VIRY.CZ

Dobrý večer,

nemohu spustit AVAST. Program hlásí, že 3 štíty jsou vypnuty. Zkoušel jsem odinstalovat, novou instalaci a nic. Spustil jsem CCleaner, vyčistil pomocí SuperAntiSpywaru, pomocí HiJackThisu povypínal všechno, co se mi zdálo podezřelé, ale Avast stejně nespustím. Zkoušel jsem spustit online scanování od Esetu nebo něco podobného od Kaspersky Lab - nic mi nefunguje. Pokud se podívám na služby, je služba AVAST vypnutá. Pokud se ji pokusím spustit ručně, hned spadne. Prosím o kontrolu logu z FRST.

Díky.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-07-2016
Ran by A (administrator) on DELL (26-07-2016 22:45:37)
Running from C:\Documents and Settings\A\Dokumenty\Stažené soubory
Loaded Profiles: A (Available Profiles: A & Maminka & zalohaAcer)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\WINDOWS\system32\IPROSetMonitor.exe
(Lavasoft Limited) C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
(Intel) C:\Program Files\Intel\AMT\LMS.exe
(Microsoft Corporation) C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Canon Inc.) C:\Program Files\Canon\CAL\CALMAIN.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\a58aeee3-2e91-4a1e-a24b-04d64fcb86f0.com


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8900328 2016-07-26] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2012-11-16] (ATI Technologies Inc.)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-08] (SuperAdBlocker.com)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2016-05-17] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2016-05-17] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2016-05-17] (Google)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\A\Data aplikací\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\A\Data aplikací\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\A\Data aplikací\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\A\Data aplikací\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\A\Data aplikací\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\A\Data aplikací\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\A\Data aplikací\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\A\Data aplikací\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-07-25] (AVAST Software)
ShellIconOverlayIdentifiers: [HubicBackupRootOverlayHandler] -> {2DF0C6DB-1E85-4894-9D4F-63CB0EAB17EA} => C:\WINDOWS\system32\mscoree.dll [2010-03-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicPublishedItemOverlayHandler] -> {7C76B697-27DF-4CFF-9909-863905561298} => C:\WINDOWS\system32\mscoree.dll [2010-03-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicSyncItemOverlayHandler] -> {9B497753-D273-4A80-9DE8-72248D7FA595} => C:\WINDOWS\system32\mscoree.dll [2010-03-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicUnsyncItemOverlayHandler] -> {D5454A6E-0904-4BA3-9E4A-240A5080259D} => C:\WINDOWS\system32\mscoree.dll [2010-03-18] (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-1957994488-1336601894-839522115-1003\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{B73A713A-F8D6-4991-A9CB-25B1898A2CA5}: [DhcpNameServer] 8.8.8.8 8.8.4.4

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1957994488-1336601894-839522115-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1957994488-1336601894-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1957994488-1336601894-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1957994488-1336601894-839522115-1003 -> DefaultScope {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1957994488-1336601894-839522115-1003 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1957994488-1336601894-839522115-1003 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-07-25] (AVAST Software)
Toolbar: HKU\S-1-5-21-1957994488-1336601894-839522115-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll [2013-08-01] (Společnost Microsoft)
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1424000104375
DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com/bin/srldetect_intel_4.5.15.0.cab

FireFox:
========
FF ProfilePath: C:\Documents and Settings\A\Data aplikací\Mozilla\Firefox\Profiles\g06xyz70.default-1448391752625
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-18] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2016-03-04] (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1957994488-1336601894-839522115-1003: @spoon.net/Spoon Plugin 3.33 -> C:\Documents and Settings\A\Local Settings\Data aplikací\Spoon\3.33.8.488\npMozillaSpoonPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-1957994488-1336601894-839522115-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\A\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF SearchPlugin: C:\Documents and Settings\A\Data aplikací\Mozilla\Firefox\Profiles\g06xyz70.default-1448391752625\searchplugins\heurekacz.xml [2015-12-09]
FF Extension: ClipConverter - C:\Documents and Settings\A\Data aplikací\Mozilla\Firefox\Profiles\g06xyz70.default-1448391752625\Extensions\clipconverter@clipconverter.cc.xpi [2016-06-08]
FF Extension: Adblock Plus - C:\Documents and Settings\A\Data aplikací\Mozilla\Firefox\Profiles\g06xyz70.default-1448391752625\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-05-08] [not signed]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-07-26]

Chrome:
=======
CHR HomePage: Default -> about:blank
CHR StartupUrls: Default -> "hxxp://gameknot.com/play-chess.pl?iu=frankweb63&rnd=31045"
CHR Profile: C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-29]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-24]
CHR Extension: (Disk Google) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-24]
CHR Extension: (YouTube) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-17]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-24]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-29]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-13]
CHR Extension: (AdBlock) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-05-13]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-05-13]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-11-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-13]
CHR Extension: (Gmail) - C:\Documents and Settings\A\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-29]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1957994488-1336601894-839522115-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-07-23] (SUPERAntiSpyware.com)
S4 atchksrv; C:\Program Files\Intel\AMT\atchksrv.exe [183064 2007-05-29] (Intel Corporation)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2010-02-10] () [File not signed]
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-07-25] (AVAST Software)
R2 CCALib8; C:\Program Files\Canon\CAL\CALMAIN.exe [96341 2005-09-30] (Canon Inc.) [File not signed]
S4 HPSupportSolutionsFrameworkService; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
R2 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [121600 2013-04-05] (Intel Corporation)
R2 LavasoftTcpService; C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751760 2015-11-22] (Lavasoft Limited)
R2 LMS; C:\Program Files\Intel\AMT\LMS.exe [105240 2007-05-29] (Intel)
R2 MsDepSvc; C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe [84624 2013-06-10] (Microsoft Corporation)
S4 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [43130032 2015-03-30] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [45568 2014-04-28] (Hewlett-Packard) [File not signed]
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [55808 2014-04-28] (Hewlett-Packard) [File not signed]
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [381104 2015-03-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [34008 2016-07-25] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91680 2016-07-25] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [64272 2016-07-25] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [60424 2016-07-25] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [816304 2016-07-25] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [438296 2016-07-26] (AVAST Software)
S3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [184592 2016-07-25] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [66688 2016-07-25] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [222056 2016-07-25] (AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [103040 2012-05-14] (Advanced Micro Devices)
R3 CamSuiteVAC; C:\WINDOWS\System32\DRIVERS\CamSuiteVAC.sys [37560 2008-09-20] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 cpudrv; C:\Program Files\SystemRequirementsLab\cpudrv.sys [11336 2011-06-02] ()
R1 EIO_XP; C:\WINDOWS\system32\drivers\EIO_XP.sys [12288 2006-06-14] (ASUSTeK Computer Inc.) [File not signed]
S3 HPFXBULK; C:\WINDOWS\System32\drivers\hpfxbulk.sys [9344 2006-06-12] (Hewlett Packard)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [22560 2013-09-15] (REALiX(tm))
S3 mgau; C:\WINDOWS\System32\DRIVERS\mgaum.sys [320384 2001-10-24] (Matrox Graphics Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 PAC7302; C:\WINDOWS\System32\DRIVERS\PAC7302.SYS [461824 2009-04-28] (PixArt Imaging Inc.) [File not signed]
S3 pneteth; C:\WINDOWS\System32\DRIVERS\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.) [File not signed]
S3 pnetmdm; C:\WINDOWS\System32\DRIVERS\pnetmdm.sys [9472 2006-09-28] (June Fabrics Technology) [File not signed]
S4 RsFx0153; C:\WINDOWS\System32\DRIVERS\RsFx0153.sys [250152 2015-03-30] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 eapihdrv; \??\C:\DOCUME~1\A\LOCALS~1\Temp\ehdrv.sys [X]
S3 HTCAND32; System32\Drivers\ANDROIDUSB.sys [X]
S4 IntelIde; no ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-26 22:26 - 2016-07-26 22:45 - 00000000 ____D C:\FRST
2016-07-26 21:56 - 2016-07-26 21:56 - 00014216 _____ C:\Documents and Settings\A\Dokumenty\cc_20160726_215637.reg
2016-07-26 21:53 - 2016-07-26 21:53 - 00024556 _____ C:\Documents and Settings\A\Dokumenty\cc_20160726_215305.reg
2016-07-26 21:41 - 2016-07-26 21:43 - 00000140 _____ C:\WINDOWS\Reimage.ini
2016-07-26 21:30 - 2016-07-26 21:30 - 00000000 ___SD C:\ComboFix
2016-07-26 07:45 - 2016-07-26 07:45 - 00000000 ____D C:\Documents and Settings\A\Nabídka Start\Programy\Dropbox
2016-07-26 00:46 - 2016-07-26 00:46 - 00000000 ____D C:\Program Files\CrystalDiskInfo
2016-07-26 00:36 - 2016-07-26 00:36 - 00000000 ____D C:\Program Files\HD Tune
2016-07-26 00:36 - 2016-07-26 00:36 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\HD Tune
2016-07-26 00:13 - 2016-07-26 00:21 - 00000000 _____ C:\WINDOWS\system32\last.dump
2016-07-26 00:11 - 2016-07-26 00:11 - 00000000 ____D C:\Documents and Settings\A\Data aplikací\AVAST Software
2016-07-26 00:06 - 2016-07-25 23:49 - 00319248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-07-26 00:05 - 2016-07-26 00:05 - 00001813 _____ C:\Documents and Settings\Default User\Plocha\Google Chrome.lnk
2016-07-26 00:04 - 2016-07-26 00:10 - 00000000 ____D C:\Documents and Settings\A\Data aplikací\Seznam.cz
2016-07-25 23:53 - 2016-07-26 00:08 - 00001507 _____ C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2016-07-25 23:53 - 2016-07-25 23:53 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AVAST Software
2016-07-25 23:50 - 2016-07-26 21:58 - 00000306 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2016-07-25 23:50 - 2016-07-26 00:02 - 00438296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-07-25 23:50 - 2016-07-25 23:49 - 00816304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-07-25 23:50 - 2016-07-25 23:49 - 00222056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-07-25 23:50 - 2016-07-25 23:49 - 00184592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2016-07-25 23:50 - 2016-07-25 23:49 - 00091680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-07-25 23:50 - 2016-07-25 23:49 - 00066688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2016-07-25 23:50 - 2016-07-25 23:49 - 00064272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2016-07-25 23:50 - 2016-07-25 23:49 - 00060424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-07-25 23:50 - 2016-07-25 23:49 - 00034008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-07-25 23:49 - 2016-07-25 23:49 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-07-25 23:47 - 2016-07-25 23:47 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2016-07-25 23:44 - 2016-07-25 23:44 - 00005330 _____ C:\Documents and Settings\A\Dokumenty\cc_20160725_234436.reg
2016-07-25 23:35 - 2016-07-25 23:35 - 00019620 _____ C:\Documents and Settings\A\Dokumenty\cc_20160725_233511.reg
2016-07-25 23:15 - 2016-07-25 23:16 - 07200704 _____ (AVAST Software) C:\Documents and Settings\A\Dokumenty\avastclear.exe
2016-07-25 23:03 - 2016-07-25 23:03 - 00000000 ____D C:\SUPERDelete
2016-07-25 22:45 - 2016-07-25 22:45 - 00000000 ____D C:\Documents and Settings\All Users\Kaspersky Lab
2016-07-25 22:39 - 2016-07-25 23:29 - 00000000 ____D C:\Documents and Settings\All Users\Kaspersky Lab Setup Files
2016-07-25 22:09 - 2016-07-25 22:09 - 00000886 _____ C:\avenger.txt
2016-07-25 22:04 - 2016-07-26 22:16 - 00000000 ____D C:\Program Files\trend micro
2016-07-25 22:04 - 2016-07-25 22:05 - 00000000 ____D C:\rsit
2016-07-25 21:51 - 2016-07-26 22:45 - 00000000 ____D C:\Documents and Settings\A\Local Settings\temp
2016-07-25 21:51 - 2016-07-26 20:29 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\temp
2016-07-25 21:51 - 2016-07-25 21:51 - 00026108 _____ C:\ComboFix.txt
2016-07-25 21:51 - 2016-07-25 21:51 - 00000000 ____D C:\Documents and Settings\zalohaAcer\Local Settings\temp
2016-07-25 21:51 - 2016-07-25 21:51 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\temp
2016-07-25 21:51 - 2016-07-25 21:51 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\temp
2016-07-23 20:10 - 2016-07-23 20:10 - 00020614 _____ C:\ZB20160723200837001.xml
2016-07-13 17:39 - 2016-07-13 17:39 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3168965$
2016-07-13 17:29 - 2016-07-13 17:29 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3170455$
2016-07-13 16:30 - 2016-06-11 00:56 - 02006528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2016-07-13 16:30 - 2016-06-11 00:56 - 00630784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstime.dll
2016-07-13 16:30 - 2016-06-11 00:56 - 00424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-07-13 16:30 - 2016-06-11 00:56 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-07-13 16:30 - 2016-06-11 00:56 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2016-07-13 16:30 - 2016-06-11 00:56 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\corpol.dll
2016-07-02 19:40 - 2016-07-02 19:40 - 00061957 _____ C:\Documents and Settings\A\Dokumenty\mt-69413-02-Jul-16.pgn
2016-06-30 20:23 - 2016-06-30 20:23 - 00000000 ____D C:\Documents and Settings\A\Local Settings\Data aplikací\CEF
2016-06-30 14:59 - 2016-06-30 14:59 - 00921280 _____ (Microsoft Corporation) C:\WINDOWS\ucrtbase.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-26 22:45 - 2015-11-28 22:30 - 00000000 ____D C:\Documents and Settings\A\Dokumenty\Stažené soubory
2016-07-26 22:39 - 2015-11-22 22:35 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-07-26 22:33 - 2013-09-15 06:06 - 00000000 ____D C:\Documents and Settings\A
2016-07-26 22:06 - 2013-09-15 07:54 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2016-07-26 22:03 - 2013-09-15 07:54 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2016-07-26 22:00 - 2004-08-18 14:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2016-07-26 21:57 - 2013-09-15 06:05 - 00032510 ____N C:\WINDOWS\SchedLgU.Txt
2016-07-26 21:57 - 2013-09-15 06:05 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-26 21:56 - 2013-09-15 06:06 - 00000178 ___SH C:\Documents and Settings\A\ntuser.ini
2016-07-26 21:56 - 2013-09-15 06:06 - 00000000 ___RD C:\Documents and Settings\A\Dokumenty
2016-07-26 21:53 - 2013-09-15 07:54 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2016-07-26 21:53 - 2013-09-15 06:06 - 00000000 __RHD C:\Documents and Settings\A\Data aplikací
2016-07-26 21:30 - 2014-05-29 16:52 - 00000000 ____D C:\Qoobox
2016-07-26 21:22 - 2013-09-20 18:40 - 00000000 ____D C:\Program Files\Inno Setup 5
2016-07-26 21:22 - 2013-09-20 18:40 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Inno Setup 5
2016-07-26 20:13 - 2013-09-15 08:26 - 00000207 _____ C:\WINDOWS\ChssBase.ini
2016-07-26 07:46 - 2013-09-15 14:20 - 00000000 ___RD C:\Documents and Settings\A\Dokumenty\Dropbox
2016-07-26 07:45 - 2013-09-15 14:14 - 00000000 ____D C:\Documents and Settings\A\Data aplikací\Dropbox
2016-07-26 07:45 - 2013-09-15 06:06 - 00000000 ____D C:\Documents and Settings\A\Nabídka Start\Programy
2016-07-26 00:26 - 2013-09-15 20:12 - 00000000 ____D C:\Program Files\_bez_instalace
2016-07-26 00:05 - 2013-09-15 07:54 - 00000000 ___HD C:\Documents and Settings\Default User
2016-07-26 00:04 - 2015-12-03 12:47 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\Data aplikací\Google
2016-07-25 23:56 - 2013-09-15 07:53 - 00000327 __RSH C:\boot.ini
2016-07-25 23:56 - 2004-08-18 14:00 - 00001470 _____ C:\WINDOWS\win.ini
2016-07-25 23:56 - 2004-08-18 14:00 - 00000227 _____ C:\WINDOWS\system.ini
2016-07-25 23:53 - 2013-09-15 07:49 - 00000000 ___HD C:\WINDOWS\inf
2016-07-25 23:40 - 2014-12-16 15:57 - 00000000 ____D C:\Documents and Settings\A\Local Settings\Data aplikací\Avg
2016-07-25 23:37 - 2013-09-15 08:02 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-25 23:37 - 2013-09-15 08:02 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-25 23:28 - 2013-09-15 07:54 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2016-07-25 23:25 - 2015-01-18 00:11 - 00000000 __RHD C:\Documents and Settings\zalohaAcer\Data aplikací
2016-07-25 23:25 - 2013-09-15 08:48 - 00000000 __RHD C:\Documents and Settings\Maminka\Data aplikací
2016-07-25 23:22 - 2013-09-15 08:01 - 00000000 ____D C:\Program Files\AVAST Software
2016-07-25 22:45 - 2013-09-15 07:54 - 00000000 ____D C:\Documents and Settings\All Users
2016-07-25 22:21 - 2015-11-23 20:21 - 00035064 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-07-25 22:20 - 2013-10-18 18:39 - 00000000 ___RD C:\Documents and Settings\A\Dokumenty\Obrázky
2016-07-25 22:10 - 2013-09-15 06:05 - 00000000 __SHD C:\Documents and Settings\LocalService
2016-07-23 20:15 - 2013-09-15 12:49 - 00016384 _____ C:\Documents and Settings\A\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-07-23 20:12 - 2015-12-06 10:59 - 00000000 ____D C:\Documents and Settings\A\Plocha\blbost
2016-07-23 20:12 - 2014-04-24 19:14 - 00022016 ___SH C:\Documents and Settings\A\Plocha\Thumbs.db
2016-07-23 20:02 - 2016-03-22 16:12 - 00000756 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast SafeZone 1 Browser.lnk
2016-07-22 19:54 - 2014-10-08 22:59 - 00036448 _____ C:\Documents and Settings\A\Plocha\Nový objekt - Textový dokument.txt
2016-07-21 12:49 - 2013-09-15 20:30 - 00002503 _____ C:\Documents and Settings\A\Plocha\Microsoft Excel.lnk
2016-07-18 12:39 - 2013-09-15 22:31 - 04786882 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1957994488-1336601894-839522115-1003-0.dat
2016-07-18 12:39 - 2013-09-15 22:31 - 00249494 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2016-07-18 12:18 - 2013-11-29 22:33 - 00000000 ____D C:\Documents and Settings\A\Dokumenty\Visual Studio 2010
2016-07-14 15:25 - 2013-09-15 07:54 - 00279744 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-07-13 17:39 - 2013-09-15 07:49 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2016-07-13 17:35 - 2013-09-15 07:55 - 01390144 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-13 17:35 - 2004-08-18 14:00 - 00563794 _____ C:\WINDOWS\system32\perfh005.dat
2016-07-13 17:35 - 2004-08-18 14:00 - 00127724 _____ C:\WINDOWS\system32\perfc005.dat
2016-07-13 17:25 - 2013-09-15 13:25 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2016-07-13 17:04 - 2013-11-13 15:59 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-07-13 16:54 - 2013-09-15 09:31 - 141983760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-07-08 19:28 - 2013-09-15 06:06 - 00000000 ____D C:\Documents and Settings\A\Plocha
2016-06-30 20:23 - 2013-09-15 06:06 - 00000000 ___HD C:\Documents and Settings\A\Local Settings\Data aplikací
2016-06-29 19:20 - 2016-06-08 15:36 - 00000000 ____D C:\Program Files\Mozilla Firefox

==================== Files in the root of some directories =======

2015-05-02 13:03 - 2015-05-02 13:03 - 0000109 _____ () C:\Documents and Settings\A\Data aplikací\settings.xml
2013-09-15 12:49 - 2016-07-23 20:15 - 0016384 _____ () C:\Documents and Settings\A\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-23 21:26 - 2015-08-29 07:23 - 0201229 _____ () C:\Documents and Settings\A\Local Settings\Data aplikací\debuggee.mdmp
2013-09-15 13:11 - 2013-09-15 13:23 - 0000066 _____ () C:\Documents and Settings\A\Local Settings\Data aplikací\FASTWiz.log
2013-09-19 18:57 - 2013-09-19 18:57 - 0000121 _____ () C:\Documents and Settings\A\Local Settings\Data aplikací\fusioncache.dat
2015-01-21 18:54 - 2015-01-21 19:49 - 0002189 _____ () C:\Documents and Settings\All Users\Data aplikací\hpzinstall.log
2016-05-04 20:53 - 2016-05-04 21:11 - 0003817 _____ () C:\Documents and Settings\All Users\Data aplikací\lpm.dat

Some files in TEMP:
====================
C:\Documents and Settings\A\Local Settings\temp\ReimagePackage.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Zdravím,

za tu samoléčbu ComboFixem tě nepochválím

1 - Odinstaluj Avast http://www.avast.com/cs-cz/uninstall-utility

2 - Stáhni a nainstaluj MBAM zde http://www.bleepingcomputer.com/downloa ... re/dl/241/ verzi 1.75
Při instalaci ti jako první nabídne instalaci nové verze (případně i při spuštění) - dáš Storno - bude aktualizována jen databáze
Po instalaci Spustit -> na 1.záložce "Kontrolor" -> Úplná kontrola -> Prohledat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení a program nezavírej, jen minimalizuj

Ok, Díky, přikládám log

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2016.07.27.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
A :: DELL [administrátor]

Ochrana: Povolena

27.7.2016 14:18:23
MBAM-log-2016-07-27 (17-03-46).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 689906
Uplynulý čas: 2 hodin, 44 minut, 43 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 5
HKCU\Software\FreeHD-Sport TV V9.0 (PUP.Optional.FreeHDSportTV) -> Nebyla provedena žádná instrukce.
HKCU\Software\GoPhoto.it V9.0 (PUP.Optional.GoPhoto) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE (PUM.Optional.DisableChromeUpdates) -> Nebyla provedena žádná instrukce.
HKLM\Software\FreeHD-Sport TV V9.0 (PUP.Optional.FreeHDSportTV) -> Nebyla provedena žádná instrukce.
HKLM\Software\GoPhoto.it V9.0 (PUP.Optional.GoPhoto) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 3
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|FreeHD-Sport TV V9.0-bg.exe (PUP.Optional.CrossRider.Generic) -> Data: 8000 -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|GoPhoto.it V9.0-bg.exe (PUP.Optional.CrossRider.Generic) -> Data: 8000 -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Policies\Google\Update|DisableAutoUpdateChecksCheckboxValue (PUM.Optional.DisableChromeUpdates) -> Data: 1 -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 3
C:\Program Files\_hry_bez_instal\hlavolamy\BUDIKn_CZ.exe (Spyware.PasswordStealer) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{2A294ACD-A771-4DB9-ABBE-9ADCEDDF7DB6}\RP522\A0420933.exe (PUP.Optional.APNToolBar) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\Free Video Converter\Uninstall.exe.vir (PUP.Optional.Koyote) -> Nebyla provedena žádná instrukce.

(konec)

nález MBAM dej odstranit/do karantény vše

nainstaluj Avast
http://www.avast.com/cs-cz/index
Free Antivirus Základní

dej log RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786

Nález jsem dal do karantény.
Pokusil jsem se nainstalovaz AVAST. Instalace skončila vytvořením zástupce, ale AVAST se nespustil. Při pokusu ručně spustit hlásí chybějící soubor. V adresáři AVASTu jsou knihovny AhResMai.dll a AhResStd.dll se starším datumem, než ostatní. Může být příčina tady v tom, že je avastclear neodebral?

EDIT: Tak po dalším restartu se avast probudil, nicméně stejně neběží. Služba je zastavena a nelze spustit

Přikládám log z RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by A at 2016-07-28 12:39:34
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 270 GB (57%) free of 477 GB
Total RAM: 3583 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:39:44, on 28.7.2016
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.23841)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\IProsetMonitor.exe
C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
C:\Program Files\Intel\AMT\LMS.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\svchost.exe
C:\totalcmd\TOTALCMD.EXE
C:\Documents and Settings\A\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\A.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 4000104375
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} - http://content.systemrequirementslab.co ... 5.15.0.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Unknown owner - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (file missing)
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Intel Corporation - C:\WINDOWS\system32\IProsetMonitor.exe
O23 - Service: LavasoftTcpService - Lavasoft Limited - C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
O23 - Service: Intel(R) Active Management Technology Local Management Service (LMS) - Intel - C:\Program Files\Intel\AMT\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe

--
End of file - 5062 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\DivXUpdate.job - C:\Program Files\Common Files\DivX Shared\Qt4.8\DivXUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job - c:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\A\Data aplikací\Mozilla\Firefox\Profiles\g06xyz70.default-1448391752625

prefs.js - "browser.search.useDBForOrder" - true

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.192 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Documents and Settings\A\Data aplikací\Mozilla\Firefox\Profiles\g06xyz70.default-1448391752625\searchplugins\
heurekacz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\atchk]
C:\Program Files\Intel\AMT\atchk.exe [2007-05-29 404248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AvastUI.exe]
C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
bthprops.cpl,,BluetoothAuthenticationAgent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXMediaServer]
C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2016-03-10 839648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dropbox Update]
C:\Documents and Settings\A\Local Settings\Data aplikací\Dropbox\Update\DropboxUpdate.exe [2015-08-05 134512]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPUsageTracking]
c:\Program Files\HP\HP UT\bin\hppusg.exe [2006-06-09 36864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\WINDOWS\system32\igfxtray.exe [2008-12-12 143360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelliPoint]
c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 1821576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LG Smart Share]
C:\Program Files\LG Software\LG Smart Share\SmartShareStartXP.exe [2014-01-06 134744]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\WINDOWS\PixArt\PAC7302\Monitor.exe [2007-12-10 323584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\WINDOWS\system32\igfxpers.exe [2008-12-12 143360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2008-06-13 16871936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-12-17 508800]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ToolBoxFX]
c:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe [2006-06-15 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Web Companion]
C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [2015-11-22 1409296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
C:\PROGRA~1\MI1933~1\Office10\OSA.EXE [2001-02-13 83360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^A^Nabídka Start^Programy^Po spuštění^Dropbox.lnk]
C:\DOCUME~1\A\DATAAP~1\Dropbox\bin\Dropbox.exe [2016-07-05 24204648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^A^Nabídka Start^Programy^Po spuštění^PdaNet Desktop.lnk]
C:\PROGRA~1\PDANET~1\PdaNetPC.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"MSSQL$SQLEXPRESS"=2
"HPSupportSolutionsFrameworkService"=2
"gupdatem"=3
"gupdate"=2
"aspnet_state"=3
"SkypeUpdate"=2
"BstHdUpdaterSvc"=2
"BstHdLogRotatorSvc"=2
"BstHdAndroidSvc"=2
"atchksrv"=2
"!SASCORE"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2012-11-16 192512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-12-12 217088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2013-05-08 115440]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Documents and Settings\A\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\A\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\hp_LJ_P2015_Full_Solution\setup\HPZnet01.exe"="C:\hp_LJ_P2015_Full_Solution\setup\HPZnet01.exe:*:Enabled:hpznet01.exe"
"C:\hp_LJ_P2015_Full_Solution\setup\hppapd.exe"="C:\hp_LJ_P2015_Full_Solution\setup\hppapd.exe:*:Enabled:hppapd.exe"
"C:\hp_LJ_P2015_Full_Solution\setup\hpntwkexe.exe"="C:\hp_LJ_P2015_Full_Solution\setup\hpntwkexe.exe:*:Enabled:hpntwkexe.exe"
"C:\Program Files\LG Software\LG Smart Share\DMS\SmartShareDMS.exe"="C:\Program Files\LG Software\LG Smart Share\DMS\SmartShareDMS.exe:*:Enabled:SmartShareDMS"
"C:\Program Files\Java\jdk1.7.0_51\bin\java.exe"="C:\Program Files\Java\jdk1.7.0_51\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Games\World_of_Tanks\WorldOfTanks.exe"="C:\Games\World_of_Tanks\WorldOfTanks.exe:*:Disabled:World of Tanks"
"C:\Games\World_of_Tanks\WoTLauncher.exe"="C:\Games\World_of_Tanks\WoTLauncher.exe:*:Disabled:World of Tanks Launcher"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv

======List of files/folders created in the last 1 month======

2016-07-28 12:37:39 ----D---- C:\WINDOWS\LastGood
2016-07-28 12:36:40 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2016-07-28 12:36:40 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2016-07-28 12:36:40 ----A---- C:\WINDOWS\system32\drivers\aswStmXP.sys
2016-07-28 12:36:39 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2016-07-28 12:36:39 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2016-07-28 12:36:39 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2016-07-28 12:36:38 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2016-07-28 12:36:38 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2016-07-28 12:36:37 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2016-07-28 12:35:59 ----A---- C:\WINDOWS\system32\aswBoot.exe
2016-07-28 12:35:25 ----A---- C:\WINDOWS\avastSS.scr
2016-07-28 12:33:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2016-07-28 11:56:24 ----SHD---- C:\RECYCLER
2016-07-27 12:51:01 ----D---- C:\Documents and Settings\A\Data aplikací\Malwarebytes
2016-07-27 12:50:41 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2016-07-27 12:50:41 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2016-07-27 12:38:44 ----A---- C:\WINDOWS\ntbtlog.txt
2016-07-26 23:16:00 ----A---- C:\ComboFix.txt
2016-07-26 22:26:56 ----D---- C:\FRST
2016-07-26 21:41:28 ----A---- C:\WINDOWS\Reimage.ini
2016-07-26 00:46:05 ----D---- C:\Program Files\CrystalDiskInfo
2016-07-26 00:36:27 ----D---- C:\Program Files\HD Tune
2016-07-26 00:04:25 ----D---- C:\Documents and Settings\A\Data aplikací\Seznam.cz
2016-07-25 23:03:46 ----D---- C:\SUPERDelete
2016-07-25 22:04:57 ----D---- C:\rsit
2016-07-25 22:04:57 ----D---- C:\Program Files\trend micro
2016-07-13 17:39:10 ----HDC---- C:\WINDOWS\$NtUninstallKB3168965$
2016-07-13 17:29:13 ----HDC---- C:\WINDOWS\$NtUninstallKB3170455$
2016-07-13 16:30:58 ----A---- C:\WINDOWS\system32\licmgr10.dll
2016-07-13 16:30:56 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-07-13 16:30:56 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-06-30 14:59:34 ----A---- C:\WINDOWS\ucrtbase.dll

======List of files/folders modified in the last 1 month======

2016-07-28 12:39:44 ----D---- C:\WINDOWS\Prefetch
2016-07-28 12:39:05 ----HD---- C:\WINDOWS\inf
2016-07-28 12:38:42 ----D---- C:\WINDOWS\system32\CatRoot
2016-07-28 12:38:42 ----D---- C:\WINDOWS\system32
2016-07-28 12:38:42 ----D---- C:\WINDOWS
2016-07-28 12:38:30 ----D---- C:\WINDOWS\Temp
2016-07-28 12:37:39 ----D---- C:\WINDOWS\system32\CatRoot2
2016-07-28 12:37:36 ----D---- C:\WINDOWS\system32\drivers
2016-07-28 12:36:44 ----SD---- C:\WINDOWS\Tasks
2016-07-28 12:28:38 ----A---- C:\WINDOWS\system32\log.txt
2016-07-28 12:27:06 ----A---- C:\WINDOWS\SchedLgU.Txt
2016-07-28 09:14:01 ----A---- C:\WINDOWS\ChssBase.ini
2016-07-27 14:14:12 ----D---- C:\WINDOWS\Minidump
2016-07-27 12:50:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2016-07-27 12:50:41 ----D---- C:\Program Files
2016-07-26 23:16:03 ----D---- C:\Qoobox
2016-07-26 23:11:22 ----A---- C:\WINDOWS\system.ini
2016-07-26 23:11:14 ----D---- C:\WINDOWS\system32\drivers\etc
2016-07-26 23:09:47 ----D---- C:\WINDOWS\system32\config
2016-07-26 23:09:11 ----D---- C:\WINDOWS\erdnt
2016-07-26 23:05:50 ----D---- C:\WINDOWS\AppPatch
2016-07-26 23:05:47 ----D---- C:\Program Files\Common Files
2016-07-26 22:39:21 ----D---- C:\Program Files\SUPERAntiSpyware
2016-07-26 21:22:47 ----D---- C:\Program Files\Inno Setup 5
2016-07-26 07:45:38 ----D---- C:\Documents and Settings\A\Data aplikací\Dropbox
2016-07-26 00:26:18 ----D---- C:\Program Files\_bez_instalace
2016-07-25 23:56:29 ----RASH---- C:\boot.ini
2016-07-25 23:56:29 ----A---- C:\WINDOWS\win.ini
2016-07-25 23:50:27 ----SHD---- C:\WINDOWS\Installer
2016-07-25 23:33:01 ----D---- C:\Config.Msi
2016-07-25 23:22:11 ----D---- C:\Program Files\AVAST Software
2016-07-16 16:52:36 ----RSD---- C:\WINDOWS\assembly
2016-07-16 16:52:36 ----D---- C:\WINDOWS\Microsoft.NET
2016-07-13 18:49:17 ----D---- C:\WINDOWS\Debug
2016-07-13 17:39:11 ----RSHDC---- C:\WINDOWS\system32\dllcache
2016-07-13 17:35:55 ----D---- C:\WINDOWS\WinSxS
2016-07-13 17:35:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-13 17:25:02 ----D---- C:\WINDOWS\system32\XPSViewer
2016-07-13 17:14:45 ----D---- C:\Program Files\Internet Explorer
2016-07-13 17:04:58 ----D---- C:\WINDOWS\system32\MRT
2016-07-13 16:54:16 ----A---- C:\WINDOWS\system32\MRT.exe
2016-06-29 19:20:40 ----D---- C:\Program Files\Mozilla Firefox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-07-28 222056]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2016-07-28 64272]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-07-28 816304]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-07-28 438296]
R1 EIO_XP;EIO_XP; \??\C:\WINDOWS\system32\drivers\EIO_XP.sys []
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-07-28 34008]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-07-28 91680]
R3 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2016-07-28 66688]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2012-11-16 7874560]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdXP3.sys [2012-05-14 103040]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
R3 CamSuiteVAC;CamSuite Virtual Audio; C:\WINDOWS\system32\DRIVERS\CamSuiteVAC.sys [2008-09-20 37560]
R3 e1express;Intel(R) PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2012-10-30 254336]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HECI;Intel(R) Management Engine Interface; C:\WINDOWS\system32\DRIVERS\HECI.sys [2007-07-09 44416]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-06-17 4756992]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-07-28 60424]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 aswStmXP;Avast StreamFilter Driver; C:\WINDOWS\system32\drivers\aswStmXP.sys [2016-07-28 184592]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 cpudrv;cpudrv; \??\C:\Program Files\SystemRequirementsLab\cpudrv.sys []
S3 dc3d;MS Hardware Device Detection Driver (USB); C:\WINDOWS\system32\DRIVERS\dc3d.sys [2011-08-01 45288]
S3 eapihdrv;eapihdrv; \??\C:\DOCUME~1\A\LOCALS~1\Temp\ehdrv.sys []
S3 HPFXBULK;HPFXBULK; C:\WINDOWS\system32\drivers\hpfxbulk.sys [2006-06-12 9344]
S3 HTCAND32;HTC Device Driver; C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys []
S3 htcnprot;HTC NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [2012-12-07 21248]
S3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-12-12 6048768]
S3 mgau;mgau; C:\WINDOWS\system32\DRIVERS\mgaum.sys [2001-10-24 320384]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 PAC7302;iLook 310; C:\WINDOWS\system32\DRIVERS\PAC7302.SYS [2009-04-28 461824]
S3 pneteth;PdaNet Broadband; C:\WINDOWS\system32\DRIVERS\pneteth.sys [2011-11-25 13440]
S3 pnetmdm;PdaNet Modem; C:\WINDOWS\system32\DRIVERS\pnetmdm.sys [2006-09-28 9472]
S3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2011-08-01 40936]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2016-01-29 26496]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2013-04-12 104720]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys []
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WinUSB;Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2009-07-13 34944]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 RsFx0153;RsFx0153 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0153.sys [2015-03-30 250152]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2012-11-16 643072]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2005-09-30 96341]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [2013-04-05 121600]
R2 LavasoftTcpService;LavasoftTcpService; C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2015-11-22 2751760]
R2 LMS;Intel(R) Active Management Technology Local Management Service; C:\Program Files\Intel\AMT\LMS.exe [2007-05-29 105240]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 MsDepSvc;Služba agenta pro nasazení webu; C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe [2013-06-10 84624]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-04-03 97632]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2010-02-10 593920]
S2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-18 270016]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-08 146888]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-07-23 142648]
S4 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S4 atchksrv;Intel(R) Active Management Technology System Status Service; C:\Program Files\Intel\AMT\atchksrv.exe [2007-05-29 183064]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S4 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-12-11 89864]
S4 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2015-03-30 43130032]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 44896]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2015-03-30 381104]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2015-03-30 278704]

-----------------EOF-----------------

Start -> Spustit... - zadej postupně

sc stop eapihdrv
enter
sc delete eapihdrv
enter

smaž složky
C:\Documents and Settings\A\Local Settings\Data aplikací\Avg
C:\Program Files\AVAST Software
+soubor C:\WINDOWS\tasks\avast! Emergency Update.job

zkus znovu odinstalaci/instalaci Avastu

pak do Vyhledávání (Win+F) zadej AvastSvc.exe

eapihdrv - provedeno

C:\Documents and Settings\A\Local Settings\Data aplikací\Avg - smazáno

C:\Program Files\AVAST Software - nejde smazat. Z§stávají tam soubory AhResMai.dll + AhResStd.dll. Zkoušel ksem znovu spoustit avastclear - nic. Zkoušel jsem je smazat Unlockerem - napsal, že je smaže po restartu - nesmazal. Zkusil jsem je smazat unlocker ve stavu nouze - to samé.

soubor C:\WINDOWS\tasks\avast! Emergency Update.job - smazáno - po proběhnutí avastCleanerem už v adresáři nebyl

vyhledat AvastSvc.exe - jediný výskyt Ve složce C:\Windows\Prefetch je soubor AVASTSVC.EXE-2FF42CC2.pf

Stahni Avenger zde:
http://swandog46.geekstogo.com/avenger.exe
Spusť a všude souhlas „Yes“

Hlavní okno
dole dej fajfku do obou čtverečků

Do pole „Input script here“ zkopíruj zelený text scriptu -> „Execute“ -> „Yes“
Bude restart a je potřeba vyčkat na otevření Notepadu a jeho obsah sem vložit. (C:\avenger.txt)

Script

Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

Folder "C:\Program Files\AVAST Software" deleted successfully.

Completed script processing.

*******************

Finished! Terminate.

Zkusil jsi reinstal Avastu?

Zkusil jsem to teď. Při instalaci AVASTu počítač zamrzl. Odinstaloval jsem, zkusil ještě jednou a počítač zamrzl znovu. Po restartu se nešlo ani přihlásit, musel jsem do nouzového režimu a znovu odinstalovat Avast. Bez něj pc normálně jde. Mám zkusit nějaký jiný antivir?
Díky za trpělivost

Zřejmě si Avast s něčím nesedí

Vyzkoušej http://forum.viry.cz/viewtopic.php?f=29&t=148774
nebo http://forum.viry.cz/viewtopic.php?f=29&t=148793

Nainstaloval jsem Bitdefender. Všechno se zdá být v pořádku. Děkuji moc za rady a trpělivost se mnou.

To jsem rád a nemáš zač

ještě zameteme stopy
DelFix https://toolslib.net/downloads/finish/2/

Stáhni a spusť
Ponech zatržítkou pouze u volby "Remote disinfection tools"
Klikni na "Run" - uklidí po použitých čističích

a najdeš nás tu i příště