Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-01-2014 03
Ran by Martin (administrator) on MARTINRASZKA-PC on 12-01-2014 11:30:33
Running from C:\Documents and Settings\Martin\Plocha\preventivka
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Ellora Assets Corp.) C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [15517984 2013-03-21] (NVIDIA Corporation)
HKLM\...\Run: [nwiz] - C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-03-23] ()
HKLM\...\Run: [High Definition Audio Property Page Shortcut] - C:\Windows\system32\HDAShCut.exe [61952 2005-01-07] (Windows (R) Server 2003 DDK provider)
HKLM\...\Run: [RTHDCPL] - C:\Windows\RTHDCPL.EXE [15473664 2005-11-10] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2014-01-01] (AVAST Software)
HKCU\...\Run: [Zoner Photo Studio Autoupdate] - C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [774168 2013-02-18] (ZONER software)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\REALTEK 11n USB Wireless LAN Utility.lnk
ShortcutTarget: REALTEK 11n USB Wireless LAN Utility.lnk -> C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 7764883328
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftup ... 7765927656
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\49rnlpde.default
FF Homepage: http://www.google.cz
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Adblock Plus - C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\49rnlpde.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-10-20]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-05-05]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.novinky.cz/"
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Martin\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Martin\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Martin\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\29.0.1547.66\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Documents and Settings\Martin\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Google Docs) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 [2013-08-05]
CHR Extension: (Google Drive) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 [2013-08-05]
CHR Extension: (YouTube) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 [2013-08-05]
CHR Extension: (Adblock Plus) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0 [2013-10-16]
CHR Extension: (Google Search) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 [2013-08-05]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0 [2013-11-07]
CHR Extension: (Themes for Facebook\u2122) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nnokmfkhggegacbiaknbocbboniaajdg\1.5_0 [2013-10-18]
CHR Extension: (Gmail) - C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 [2013-08-05]
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.3.crx [2013-08-05]
========================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-01] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2014-01-01] (AVAST Software)
R2 FreemakeVideoCapture; C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-08-26] (Ellora Assets Corp.)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-09-25] (Oracle Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
==================== Drivers (Whitelisted) ====================
R2 AegisP; C:\Windows\System32\DRIVERS\AegisP.sys [21361 2013-05-05] (Cisco Systems, Inc.)
R1 AmdK8; C:\Windows\System32\DRIVERS\AmdK8.sys [43008 2006-07-01] (Advanced Micro Devices)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26136 2014-01-01] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-01-01] (AVAST Software)
R0 aswNdis; C:\Windows\System32\DRIVERS\aswNdis.sys [12112 2013-09-25] (ALWIL Software)
R0 aswNdis2; C:\Windows\System32\Drivers\aswNdis2.sys [252336 2014-01-01] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-01-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2014-01-01] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [775952 2014-01-01] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [410528 2014-01-01] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-01-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [180248 2014-01-01] ()
S3 BrScnUsb; C:\Windows\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [145920 2005-01-07] (Windows (R) Server 2003 DDK provider)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [22560 2013-07-20] (REALiX(tm))
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 NVENETFD; C:\Windows\System32\DRIVERS\NVENETFD.sys [70912 2010-03-04] (NVIDIA Corporation)
R0 nvgts; C:\Windows\System32\DRIVERS\nvgts.sys [168040 2010-04-09] (NVIDIA Corporation)
R3 nvnetbus; C:\Windows\System32\DRIVERS\nvnetbus.sys [13824 2010-03-04] (NVIDIA Corporation)
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [904680 2011-05-09] (Realtek Semiconductor Corporation )
S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [904680 2011-05-09] (Realtek Semiconductor Corporation )
R1 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2006-07-24] ()
S4 IntelIde; No ImagePath
S3 NPF; system32\drivers\NPF.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr;
S3 WINIO; \??\C:\Documents and Settings\Martin\Plocha\Power-Supply-Calculator-2.071_-Gio\Power Supply Calculator 2.071_ Gio\winio.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-12 11:30 - 2014-01-12 11:30 - 00000000 ___DC C:\FRST
2014-01-12 11:29 - 2014-01-12 11:30 - 00000000 ___DC C:\Documents and Settings\Martin\Plocha\preventivka
2014-01-05 18:09 - 2014-01-05 18:09 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\856288_522126884552201_2061296081_o.jpg.uid-zps
2014-01-05 17:52 - 2014-01-05 16:47 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\DSCN4355.JPG.uid-zps
2014-01-04 23:02 - 2014-01-04 23:02 - 00002081 ____C C:\Documents and Settings\Martin\Plocha\Play Texas Hold'em Poker 3D - Deluxe Edition.lnk
2014-01-04 23:02 - 2014-01-04 23:02 - 00000000 ___DC C:\Documents and Settings\All Users\Nabídka Start\Programy\Play + Smile
2014-01-04 23:01 - 2014-01-04 23:01 - 00000000 ___DC C:\Program Files\Play+Smile
2014-01-04 22:27 - 2014-01-04 22:27 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\Beze jména.jpg.uid-zps
2014-01-04 15:16 - 2014-01-04 15:16 - 00000338 ____C C:\Documents and Settings\Martin\Plocha\Zástupce - Videa.lnk
2014-01-04 13:39 - 2014-01-04 13:39 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\Beze jména2.jpg.uid-zps
2014-01-01 23:11 - 2014-01-12 11:18 - 00000914 ____C C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-01 23:08 - 2014-01-01 23:08 - 00000000 ___DC C:\Documents and Settings\Martin\Data aplikací\AVAST Software
2014-01-01 23:06 - 2014-01-01 23:06 - 00001805 ____C C:\Documents and Settings\All Users\Plocha\avast! SafeZone.lnk
2014-01-01 23:06 - 2014-01-01 23:06 - 00000000 ___DC C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-01-01 22:52 - 2014-01-01 23:05 - 00252336 ____C (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2014-01-01 22:52 - 2014-01-01 23:05 - 00026136 ____C (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2014-01-01 22:52 - 2013-12-19 14:11 - 00104752 ____C (AVAST Software) C:\WINDOWS\system32\Drivers\aswFW.sys
2014-01-01 22:51 - 2013-09-25 13:15 - 00012112 ____C (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys
2014-01-01 22:41 - 2014-01-01 23:06 - 00001745 ____C C:\Documents and Settings\All Users\Plocha\avast! Internet Security.lnk
2013-12-20 20:18 - 2008-12-04 10:42 - 00070144 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\BrNetSti.dll
2013-12-20 20:18 - 2008-09-05 22:01 - 00070656 ____C (Brother Industries,Ltd.) C:\WINDOWS\system32\BrWiaNCp.dll
2013-12-20 20:18 - 2008-08-27 18:51 - 00044032 ____C (Brother Industries,Ltd) C:\WINDOWS\system32\Brnsplg.dll
2013-12-20 20:18 - 2002-11-26 13:43 - 00106496 ____C C:\WINDOWS\system32\BrMuSNMP.dll
2013-12-20 20:18 - 2001-10-24 12:02 - 00006784 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serscan.sys
2013-12-20 20:18 - 2001-10-24 12:02 - 00006784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\serscan.sys
2013-12-20 20:11 - 2013-12-20 20:11 - 00000000 __RDC C:\Documents and Settings\Martin\Data aplikací\Brother
2013-12-20 20:07 - 2013-12-20 20:54 - 00000416 ____C C:\WINDOWS\BRWMARK.INI
2013-12-20 20:07 - 2013-12-20 20:54 - 00000000 ___DC C:\Documents and Settings\All Users\Nabídka Start\Programy\Brother
2013-12-20 20:07 - 2013-12-20 20:53 - 00000050 ____C C:\WINDOWS\system32\bridf08b.dat
2013-12-20 20:06 - 2013-12-20 20:06 - 00000000 ___DC C:\Program Files\Brother
2013-12-20 20:06 - 2009-01-19 09:29 - 00057344 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\brprtink.dll
2013-12-20 20:06 - 2009-01-15 19:20 - 00003072 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\BrDctF2S.dll
2013-12-20 20:06 - 2008-09-15 17:02 - 01530880 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\BrWia08b.dll
2013-12-20 20:06 - 2008-08-27 18:50 - 00051712 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\BrUsi08b.dll
2013-12-20 20:06 - 2008-06-17 15:33 - 00167936 ____C (brother) C:\WINDOWS\system32\NSSearch.dll
2013-12-20 20:06 - 2007-12-13 22:16 - 00073728 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\BrDctF2.dll
2013-12-20 20:06 - 2007-12-13 22:16 - 00005120 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\BrDctF2L.dll
2013-12-20 20:06 - 2006-12-28 13:39 - 00176128 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\BroSNMP.dll
2013-12-20 20:06 - 2004-10-15 12:50 - 00015295 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\Drivers\BrScnUsb.sys
2013-12-20 20:00 - 2013-12-20 20:00 - 00000000 ___DC C:\Documents and Settings\All Users\Data aplikací\Brother
2013-12-20 19:55 - 2008-04-14 00:17 - 00025856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2013-12-20 19:55 - 2008-04-14 00:17 - 00025856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbprint.sys
2013-12-20 14:52 - 2013-12-20 14:52 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\ja.jpg.uid-zps
2013-12-20 09:08 - 2013-12-20 09:08 - 00000000 ___DC C:\Program Files\Mozilla Firefox
2013-12-20 08:52 - 2013-12-20 08:52 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\Christmas_Decorations_1280x800.jpg.uid-zps
2013-12-16 20:27 - 2013-12-17 20:48 - 00000777 ____C C:\Documents and Settings\Martin\Plocha\Zástupce (2) - Ancestry.lnk
2013-12-16 19:49 - 2014-01-04 22:24 - 00000000 ___DC C:\Documents and Settings\Martin\Data aplikací\Ancestry
==================== One Month Modified Files and Folders =======
2014-01-12 11:30 - 2014-01-12 11:30 - 00000000 ___DC C:\FRST
2014-01-12 11:30 - 2014-01-12 11:29 - 00000000 ___DC C:\Documents and Settings\Martin\Plocha\preventivka
2014-01-12 11:29 - 2013-05-05 15:03 - 00000000 ___DC C:\Documents and Settings\Martin\Plocha
2014-01-12 11:18 - 2014-01-01 23:11 - 00000914 ____C C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-12 11:05 - 2013-09-12 08:26 - 00000364 ___HC C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-01-12 10:15 - 2013-05-05 14:59 - 01766126 ____C C:\WINDOWS\WindowsUpdate.log
2014-01-12 10:14 - 2013-05-12 13:17 - 00000664 ____C C:\WINDOWS\system32\d3d9caps.dat
2014-01-12 10:14 - 2013-05-05 16:53 - 00000159 ____C C:\WINDOWS\wiadebug.log
2014-01-12 10:14 - 2013-05-05 16:53 - 00000049 ____C C:\WINDOWS\wiaservc.log
2014-01-12 10:14 - 2013-05-05 15:40 - 00000000 ___DC C:\WINDOWS\system32\Lang
2014-01-12 10:14 - 2013-05-05 15:10 - 00000000 ____C C:\WINDOWS\RTacDbg.txt
2014-01-12 10:14 - 2013-05-05 15:03 - 00000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2014-01-11 20:45 - 2013-05-10 23:46 - 00524288 _____ C:\WINDOWS\system32\config\CaptureL.evt
2014-01-11 20:45 - 2013-05-07 08:34 - 00032496 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-11 20:45 - 2013-05-05 16:36 - 00000000 ___DC C:\Documents and Settings\Martin\Data aplikací\vlc
2014-01-11 20:45 - 2013-05-05 15:03 - 00000178 __SHC C:\Documents and Settings\Martin\ntuser.ini
2014-01-09 19:46 - 2006-03-02 13:00 - 00000592 ____C C:\WINDOWS\win.ini
2014-01-05 19:49 - 2013-11-30 09:44 - 00062980 ____C C:\WINDOWS\setupapi.log
2014-01-05 18:09 - 2014-01-05 18:09 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\856288_522126884552201_2061296081_o.jpg.uid-zps
2014-01-05 16:47 - 2014-01-05 17:52 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\DSCN4355.JPG.uid-zps
2014-01-04 23:53 - 2013-05-10 23:58 - 00334798 ____C C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2014-01-04 23:53 - 2013-05-05 15:03 - 00000000 ___DC C:\Documents and Settings\Martin
2014-01-04 23:47 - 2013-05-05 15:03 - 00000000 __RDC C:\Documents and Settings\Martin\Dokumenty
2014-01-04 23:02 - 2014-01-04 23:02 - 00002081 ____C C:\Documents and Settings\Martin\Plocha\Play Texas Hold'em Poker 3D - Deluxe Edition.lnk
2014-01-04 23:02 - 2014-01-04 23:02 - 00000000 ___DC C:\Documents and Settings\All Users\Nabídka Start\Programy\Play + Smile
2014-01-04 23:02 - 2013-05-05 16:50 - 00000000 __RDC C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-01-04 23:01 - 2014-01-04 23:01 - 00000000 ___DC C:\Program Files\Play+Smile
2014-01-04 22:27 - 2014-01-04 22:27 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\Beze jména.jpg.uid-zps
2014-01-04 22:27 - 2013-05-12 02:28 - 00000000 ___DC C:\Documents and Settings\Martin\Data aplikací\Canon
2014-01-04 22:24 - 2013-12-16 19:49 - 00000000 ___DC C:\Documents and Settings\Martin\Data aplikací\Ancestry
2014-01-04 19:29 - 2013-05-05 15:28 - 01072688 ____C C:\WINDOWS\system32\nvdrsdb1.bin
2014-01-04 19:29 - 2013-05-05 15:28 - 01072688 ____C C:\WINDOWS\system32\nvdrsdb0.bin
2014-01-04 19:29 - 2013-05-05 15:28 - 00000001 ____C C:\WINDOWS\system32\nvdrssel.bin
2014-01-04 19:21 - 2013-05-07 00:41 - 00000000 ___DC C:\Documents and Settings\Martin\Data aplikací\Skype
2014-01-04 19:07 - 2013-05-07 00:41 - 00002283 ____C C:\Documents and Settings\All Users\Plocha\Skype.lnk
2014-01-04 15:16 - 2014-01-04 15:16 - 00000338 ____C C:\Documents and Settings\Martin\Plocha\Zástupce - Videa.lnk
2014-01-04 13:39 - 2014-01-04 13:39 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\Beze jména2.jpg.uid-zps
2014-01-04 10:28 - 2013-05-05 17:16 - 00000000 ___DC C:\Documents and Settings\Martin\Data aplikací\dvdcss
2014-01-01 23:11 - 2013-05-12 16:09 - 00692616 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-01-01 23:11 - 2013-05-12 16:09 - 00071048 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-01-01 23:08 - 2014-01-01 23:08 - 00000000 ___DC C:\Documents and Settings\Martin\Data aplikací\AVAST Software
2014-01-01 23:08 - 2013-05-05 15:03 - 00000000 _RHDC C:\Documents and Settings\Martin\Data aplikací
2014-01-01 23:06 - 2014-01-01 23:06 - 00001805 ____C C:\Documents and Settings\All Users\Plocha\avast! SafeZone.lnk
2014-01-01 23:06 - 2014-01-01 23:06 - 00000000 ___DC C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-01-01 23:06 - 2014-01-01 22:41 - 00001745 ____C C:\Documents and Settings\All Users\Plocha\avast! Internet Security.lnk
2014-01-01 23:06 - 2013-05-05 16:50 - 00000000 ___DC C:\Documents and Settings\All Users\Plocha
2014-01-01 23:05 - 2014-01-01 22:52 - 00252336 ____C (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2014-01-01 23:05 - 2014-01-01 22:52 - 00026136 ____C (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2014-01-01 23:05 - 2013-05-05 16:19 - 00775952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-01 23:05 - 2013-05-05 16:19 - 00410528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-01-01 23:05 - 2013-05-05 16:19 - 00270240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-01 23:05 - 2013-05-05 16:19 - 00180248 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-01-01 23:05 - 2013-05-05 16:19 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-01 23:05 - 2013-05-05 16:19 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-01-01 23:05 - 2013-05-05 16:19 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-01-01 23:05 - 2013-05-05 16:19 - 00049944 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-01-01 23:05 - 2013-05-05 16:19 - 00043152 ____C (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-01 22:57 - 2013-05-05 16:18 - 00000000 ___DC C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-01-01 22:52 - 2013-05-05 15:00 - 00002504 ____C C:\WINDOWS\system32\CONFIG.NT
2014-01-01 22:37 - 2006-03-02 13:00 - 00013676 ____C C:\WINDOWS\system32\wpa.dbl
2013-12-20 20:54 - 2013-12-20 20:07 - 00000416 ____C C:\WINDOWS\BRWMARK.INI
2013-12-20 20:54 - 2013-12-20 20:07 - 00000000 ___DC C:\Documents and Settings\All Users\Nabídka Start\Programy\Brother
2013-12-20 20:53 - 2013-12-20 20:07 - 00000050 ____C C:\WINDOWS\system32\bridf08b.dat
2013-12-20 20:11 - 2013-12-20 20:11 - 00000000 __RDC C:\Documents and Settings\Martin\Data aplikací\Brother
2013-12-20 20:09 - 2013-05-05 15:03 - 00000000 __RDC C:\Documents and Settings\Martin\Dokumenty\Obrázky
2013-12-20 20:06 - 2013-12-20 20:06 - 00000000 ___DC C:\Program Files\Brother
2013-12-20 20:06 - 2013-05-05 15:06 - 00000000 __HDC C:\Program Files\InstallShield Installation Information
2013-12-20 20:00 - 2013-12-20 20:00 - 00000000 ___DC C:\Documents and Settings\All Users\Data aplikací\Brother
2013-12-20 20:00 - 2013-05-05 16:50 - 00000000 _RHDC C:\Documents and Settings\All Users\Data aplikací
2013-12-20 14:52 - 2013-12-20 14:52 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\ja.jpg.uid-zps
2013-12-20 14:16 - 2013-10-20 08:16 - 00000000 ___DC C:\Program Files\Mozilla Maintenance Service
2013-12-20 09:08 - 2013-12-20 09:08 - 00000000 ___DC C:\Program Files\Mozilla Firefox
2013-12-20 08:52 - 2013-12-20 08:52 - 00000110 ___HC C:\Documents and Settings\Martin\Plocha\Christmas_Decorations_1280x800.jpg.uid-zps
2013-12-19 14:11 - 2014-01-01 22:52 - 00104752 ____C (AVAST Software) C:\WINDOWS\system32\Drivers\aswFW.sys
2013-12-19 06:26 - 2013-06-10 10:19 - 00000000 ___DC C:\Documents and Settings\Martin\Data aplikací\Mp3tag
2013-12-18 18:47 - 2013-05-11 09:58 - 00163328 __SHC C:\Documents and Settings\Martin\Plocha\Thumbs.db
2013-12-17 20:48 - 2013-12-16 20:27 - 00000777 ____C C:\Documents and Settings\Martin\Plocha\Zástupce (2) - Ancestry.lnk
2013-12-17 20:11 - 2006-03-02 13:00 - 00000253 ____C C:\WINDOWS\system.ini
2013-12-15 13:32 - 2013-05-07 01:05 - 00000000 ____C C:\Documents and Settings\All Users\Data aplikací\LauncherAccess.dt
Some content of TEMP:
====================
C:\Documents and Settings\Martin\Local Settings\temp\SkypeSetup.exe
C:\Documents and Settings\Martin\Local Settings\temp\vsdel.exe
C:\Documents and Settings\Martin\Local Settings\temp\_is2B.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2006-03-02 13:00] - [2008-04-14 07:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\Windows\System32\winlogon.exe
[2006-03-02 13:00] - [2008-04-14 07:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\Windows\System32\svchost.exe
[2006-03-02 13:00] - [2008-04-14 07:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2006-03-02 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2006-03-02 13:00] - [2008-04-14 07:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\Windows\System32\userinit.exe
[2006-03-02 13:00] - [2008-04-14 07:52] - 0026112 ___AC (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2006-03-02 13:00] - [2008-04-14 06:42] - 0052480 ___AC (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
==================== End Of Log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivku - FRST log
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o preventivku - FRST log
- Přílohy
-
- Addition.zip
- (5.09 KiB) Staženo 69 x
Re: Prosím o preventivku - FRST log
Zdravim 
Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222
Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222
- Provedte aktualizaci
- Provedte uplny sken - nic nemazte
- MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o preventivku - FRST log
Malwarebytes Anti-Malware 1.75.0.1300
http://www.malwarebytes.org
Verze: v2014.01.12.05
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Martin :: MARTINRASZKA-PC [administrátor]
12.1.2014 17:58:40
MBAM-log-2014-01-12 (18-54-48).txt
Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 334211
Uplynulý čas: 44 minut, 23 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 3
C:\Documents and Settings\Martin\Dokumenty\Stažené soubory\bsplayer265.1074.exe (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
E:\Programy\Prehravace\bsplayer-setup.exe (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
E:\Programy\Prevod formatu\YTDSetup.exe (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
(konec)
http://www.malwarebytes.org
Verze: v2014.01.12.05
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Martin :: MARTINRASZKA-PC [administrátor]
12.1.2014 17:58:40
MBAM-log-2014-01-12 (18-54-48).txt
Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 334211
Uplynulý čas: 44 minut, 23 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 3
C:\Documents and Settings\Martin\Dokumenty\Stažené soubory\bsplayer265.1074.exe (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
E:\Programy\Prehravace\bsplayer-setup.exe (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
E:\Programy\Prevod formatu\YTDSetup.exe (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
(konec)
Re: Prosím o preventivku - FRST log
Nalezy nemazte Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Kliknete na Scan a nasledne Clean
- Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o preventivku - FRST log
# AdwCleaner v3.017 - Report created 12/01/2014 at 23:25:14
# Updated 12/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Martin - MARTINRASZKA-PC
# Running from : C:\Documents and Settings\Martin\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files\driver-soft
Folder Deleted : C:\Program Files\SimilarSites
Folder Deleted : C:\Program Files\YTD Toolbar
Folder Deleted : C:\Documents and Settings\Martin\Local Settings\Data aplikací\Pokki
Folder Deleted : C:\Documents and Settings\Martin\Data aplikací\SimilarSites
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKCU\Software\Classes\pokki
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4C836512-BB70-11D2-A5A7-00105A9C91C6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6FDBBC21-E399-4542-B4CE-86326E1F0727}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B878FD4-8F19-46DB-94B1-4CABFF80679C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8BA495EF-6CD5-413A-8AEF-483631B98C4F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8C71E394-2E6F-452A-AB7D-C17E78307083}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BADB1512-759C-4792-A18A-DD6BDC4E1991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DB797690-40E0-11D2-9BD5-0060082AE372}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E54FBC83-9028-45AC-A5B9-D5DA828E59C2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{633AA60B-C339-46C3-951F-047F9822C473}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9156C8F9-B397-4DEF-8AC5-5966221A134A}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A8E5842E-102B-4289-9D57-3B3F5B5E15D3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB797681-40E0-11D2-9BD5-0060082AE372}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Driver-Soft
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v26.0 (cs)
[ File : C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\49rnlpde.default\prefs.js ]
-\\ Google Chrome v
[ File : C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [2922 octets] - [12/01/2014 23:21:46]
AdwCleaner[S0].txt - [2913 octets] - [12/01/2014 23:25:14]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2973 octets] ##########
# Updated 12/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Martin - MARTINRASZKA-PC
# Running from : C:\Documents and Settings\Martin\Plocha\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files\driver-soft
Folder Deleted : C:\Program Files\SimilarSites
Folder Deleted : C:\Program Files\YTD Toolbar
Folder Deleted : C:\Documents and Settings\Martin\Local Settings\Data aplikací\Pokki
Folder Deleted : C:\Documents and Settings\Martin\Data aplikací\SimilarSites
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKCU\Software\Classes\pokki
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4C836512-BB70-11D2-A5A7-00105A9C91C6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6FDBBC21-E399-4542-B4CE-86326E1F0727}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B878FD4-8F19-46DB-94B1-4CABFF80679C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8BA495EF-6CD5-413A-8AEF-483631B98C4F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8C71E394-2E6F-452A-AB7D-C17E78307083}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BADB1512-759C-4792-A18A-DD6BDC4E1991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DB797690-40E0-11D2-9BD5-0060082AE372}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E54FBC83-9028-45AC-A5B9-D5DA828E59C2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{633AA60B-C339-46C3-951F-047F9822C473}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9156C8F9-B397-4DEF-8AC5-5966221A134A}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A8E5842E-102B-4289-9D57-3B3F5B5E15D3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB797681-40E0-11D2-9BD5-0060082AE372}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Driver-Soft
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v26.0 (cs)
[ File : C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\49rnlpde.default\prefs.js ]
-\\ Google Chrome v
[ File : C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [2922 octets] - [12/01/2014 23:21:46]
AdwCleaner[S0].txt - [2913 octets] - [12/01/2014 23:25:14]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2973 octets] ##########
Re: Prosím o preventivku - FRST log
Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.3.crx [2013-08-05] C:\Program Files\Common Files\Spigot Hosts: CMD: shutdown /r /f /t 2 End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o preventivku - FRST log
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-01-2014 02
Ran by Martin at 2014-01-13 19:52:34 Run:1
Running from C:\Documents and Settings\Martin\Plocha\preventivka
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.3.crx [2013-08-05]
C:\Program Files\Common Files\Spigot
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk => Key not found.
"C:\Program Files\Common Files\Spigot\GC\coupons_2.3.crx" => File/Directory not found.
"C:\Program Files\Common Files\Spigot" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
==== End of Fixlog ====
Ran by Martin at 2014-01-13 19:52:34 Run:1
Running from C:\Documents and Settings\Martin\Plocha\preventivka
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.3.crx [2013-08-05]
C:\Program Files\Common Files\Spigot
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk => Key not found.
"C:\Program Files\Common Files\Spigot\GC\coupons_2.3.crx" => File/Directory not found.
"C:\Program Files\Common Files\Spigot" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
==== End of Fixlog ====
Re: Prosím o preventivku - FRST log
Tak jeste uklidime 
T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
OTC http://oldtimer.geekstogo.com/OTC.exe
TFC http://oldtimer.geekstogo.com/TFC.exe
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
A pokud nejsou problemy ci dotazy, je to z me strany vse 
T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
A pokud nejsou problemy ci dotazy, je to z me strany vse "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o preventivku - FRST log
Vše OK. Mockrát vám děkuji.
Re: Prosím o preventivku - FRST log
Zase nekdy 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?