Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

vyskakovací černé okno

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Mataa90
Návštěvník
Návštěvník
Příspěvky: 117
Registrován: 03 črc 2014 15:31

vyskakovací černé okno

#1 Příspěvek od Mataa90 »

Zdravím, čistila jsem tady s Rudym pc před pár dny..myslela jsem, že už je to všechno ok, ale stále mi vyskakují černá okna na obrazovce. Předtím mi to jen blikalo na hlavním panelu, teď to vyskakuje na obrazovku. V oknech se ukazuje taskeng.exe. Prosím o pomoc, děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:28-10-2015
Ran by Martina (administrator) on IDEA-PC (29-10-2015 13:20:43)
Running from C:\Users\Martina\Desktop\Složky\Programy\na viry
Loaded Profiles: Martina (Available Profiles: Martina)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.5_41203\utorrentie.exe
() C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.5_41203\utorrentie.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-15] (Conexant Systems, Inc.)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-09-30] ()
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2013-02-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2013-02-08] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2012-05-02] (Vimicro)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [Philips Device Listener] => C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [380416 2012-02-15] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [36711472 2015-10-13] (Dropbox, Inc.)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7694392 2015-09-29] (GOG.com)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent] => C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [1977192 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [C] => cmd /c copy/b/y C:\windows\system32\GroupPolicy\Machine\R C:\windows\system32\GroupPolicy\Machine\Registry.pol >nul
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\scrnsave.scr [11264 2012-07-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.10.1 192.168.10.1
Tcpip\..\Interfaces\{D58DC935-FA05-437B-BA74-886A24E255C4}: [DhcpNameServer] 10.0.10.1 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {24AB7B16-6C04-4E62-BADB-A3AF9C7BA5B2} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {28DBDC09-CD74-4291-80D1-789ACD6F9883} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {4E0C853B-1E34-451A-B946-3B8D7C8BCE5D} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&r ... {startPage}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6BC336E0-0860-4AFD-B849-E13CABFBD077} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {764482F2-C192-4032-B5B2-7848E6928461} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {8C35819E-0D88-4E0F-8946-73D1764A9500} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {A82AFC07-BDDB-4D91-91BD-B3D6AB1E5B87} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {CFDE9E19-18B2-4AC6-9F1E-14BD87C69D29} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-26] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-26] (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default
FF Homepage: hxxps://www.pesweb.cz/cz/naplnte-misky
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\windows\SysWOW64\npDeployJava1.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll [2013-03-12] ()
FF Extension: Adblock Plus - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-10-17]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08] [not signed]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08] [not signed]

Chrome:
=======
CHR Profile: C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Rapport) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2015-10-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-26]
CHR HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [220288 2012-09-30] (Qualcomm Atheros Commnucations) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-09] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-09] (Dropbox, Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1738808 2015-09-29] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6951992 2015-09-29] (GOG.com)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2255128 2015-10-18] (IBM Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-30] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-09-30] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-01-24] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
S3 GEARAspiWDM; C:\Windows\SysWOW64\Drivers\GEARAspiWDM.sys [15664 2011-07-15] (GEAR Software Inc.)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-10-24] (Malwarebytes)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R1 RapportCerberus_1507072; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1507072.sys [959416 2015-10-16] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [500184 2015-10-18] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [139896 2015-10-18] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [394584 2015-10-18] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [489272 2015-10-18] (IBM Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [975104 2012-08-24] (Vimicro Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [36288 2013-07-02] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [247216 2013-07-01] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S1 MpKsl2ecb7eb5; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9484A43B-0625-4436-9642-52A1C107AA92}\MpKsl2ecb7eb5.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-29 13:21 - 2015-10-29 13:21 - 07330429 _____ C:\Users\Martina\Downloads\Narcos.S01E10.WEBRip.XviD.MP3-RARBG.avi.part
2015-10-29 13:21 - 2015-10-29 13:21 - 00000000 _____ C:\Users\Martina\Downloads\Narcos.S01E10.WEBRip.XviD.MP3-RARBG.avi
2015-10-27 16:41 - 2015-10-27 16:41 - 00001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-27 16:38 - 2015-10-27 16:39 - 42524680 _____ C:\Users\Martina\Downloads\Firefox Setup 41.0.2.exe
2015-10-27 16:33 - 2015-10-27 16:33 - 00002270 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-27 16:33 - 2015-10-27 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-27 16:31 - 2015-10-29 12:56 - 00000972 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-27 16:31 - 2015-10-29 01:44 - 00000976 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-27 16:17 - 2015-10-27 16:18 - 00880208 _____ (Google Inc.) C:\Users\Martina\Downloads\ChromeSetup.exe
2015-10-27 15:25 - 2015-10-28 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Parhelia Tools
2015-10-27 15:25 - 2015-10-27 15:25 - 00000000 ____D C:\Users\Martina\AppData\Roaming\Google Chrome Backup
2015-10-27 15:24 - 2015-10-27 15:25 - 29104913 _____ C:\Users\Martina\Documents\Firefox 41.0.2 (x86 cs) - 2015-10-27.pcv
2015-10-27 15:19 - 2015-10-28 15:36 - 00000000 ____D C:\Program Files (x86)\MozBackup
2015-10-25 19:19 - 2015-10-25 17:31 - 00024064 _____ C:\windows\zoek-delete.exe
2015-10-25 18:31 - 2015-10-25 19:53 - 00014810 _____ C:\zoek-results.log
2015-10-25 17:31 - 2015-10-25 19:13 - 00000000 ____D C:\zoek_backup
2015-10-25 14:53 - 2015-10-29 12:56 - 00000000 ____D C:\Users\Martina\AppData\LocalLow\BitTorrent
2015-10-24 15:04 - 2015-10-24 15:04 - 00079064 _____ (Malwarebytes) C:\windows\system32\Drivers\hehhubw.sys
2015-10-22 19:21 - 2015-10-24 15:30 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-22 19:21 - 2015-10-22 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-22 19:20 - 2015-10-22 19:21 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-22 19:20 - 2015-10-05 08:50 - 00109272 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys
2015-10-22 19:20 - 2015-10-05 08:50 - 00064216 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-10-22 19:20 - 2015-10-05 08:50 - 00025816 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2015-10-17 18:26 - 2015-10-17 18:26 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-10-17 18:01 - 2015-10-17 18:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-10-16 17:54 - 2015-10-27 16:20 - 00009030 _____ C:\windows\PFRO.log
2015-10-16 15:13 - 2015-10-25 19:13 - 00000008 __RSH C:\Users\Martina\ntuser.pol
2015-10-16 15:12 - 2015-10-16 15:12 - 00006942 _____ C:\windows\System32\Tasks\RestoreSearch
2015-10-15 21:53 - 2015-10-15 21:53 - 00000359 ____N C:\Users\Martina\Desktop\Počítač.lnk
2015-09-29 06:01 - 2015-09-29 06:01 - 00000000 ____D C:\Users\Martina\AppData\Local\CEF

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-29 13:21 - 2013-11-26 20:58 - 00000000 ____D C:\Users\Martina\AppData\Roaming\BitTorrent
2015-10-29 13:20 - 2015-03-30 13:16 - 00000000 ____D C:\FRST
2015-10-29 12:59 - 2013-02-08 12:38 - 02841340 _____ C:\windows\system32\perfh005.dat
2015-10-29 12:59 - 2013-02-08 12:38 - 00827798 _____ C:\windows\system32\perfc005.dat
2015-10-29 12:59 - 2012-07-26 08:28 - 00005430 _____ C:\windows\system32\PerfStringBackup.INI
2015-10-29 12:57 - 2015-08-09 15:24 - 00000000 ___RD C:\Users\Martina\Dropbox
2015-10-29 12:57 - 2015-08-09 10:53 - 00000000 ____D C:\Users\Martina\AppData\Local\Dropbox
2015-10-29 12:55 - 2012-07-26 09:12 - 00000000 ____D C:\windows\system32\sru
2015-10-29 02:36 - 2014-07-08 18:36 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-10-28 20:52 - 2013-08-13 21:28 - 01175784 _____ C:\windows\WindowsUpdate.log
2015-10-27 16:41 - 2015-09-08 20:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-27 16:41 - 2014-07-02 13:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-27 16:39 - 2013-10-29 17:14 - 00003948 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-27 16:39 - 2013-10-29 17:14 - 00003712 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-27 16:33 - 2013-06-18 21:15 - 00000000 ____D C:\Program Files (x86)\Google
2015-10-27 16:25 - 2012-07-26 09:12 - 00000000 ____D C:\windows\AUInstallAgent
2015-10-27 16:24 - 2015-04-02 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ochrana koncového bodu Trusteer
2015-10-27 16:20 - 2012-07-26 08:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-10-27 16:19 - 2012-07-26 06:26 - 00262144 ___SH C:\windows\system32\config\BBI
2015-10-27 16:15 - 2013-06-18 21:15 - 00000000 ____D C:\Users\Martina\AppData\Local\Google
2015-10-25 20:25 - 2013-06-19 08:07 - 16842752 ___SH C:\Users\Martina\Desktop\Thumbs.db
2015-10-25 20:16 - 2013-06-19 21:29 - 00000000 ____D C:\Users\Martina\AppData\Local\CrashDumps
2015-10-25 19:13 - 2014-07-01 10:06 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-10-25 19:13 - 2013-06-18 10:30 - 00000000 ____D C:\Users\Martina
2015-10-25 19:08 - 2012-07-26 09:12 - 00000000 ___HD C:\windows\system32\GroupPolicy
2015-10-25 18:55 - 2013-06-18 21:00 - 01215488 ___SH C:\Users\Martina\Downloads\Thumbs.db
2015-10-25 18:52 - 2013-08-10 16:04 - 00000000 ____D C:\Users\Martina\Desktop\Složky
2015-10-25 17:27 - 2013-06-22 18:10 - 00001432 _____ C:\Users\Martina\Desktop\filmy.txt
2015-10-24 15:04 - 2013-02-08 12:02 - 00000000 ____D C:\windows\Options
2015-10-23 15:32 - 2013-07-23 22:16 - 00000000 ____D C:\Users\Martina\Desktop\Filmy
2015-10-18 15:06 - 2015-04-02 16:32 - 00394584 _____ (IBM Corp.) C:\windows\system32\Drivers\RapportKE64.sys
2015-10-18 15:06 - 2015-04-02 16:32 - 00139896 _____ (IBM Corp.) C:\windows\system32\Drivers\RapportHades64.sys
2015-10-17 18:37 - 2013-06-18 11:03 - 00003802 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-10-17 18:07 - 2015-04-20 13:23 - 00000000 ____D C:\KMPlayer
2015-10-17 18:02 - 2015-08-09 10:53 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-10-16 18:32 - 2013-06-18 10:41 - 00003600 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1443460809-2058308057-2046692019-1001
2015-10-16 17:51 - 2015-04-13 12:02 - 00000000 ____D C:\AdwCleaner
2015-10-16 15:13 - 2014-07-02 13:04 - 00001974 ____R C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk
2015-10-16 15:13 - 2013-09-23 22:06 - 00000000 ____D C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-16 15:13 - 2013-06-18 10:33 - 00002059 ____R C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехplоrеr.lnk
2015-10-16 15:12 - 2014-07-02 13:04 - 00001962 ____R C:\Users\Public\Desktop\Моzillа Firеfох.lnk
2015-10-15 22:23 - 2013-06-22 18:03 - 00013357 _____ C:\Users\Martina\Desktop\Nový textový dokument.txt
2015-10-15 21:57 - 2013-09-15 17:31 - 00002441 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-15 21:56 - 2015-06-27 11:15 - 00003886 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2015-09-29 06:00 - 2015-05-27 12:16 - 00000000 ____D C:\Program Files (x86)\GalaxyClient

==================== Files in the root of some directories =======

2013-10-03 22:20 - 2013-10-03 22:20 - 0003584 _____ () C:\Users\Martina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-06-18 11:15 - 2013-06-18 11:15 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-10-17 18:26 - 2015-10-17 18:26 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Martina\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsvuvdk.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-29 13:10

==================== End of FRST.txt ============================

Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: vyskakovací černé okno

#2 Příspěvek od vyosek »

Zdravim :)

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize
  • Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
    HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7694392 2015-09-29] (GOG.com)
    HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent] => C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [1977192 2015-10-08] (BitTorrent Inc.)
    HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [C] => cmd /c copy/b/y C:\windows\system32\GroupPolicy\Machine\R C:\windows\system32\GroupPolicy\Machine\Registry.pol >nul
    HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\scrnsave.scr [11264 2012-07-26] (Microsoft Corporation)
    
    HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
    URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
    Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
    Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
    
    FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08] [not signed]
    FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08] [not signed]
    
    S1 MpKsl2ecb7eb5; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9484A43B-0625-4436-9642-52A1C107AA92}\MpKsl2ecb7eb5.sys [X]
    
    2015-10-27 16:31 - 2015-10-29 12:56 - 00000972 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-10-27 16:31 - 2015-10-29 01:44 - 00000976 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-10-25 19:19 - 2015-10-25 17:31 - 00024064 _____ C:\windows\zoek-delete.exe
    2015-10-25 18:31 - 2015-10-25 19:53 - 00014810 _____ C:\zoek-results.log
    2015-10-25 17:31 - 2015-10-25 19:13 - 00000000 ____D C:\zoek_backup
    2015-10-29 02:36 - 2014-07-08 18:36 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
    2015-10-16 17:51 - 2015-04-13 12:02 - 00000000 ____D C:\AdwCleaner
    C:\Program Files (x86)\Skype\Toolbars
    
    Hosts:
    EmptyTemp:
    Reboot:
    End
    
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.

Mataa90
Návštěvník
Návštěvník
Příspěvky: 117
Registrován: 03 črc 2014 15:31

Re: vyskakovací černé okno

#3 Příspěvek od Mataa90 »

Fix result of Farbar Recovery Scan Tool (x64) Version:29-10-2015
Ran by Martina (2015-10-29 20:19:39) Run:3
Running from C:\Users\Martina\Desktop
Loaded Profiles: Martina (Available Profiles: Martina)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7694392 2015-09-29] (GOG.com)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent] => C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [1977192 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [C] => cmd /c copy/b/y C:\windows\system32\GroupPolicy\Machine\R C:\windows\system32\GroupPolicy\Machine\Registry.pol >nul
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\scrnsave.scr [11264 2012-07-26] (Microsoft Corporation)

HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)

FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08] [not signed]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08] [not signed]

S1 MpKsl2ecb7eb5; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9484A43B-0625-4436-9642-52A1C107AA92}\MpKsl2ecb7eb5.sys [X]

2015-10-27 16:31 - 2015-10-29 12:56 - 00000972 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-27 16:31 - 2015-10-29 01:44 - 00000976 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-25 19:19 - 2015-10-25 17:31 - 00024064 _____ C:\windows\zoek-delete.exe
2015-10-25 18:31 - 2015-10-25 19:53 - 00014810 _____ C:\zoek-results.log
2015-10-25 17:31 - 2015-10-25 19:13 - 00000000 ____D C:\zoek_backup
2015-10-29 02:36 - 2014-07-08 18:36 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-10-16 17:51 - 2015-04-13 12:02 - 00000000 ____D C:\AdwCleaner
C:\Program Files (x86)\Skype\Toolbars

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value not found.
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient => value not found.
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Windows\CurrentVersion\Run\\BitTorrent => value not found.
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Windows\CurrentVersion\Run\\C => value not found.
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Control Panel\Desktop\\SCRNSAVE.EXE => value not found.
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
Could not restore Default URLSearchHook.
HKCR\PROTOCOLS\Handler\skype-ie-addon-data => key not found.
HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\skype-ie-addon-data => key not found.
HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\skype4com => key not found.
HKCR\Wow6432Node\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} => key not found.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08] => not found.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08] => not found.
MpKsl2ecb7eb5 => service not found.
"C:\windows\Tasks\GoogleUpdateTaskMachineCore.job" => not found.
"C:\windows\Tasks\GoogleUpdateTaskMachineUA.job" => not found.
"C:\windows\zoek-delete.exe" => not found.
"C:\zoek-results.log" => not found.
"C:\zoek_backup" => not found.
"C:\windows\Tasks\Adobe Flash Player Updater.job" => not found.
"C:\AdwCleaner" => not found.
"C:\Program Files (x86)\Skype\Toolbars" => not found.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 16.3 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 20:20:43 ====

Odpovědět