Prosim o pomoc virus Policia
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-10-2013 01
Ran by Zuzana (administrator) on RASTO on 25-10-2013 18:58:54
Running from F:\
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 6
Boot Mode: Safe Mode (minimal)
==================== Processes (Whitelisted) ===================
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IntelliPoint] - C:\Program Files\Microsoft IntelliPoint\ipoint.exe [1406024 2008-06-10] (Microsoft Corporation)
HKLM\...\Run: [VirtualCloneDrive] - C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM\...\Run: [OODefragTray] - C:\Program Files\OO Software\Defrag\oodtray.exe [5039408 2013-04-19] (O&O Software GmbH)
HKCU\...\Run: [Google Update] - C:\Documents and Settings\Zuzana\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [136176 2011-12-12] (Google Inc.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKCU\...\Policies\Explorer: [NoChangeStartMenu] 1
HKCU\...\Policies\Explorer: [Start_EnabledDragDrop] 0
HKU\Administrator\...\Run: [KB976002-v5] - rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo
HKU\Default User\...\Run: [KB976002-v5] - rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo
HKU\LocalService\...\Run: [KB976002-v5] - rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\O&O Defrag Tray.lnk
ShortcutTarget: O&O Defrag Tray.lnk -> C:\WINDOWS\Installer\{D66100D4-640B-4AAC-82BA-0B6444FBA064}\DefragIcon.exe ()
Startup: C:\Documents and Settings\Zuzana\Nabídka Start\Programy\Po spuštění\SpeedFan.lnk
ShortcutTarget: SpeedFan.lnk -> C:\Program Files\SpeedFan\speedfan.exe (Almico Software (http://www.almico.com))
BootExecute: autocheck autochk * OODBS
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x06CC20B55AB9CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... R}&ar=home
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {1ED9D178-CE0E-42C9-871C-223055F94CCC} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {E42BE3B9-DD56-42A6-99BB-69BA18FC9CE3} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: DefaultTab Browser Helper - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Documents and Settings\Zuzana\Data aplikací\DefaultTab\DefaultTab\DefaultTabBHO.dll (Search Results LLC.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: AutorunsDisabled\ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Zuzana\Data aplikací\Mozilla\Firefox\Profiles\6b4nm3lt.default
FF user.js: detected! => C:\Documents and Settings\Zuzana\Data aplikací\Mozilla\Firefox\Profiles\6b4nm3lt.default\user.js
FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo
FF Homepage: hxxp://www.google.sk/
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\Zuzana\Local Settings\Data aplikací\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\Zuzana\Local Settings\Data aplikací\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\Zuzana\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: Visualisateur 3D de 20-20 - C:\Documents and Settings\Zuzana\Data aplikací\Mozilla\Firefox\Profiles\6b4nm3lt.default\Extensions\2020Player_IKEA@2020Technologies.com
FF Extension: addon - C:\Documents and Settings\Zuzana\Data aplikací\Mozilla\Firefox\Profiles\6b4nm3lt.default\Extensions\addon@defaulttab.com.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Zuzana\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\30.0.1599.101\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.230.5) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U23) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll No File
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Zuzana\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Zuzana\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\30.0.1599.101\pdf.dll No File
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Documents and Settings\Zuzana\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.79\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (YouTube) - C:\DOCUME~1\Zuzana\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\DOCUME~1\Zuzana\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Ebay Shopping Assistant by Spigot) - C:\DOCUME~1\Zuzana\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj\1.0_0
CHR Extension: (Domain Error Assistant) - C:\DOCUME~1\Zuzana\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.1_0
CHR Extension: (DefaultTab) - C:\DOCUME~1\Zuzana\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.29_0
CHR Extension: (Slick Savings) - C:\DOCUME~1\Zuzana\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk\2.4_0
CHR Extension: (Chrome In-App Payments service) - C:\DOCUME~1\Zuzana\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Amazon Shopping Assistant by Spigot) - C:\DOCUME~1\Zuzana\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp\1.0_0
CHR Extension: (Gmail) - C:\DOCUME~1\Zuzana\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files\Common Files\Spigot\GC\saebay_1.0.crx
CHR HKLM\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files\Common Files\Spigot\GC\errorassistant_1.1.crx
CHR HKLM\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files\DefaultTab\DefaultTab.crx
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.4.crx
CHR HKLM\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files\Common Files\Spigot\GC\saamazon_1.0.crx
CHR StartMenuInternet: Google Chrome - C:\Documents and Settings\Zuzana\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
S2 DefaultTabUpdate; C:\Documents and Settings\Zuzana\Data aplikací\DefaultTab\DefaultTab\DTUpdate.exe [107520 2013-05-27] ()
S2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [2034480 2013-04-19] (O&O Software GmbH)
S2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"
==================== Drivers (Whitelisted) ====================
S3 ALCXWDM; C:\Windows\System32\drivers\ALCXWDM.SYS [4122368 2008-09-24] (Realtek Semiconductor Corp.)
S1 AmdK8; C:\Windows\System32\DRIVERS\AmdK8.sys [36352 2005-03-09] (Advanced Micro Devices)
S2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R0 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [21576 2013-03-07] (AVAST Software)
S2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
S1 AswRdr; C:\Windows\System32\Drivers\AswRdr.sys [49760 2013-08-30] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
S1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-08-30] (AVAST Software)
S1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
S1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [177864 2013-08-30] ()
S3 AVerA706; C:\Windows\System32\DRIVERS\AVerA706.sys [1223040 2013-05-25] (AVerMedia TECHNOLOGIES, Inc.)
S3 AVerBDA3x; C:\Windows\System32\DRIVERS\AVerBDA3x.sys [1171456 2006-12-14] (AVerMedia TECHNOLOGIES, Inc.)
S1 DumpDrv; C:\Windows\System32\Drivers\DumpDrv.sys [9472 2011-02-12] (Microsoft Corporation)
S1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [31088 2010-12-17] (Elaborate Bytes AG)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] ()
S3 MPE; C:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
R0 mv61xxmm; C:\Windows\System32\Drivers\mv61xxmm.sys [13616 2011-02-12] (Marvell Semiconductor Inc.)
R0 mv64xxmm; C:\Windows\System32\Drivers\mv64xxmm.sys [5632 2011-02-12] (Marvell Semiconductor Inc.)
R0 mvxxmm; C:\Windows\System32\Drivers\mvxxmm.sys [13616 2011-02-12] (Marvell Semiconductor Inc.)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S2 NSHE; C:\WINDOWS\system32\Drivers\NSHE.SYS [97792 2008-12-18] (T0r0 & Tecar Forum 2009)
S3 NTIOLib_1_0_6; C:\Program Files\Setup Files\Ms7125v1D0\NTIOLib.sys [7680 2011-01-06] (MSI)
R0 nvata; C:\Windows\System32\DRIVERS\nvata.sys [93568 2013-05-25] (NVIDIA Corporation)
R0 nvcchflt; C:\Windows\System32\DRIVERS\nvcchflt.sys [16640 2006-02-26] (NVIDIA Corporation)
S3 NVENETFD; C:\Windows\System32\DRIVERS\NVENETFD.sys [54784 2013-05-23] (NVIDIA Corporation)
R0 nvgts; C:\Windows\System32\DRIVERS\nvgts.sys [145952 2013-05-23] (NVIDIA Corporation)
S3 nvnetbus; C:\Windows\System32\DRIVERS\nvnetbus.sys [22016 2013-05-23] (NVIDIA Corporation)
R0 sfsync03; C:\Windows\System32\drivers\sfsync03.sys [35328 2005-12-06] (Protection Technology)
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
S2 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5504 2012-06-03] ()
S3 Cap7134; system32\DRIVERS\Cap7134.sys [x]
S4 cpuz; No ImagePath
S4 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [x]
S2 Hardlock; No ImagePath
S4 IntelIde; No ImagePath
S3 MSI_MSIBIOS_010507; No ImagePath
S3 NTIOLib_1_0_4; No ImagePath
S3 PhTVTune; system32\DRIVERS\PhTVTune.sys [x]
U5 Sdbus; C:\Windows\System32\Drivers\Sdbus.sys [80384 2011-02-12] (Microsoft Corporation)
S3 WinRing0_1_2_0; \??\C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [x]
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-25 18:58 - 2013-10-25 18:58 - 00000000 ____D C:\FRST
2013-10-25 18:57 - 2013-10-25 18:57 - 00005103 _____ C:\WINDOWS\setupapi.log
2013-10-25 18:20 - 2013-10-25 18:35 - 00000686 _____ C:\WINDOWS\SchedLgU.Txt
2013-10-25 18:19 - 2013-10-25 18:35 - 00006124 _____ C:\WINDOWS\WindowsUpdate.log
2013-10-14 21:01 - 2002-08-29 18:33 - 00319488 ____R () C:\WINDOWS\system32\MafiaSetup.exe
2013-10-10 11:28 - 2013-10-10 11:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2013-10-10 11:25 - 2013-10-10 11:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2013-10-10 11:03 - 2013-10-10 11:03 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2884256$
2013-10-10 10:50 - 2013-10-10 10:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$
2013-10-10 10:48 - 2013-10-10 10:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2013-10-10 05:28 - 2013-07-03 04:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2013-10-10 05:28 - 2013-07-03 03:59 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2013-10-10 05:27 - 2013-08-29 02:56 - 00026240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbser.sys
2013-10-10 05:27 - 2013-08-09 02:55 - 00144128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2013-10-10 05:27 - 2013-08-09 02:55 - 00032384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2013-10-10 05:27 - 2013-08-09 02:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2013-10-10 05:27 - 2009-03-18 13:02 - 00030336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2013-10-05 20:16 - 2013-10-05 20:16 - 00000000 ____D C:\Documents and Settings\Zuzana\Data aplikací\Unity
2013-10-02 08:21 - 2013-10-02 08:21 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\VideoLAN
2013-10-02 05:04 - 2013-10-25 18:55 - 01124890 _____ C:\WINDOWS\system32\oodbs.lor
2013-10-02 00:53 - 2013-10-02 01:00 - 00002307 _____ C:\Documents and Settings\All Users\Plocha\O&O Defrag.lnk
2013-10-02 00:53 - 2013-10-02 00:53 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\O&O Software
2013-10-01 23:09 - 2013-10-01 23:09 - 00000042 _____ C:\WINDOWS\oodjobd.INI
2013-10-01 22:42 - 2013-10-01 22:42 - 00000000 ____D C:\WINDOWS\system32\oodag
2013-10-01 22:39 - 2013-10-01 22:39 - 00000000 ____D C:\Documents and Settings\Zuzana\Local Settings\Data aplikací\O&O
2013-10-01 22:38 - 2013-10-01 22:38 - 00000000 ____D C:\Program Files\OO Software
2013-10-01 22:37 - 2013-10-01 22:37 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\OO Software
==================== One Month Modified Files and Folders =======
2013-10-25 18:58 - 2013-10-25 18:58 - 00000000 ____D C:\FRST
2013-10-25 18:57 - 2013-10-25 18:57 - 00005103 _____ C:\WINDOWS\setupapi.log
2013-10-25 18:55 - 2013-10-02 05:04 - 01124890 _____ C:\WINDOWS\system32\oodbs.lor
2013-10-25 18:55 - 2001-10-25 12:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-10-25 18:35 - 2013-10-25 18:20 - 00000686 _____ C:\WINDOWS\SchedLgU.Txt
2013-10-25 18:35 - 2013-10-25 18:19 - 00006124 _____ C:\WINDOWS\WindowsUpdate.log
2013-10-25 18:35 - 2011-07-16 11:30 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-10-25 18:34 - 2011-07-16 11:31 - 00000178 ___SH C:\Documents and Settings\Zuzana\ntuser.ini
2013-10-25 18:34 - 2011-07-16 11:31 - 00000000 ____D C:\Documents and Settings\Zuzana
2013-10-25 18:23 - 2011-07-16 11:31 - 00000000 ___HD C:\Documents and Settings\Zuzana\Local Settings\Data aplikací
2013-10-25 18:21 - 2013-09-16 12:41 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2013-10-25 18:20 - 2011-12-16 19:39 - 00000000 ____D C:\Program Files\SpeedFan
2013-10-25 17:49 - 2011-11-19 12:51 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2013-10-25 17:42 - 2012-04-22 20:24 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-10-25 11:37 - 2011-12-12 21:41 - 00001014 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1292428093-1801674531-1004UA.job
2013-10-25 10:37 - 2011-12-12 21:41 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1292428093-1801674531-1004Core.job
2013-10-23 21:09 - 2011-07-16 11:31 - 00000000 ____D C:\Documents and Settings\Zuzana\Plocha
2013-10-23 19:39 - 2013-05-27 08:07 - 00000896 __RSH C:\Documents and Settings\Zuzana\ntuser.pol
2013-10-23 18:15 - 2011-07-16 15:52 - 00033280 ____C C:\Documents and Settings\Zuzana\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-10-23 13:11 - 2013-03-25 23:00 - 00000000 ____D C:\Documents and Settings\Zuzana\Plocha\Koláže
2013-10-18 07:43 - 2012-12-27 23:19 - 00000000 ____D C:\Documents and Settings\Zuzana\Plocha\HÁČKOVANIE
2013-10-13 12:52 - 2011-12-03 14:24 - 00000000 ____D C:\Program Files\Funny Racer
2013-10-10 19:18 - 2011-07-16 11:05 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-10-10 18:30 - 2013-05-27 08:07 - 00000000 ____D C:\Program Files\DefaultTab
2013-10-10 16:25 - 2011-07-16 12:58 - 00274968 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-10-10 11:29 - 2011-07-18 07:48 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-10-10 11:28 - 2013-10-10 11:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2013-10-10 11:25 - 2013-10-10 11:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2013-10-10 11:22 - 2011-07-16 12:59 - 01208562 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-10-10 11:19 - 2013-08-14 13:41 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-10-10 11:14 - 2011-02-12 11:10 - 78106760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-10-10 11:03 - 2013-10-10 11:03 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2884256$
2013-10-10 10:50 - 2013-10-10 10:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$
2013-10-10 10:48 - 2013-10-10 10:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2013-10-09 08:45 - 2001-10-25 12:00 - 00000582 _____ C:\WINDOWS\win.ini
2013-10-09 08:45 - 2001-10-25 12:00 - 00000227 _____ C:\WINDOWS\system.ini
2013-10-09 08:42 - 2012-04-22 20:24 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-10-09 08:42 - 2011-08-16 20:49 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-10-09 08:37 - 2011-07-16 12:59 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-10-07 19:57 - 2013-09-11 20:01 - 00000000 ____D C:\Documents and Settings\Zuzana\Plocha\veci na predaj
2013-10-05 20:16 - 2013-10-05 20:16 - 00000000 ____D C:\Documents and Settings\Zuzana\Data aplikací\Unity
2013-10-05 20:16 - 2011-07-16 11:31 - 00000000 __RHD C:\Documents and Settings\Zuzana\Data aplikací
2013-10-04 06:42 - 2013-08-03 22:12 - 00000000 ____D C:\Documents and Settings\Zuzana\Plocha\chalani fotky od Lindy
2013-10-02 08:21 - 2013-10-02 08:21 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\VideoLAN
2013-10-02 08:21 - 2011-07-16 12:59 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-10-02 01:00 - 2013-10-02 00:53 - 00002307 _____ C:\Documents and Settings\All Users\Plocha\O&O Defrag.lnk
2013-10-02 00:53 - 2013-10-02 00:53 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\O&O Software
2013-10-02 00:53 - 2011-07-16 12:59 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2013-10-01 23:09 - 2013-10-01 23:09 - 00000042 _____ C:\WINDOWS\oodjobd.INI
2013-10-01 22:42 - 2013-10-01 22:42 - 00000000 ____D C:\WINDOWS\system32\oodag
2013-10-01 22:39 - 2013-10-01 22:39 - 00000000 ____D C:\Documents and Settings\Zuzana\Local Settings\Data aplikací\O&O
2013-10-01 22:38 - 2013-10-01 22:38 - 00000000 ____D C:\Program Files\OO Software
2013-10-01 22:37 - 2013-10-01 22:37 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\OO Software
2013-10-01 22:37 - 2011-07-16 12:58 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-09-29 16:47 - 2012-02-17 14:00 - 00000000 ___HD C:\WINDOWS\$hf_mig$
2013-09-29 06:18 - 2011-07-16 11:32 - 00000803 _____ C:\Documents and Settings\Zuzana\Nabídka Start\Programy\Internet Explorer.lnk
2013-09-28 14:37 - 2011-07-16 12:55 - 00000000 ____D C:\WINDOWS\Cursors
2013-09-28 14:37 - 2011-07-16 11:31 - 00000000 ___HD C:\Documents and Settings\Zuzana\Šablony
2013-09-28 11:58 - 2011-12-24 23:56 - 00000688 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2013-09-28 11:58 - 2011-12-24 23:56 - 00000000 ____D C:\Program Files\CCleaner
Some content of TEMP:
====================
C:\Documents and Settings\Zuzana\Local Settings\Temp\sfamcc00001.dll
C:\Documents and Settings\Zuzana\Local Settings\Temp\sfareca00001.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2011-02-12 11:04] - [2011-02-12 11:04] - 1034240 ____A (Microsoft Corporation) 8ab626e4e4b289646e11311e66fb0b88
C:\Windows\System32\winlogon.exe
[2011-02-12 11:06] - [2011-02-12 11:06] - 0509440 ____A (Microsoft Corporation) 4212babcc4408b052193dabad9a691ab
C:\Windows\System32\svchost.exe
[2011-02-12 11:06] - [2011-02-12 11:06] - 0014848 ____A (Microsoft Corporation) 67e38b4a549833e02d4d1617b5dbc318
C:\Windows\System32\services.exe
[2011-02-12 11:06] - [2011-02-12 11:06] - 0111104 ____A (Microsoft Corporation) 4f40d16b2d5ed9e48a193ce468912fed
C:\Windows\System32\User32.dll
[2011-02-12 11:06] - [2011-02-12 11:06] - 0578560 ____A (Microsoft Corporation) a88d1807ef5370f4313c58d137d6f7b4
C:\Windows\System32\userinit.exe
[2008-04-14 07:52] - [2008-04-14 07:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\Drivers\volsnap.sys
[2008-04-14 06:42] - [2008-04-14 06:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
==================== End Of Log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o kontrolu - alexo
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosim o kontrolu - alexo
Naposledy upravil(a) vyosek dne 27 říj 2013 07:47, celkem upraveno 1 x.
Důvod: Prispevek oddelen, do cizich temat se nevstupuje
Důvod: Prispevek oddelen, do cizich temat se nevstupuje
Re: Prosim o kontrolu - alexo
Zdravim 
Prispevek jsem Vam oddelil do noveho tematu, do cizich se nevstupuje
Tvorba fixlistu pro FRST
Spustte znovu FRST.exe z flash disku
Restart PC a nechte PC nabehnout do normalniho rezimu
Prispevek jsem Vam oddelil do noveho tematu, do cizich se nevstupuje Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start HKLM\...\Run: [OODefragTray] - C:\Program Files\OO Software\Defrag\oodtray.exe [5039408 2013-04-19] (O&O Software GmbH) HKCU\...\Run: [Google Update] - C:\Documents and Settings\Zuzana\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [136176 2011-12-12] (Google Inc.) HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKCU\...\Policies\Explorer: [NoChangeStartMenu] 1 HKCU\...\Policies\Explorer: [Start_EnabledDragDrop] 0 HKU\Administrator\...\Run: [KB976002-v5] - rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo HKU\Default User\...\Run: [KB976002-v5] - rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo HKU\LocalService\...\Run: [KB976002-v5] - rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\O&O Defrag Tray.lnk Startup: C:\Documents and Settings\Zuzana\Nabídka Start\Programy\Po spuštění\SpeedFan.lnk HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x06CC20B55AB9CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKCU - {1ED9D178-CE0E-42C9-871C-223055F94CCC} URL = http://www.mysearchresults.com/search?c=2402&t=15&q={searchTerms} SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear SearchScopes: HKCU - {E42BE3B9-DD56-42A6-99BB-69BA18FC9CE3} URL = http://search.yahoo.com/search?fr=chr-g ... =198484&p={searchTerms} FF DefaultSearchEngine: Yahoo FF SelectedSearchEngine: Yahoo FF Keyword.URL: hxxp://search.yahoo.com/search?fr=green ... =198484&p= CHR HKLM\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files\Common Files\Spigot\GC\saebay_1.0.crx CHR HKLM\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files\Common Files\Spigot\GC\errorassistant_1.1.crx CHR HKLM\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files\DefaultTab\DefaultTab.crx CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.4.crx CHR HKLM\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files\Common Files\Spigot\GC\saamazon_1.0.crx S3 Cap7134; system32\DRIVERS\Cap7134.sys [x] S4 cpuz; No ImagePath S4 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [x] S2 Hardlock; No ImagePath S4 IntelIde; No ImagePath S3 MSI_MSIBIOS_010507; No ImagePath S3 NTIOLib_1_0_4; No ImagePath S3 PhTVTune; system32\DRIVERS\PhTVTune.sys [x] S3 WinRing0_1_2_0; \??\C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [x] U1 WS2IFSL; C:\Documents and Settings\Zuzana\Local Settings\Temp\sfamcc00001.dll C:\Documents and Settings\Zuzana\Local Settings\Temp\sfareca00001.dll C:\Program Files\Common Files\Spigot C:\Program Files\IObit Hosts: End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST na flash disk
Spustte znovu FRST.exe z flash disku
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a nechte PC nabehnout do normalniho rezimu"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?