.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Program Files\D-Link\GO-USB-N150\RTLDHCP.exe"="C:\Program Files\D-Link\GO-USB-N150\RTLDHCP.exe:*:Enabled:RTLDHCP"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"midi"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 3 months======

2015-07-20 22:18:25 ----D---- C:\Program Files\trend micro
2015-07-20 22:18:24 ----D---- C:\rsit
2015-07-20 22:13:45 ----A---- C:\WINDOWS\RTacDbg.txt
2015-07-20 22:12:30 ----A---- C:\WINDOWS\system32\drivers\AegisP.sys
2015-07-20 22:11:58 ----D---- C:\WINDOWS\LastGood
2015-07-20 22:11:52 ----RA---- C:\WINDOWS\system32\drivers\rtwlanu_XP.sys
2015-07-20 22:11:52 ----D---- C:\WINDOWS\OPTIONS
2015-07-20 22:11:23 ----A---- C:\WINDOWS\system32\drivers\EAPPkt.sys
2015-07-20 22:11:17 ----D---- C:\WINDOWS\system32\RtlGina
2015-07-20 22:11:17 ----A---- C:\WINDOWS\SwUSB.exe
2015-07-20 22:11:17 ----A---- C:\WINDOWS\runSW.exe
2015-07-20 22:11:16 ----D---- C:\Program Files\D-Link
2015-07-20 22:11:16 ----A---- C:\WINDOWS\system32\ISSRemoveSP.exe
2015-07-08 15:20:21 ----D---- C:\Program Files\Mozilla Firefox
2015-06-19 07:52:34 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-06-10 19:57:14 ----D---- C:\Program Files\GUM4E.tmp
2015-06-01 14:49:58 ----A---- C:\WINDOWS\avastSS.scr

======List of files/folders modified in the last 3 months======

2015-07-20 22:18:44 ----D---- C:\WINDOWS\Prefetch
2015-07-20 22:18:25 ----RD---- C:\Program Files
2015-07-20 22:15:12 ----D---- C:\WINDOWS\Temp
2015-07-20 22:13:45 ----D---- C:\WINDOWS
2015-07-20 22:12:35 ----D---- C:\WINDOWS\system32
2015-07-20 22:12:31 ----HD---- C:\WINDOWS\inf
2015-07-20 22:12:30 ----D---- C:\WINDOWS\system32\drivers
2015-07-20 22:12:24 ----SHD---- C:\WINDOWS\Installer
2015-07-20 22:12:23 ----D---- C:\WINDOWS\WinSxS
2015-07-20 22:12:22 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-07-20 22:12:10 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2015-07-20 22:11:09 ----HD---- C:\Program Files\InstallShield Installation Information
2015-07-20 22:09:07 ----D---- C:\WINDOWS\system32\CatRoot2
2015-07-09 15:33:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2015-07-08 15:42:01 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-06-19 07:52:47 ----SD---- C:\WINDOWS\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-06-01 49904]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-06-01 209048]
R0 nv_agp;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\nv_agp.sys [2002-09-06 13568]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2015-06-01 55200]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-06-01 787760]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-06-30 428120]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2015-06-01 57888]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2015-07-20 21361]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-06-01 24144]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-06-01 74976]
R2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2007-10-09 38144]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-04 1897408]
R3 nvax;Service for NVIDIA(R) nForce(TM) Audio Enumerator; C:\WINDOWS\system32\drivers\nvax.sys [2002-12-05 13056]
R3 NVENET;NVIDIA nForce MCP Networking Adapter Driver; C:\WINDOWS\system32\DRIVERS\NVENET.sys [2002-09-23 80896]
R3 nvnforce;Service for NVIDIA(R) nForce(TM) Audio; C:\WINDOWS\system32\drivers\nvapu.sys [2002-12-05 241664]
R3 RtlWlanu;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter; C:\WINDOWS\system32\DRIVERS\rtwlanu_XP.sys [2014-11-19 2671320]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-01 343336]
R2 TeamViewer;TeamViewer 10; c:\docume~1\michal\locals~1\temp\teamviewer\TeamViewer_Service.exe [2014-11-28 5419792]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-12-09 116648]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-12-09 116648]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-09 194032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

Re: Starší PC kontrola logu z RSIT

Napsal: 20 črc 2015 21:41
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Starší PC kontrola logu z RSIT

Napsal: 20 črc 2015 21:49
od Blein
Log zde:


# AdwCleaner v4.208 - Log vytvořen 20/07/2015 v 22:47:29
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-09.2 [Local]
# Operační system : Microsoft Windows XP Service Pack 3 (x86)
# Uživatelské jméno : Michal - MICHAL-46C97027
# Spuštěno z : C:\Documents and Settings\Michal\Plocha\adwcleaner_4.208.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****


***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1

***** [ Prohlížeče ] *****

-\\ Internet Explorer v6.0.2900.5512


-\\ Mozilla Firefox v39.0 (x86 cs)


*************************

AdwCleaner[R0].txt - [916 bytů] - [20/07/2015 22:45:20]
AdwCleaner[S0].txt - [840 bytů] - [20/07/2015 22:47:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [897 bytů] ##########

Re: Starší PC kontrola logu z RSIT

Napsal: 21 črc 2015 17:13
od Rudy
Dejte nový log FRST.

Re: Starší PC kontrola logu z RSIT

Napsal: 21 črc 2015 20:06
od Blein
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-07-2015
Ran by Michal (administrator) on MICHAL-46C97027 on 21-07-2015 21:03:15
Running from C:\Documents and Settings\Michal\Dokumenty\Stažené soubory
Loaded Profiles: Michal (Available Profiles: Michal & MARKETA & maminka & ondra & rodina)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 6 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(TeamViewer GmbH) C:\DOCUME~1\Michal\LOCALS~1\Temp\TeamViewer\TeamViewer_Service.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(D-Link Corp.) C:\Program Files\D-Link\GO-USB-N150\RtWlan.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5535048 2015-06-01] (Avast Software s.r.o.)
HKU\S-1-5-21-1085031214-261903793-682003330-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6405912 2015-06-01] (Piriform Ltd)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\D-Link GO-USB-N150 WPS Utility.lnk [2015-07-20]
ShortcutTarget: D-Link GO-USB-N150 WPS Utility.lnk -> C:\Program Files\D-Link\GO-USB-N150\RtWlan.exe (D-Link Corp.)
Startup: C:\Documents and Settings\maminka\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2015-02-04]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Documents and Settings\MARKETA\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2015-03-29]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-06-01] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... R}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-1085031214-261903793-682003330-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1085031214-261903793-682003330-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: HKU\S-1-5-21-1085031214-261903793-682003330-1003 - Modul přiřazení adres URL - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1085031214-261903793-682003330-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2008-04-14] (Společnost Microsoft)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 0725801531
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{26C20F5F-53D7-42E3-8CAE-873A21A663FF}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{8F0B1BF3-419E-464D-A5EC-55EBFBF48A85}: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Michal\Data aplikací\Mozilla\Firefox\Profiles\yahk46od.default
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-09]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-06-01]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-01]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-01] (Avast Software s.r.o.)
R2 TeamViewer; c:\Documents and Settings\Michal\Local Settings\Temp\teamviewer\TeamViewer_Service.exe [5419792 2014-11-28] (TeamViewer GmbH)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2015-07-20] (Cisco Systems, Inc.) [File not signed]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24144 2015-06-01] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [74976 2015-06-01] (Avast Software s.r.o.)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-06-01] (Avast Software s.r.o.)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49904 2015-06-01] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787760 2015-06-01] (Avast Software s.r.o.)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [428120 2015-06-30] (Avast Software s.r.o.)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-06-01] (Avast Software s.r.o.)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209048 2015-06-01] ()
R2 EAPPkt; C:\WINDOWS\System32\DRIVERS\EAPPkt.sys [38144 2007-10-09] (Realtek) [File not signed]
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
R3 ms_mpu401; C:\WINDOWS\System32\drivers\msmpu401.sys [2944 2001-08-18] (Microsoft Corporation)
R3 nvax; C:\WINDOWS\System32\drivers\nvax.sys [13056 2002-12-05] (NVIDIA Corporation)
R3 NVENET; C:\WINDOWS\System32\DRIVERS\NVENET.sys [80896 2002-09-23] (NVIDIA Corporation)
R3 nvnforce; C:\WINDOWS\System32\drivers\nvapu.sys [241664 2002-12-05] (NVIDIA Corporation)
R0 nv_agp; C:\WINDOWS\System32\DRIVERS\nv_agp.sys [13568 2002-09-06] (NVIDIA Corporation)
R3 RtlWlanu; C:\WINDOWS\System32\DRIVERS\rtwlanu_XP.sys [2671320 2014-11-19] (Realtek Semiconductor Corporation )
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-21 21:03 - 2015-07-21 21:03 - 00000000 ____D C:\FRST
2015-07-20 23:25 - 2015-07-20 23:25 - 00000000 ____D C:\WINDOWS\pss
2015-07-20 23:22 - 2015-07-20 23:22 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2015-07-20 23:22 - 2015-07-20 23:22 - 00000000 ____D C:\Program Files\CCleaner
2015-07-20 23:21 - 2015-07-20 23:21 - 00000717 _____ C:\Documents and Settings\All Users\Plocha\CPUID CPU-Z.lnk
2015-07-20 23:21 - 2015-07-20 23:21 - 00000000 ____D C:\Program Files\CPUID
2015-07-20 23:21 - 2015-07-20 23:21 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CPUID
2015-07-20 23:18 - 2015-07-20 23:18 - 00000000 ___RD C:\Documents and Settings\Michal\Nabídka Start\Programy\Nástroje pro správu
2015-07-20 22:45 - 2015-07-20 22:47 - 00000000 ____D C:\AdwCleaner
2015-07-20 22:44 - 2015-07-20 22:44 - 02248704 _____ C:\Documents and Settings\Michal\Plocha\adwcleaner_4.208.exe
2015-07-20 22:18 - 2015-07-20 22:22 - 00000000 ____D C:\rsit
2015-07-20 22:18 - 2015-07-20 22:21 - 00000000 ____D C:\Program Files\trend micro
2015-07-20 22:17 - 2015-07-20 22:18 - 01107968 _____ C:\Documents and Settings\Michal\Plocha\RSIT.exe
2015-07-20 22:13 - 2015-07-20 23:28 - 00000000 _____ C:\WINDOWS\RTacDbg.txt
2015-07-20 22:12 - 2015-07-20 22:12 - 00021361 _____ (Cisco Systems, Inc.) C:\WINDOWS\system32\Drivers\AegisP.sys
2015-07-20 22:11 - 2015-07-20 22:11 - 00000000 ____D C:\WINDOWS\system32\RtlGina
2015-07-20 22:11 - 2015-07-20 22:11 - 00000000 ____D C:\WINDOWS\OPTIONS
2015-07-20 22:11 - 2015-07-20 22:11 - 00000000 ____D C:\Program Files\D-Link
2015-07-20 22:11 - 2014-11-19 04:15 - 02671320 ____R (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu_XP.sys
2015-07-20 22:11 - 2014-03-24 12:37 - 00422400 _____ (Realtek) C:\WINDOWS\SwUSB.exe
2015-07-20 22:11 - 2013-10-18 16:42 - 00048856 _____ () C:\WINDOWS\runSW.exe
2015-07-20 22:11 - 2010-12-01 09:31 - 00451072 _____ C:\WINDOWS\system32\ISSRemoveSP.exe
2015-07-20 22:11 - 2007-10-09 13:13 - 00038144 _____ (Realtek) C:\WINDOWS\system32\Drivers\EAPPkt.sys
2015-07-20 22:11 - 2007-04-26 14:05 - 00100000 _____ C:\WINDOWS\system32\EAPPkt9x.VXD
2015-07-20 22:11 - 2001-09-26 11:03 - 00012981 _____ C:\WINDOWS\system32\REALPKT.VXD
2015-07-08 15:44 - 2015-07-08 15:44 - 00036864 ____R C:\Documents and Settings\MARKETA\Plocha\Tréninkový zápis.xls
2015-07-08 15:44 - 2015-07-08 15:44 - 00007663 _____ C:\Documents and Settings\MARKETA\Plocha\Tréninkový plán roč 2003-2008(2).odt
2015-07-08 15:39 - 2015-07-08 15:39 - 00007663 _____ C:\Documents and Settings\maminka\Plocha\Tréninkový plán roč 2003-2008(1).odt
2015-07-08 15:33 - 2015-07-08 15:34 - 00036864 _____ C:\Documents and Settings\maminka\Plocha\Tréninkový zápis.xls
2015-07-08 15:20 - 2015-07-09 12:26 - 00000000 ____D C:\Program Files\Mozilla Firefox

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-21 21:03 - 2014-12-09 12:29 - 00000000 ____D C:\Documents and Settings\Michal\Dokumenty\Stažené soubory
2015-07-21 21:03 - 2014-12-09 12:04 - 00000000 ____D C:\Documents and Settings\Michal\Local Settings\Temp
2015-07-21 19:52 - 2014-12-09 12:29 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-07-21 05:19 - 2014-12-09 12:04 - 00000000 ___RD C:\Documents and Settings\Michal\Dokumenty
2015-07-21 05:19 - 2014-12-09 12:04 - 00000000 ____D C:\Documents and Settings\Michal\Plocha
2015-07-20 23:57 - 2014-12-09 12:28 - 00000000 ____D C:\Program Files\Google
2015-07-20 23:31 - 2014-12-09 11:54 - 00388498 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-20 23:30 - 2014-12-09 12:40 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-07-20 23:30 - 2014-12-09 12:28 - 00000000 ____D C:\Documents and Settings\Michal\Local Settings\Data aplikací\Google
2015-07-20 23:28 - 2014-12-09 12:00 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-20 23:27 - 2014-12-09 12:00 - 00032546 _____ C:\WINDOWS\SchedLgU.Txt
2015-07-20 23:26 - 2014-12-09 12:04 - 00000178 ___SH C:\Documents and Settings\Michal\ntuser.ini
2015-07-20 23:25 - 2014-12-09 12:38 - 00000211 ___SH C:\boot.ini
2015-07-20 23:25 - 2001-10-25 14:00 - 00000552 _____ C:\WINDOWS\win.ini
2015-07-20 23:25 - 2001-10-25 14:00 - 00000227 _____ C:\WINDOWS\system.ini
2015-07-20 23:23 - 2014-12-09 12:44 - 00000000 ___SD C:\Documents and Settings\Michal\UserData
2015-07-20 23:23 - 2014-12-09 12:04 - 00000000 ____D C:\Documents and Settings\Michal
2015-07-20 23:22 - 2014-12-09 12:40 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-07-20 23:21 - 2014-12-09 12:40 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-07-20 23:18 - 2014-12-09 12:04 - 00000000 ___RD C:\Documents and Settings\Michal\Nabídka Start\Programy
2015-07-20 22:24 - 2015-01-08 16:44 - 00000000 ____D C:\Documents and Settings\MARKETA\Dokumenty\Stažené soubory
2015-07-20 22:12 - 2014-12-09 12:40 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2015-07-20 22:12 - 2014-12-09 12:40 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-07-20 22:11 - 2014-12-09 12:21 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-07-20 22:08 - 2001-10-25 14:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-07-09 14:42 - 2002-01-01 01:02 - 00000178 ___SH C:\Documents and Settings\maminka\ntuser.ini
2015-07-09 12:31 - 2002-01-01 01:02 - 00000000 ____D C:\Documents and Settings\maminka\Local Settings\Temp
2015-07-09 12:28 - 2002-01-01 01:02 - 00000000 ____D C:\Documents and Settings\maminka\Plocha
2015-07-08 15:50 - 2015-01-08 16:36 - 00000178 ___SH C:\Documents and Settings\MARKETA\ntuser.ini
2015-07-08 15:45 - 2015-01-08 16:36 - 00000000 ____D C:\Documents and Settings\MARKETA\Plocha
2015-07-08 15:45 - 2015-01-08 16:36 - 00000000 ____D C:\Documents and Settings\MARKETA\Local Settings\Temp
2015-07-08 15:42 - 2014-12-09 12:27 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-07-08 15:39 - 2015-02-02 17:48 - 00000000 ____D C:\Documents and Settings\maminka\Dokumenty\Stažené soubory
2015-07-06 09:38 - 2002-01-01 01:02 - 00000000 ___HD C:\Documents and Settings\maminka\Local Settings\Data aplikací
2015-06-30 10:28 - 2014-12-09 12:27 - 00428120 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-06-25 12:29 - 2015-06-01 16:55 - 00041320 _____ C:\Documents and Settings\maminka\Plocha\Rychlostní vytrvalost 2015.xlsm
2015-06-21 12:21 - 2015-01-08 18:06 - 00000000 ____D C:\Documents and Settings\MARKETA\Data aplikací\vlc

==================== Files in the root of some directories =======

2015-01-16 11:18 - 2015-01-16 11:22 - 0016896 _____ () C:\Documents and Settings\Michal\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
C:\Documents and Settings\MARKETA\Local Settings\Temp\vlc-2.2.1-win32.exe
C:\Documents and Settings\Michal\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Michal\Local Settings\Temp\sqlite3.dll
C:\Documents and Settings\Michal\Local Settings\Temp\~D.exe
C:\Documents and Settings\Michal\Local Settings\Temp\~E.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of log ============================


Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-07-2015
Ran by Michal at 2015-07-21 21:04:29
Running from C:\Documents and Settings\Michal\Dokumenty\Stažené soubory
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1085031214-261903793-682003330-500 - Administrator - Enabled)
Guest (S-1-5-21-1085031214-261903793-682003330-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1085031214-261903793-682003330-1000 - Limited - Disabled)
maminka (S-1-5-21-1085031214-261903793-682003330-1005 - Limited - Enabled) => %SystemDrive%\Documents and Settings\maminka
MARKETA (S-1-5-21-1085031214-261903793-682003330-1004 - Limited - Enabled) => %SystemDrive%\Documents and Settings\MARKETA
Michal (S-1-5-21-1085031214-261903793-682003330-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Michal
ondra (S-1-5-21-1085031214-261903793-682003330-1006 - Limited - Enabled) => %SystemDrive%\Documents and Settings\ondra
rodina (S-1-5-21-1085031214-261903793-682003330-1008 - Limited - Enabled) => %SystemDrive%\Documents and Settings\rodina
SUPPORT_388945a0 (S-1-5-21-1085031214-261903793-682003330-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Avast Free Antivirus (HKLM\...\Avast) (Version: 10.2.2218 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
D-Link GO-USB-N150 (HKLM\...\{9C222509-055C-4CFF-A116-1774517825EB}) (Version: 2.02 - D-Link Corp.)
EVEREST Ultimate Edition v5.50 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Mozilla Firefox 39.0 (x86 cs) (HKLM\...\Mozilla Firefox 39.0 (x86 cs)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
NVIDIA Ovladače nForce pro Windows 2000/XP (HKLM\...\NVIDIAnForce) (Version: - )
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031517 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

16-05-2015 09:44:55 Kontrolní bod systému
18-05-2015 13:52:52 Kontrolní bod systému
24-05-2015 10:16:34 Kontrolní bod systému
25-05-2015 14:06:45 Kontrolní bod systému
01-06-2015 14:48:46 avast! antivirus system restore point
03-06-2015 13:49:07 Kontrolní bod systému
04-06-2015 14:07:51 Kontrolní bod systému
08-06-2015 14:08:02 Kontrolní bod systému
10-06-2015 14:26:44 Kontrolní bod systému
19-06-2015 07:52:13 avast! antivirus system restore point
25-06-2015 14:19:18 Kontrolní bod systému
30-06-2015 11:51:19 Kontrolní bod systému
08-07-2015 08:16:59 Kontrolní bod systému
09-07-2015 13:30:53 Kontrolní bod systému
20-07-2015 22:11:09 Instalováno D-Link GO-USB-N150

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2001-10-25 14:00 - 2001-10-25 14:00 - 00000737 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-06-01 14:49 - 2015-06-01 14:49 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-06-01 14:49 - 2015-06-01 14:49 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-07-20 22:17 - 2015-07-20 22:17 - 02956800 _____ () C:\Program Files\AVAST Software\Avast\defs\15072002\algo.dll
2015-07-21 19:25 - 2015-07-21 19:26 - 02957312 _____ () C:\Program Files\AVAST Software\Avast\defs\15072101\algo.dll
2004-08-17 15:49 - 2008-04-14 09:51 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-12-09 12:27 - 2015-06-01 14:50 - 38327808 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-07-20 22:11 - 2007-07-12 11:11 - 01163264 _____ () C:\Program Files\D-Link\GO-USB-N150\acAuth.dll
2015-06-01 19:28 - 2015-06-01 19:28 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2014-12-09 12:27 - 2014-12-09 12:27 - 00888216 _____ () C:\Program Files\AVAST Software\Avast\ffmpegsumo.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1085031214-261903793-682003330-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Omítka Santa Fe.bmp
DNS Servers: 10.0.0.138
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE] => Enabled:Microsoft Office OneNote
StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox)
StandardProfile\AuthorizedApplications: [C:\Program Files\D-Link\GO-USB-N150\RTLDHCP.exe] => Enabled:RTLDHCP
StandardProfile\GloballyOpenPorts: [1542:TCP] => Enabled:Realtek WPS TCP Prot
StandardProfile\GloballyOpenPorts: [1542:UDP] => Enabled:Realtek WPS UDP Prot
StandardProfile\GloballyOpenPorts: [53:UDP] => Enabled:Realtek AP UDP Prot
StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007
StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/10/2015 07:48:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace flashplayer18_ga_install.exe, verze 1.0.0.19, chybující modul flashplayer18_ga_install.exe, verze 1.0.0.19, adresa chyby 0x0000595b.
Zpracování události, specifické pro médium ([flashplayer18_ga_install.exe!ws!])

Error: (06/10/2015 07:48:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace flashplayer18_ga_install(1).exe, verze 1.0.0.19, chybující modul flashplayer18_ga_install(1).exe, verze 1.0.0.19, adresa chyby 0x0000595b.
Zpracování události, specifické pro médium ([flashplayer18_ga_install(1).exe!ws!])

Error: (06/10/2015 07:47:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace flashplayer18_ga_install.exe, verze 1.0.0.19, chybující modul flashplayer18_ga_install.exe, verze 1.0.0.19, adresa chyby 0x0000595b.
Zpracování události, specifické pro médium ([flashplayer18_ga_install.exe!ws!])

Error: (06/10/2015 07:47:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace flashplayer18_ga_install.exe, verze 1.0.0.19, chybující modul flashplayer18_ga_install.exe, verze 1.0.0.19, adresa chyby 0x0000595b.
Zpracování události, specifické pro médium ([flashplayer18_ga_install.exe!ws!])

Error: (06/10/2015 07:46:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace flashplayer18_ga_install.exe, verze 0.0.0.0, chybující modul , verze 0.0.0.0, adresa chyby 0x00000000.
Zpracování události, specifické pro médium ([flashplayer18_ga_install.exe!ws!])

Error: (06/10/2015 07:46:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace flashplayer18_ga_install.exe, verze 1.0.0.19, chybující modul flashplayer18_ga_install.exe, verze 1.0.0.19, adresa chyby 0x0000595b.
Zpracování události, specifické pro médium ([flashplayer18_ga_install.exe!ws!])

Error: (06/10/2015 07:46:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace flashplayer18_ga_install.exe, verze 1.0.0.19, chybující modul flashplayer18_ga_install.exe, verze 1.0.0.19, adresa chyby 0x0000595b.
Zpracování události, specifické pro médium ([flashplayer18_ga_install.exe!ws!])

Error: (06/10/2015 07:46:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace flashplayer18_ga_install.exe, verze 1.0.0.19, chybující modul flashplayer18_ga_install.exe, verze 1.0.0.19, adresa chyby 0x0000595b.
Zpracování události, specifické pro médium ([flashplayer18_ga_install.exe!ws!])

Error: (06/08/2015 08:03:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace firefox.exe, verze 38.0.5.5623, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (03/26/2015 02:53:56 PM) (Source: Microsoft Office 12) (EventID: 5000) (User: )
Description: EventType offdiag12, P1 2cfef2dd-704d-41b5-a98d-c5fb094ee512426a2c34-0a55-4619-bc66-f7bf628a9085, P2 NIL, P3 NIL, P4 NIL, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 offdiag120, P10 offdiag121.


System errors:
=============
Error: (07/20/2015 10:47:29 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba brány aplikačního rozhraní byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/20/2015 10:47:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Zařazování tisku byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/01/2015 07:44:16 AM) (Source: 0) (EventID: 1) (User: )
Description: 0xC0000001HarddiskVolume1

Error: (06/19/2015 05:52:36 PM) (Source: Dhcp) (EventID: 1002) (User: )
Description: Zapůjčení adresy IP 10.0.0.34 pro síťovou kartu s adresou 0011D82095C1 byla
serverem DHCP 10.0.0.138 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).

Error: (06/19/2015 11:16:51 AM) (Source: 0) (EventID: 4199) (User: )
Description: 10.0.0.3450:85:69:1C:1E:34

Error: (06/19/2015 11:16:48 AM) (Source: 0) (EventID: 4199) (User: )
Description: 10.0.0.3450:85:69:1C:1E:34

Error: (06/19/2015 11:16:45 AM) (Source: 0) (EventID: 4199) (User: )
Description: 10.0.0.3450:85:69:1C:1E:34

Error: (06/19/2015 11:16:42 AM) (Source: 0) (EventID: 4199) (User: )
Description: 10.0.0.3450:85:69:1C:1E:34

Error: (06/19/2015 11:16:39 AM) (Source: 0) (EventID: 4199) (User: )
Description: 10.0.0.3450:85:69:1C:1E:34

Error: (06/19/2015 11:16:36 AM) (Source: 0) (EventID: 4199) (User: )
Description: 10.0.0.3450:85:69:1C:1E:34


Microsoft Office:
=========================
Error: (01/01/2002 02:13:11 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 915 seconds with 0 seconds of active time. This session ended with a crash.


==================== Memory info ===========================

Processor: AMD Athlon(tm)
Percentage of memory in use: 33%
Total physical RAM: 1791.48 MB
Available physical RAM: 1190.89 MB
Total Virtual: 3179.39 MB
Available Virtual: 2709.01 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.65 GB) (Free:82.44 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: (Pevný - D) (Fixed) (Total:200.43 GB) (Free:56.34 GB) NTFS
Drive e: (GO-USB-N150) (CDROM) (Total:0.1 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: C039D01A)
Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200.4 GB) - (Type=OF Extended)

==================== End of log ============================

Re: Starší PC kontrola logu z RSIT

Napsal: 21 črc 2015 21:25
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S4 IntelIde; No ImagePath
U1 WS2IFSL; No ImagePath
C:\Documents and Settings\MARKETA\Local Settings\Temp
End
Uložte do C:\Documents and Settings\Michal\Dokumenty\Stažené soubory jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Starší PC kontrola logu z RSIT

Napsal: 21 črc 2015 21:29
od Blein
Fix result of Farbar Recovery Scan Tool (x86) Version: 20-07-2015
Ran by Michal at 2015-07-21 22:29:36 Run:1
Running from C:\Documents and Settings\Michal\Dokumenty\Stažené soubory
Loaded Profiles: Michal (Available Profiles: Michal & MARKETA & maminka & ondra & rodina)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S4 IntelIde; No ImagePath
U1 WS2IFSL; No ImagePath
C:\Documents and Settings\MARKETA\Local Settings\Temp
End
*****************

HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
IntelIde => Service removed successfully.
WS2IFSL => Service removed successfully.
C:\Documents and Settings\MARKETA\Local Settings\Temp => moved successfully.

==== End of Fixlog 22:29:37 ====

Re: Starší PC kontrola logu z RSIT

Napsal: 22 črc 2015 17:01
od Rudy
Smazáno. PC by již měl být čistý.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz