VIRY.CZ

Dobrý den, obracím se na vás s prosbou o radu. Poslední dobou se mi často stává, že se počítač strašně zpomaluje, někdy i zasekává. Říkala jsem si, že už to možná bude jeho stářím, protože antivirus nic nenašel, ale dneska mi přestal fungovat Chrome. Otevřu prohlížeč, naskočí mi okno o chybě a sám se zavře. Možná by to mohlo být tím, že mám stále XP, v těchto věcech nejsem moc kovaná. Budu vděčná za jakoukoli radu.

Předem moc děkuji za váš čas, Lucka

Ještě bych dodala, že jsem zkusila ten Chrome přeinstalovat a nepomohlo to.

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:06-09-2015 01
Ran by doma (administrator) on DOMA-95E00D2E76 (06-09-2015 20:39:08)
Running from C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha
Loaded Profiles: doma (Available Profiles: doma)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Gadwin Systems) C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe
(Hewlett-Packard Company) C:\Program Files\HP\HPBDSService\HPBDSService.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cmdvirth.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16857600 2008-02-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2593056 2014-05-20] ()
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2015-01-14] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1361088 2015-08-07] (COMODO)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5282584 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [PC Suite Tray] => C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53661824 2015-07-28] (Skype Technologies S.A.)
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [Gadwin PrintScreen (32-bit)] => C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe [11507872 2014-10-15] (Gadwin Systems)
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute: autocheck autochk * OODBS
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.2
Tcpip\..\Interfaces\{2BCDDDF1-31C2-4EA4-948D-E4F7B60644B1}: [DhcpNameServer] 192.168.1.2

Internet Explorer:
==================
HKU\S-1-5-21-1004336348-602609370-682003330-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://spacesearch.ru/?ri=1&rsid=0effb3773f6d3304b08a4e9bf65b41b5&q={searchTerms}
HKU\S-1-5-21-1004336348-602609370-682003330-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.seznam.cz/?clid=22668
HKU\S-1-5-21-1004336348-602609370-682003330-1004\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://spacesearch.ru/?ri=1&rsid=0effb3773f6d3304b08a4e9bf65b41b5&q={searchTerms}
URLSearchHook: HKU\S-1-5-21-1004336348-602609370-682003330-1004 - (No Name) - {0633EE93-D776-472f-A0FF-E1416B8B2E3D} - No File
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> 0F797EB4A49660AD252EB537C7E74195 URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> 286F752FD6CD468E5CCBB6B943AC0976 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> EA1E71FEE399B7BB3147D1FEC001E6DC URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> EA3D442948A771916E62AD5955860694 URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3C} URL = hxxp://spacesearch.ru/?ri=1&rsid=0effb3773f6d3304b08a4e9bf65b41b5&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3D} URL = hxxp://spacesearch.ru/?ri=1&rsid=0effb3773f6d3304b08a4e9bf65b41b5&q=
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={0E9F9256-D231-489A-A017-9509271E4BFD}&mid=57078ea4318747d29e24d168c3d08059-bfeefb036901ade3f43823183acf332d4f00aed9&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0215tb&pr=fr&d=2015-03-13 16:07:23&v=4.1.0.411&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> {szukaj.gazeta.pl} URL = hxxp://szukaj.gazeta.pl/internet/0,0.html?slowo={searchTerms}
Toolbar: HKLM - No Name - {10921475-03CE-4E04-90CE-E2E7EF20C814} - No File
Toolbar: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://go.microsoft.com/fwlink/?linkid=39204
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Mozilla\Firefox\Profiles\k1h5ywk9.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @alawar.com/npapi -> C:\WINDOWS\npapi.dll [2014-01-29] (Alawar)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-06] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Google\Chrome\User Data\Default

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4353840 2015-08-07] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664704 2015-08-07] (COMODO)
S3 DAUpdaterSvc; C:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [25832 2015-05-29] (BioWare)
R2 HP DS Service; C:\Program Files\HP\HPBDSService\HPBDSService.exe [13824 2010-10-27] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [145920 2010-10-27] (HP) [File not signed]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [15808 2015-08-05] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [631872 2015-08-05] (COMODO)
R1 cmdHlp; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [30144 2015-08-05] (COMODO)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-07-31] (Disc Soft Ltd)
S3 HPFXBULKLEDM; C:\WINDOWS\System32\drivers\hppcbulkio.sys [20504 2011-05-10] (Hewlett Packard)
R0 Inspect; C:\WINDOWS\System32\DRIVERS\inspect.sys [105664 2015-08-05] (COMODO)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-07-31] (Duplex Secure Ltd.)
S3 TSSK; C:\WINDOWS\System32\tssk.sys [67896 2015-05-30] (电脑管家)
S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-06 20:39 - 2015-09-06 20:39 - 00012398 _____ C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.txt
2015-09-06 20:38 - 2015-09-06 20:39 - 00000000 ____D C:\FRST
2015-09-06 20:37 - 2015-09-06 20:37 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe
2015-09-06 20:31 - 2015-09-06 20:31 - 01692160 _____ (Farbar) C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe
2015-09-06 18:42 - 2015-09-06 18:42 - 00001820 _____ C:\Documents and Settings\All Users.WINDOWS\Plocha\Google Chrome.lnk
2015-09-06 18:42 - 2015-09-06 18:42 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Google Chrome
2015-09-06 18:42 - 2015-09-06 18:42 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Google Chrome
2015-09-06 18:41 - 2015-09-06 19:46 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-06 18:41 - 2015-09-06 19:37 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-02 00:00 - 2015-09-06 19:38 - 00002832 _____ C:\WINDOWS\setupapi.log
2015-09-01 23:48 - 2015-09-01 23:59 - 00000120 _____ C:\WINDOWS\setupact.log
2015-09-01 23:48 - 2015-09-01 23:48 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-08-27 03:34 - 2015-09-04 20:38 - 00017250 _____ C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\MB mystery.xlsx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-06 20:39 - 2014-12-06 23:37 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Temp
2015-09-06 20:39 - 2014-06-29 11:41 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha
2015-09-06 20:38 - 2014-06-29 11:41 - 00000000 ___HD C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací
2015-09-06 20:38 - 2012-03-21 15:46 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Skype
2015-09-06 20:36 - 2015-03-28 19:07 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job
2015-09-06 20:36 - 2015-03-28 19:07 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job
2015-09-06 20:36 - 2015-03-28 19:07 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}.job
2015-09-06 20:36 - 2015-03-28 19:07 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}.job
2015-09-06 20:30 - 2015-04-20 18:08 - 00125362 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2015-09-06 20:30 - 2015-04-20 18:08 - 00000000 ___HD C:\VTRoot
2015-09-06 20:27 - 2015-03-28 19:06 - 01474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2015-09-06 20:26 - 2015-04-04 16:48 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-06 20:23 - 2014-06-29 12:16 - 00027722 _____ C:\WINDOWS\system32\nvAppTimestamps
2015-09-06 19:46 - 2015-03-28 19:04 - 00131072 _____ C:\WINDOWS\system32\config\COMODO I.evt
2015-09-06 19:46 - 2014-06-29 11:40 - 00032558 _____ C:\WINDOWS\SchedLgU.Txt
2015-09-06 19:45 - 2015-07-31 22:31 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-09-06 19:39 - 2014-06-29 11:30 - 01356329 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-06 19:38 - 2014-06-29 13:24 - 00000157 _____ C:\WINDOWS\wiadebug.log
2015-09-06 19:38 - 2014-06-29 13:24 - 00000048 _____ C:\WINDOWS\wiaservc.log
2015-09-06 19:37 - 2015-04-01 20:43 - 00001076 _____ C:\WINDOWS\Tasks\6uzll1MriB6KccKHk0N3SnoH.job
2015-09-06 19:37 - 2015-04-01 20:42 - 00001074 _____ C:\WINDOWS\Tasks\Z3j9Dkz7ZLPj6Sh1Py50Eu7.job
2015-09-06 19:37 - 2014-06-29 11:41 - 00000178 ___SH C:\Documents and Settings\doma.DOMA-95E00D2E76\ntuser.ini
2015-09-06 19:37 - 2014-06-29 11:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-06 18:42 - 2014-06-29 13:21 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy
2015-09-06 18:42 - 2014-06-29 13:21 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy
2015-09-06 18:42 - 2014-06-29 13:21 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Plocha
2015-09-06 18:42 - 2014-06-29 13:05 - 00000000 ____D C:\Program Files\Google
2015-09-05 04:12 - 2012-03-22 08:21 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\vlc
2015-09-04 17:58 - 2012-05-17 20:42 - 00002563 _____ C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\Microsoft Office Word 2007.lnk
2015-09-01 23:55 - 2014-06-29 11:29 - 03558912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2015-09-01 23:55 - 2014-06-29 11:29 - 00364544 ____C (Microsoft Corporation (written by Digital Renaissance Inc.)) C:\WINDOWS\system32\dllcache\npdsplay.dll
2015-09-01 23:55 - 2014-06-29 11:29 - 00226816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npdrmv2.dll
2015-09-01 23:55 - 2014-06-29 11:29 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2015-09-01 23:55 - 2014-06-29 11:29 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npwmsdrm.dll
2015-09-01 23:51 - 2014-06-29 11:28 - 00331776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2015-09-01 23:51 - 2014-06-29 11:28 - 00180224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadomd.dll
2015-09-01 23:51 - 2014-06-29 11:28 - 00143360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadco.dll
2015-09-01 23:51 - 2014-06-29 11:28 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjro.dll
2015-09-01 23:50 - 2014-06-29 11:29 - 00759296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vgx.dll
2015-09-01 23:50 - 2014-06-29 11:28 - 00153088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2015-09-01 23:50 - 2014-06-29 11:28 - 00128512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2015-09-01 23:50 - 2014-06-29 11:27 - 00237056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\provthrd.dll
2015-09-01 23:50 - 2014-06-29 11:27 - 00212992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntevt.dll
2015-09-01 23:50 - 2014-06-29 11:27 - 00178176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemdisp.dll
2015-09-01 23:50 - 2014-06-29 11:27 - 00086528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\stdprov.dll
2015-09-01 23:50 - 2014-06-29 11:27 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\unsecapp.exe
2015-09-01 23:50 - 2008-04-14 14:00 - 00471552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclayers.dll
2015-09-01 23:50 - 2008-04-14 14:00 - 00245248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\acspecfc.dll
2015-09-01 23:44 - 2014-07-10 18:18 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-01 23:44 - 2014-06-29 11:41 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76
2015-08-30 13:44 - 2008-04-14 14:00 - 00012984 _____ C:\WINDOWS\system32\wpa.dbl
2015-08-29 02:26 - 2012-03-22 20:42 - 00208384 ____C C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-27 00:47 - 2015-05-10 23:29 - 00002477 _____ C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\Microsoft Office Excel 2007.lnk
2015-08-27 00:45 - 2014-12-04 03:44 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\gsak
2015-08-26 22:08 - 2014-12-04 03:44 - 00000000 ____D C:\Program Files\gsak
2015-08-16 04:50 - 2015-04-12 21:27 - 00000000 ____D C:\Program Files\KompoZer
2015-08-13 18:42 - 2014-06-29 13:36 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype
2015-08-13 18:42 - 2014-06-29 13:36 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype
2015-08-12 19:48 - 2014-07-03 23:46 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft Help
2015-08-12 19:48 - 2014-07-03 23:46 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft Help
2015-08-12 19:45 - 2014-06-29 15:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 19:38 - 2014-06-29 14:48 - 129304528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-12 02:26 - 2015-02-07 18:48 - 00778440 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-08-12 02:26 - 2015-02-07 18:48 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-08-07 19:02 - 2015-03-28 19:04 - 00493394 _____ C:\WINDOWS\system32\prfh0405.dat
2015-08-07 19:02 - 2015-03-28 19:04 - 00099412 _____ C:\WINDOWS\system32\prfc0405.dat
2015-08-07 19:02 - 2015-03-28 19:04 - 00001869 _____ C:\Documents and Settings\All Users.WINDOWS\Plocha\COMODO Antivirus.lnk
2015-08-07 04:03 - 2012-09-12 17:44 - 00361984 __SHC C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\Thumbs.db

==================== Files in the root of some directories =======

2015-03-31 10:14 - 2015-03-31 10:14 - 0004387 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\6uzll1MriB6KccKHk0N3SnoH
2012-04-22 02:07 - 2012-11-04 22:39 - 0000000 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\bitlord_log.txt
2012-11-05 00:03 - 2012-11-05 03:25 - 0002624 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27
2008-07-25 12:17 - 2008-07-25 12:17 - 0058880 ____C (Microsoft Corporation) C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27.exe
2005-09-16 16:43 - 2012-03-23 21:07 - 0000830 ___HC () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\domalog.dat
2014-10-15 15:40 - 2014-10-15 15:47 - 0000323 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\LiveSupport.exe_log.txt
2014-02-23 00:45 - 2014-02-23 03:52 - 3339800 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\log.sflog
2015-03-31 10:14 - 2015-03-31 10:14 - 0005655 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln
2015-04-03 15:49 - 2015-04-01 20:42 - 1577472 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe
2014-02-13 23:43 - 2014-02-13 23:48 - 0000178 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\QV Prefs
2014-10-15 15:40 - 2014-10-15 15:46 - 0000082 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\regsvr32.exe_log.txt
2012-09-30 01:34 - 2012-10-07 22:16 - 0419554 ____C (SearchAmong ) C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\satoolbar.exe
2012-09-30 01:34 - 2012-10-07 22:16 - 6312677 ____C (VIO ) C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\vio_clean.exe
2015-03-31 10:14 - 2015-03-31 10:14 - 0005655 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7
2015-04-03 15:49 - 2015-04-01 20:42 - 1577472 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe
2014-08-13 10:54 - 2014-08-13 10:54 - 0752128 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\AlawarHelper.exe
2012-03-22 20:42 - 2015-08-29 02:26 - 0208384 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-01-13 21:43 - 2014-02-07 00:16 - 0001032 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\SRDownloader.nast

Some files in TEMP:
====================
C:\Documents and Settings\doma\Local Settings\Temp\GeewaBlackRainbowCs_0.exe
C:\Documents and Settings\doma\Local Settings\Temp\GeewaTheSpellCs_0.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Windows) (Fixed) (Total:50.47 GB) (Free:11.73 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: (DATA) (Fixed) (Total:415.28 GB) (Free:79.15 GB) NTFS
Drive e: (DragonAge) (CDROM) (Total:7.85 GB) (Free:0 GB) UDF
Drive f: (HP8) (CDROM) (Total:9.07 GB) (Free:0 GB) UDF

Available physical RAM: 786.01 MB
Total physical RAM: 2047.23 MB
Percentage of memory in use: 61%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 465.8 GB) (Disk ID: D44AD44A)
Partition 1: (Active) - (Size=50.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=415.3 GB) - (Type=OF Extended)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\6uzll1MriB6KccKHk0N3SnoH.job => C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikac\6uzll1MriB6KccKHk0N3SnoH.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Z3j9Dkz7ZLPj6Sh1Py50Eu7.job => C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikac\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\WINDOWS\system32\advpack.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\certsentry.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\corpol.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\icardie.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\idndl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ie4uinit.exe.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iedkcs32.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieframe.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iepeers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieudinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\licmgr10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msdbg2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msfeedssync.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshta.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshta.exe.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msrating.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mstime.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nlsdl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\normaliz.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\occache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\spupdsvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WinFXDocObj.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xmllite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\aclayers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\acspecfc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\corpol.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\dhtmled.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iepeers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iexplore.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\jscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\licmgr10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\moviemk.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadce.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadco.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadomd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshta.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msjro.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mstime.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npdrmv2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npdsplay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npwmsdrm.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\ntevt.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\occache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\provthrd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\sqmapi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\stdprov.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\triedit.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\unsecapp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\url.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\vgx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wab.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wbemdisp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe:$CmdTcID

==================== Security Center ==================

AV: COMODO Antivirus (Disabled - Up to date) {043803A5-4F86-4ef7-AFC5-F6E02A79969B}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha" je 849 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\Tencentdl.exe"="C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\Tencentdl.exe:*:Enabled:????????"
"C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\bugreport_xf.exe"="C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\bugreport_xf.exe:*:Enabled:????????Crash??"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\NVIDIA Corporation\\NetService\\NvNetworkService.exe"="C:\\Program Files\\NVIDIA Corporation\\NetService\\NvNetworkService.exe:*:Enabled:NVIDIA Network Service TCP Exception (HTTPS)"
"C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe:*:Enabled:Instaltor AVG"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\uTorrent.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\uTorrent.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_32126.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_32126.exe:*:Enabled:uTorrent"
"C:\\Program Files\\Sibelius Software\\Sibelius 6\\RegTool.exe"="C:\\Program Files\\Sibelius Software\\Sibelius 6\\RegTool.exe:*:Enabled:RegTool.exe"
"C:\\Program Files\\Sibelius Software\\Sibelius 6\\Sibelius.exe"="C:\\Program Files\\Sibelius Software\\Sibelius 6\\Sibelius.exe:*:Enabled:Sibelius.exe"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\ICQM\\icq.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\ICQM\\icq.exe:*:Enabled:ICQ"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_33497.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_33497.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_33870.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_33870.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34024.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34024.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34309.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34309.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34944.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34944.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_35702.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_35702.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_37754.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_37754.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_38913.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_38913.exe:*:Enabled:uTorrent"
"C:\\Program Files\\AVG\\AVG2015\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2015\\avgmfapx.exe:*:Enabled:Instaltor AVG"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.3_40097.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.3_40097.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.3_40298.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.3_40298.exe:*:Enabled:uTorrent"
"C:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe"="C:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe:*:Enabled:Dragon Age Prameny Hra"
"C:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe"="C:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe:*:Enabled:Dragon Age Prameny Spustit"
"C:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"="C:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe:*:Enabled:Dragon Age Prameny Aktualizovat"
"C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\bugreport_xf.exe"="C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\bugreport_xf.exe:*:Enabled:????????Crash??"
"C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\Tencentdl.exe"="C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\Tencentdl.exe:*:Enabled:????????"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Local Settings\\Temp\\torjan.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Local Settings\\Temp\\torjan.exe:*:Enabled:torjan.exe"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox (C:\\Program Files\\Mozilla Firefox)"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v5.005 - Logfile created 06/09/2015 at 21:58:18
# Updated 31/08/2015 by Xplode
# Database : 2015-09-04.4 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : doma - DOMA-95E00D2E76
# Running from : C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : TSSK

***** [ Folders ] *****

[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Data aplikací\Complitly
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Data aplikací\HomeTab
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Data aplikací\SimplyTech
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Data aplikací\SkypEmoticons
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Data aplikací\YourFileDownloader
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Data aplikací\oursurfing
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\Chromatic Browser
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\Conduit
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\ConduitEngine
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\globalUpdate
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\PackageAware
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\SearchProtect
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\SimplyTech
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\Tbccint
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\torch
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\CheckCode
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\24Seven savings
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Local Settings\Data aplikací\Amigo
[-] Folder Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd
[-] Folder Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dilmbipdciijdlljhkkemephcnbmobmk
[!] Folder Not Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd
[-] Folder Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\lgmpbjmdohcbefjoomihfhkfchnkekji
[!] Folder Not Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\dilmbipdciijdlljhkkemephcnbmobmk
[!] Folder Not Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd
[!] Folder Not Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\lgmpbjmdohcbefjoomihfhkfchnkekji
[-] Folder Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd
[-] Folder Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dilmbipdciijdlljhkkemephcnbmobmk
[!] Folder Not Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd
[-] Folder Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\lgmpbjmdohcbefjoomihfhkfchnkekji
[!] Folder Not Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\dilmbipdciijdlljhkkemephcnbmobmk
[!] Folder Not Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd
[!] Folder Not Deleted : C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\lgmpbjmdohcbefjoomihfhkfchnkekji
[-] Folder Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Nabídka Start\LuckyTab

***** [ Files ] *****

[-] File Deleted : C:\i??pl?r?.b?t.exe
[-] File Deleted : C:\fir?f??.b?t.exe
[-] File Deleted : C:\fir?f??.b?t.exe
[-] File Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Data aplikací\LiveSupport.exe_log.txt
[-] File Deleted : C:\Documents and Settings\doma.doma-95E00D2E76\Data aplikací\regsvr32.exe_log.txt
[-] File Deleted : C:\WINDOWS\system32\tssk.sys
[-] File Deleted : C:\WINDOWS\system32\drivers\TS888.sys

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\CLASSES\METNSD
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP
[-] Key Deleted : HKCU\Software\db2c73e50a842955f94440c13b399499
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{10921475-03CE-4E04-90CE-E2E7EF20C814}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{0633EE93-D776-472F-A0FF-E1416B8B2E3D}]
[-] Key Deleted : HKU\.DEFAULT\Software\Avg Secure Update
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
[-] Key Deleted : HKCU\Software\Avg Secure Update
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKU\S-1-5-21-1004336348-602609370-682003330-1004\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-1004336348-602609370-682003330-1004\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3C}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3D}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[!] Key Not Deleted : HKU\S-1-5-21-1004336348-602609370-682003330-1004\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3C}
[!] Key Not Deleted : HKU\S-1-5-21-1004336348-602609370-682003330-1004\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3D}
[!] Key Not Deleted : HKU\S-1-5-21-1004336348-602609370-682003330-1004\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C5].txt - [7907 bytes] ##########

Dejte nový log FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:06-09-2015 01
Ran by doma (administrator) on DOMA-95E00D2E76 (06-09-2015 22:58:29)
Running from C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha
Loaded Profiles: doma (Available Profiles: doma)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Gadwin Systems) C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe
(Hewlett-Packard Company) C:\Program Files\HP\HPBDSService\HPBDSService.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16857600 2008-02-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2593056 2014-05-20] ()
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2015-01-14] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1361088 2015-08-07] (COMODO)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5282584 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [PC Suite Tray] => C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53661824 2015-07-28] (Skype Technologies S.A.)
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [Gadwin PrintScreen (32-bit)] => C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe [11507872 2014-10-15] (Gadwin Systems)
HKU\S-1-5-21-1004336348-602609370-682003330-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
BootExecute: autocheck autochk * OODBS
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.2
Tcpip\..\Interfaces\{2BCDDDF1-31C2-4EA4-948D-E4F7B60644B1}: [DhcpNameServer] 192.168.1.2

Internet Explorer:
==================
HKU\S-1-5-21-1004336348-602609370-682003330-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> 0F797EB4A49660AD252EB537C7E74195 URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> 286F752FD6CD468E5CCBB6B943AC0976 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> EA1E71FEE399B7BB3147D1FEC001E6DC URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> EA3D442948A771916E62AD5955860694 URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> {szukaj.gazeta.pl} URL = hxxp://szukaj.gazeta.pl/internet/0,0.html?slowo={searchTerms}
Toolbar: HKU\S-1-5-21-1004336348-602609370-682003330-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://go.microsoft.com/fwlink/?linkid=39204
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Mozilla\Firefox\Profiles\k1h5ywk9.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @alawar.com/npapi -> C:\WINDOWS\npapi.dll [2014-01-29] (Alawar)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-06] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\Google\Chrome\User Data\Default

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4353840 2015-08-07] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664704 2015-08-07] (COMODO)
S3 DAUpdaterSvc; C:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [25832 2015-05-29] (BioWare)
R2 HP DS Service; C:\Program Files\HP\HPBDSService\HPBDSService.exe [13824 2010-10-27] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [145920 2010-10-27] (HP) [File not signed]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [15808 2015-08-05] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [631872 2015-08-05] (COMODO)
R1 cmdHlp; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [30144 2015-08-05] (COMODO)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-07-31] (Disc Soft Ltd)
S3 HPFXBULKLEDM; C:\WINDOWS\System32\drivers\hppcbulkio.sys [20504 2011-05-10] (Hewlett Packard)
R0 Inspect; C:\WINDOWS\System32\DRIVERS\inspect.sys [105664 2015-08-05] (COMODO)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-07-31] (Duplex Secure Ltd.)
S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-06 22:58 - 2015-09-06 22:58 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe
2015-09-06 21:51 - 2015-09-06 21:51 - 01654272 _____ C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe
2015-09-06 20:39 - 2015-09-06 22:58 - 00010906 _____ C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.txt
2015-09-06 20:38 - 2015-09-06 22:58 - 00000000 ____D C:\FRST
2015-09-06 20:31 - 2015-09-06 20:31 - 01692160 _____ (Farbar) C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe
2015-09-06 19:45 - 2015-09-06 22:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-09-06 18:42 - 2015-09-06 18:42 - 00001820 _____ C:\Documents and Settings\All Users.WINDOWS\Plocha\Google Chrome.lnk
2015-09-06 18:42 - 2015-09-06 18:42 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Google Chrome
2015-09-06 18:42 - 2015-09-06 18:42 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Google Chrome
2015-09-06 18:41 - 2015-09-06 22:46 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-06 18:41 - 2015-09-06 21:59 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-02 00:00 - 2015-09-06 21:59 - 00003076 _____ C:\WINDOWS\setupapi.log
2015-09-01 23:48 - 2015-09-01 23:59 - 00000120 _____ C:\WINDOWS\setupact.log
2015-09-01 23:48 - 2015-09-01 23:48 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-08-27 03:34 - 2015-09-04 20:38 - 00017250 _____ C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\MB mystery.xlsx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-06 22:58 - 2014-12-06 23:37 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Temp
2015-09-06 22:58 - 2014-06-29 11:41 - 00000000 ___HD C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací
2015-09-06 22:58 - 2014-06-29 11:41 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha
2015-09-06 22:57 - 2015-03-28 19:07 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job
2015-09-06 22:57 - 2015-03-28 19:07 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job
2015-09-06 22:57 - 2015-03-28 19:07 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}.job
2015-09-06 22:57 - 2015-03-28 19:07 - 00000440 _____ C:\WINDOWS\Tasks\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}.job
2015-09-06 22:54 - 2014-06-29 12:16 - 00027722 _____ C:\WINDOWS\system32\nvAppTimestamps
2015-09-06 22:53 - 2012-03-21 15:46 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Skype
2015-09-06 22:49 - 2015-03-28 19:06 - 01474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2015-09-06 22:26 - 2015-04-04 16:48 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-06 22:01 - 2015-05-30 01:08 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-09-06 22:00 - 2014-06-29 11:30 - 01359402 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-06 21:59 - 2015-04-01 20:43 - 00001076 _____ C:\WINDOWS\Tasks\6uzll1MriB6KccKHk0N3SnoH.job
2015-09-06 21:59 - 2015-04-01 20:42 - 00001074 _____ C:\WINDOWS\Tasks\Z3j9Dkz7ZLPj6Sh1Py50Eu7.job
2015-09-06 21:59 - 2014-06-29 13:24 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-09-06 21:59 - 2014-06-29 13:24 - 00000048 _____ C:\WINDOWS\wiaservc.log
2015-09-06 21:59 - 2014-06-29 11:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-06 21:58 - 2015-04-20 18:08 - 00126494 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2015-09-06 21:58 - 2015-04-14 22:47 - 00000000 ____D C:\AdwCleaner
2015-09-06 21:58 - 2014-06-29 11:41 - 00000178 ___SH C:\Documents and Settings\doma.DOMA-95E00D2E76\ntuser.ini
2015-09-06 21:58 - 2014-06-29 11:41 - 00000000 __RHD C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací
2015-09-06 21:58 - 2014-06-29 11:41 - 00000000 ___RD C:\Documents and Settings\doma.DOMA-95E00D2E76\Nabídka Start
2015-09-06 21:58 - 2014-06-29 11:40 - 00032558 _____ C:\WINDOWS\SchedLgU.Txt
2015-09-06 20:30 - 2015-04-20 18:08 - 00000000 ___HD C:\VTRoot
2015-09-06 19:46 - 2015-03-28 19:04 - 00131072 _____ C:\WINDOWS\system32\config\COMODO I.evt
2015-09-06 18:42 - 2014-06-29 13:21 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy
2015-09-06 18:42 - 2014-06-29 13:21 - 00000000 ___RD C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy
2015-09-06 18:42 - 2014-06-29 13:21 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Plocha
2015-09-06 18:42 - 2014-06-29 13:05 - 00000000 ____D C:\Program Files\Google
2015-09-05 04:12 - 2012-03-22 08:21 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\vlc
2015-09-04 17:58 - 2012-05-17 20:42 - 00002563 _____ C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\Microsoft Office Word 2007.lnk
2015-09-01 23:55 - 2014-06-29 11:29 - 03558912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2015-09-01 23:55 - 2014-06-29 11:29 - 00364544 ____C (Microsoft Corporation (written by Digital Renaissance Inc.)) C:\WINDOWS\system32\dllcache\npdsplay.dll
2015-09-01 23:55 - 2014-06-29 11:29 - 00226816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npdrmv2.dll
2015-09-01 23:55 - 2014-06-29 11:29 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2015-09-01 23:55 - 2014-06-29 11:29 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npwmsdrm.dll
2015-09-01 23:51 - 2014-06-29 11:28 - 00331776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2015-09-01 23:51 - 2014-06-29 11:28 - 00180224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadomd.dll
2015-09-01 23:51 - 2014-06-29 11:28 - 00143360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadco.dll
2015-09-01 23:51 - 2014-06-29 11:28 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjro.dll
2015-09-01 23:50 - 2014-06-29 11:29 - 00759296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vgx.dll
2015-09-01 23:50 - 2014-06-29 11:28 - 00153088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2015-09-01 23:50 - 2014-06-29 11:28 - 00128512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2015-09-01 23:50 - 2014-06-29 11:27 - 00237056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\provthrd.dll
2015-09-01 23:50 - 2014-06-29 11:27 - 00212992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntevt.dll
2015-09-01 23:50 - 2014-06-29 11:27 - 00178176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemdisp.dll
2015-09-01 23:50 - 2014-06-29 11:27 - 00086528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\stdprov.dll
2015-09-01 23:50 - 2014-06-29 11:27 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\unsecapp.exe
2015-09-01 23:50 - 2008-04-14 14:00 - 00471552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclayers.dll
2015-09-01 23:50 - 2008-04-14 14:00 - 00245248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\acspecfc.dll
2015-09-01 23:44 - 2014-07-10 18:18 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-01 23:44 - 2014-06-29 11:41 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76
2015-08-30 13:44 - 2008-04-14 14:00 - 00012984 _____ C:\WINDOWS\system32\wpa.dbl
2015-08-29 02:26 - 2012-03-22 20:42 - 00208384 ____C C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-27 00:47 - 2015-05-10 23:29 - 00002477 _____ C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\Microsoft Office Excel 2007.lnk
2015-08-27 00:45 - 2014-12-04 03:44 - 00000000 ____D C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\gsak
2015-08-26 22:08 - 2014-12-04 03:44 - 00000000 ____D C:\Program Files\gsak
2015-08-16 04:50 - 2015-04-12 21:27 - 00000000 ____D C:\Program Files\KompoZer
2015-08-13 18:42 - 2014-06-29 13:36 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype
2015-08-13 18:42 - 2014-06-29 13:36 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype
2015-08-12 19:48 - 2014-07-03 23:46 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft Help
2015-08-12 19:48 - 2014-07-03 23:46 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft Help
2015-08-12 19:45 - 2014-06-29 15:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 19:38 - 2014-06-29 14:48 - 129304528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-12 02:26 - 2015-02-07 18:48 - 00778440 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-08-12 02:26 - 2015-02-07 18:48 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-08-07 19:02 - 2015-03-28 19:04 - 00493394 _____ C:\WINDOWS\system32\prfh0405.dat
2015-08-07 19:02 - 2015-03-28 19:04 - 00099412 _____ C:\WINDOWS\system32\prfc0405.dat
2015-08-07 19:02 - 2015-03-28 19:04 - 00001869 _____ C:\Documents and Settings\All Users.WINDOWS\Plocha\COMODO Antivirus.lnk
2015-08-07 04:03 - 2012-09-12 17:44 - 00361984 __SHC C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\Thumbs.db

==================== Files in the root of some directories =======

2015-03-31 10:14 - 2015-03-31 10:14 - 0004387 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\6uzll1MriB6KccKHk0N3SnoH
2012-04-22 02:07 - 2012-11-04 22:39 - 0000000 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\bitlord_log.txt
2012-11-05 00:03 - 2012-11-05 03:25 - 0002624 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27
2008-07-25 12:17 - 2008-07-25 12:17 - 0058880 ____C (Microsoft Corporation) C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27.exe
2005-09-16 16:43 - 2012-03-23 21:07 - 0000830 ___HC () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\domalog.dat
2014-02-23 00:45 - 2014-02-23 03:52 - 3339800 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\log.sflog
2015-03-31 10:14 - 2015-03-31 10:14 - 0005655 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln
2015-04-03 15:49 - 2015-04-01 20:42 - 1577472 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe
2014-02-13 23:43 - 2014-02-13 23:48 - 0000178 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\QV Prefs
2012-09-30 01:34 - 2012-10-07 22:16 - 0419554 ____C (SearchAmong ) C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\satoolbar.exe
2012-09-30 01:34 - 2012-10-07 22:16 - 6312677 ____C (VIO ) C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\vio_clean.exe
2015-03-31 10:14 - 2015-03-31 10:14 - 0005655 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7
2015-04-03 15:49 - 2015-04-01 20:42 - 1577472 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe
2014-08-13 10:54 - 2014-08-13 10:54 - 0752128 _____ () C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\AlawarHelper.exe
2012-03-22 20:42 - 2015-08-29 02:26 - 0208384 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-01-13 21:43 - 2014-02-07 00:16 - 0001032 ____C () C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Data aplikací\SRDownloader.nast

Some files in TEMP:
====================
C:\Documents and Settings\doma\Local Settings\Temp\GeewaBlackRainbowCs_0.exe
C:\Documents and Settings\doma\Local Settings\Temp\GeewaTheSpellCs_0.exe
C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Windows) (Fixed) (Total:50.47 GB) (Free:12.42 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: (DATA) (Fixed) (Total:415.28 GB) (Free:79.15 GB) NTFS
Drive e: (DragonAge) (CDROM) (Total:7.85 GB) (Free:0 GB) UDF
Drive f: (HP8) (CDROM) (Total:9.07 GB) (Free:0 GB) UDF

Available physical RAM: 1174.51 MB
Total physical RAM: 2047.23 MB
Percentage of memory in use: 42%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 465.8 GB) (Disk ID: D44AD44A)
Partition 1: (Active) - (Size=50.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=415.3 GB) - (Type=OF Extended)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\6uzll1MriB6KccKHk0N3SnoH.job => C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikac\6uzll1MriB6KccKHk0N3SnoH.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Z3j9Dkz7ZLPj6Sh1Py50Eu7.job => C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikac\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\WINDOWS\system32\advpack.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\certsentry.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\corpol.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\icardie.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\idndl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ie4uinit.exe.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iedkcs32.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieframe.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iepeers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieudinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\licmgr10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msdbg2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msfeedssync.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshta.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshta.exe.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msrating.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mstime.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nlsdl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\normaliz.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\occache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\spupdsvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WinFXDocObj.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xmllite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\aclayers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\acspecfc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\corpol.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\dhtmled.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iepeers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iexplore.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\jscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\licmgr10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\moviemk.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadce.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadco.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadomd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshta.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msjro.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mstime.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npdrmv2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npdsplay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npwmsdrm.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\ntevt.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\occache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\provthrd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\sqmapi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\stdprov.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\triedit.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\unsecapp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\url.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\vgx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wab.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wbemdisp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe:$CmdTcID

==================== Security Center ==================

AV: COMODO Antivirus (Disabled - Up to date) {043803A5-4F86-4ef7-AFC5-F6E02A79969B}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha" je 851 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\Tencentdl.exe"="C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\Tencentdl.exe:*:Enabled:????????"
"C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\bugreport_xf.exe"="C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\bugreport_xf.exe:*:Enabled:????????Crash??"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\NVIDIA Corporation\\NetService\\NvNetworkService.exe"="C:\\Program Files\\NVIDIA Corporation\\NetService\\NvNetworkService.exe:*:Enabled:NVIDIA Network Service TCP Exception (HTTPS)"
"C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2014\\avgmfapx.exe:*:Enabled:Instaltor AVG"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\uTorrent.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\uTorrent.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_32126.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_32126.exe:*:Enabled:uTorrent"
"C:\\Program Files\\Sibelius Software\\Sibelius 6\\RegTool.exe"="C:\\Program Files\\Sibelius Software\\Sibelius 6\\RegTool.exe:*:Enabled:RegTool.exe"
"C:\\Program Files\\Sibelius Software\\Sibelius 6\\Sibelius.exe"="C:\\Program Files\\Sibelius Software\\Sibelius 6\\Sibelius.exe:*:Enabled:Sibelius.exe"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\ICQM\\icq.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\ICQM\\icq.exe:*:Enabled:ICQ"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_33497.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_33497.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_33870.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_33870.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34024.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34024.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34309.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34309.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34944.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_34944.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_35702.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_35702.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_37754.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_37754.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_38913.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.2_38913.exe:*:Enabled:uTorrent"
"C:\\Program Files\\AVG\\AVG2015\\avgmfapx.exe"="C:\\Program Files\\AVG\\AVG2015\\avgmfapx.exe:*:Enabled:Instaltor AVG"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.3_40097.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.3_40097.exe:*:Enabled:uTorrent"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.3_40298.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Data aplikac\\uTorrent\\updates\\3.4.3_40298.exe:*:Enabled:uTorrent"
"C:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe"="C:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe:*:Enabled:Dragon Age Prameny Hra"
"C:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe"="C:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe:*:Enabled:Dragon Age Prameny Spustit"
"C:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"="C:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe:*:Enabled:Dragon Age Prameny Aktualizovat"
"C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\bugreport_xf.exe"="C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\bugreport_xf.exe:*:Enabled:????????Crash??"
"C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\Tencentdl.exe"="C:\\Program Files\\Common Files\\Tencent\\QQDownload\\130\\Tencentdl.exe:*:Enabled:????????"
"C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Local Settings\\Temp\\torjan.exe"="C:\\Documents and Settings\\doma.DOMA-95E00D2E76\\Local Settings\\Temp\\torjan.exe:*:Enabled:torjan.exe"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox (C:\\Program Files\\Mozilla Firefox)"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Temp
C:\WINDOWS\Tasks\6uzll1MriB6KccKHk0N3SnoH.job
C:\WINDOWS\Tasks\Z3j9Dkz7ZLPj6Sh1Py50Eu7.job
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27.exe
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\QV Prefs
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\satoolbar.exe
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\6uzll1MriB6KccKHk0N3SnoH
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\vio_clean.exe
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe
C:\Documents and Settings\doma\Local Settings\Temp
AlternateDataStreams: C:\WINDOWS\system32\advpack.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\certsentry.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\corpol.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\icardie.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\idndl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ie4uinit.exe.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iedkcs32.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieframe.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iepeers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieudinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\licmgr10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msdbg2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msfeedssync.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshta.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshta.exe.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msrating.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mstime.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nlsdl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\normaliz.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\occache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\spupdsvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WinFXDocObj.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xmllite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\aclayers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\acspecfc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\corpol.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\dhtmled.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iepeers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iexplore.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\jscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\licmgr10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\moviemk.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadce.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadco.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadomd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshta.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msjro.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mstime.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npdrmv2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npdsplay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npwmsdrm.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\ntevt.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\occache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\provthrd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\sqmapi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\stdprov.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\triedit.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\unsecapp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\url.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\vgx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wab.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wbemdisp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe:$CmdTcID
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x86) Version:06-09-2015 01
Ran by doma (2015-09-07 20:07:50) Run:1
Running from C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha
Loaded Profiles: doma (Available Profiles: doma)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Temp
C:\WINDOWS\Tasks\6uzll1MriB6KccKHk0N3SnoH.job
C:\WINDOWS\Tasks\Z3j9Dkz7ZLPj6Sh1Py50Eu7.job
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27.exe
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\QV Prefs
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\satoolbar.exe
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\6uzll1MriB6KccKHk0N3SnoH
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\vio_clean.exe
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe
C:\Documents and Settings\doma\Local Settings\Temp
AlternateDataStreams: C:\WINDOWS\system32\advpack.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\certsentry.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\corpol.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\icardie.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\idndl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ie4uinit.exe.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieapfltr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iedkcs32.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieframe.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iepeers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieudinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\licmgr10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msdbg2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msfeedssync.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshta.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshta.exe.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msrating.dll.mui:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mstime.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\nlsdl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\normaliz.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\occache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\spupdsvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WinFXDocObj.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xmllite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\aclayers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\acspecfc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\corpol.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\dhtmled.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\dxtrans.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\ie4uinit.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iepeers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\iexplore.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\inetcpl.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\jscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\jsproxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\licmgr10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\moviemk.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadce.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadco.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msadomd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshta.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mshtmled.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\msjro.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\mstime.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npdrmv2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npdsplay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\npwmsdrm.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\ntevt.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\occache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\provthrd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\sqmapi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\stdprov.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\triedit.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\unsecapp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\url.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\urlmon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\vbscript.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\vgx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wab.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wbemdisp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dllcache\wininet.dll:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe:$CmdZnID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe:$CmdTcID
AlternateDataStreams: C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe:$CmdTcID
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck => value removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
"HKLM\SOFTWARE\Policies\Google" => key removed successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
IntelIde => service removed successfully.
WS2IFSL => service removed successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully

"C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Temp" folder move:

Could not move "C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Temp" => Scheduled to move on reboot.

C:\WINDOWS\Tasks\6uzll1MriB6KccKHk0N3SnoH.job => moved successfully
C:\WINDOWS\Tasks\Z3j9Dkz7ZLPj6Sh1Py50Eu7.job => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27 => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\D3Oct27.exe => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\QV Prefs => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\satoolbar.exe => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\6uzll1MriB6KccKHk0N3SnoH => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\vio_clean.exe => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7 => moved successfully
C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe => moved successfully
C:\Documents and Settings\doma\Local Settings\Temp => moved successfully
"C:\WINDOWS\system32\advpack.dll.mui" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\certsentry.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\corpol.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dxtrans.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\FlashPlayerApp.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\icardie.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\idndl.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\ie4uinit.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\ie4uinit.exe.mui" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\ieapfltr.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\iedkcs32.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\iedkcs32.dll.mui" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\ieframe.dll.mui" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\iepeers.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\ieudinit.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\ieui.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\inetcpl.cpl" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\jsproxy.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\licmgr10.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\MRT.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\msdbg2.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\msfeedssync.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\mshta.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\mshta.exe.mui" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\mshtmled.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\msrating.dll.mui" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\mstime.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\nlsdl.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\normaliz.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\occache.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\spupdsvc.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\vbscript.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\WinFXDocObj.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\xmllite.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\aclayers.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\acspecfc.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\corpol.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\dhtmled.ocx" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\dxtrans.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\ie4uinit.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\iedkcs32.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\iepeers.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\iexplore.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\inetcpl.cpl" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\jscript.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\jsproxy.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\licmgr10.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\moviemk.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\msadce.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\msadco.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\msadomd.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\mshta.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\mshtml.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\mshtmled.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\msjro.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\mstime.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\npdrmv2.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\npdsplay.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\npwmsdrm.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\ntevt.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\occache.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\provthrd.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\sqmapi.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\stdprov.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\triedit.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\unsecapp.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\url.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\urlmon.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\vbscript.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\vgx.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\wab.exe" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\wbemdisp.dll" => ":$CmdTcID" ADS not found.
"C:\WINDOWS\system32\dllcache\wininet.dll" => ":$CmdTcID" ADS not found.
"C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe" => ":$CmdTcID" ADS not found.
C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\adwcleaner_5.005.exe => ":$CmdZnID" ADS removed successfully..
"C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe" => ":$CmdTcID" ADS not found.
C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRST.exe => ":$CmdZnID" ADS removed successfully..
"C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe" => ":$CmdTcID" ADS not found.
C:\Documents and Settings\doma.DOMA-95E00D2E76\Plocha\FRSTLauncher.exe => ":$CmdZnID" ADS removed successfully..
"C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\MdlEHPiyLUxsozVTln.exe" => ":$CmdTcID" ADS not found.
"C:\Documents and Settings\doma.DOMA-95E00D2E76\Data aplikací\Z3j9Dkz7ZLPj6Sh1Py50Eu7.exe" => ":$CmdTcID" ADS not found.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-09-07 20:10:23)<=

C:\Documents and Settings\doma.DOMA-95E00D2E76\Local Settings\Temp => moved successfully

==== End of Fixlog 20:10:23 ====

Smazáno. Nastala nějaká změna?

Jo, super. Chrome funguje a zdá se, že i rychlost se zlepšila. Díky moc

Rádo se stalo!