Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:07-11-2015
Ran by PC (administrator) on PC-612A6CA9C190 (14-11-2015 13:04:10)
Running from C:\Documents and Settings\PC\Plocha
Loaded Profiles: PC (Available Profiles: PC)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd.exe
(Hewlett-Packard Company) C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
(HP) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
(PixArt Imaging Incorporation) C:\WINDOWS\PixArt\Pac7302\Monitor.exe
(Filefacts.net) C:\Program Files\Smart File Advisor\SFAUpdater.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BitTorrent Inc.) C:\Documents and Settings\PC\Data aplikací\uTorrent\uTorrent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(BitTorrent Inc.) C:\Documents and Settings\PC\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Documents and Settings\PC\Data aplikací\uTorrent\updates\3.4.5_41202\utorrentie.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Documents and Settings\PC\Plocha\FRSTLauncher (3).exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SkyTel] => C:\WINDOWS\SkyTel.EXE [2879488 2006-05-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16270848 2006-11-15] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2011-07-28] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [49152 2003-06-25] (Hewlett-Packard)
HKLM\...\Run: [HP Component Manager] => C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [233472 2003-10-23] (Hewlett-Packard Company)
HKLM\...\Run: [HPDJ Taskbar Utility] => C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe [188416 2003-11-08] (HP)
HKLM\...\Run: [PAC7302_Monitor] => C:\WINDOWS\PixArt\PAC7302\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [SFAUpdater] => C:\Program Files\Smart File Advisor\SFAUpdater.exe [655984 2015-02-04] (Filefacts.net)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-05] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2011-07-28] (ATI Technologies Inc.)
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\...\Run: [uTorrent] => C:\Documents and Settings\PC\Data aplikací\uTorrent\uTorrent.exe [1822048 2015-10-07] (BitTorrent Inc.)
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6490904 2015-08-20] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-11-05] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk [2014-07-21]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{D84B9D2F-6A93-44B9-9B6F-F567CE3FFF1A}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://
www.seznam.cz/
HKU\S-1-5-21-1177238915-1960408961-682003330-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://
www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-05] (AVAST Software)
Toolbar: HKU\S-1-5-21-1177238915-1960408961-682003330-1004 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2014-02-25] (Společnost Microsoft)
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll [2003-10-23] (Hewlett-Packard Company)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-03] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-07-24] [not signed]
FF HKLM\...\Firefox\Extensions: [
wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-05]
Chrome:
=======
CHR Profile: C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-04]
CHR Extension: (Disk Google) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-04]
CHR Extension: (YouTube) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-04]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-04]
CHR Extension: (Gmail) - C:\Documents and Settings\PC\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-04]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-05]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-05] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-11-05] (AVAST Software)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-06-04] (Hewlett-Packard Co.) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [762192 2013-07-18] (Nero AG)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-11-05] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26096 2015-11-05] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [81168 2015-11-05] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2015-11-05] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\system32\Drivers\aswNdis2.sys [257080 2015-11-05] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-11-05] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-11-05] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [794952 2015-11-05] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [435464 2015-11-05] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [167152 2015-11-05] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-11-05] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209432 2015-11-05] (AVAST Software)
R3 AtcL001; C:\WINDOWS\System32\DRIVERS\atl01_xp.sys [35840 2006-10-31] (Attansic Technology corporation.)
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [101392 2011-03-30] (Advanced Micro Devices)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cpuz136; C:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [25320 2013-08-24] (CPUID)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2002-01-01] (Disc Soft Ltd)
R3 IntcAzAudAddService; C:\WINDOWS\System32\drivers\RtkHDAud.sys [4225920 2006-11-15] (Realtek Semiconductor Corp.) [File not signed]
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PAC7302; C:\WINDOWS\System32\DRIVERS\PAC7302.SYS [457856 2007-06-14] (PixArt Imaging Inc.)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-08-24] (Duplex Secure Ltd.)
S3 USB_RNDIS; C:\WINDOWS\System32\DRIVERS\usb8023k.sys [11136 2002-08-12] (Microsoft Corporation) [File not signed]
S4 IntelIde; no ImagePath
S3 MREMP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [X]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S3 MRESP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL; no ImagePath
U3 acghh4j2; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-14 13:03 - 2015-11-14 13:03 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\PC\Plocha\FRSTLauncher (3).exe
2015-11-14 12:03 - 2015-11-14 12:04 - 00000000 ____D C:\AdwCleaner
2015-11-14 12:02 - 2015-11-14 12:02 - 01729536 _____ C:\Documents and Settings\PC\Plocha\adwcleaner_5.020.exe
2015-11-14 10:41 - 2015-11-14 10:41 - 00008682 _____ C:\Documents and Settings\PC\Plocha\Addition.zip
2015-11-14 10:24 - 2015-11-14 13:04 - 00015029 _____ C:\Documents and Settings\PC\Plocha\FRST.txt
2015-11-14 10:24 - 2015-11-14 13:04 - 00000000 ____D C:\FRST
2015-11-14 10:22 - 2015-11-14 10:22 - 01702400 _____ (Farbar) C:\Documents and Settings\PC\Plocha\FRST.exe
2015-11-06 04:23 - 2015-11-06 04:23 - 00271784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-06 04:23 - 2015-11-06 04:23 - 00069232 _____ C:\Documents and Settings\PC\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-11-05 18:58 - 2015-11-05 18:58 - 00000756 _____ C:\Documents and Settings\All Users\Plocha\Avast SafeZone Browser.lnk
2015-11-05 18:58 - 2015-11-05 18:58 - 00000756 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast SafeZone Browser.lnk
2015-11-05 18:58 - 2015-11-05 18:58 - 00000406 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1446746267.job
2015-11-05 18:25 - 2015-11-05 18:25 - 00001689 _____ C:\Documents and Settings\All Users\Plocha\Avast Internet Security.lnk
2015-11-05 18:25 - 2015-11-05 18:25 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AVAST Software
2015-11-05 18:24 - 2015-11-05 18:23 - 00257080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2015-11-05 18:24 - 2015-11-05 18:23 - 00026096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2015-11-05 18:23 - 2015-11-05 18:23 - 00322760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-05 18:23 - 2015-11-05 18:23 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-11-05 18:23 - 2015-11-05 18:23 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys
2015-11-05 18:11 - 2015-11-05 18:11 - 00000000 __SHD C:\Documents and Settings\PC\IECompatCache
2015-11-03 17:55 - 2015-11-12 15:02 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-11-03 17:55 - 2015-11-03 17:55 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2015-11-03 17:53 - 2015-11-14 12:58 - 00000932 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-03 17:53 - 2015-11-14 12:06 - 00000928 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-31 09:58 - 2015-11-02 19:50 - 00000000 ____D C:\Program Files\TeamViewer
2015-10-31 09:58 - 2015-10-31 09:58 - 00000706 _____ C:\Documents and Settings\All Users\Plocha\TeamViewer 10.lnk
2015-10-31 09:58 - 2015-10-31 09:58 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\TeamViewer
2015-10-31 09:58 - 2015-10-31 09:58 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 10
2015-10-31 09:53 - 2015-10-31 09:55 - 00000000 ____D C:\Documents and Settings\PC\Plocha\Věci válející se na ploše
2015-10-31 09:52 - 2015-10-31 09:52 - 00000000 __SHD C:\Documents and Settings\PC\PrivacIE
2015-10-31 09:49 - 2015-10-31 09:49 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\AVAST Software
2015-10-31 09:43 - 2015-10-31 09:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallWdf01009$
2015-10-31 09:43 - 2008-11-07 18:55 - 00016928 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsgXP_2k3.dll
2015-10-31 09:42 - 2015-11-14 12:12 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-10-31 09:42 - 2015-11-05 18:23 - 00794952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00435464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00209432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00167152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00081168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00055200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00049776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-10-31 09:42 - 2015-11-05 18:23 - 00024016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-10-31 09:38 - 2015-11-05 18:23 - 00000000 ____D C:\Program Files\AVAST Software
2015-10-31 09:36 - 2015-10-31 09:52 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Opera Software
2015-10-31 09:36 - 2015-10-31 09:52 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\Opera Software
2015-10-31 09:36 - 2015-10-31 09:36 - 00000220 _____ C:\WINDOWS\Tasks\Opera N Sunday.job
2015-10-31 09:36 - 2015-10-31 09:36 - 00000220 _____ C:\WINDOWS\Tasks\Opera N Saturday.job
2015-10-31 09:36 - 2015-10-31 09:36 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\Shortcut
2015-10-31 09:35 - 2015-10-31 09:35 - 00000168 _____ C:\Documents and Settings\All Users\Data aplikací\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-10-31 09:34 - 2015-11-14 12:04 - 00000000 ____D C:\Documents and Settings\PC\Nabídka Start\Programy\Sparta
2015-10-31 09:34 - 2015-10-31 09:52 - 00000000 ____D C:\Program Files\Opera
2015-10-31 09:34 - 2015-10-31 09:34 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Sparta
2015-10-31 09:34 - 2015-10-31 09:34 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\sparta111
2015-10-29 10:20 - 2015-10-29 10:20 - 00000000 ____D C:\Documents and Settings\PC\Plocha\poškozená
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-14 13:04 - 2002-01-01 03:20 - 00000000 ___HD C:\Documents and Settings\PC\Local Settings\Data aplikací
2015-11-14 13:04 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\PC\Plocha
2015-11-14 13:04 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Temp
2015-11-14 13:02 - 2014-08-24 10:14 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\uTorrent
2015-11-14 12:46 - 2014-07-10 16:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-14 12:11 - 2002-01-01 02:35 - 01030724 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-14 12:07 - 2002-01-01 03:02 - 02081882 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-14 12:06 - 2014-12-17 19:28 - 00000216 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-11-14 12:06 - 2002-01-01 03:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-14 12:06 - 2002-01-01 02:37 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-11-14 12:06 - 2002-01-01 02:37 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-11-14 12:06 - 2002-01-01 00:31 - 00393216 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2015-11-14 12:05 - 2002-01-01 03:20 - 00032388 _____ C:\WINDOWS\SchedLgU.Txt
2015-11-14 12:05 - 2002-01-01 03:20 - 00000178 ___SH C:\Documents and Settings\PC\ntuser.ini
2015-11-14 12:04 - 2002-01-01 03:20 - 00000000 __RHD C:\Documents and Settings\PC\Data aplikací
2015-11-14 12:04 - 2002-01-01 03:20 - 00000000 ___RD C:\Documents and Settings\PC\Nabídka Start\Programy\Po spuštění
2015-11-14 12:04 - 2002-01-01 03:20 - 00000000 ___RD C:\Documents and Settings\PC\Nabídka Start\Programy
2015-11-14 12:04 - 2002-01-01 02:33 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-11-14 08:37 - 2006-03-02 13:00 - 00002422 _____ C:\WINDOWS\system32\wpa.dbl
2015-11-12 18:28 - 2002-01-01 00:03 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-12 18:22 - 2014-07-10 19:58 - 143250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-11 18:12 - 2014-10-26 15:37 - 00000000 ____D C:\Documents and Settings\PC\Plocha\Taťka oslava 50
2015-11-11 17:17 - 2014-07-10 16:17 - 00000288 _____ C:\WINDOWS\Tasks\Nero Info.job
2015-11-11 04:46 - 2014-07-10 16:47 - 00780488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-11-11 04:46 - 2014-07-10 16:47 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-11-08 15:00 - 2014-12-17 19:28 - 00000210 _____ C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-11-05 19:57 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\PC
2015-11-05 18:58 - 2002-01-01 02:35 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-11-05 18:58 - 2002-01-01 02:35 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-11-05 18:23 - 2002-01-01 00:16 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2015-11-05 04:36 - 2014-08-31 15:56 - 00069232 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-11-03 18:39 - 2014-12-24 09:32 - 00000000 ____D C:\Documents and Settings\PC\Data aplikací\PhotoScape
2015-11-03 18:38 - 2002-01-01 02:19 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2015-11-03 17:58 - 2002-01-01 00:23 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Deployment
2015-11-03 17:56 - 2002-01-01 00:26 - 00000000 ____D C:\Documents and Settings\PC\Local Settings\Data aplikací\Google
2015-11-03 17:55 - 2002-01-01 00:26 - 00000000 ____D C:\Program Files\Google
2015-11-01 07:44 - 2002-01-01 03:20 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Temp
2015-10-31 09:38 - 2002-01-01 02:35 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2015-10-31 09:36 - 2002-01-01 00:22 - 00000000 ____D C:\Program Files\CCleaner
==================== Files in the root of some directories =======
Some files in TEMP:
====================
C:\Documents and Settings\PC\Local Settings\Temp\downloader_for_ccsetup509.exe
C:\Documents and Settings\PC\Local Settings\Temp\DseShExt-x86.dll
C:\Documents and Settings\PC\Local Settings\Temp\SDShelEx-win32.dll
C:\Documents and Settings\PC\Local Settings\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:232.88 GB) (Free:213.43 GB) NTFS ==>[drive with boot components (Windows XP)]
Available physical RAM: 163.22 MB
Total physical RAM: 1023.11 MB
Percentage of memory in use: 84%
==================== MBR and Partition Table ==================
Disk: 0 (Size: 232.9 GB) (Disk ID: FBD4FBD4)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Nero Info.job => C:\Program Files\Common Files\Nero\Nero Info\NeroInfo.exe
Task: C:\WINDOWS\Tasks\Opera N Saturday.job => C:\Program Files\Opera\launcher.exe
Task: C:\WINDOWS\Tasks\Opera N Sunday.job => C:\Program Files\Opera\launcher.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1446746267.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Out of date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus (Disabled) {7591DB91-41F0-48A3-B128-1A293FD8233D}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Documents and Settings\PC\Plocha" je -261 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Documents and Settings\\PC\\Data aplikac\\Dropbox\\bin\\Dropbox.exe"="C:\\Documents and Settings\\PC\\Data aplikac\\Dropbox\\bin\\Dropbox.exe:*:Enabled:Dropbox"
"C:\\Documents and Settings\\PC\\Data aplikac\\uTorrent\\uTorrent.exe"="C:\\Documents and Settings\\PC\\Data aplikac\\uTorrent\\uTorrent.exe:*:Enabled:uTorrent"
"C:\\Program Files\\TeamViewer\\TeamViewer.exe"="C:\\Program Files\\TeamViewer\\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe"="C:\\Program Files\\TeamViewer\\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
==================== End Of Log ==============================
