Dobrý den, začaly mi u Firefoxu vyskakovat nežádoucí okna, po nějakých zásazích mi přestal fungovat internet úplně, děkuji předem za jakoukoli pomoc.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01
Ran by adam (administrator) on NOTEBOOK on 27-03-2014 10:01:33
Running from C:\Users\adam\Desktop
Microsoft® Windows Vista™ Business Service Pack 2 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\windows\system32\SLsvc.exe
(Hewlett-Packard Corporation) C:\windows\system32\Hpservice.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Absolute Software Corp.) C:\windows\system32\rpcnet.exe
(Sunbelt Software, Inc.) C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
(Sunbelt Software, Inc.) C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
() C:\Program Files\WinRST\WinRST.exe
(Safer Networking Ltd.) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
(Sunbelt Software, Inc.) C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
(Bioscrypt Inc.) c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Microsoft Corporation) C:\windows\system32\conime.exe
(Microsoft Corporation) C:\windows\System32\mobsync.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe
(forum.viry.cz) C:\Users\adam\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\windows\system32\wbem\WMIADAP.EXE
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SoundMAXPnP] - C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2008-04-04] (Analog Devices, Inc.)
HKU\S-1-5-21-232463255-3589225732-204019539-1004\...\MountPoints2: {2a88c879-b9a7-11e2-8689-00247e420d2e} - G:\Startme.exe
HKU\S-1-5-21-232463255-3589225732-204019539-1004\...\MountPoints2: {34fec41d-0e2a-11e1-a36b-00247e420d2e} - G:\wubi.exe
HKU\S-1-5-21-232463255-3589225732-204019539-1004\...\MountPoints2: {eb4505c0-02cc-11e3-8adb-806e6f6e6963} - H:\wubi.exe
HKU\S-1-5-21-232463255-3589225732-204019539-1004\...0c966feabec1\InprocServer32: [Default-shell32] ATTENTION! ====> ZeroAccess?
HKU\S-1-5-21-232463255-3589225732-204019539-1004\...409d6c4515e9\InprocServer32: [Default-shell32] <==== ATTENTION!
HKU\S-1-5-21-232463255-3589225732-204019539-1004\...\InprocServer32: [Default-pngfilt] <==== ATTENTION!
AppInit_DLLs: APSHook.dll => C:\windows\system32\APSHook.dll [81680 2008-05-21] (Bioscrypt Inc.)
Lsa: [Notification Packages] scecli ASWLNPkg
==================== Internet (Whitelisted) ====================
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=http://127.0.0.1:9880
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.cz/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
SearchScopes: HKLM - DefaultScope {8A197A95-5793-420B-A211-CE9B54EFF000} URL = http://slirsredirect.search.aol.com/sli ... bie7-cs-cz
SearchScopes: HKLM - {8A197A95-5793-420B-A211-CE9B54EFF000} URL = http://slirsredirect.search.aol.com/sli ... bie7-cs-cz
SearchScopes: HKCU - DefaultScope {8A197A95-5793-420B-A211-CE9B54EFF000} URL = http://slirsredirect.search.aol.com/sli ... bie7-cs-cz
SearchScopes: HKCU - {8A197A95-5793-420B-A211-CE9B54EFF000} URL = http://slirsredirect.search.aol.com/sli ... bie7-cs-cz
SearchScopes: HKCU - {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = http://toolbar.inbox.com/search/dispatc ... 093&lng=cs
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: BHO_Startup Class - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll (Hewlett-Packard)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: IEExtension.Extension - {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} - C:\windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logmein.com/activex/ractrl.cab?lmi=100
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
Winsock: Catalog5 02 %SystemRoot%\system32\napinsp.dll [50176] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\w8llnj1n.default
FF Homepage: hxxp://www.seznam.cz/|hxxp://www.google.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\adam\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\adam\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\w8llnj1n.default\searchplugins\inbox-hledat.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Xmarks - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\w8llnj1n.default\Extensions\foxmarks@kei.com [2014-01-12]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
Chrome:
=======
CHR HomePage: hxxp://www.google.cz/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\adam\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\adam\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\adam\AppData\Local\Google\Chrome\Application\33.0.1750.154\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\adam\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-28]
CHR Extension: (Vyhledávánà Google) - C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-28]
CHR Extension: (Peněženka Google) - C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-31]
CHR Extension: (Gmail) - C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-28]
CHR HKLM\...\Chrome\Extension: [nbmafkdmkkckhggblphicnnhlgljnoje] - C:\Program Files\TornTV.com\torn2_10.crx [2011-12-28]
CHR StartMenuInternet: Google Chrome - C:\Users\adam\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
S4 accoca; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [182576 2007-05-16] (ActivIdentity)
R2 ASBroker; c:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll [111888 2008-05-21] (Bioscrypt Inc.)
R2 ASChannel; c:\Program Files\Hewlett-Packard\IAM\Bin\AsChnl.dll [137488 2008-05-21] (Bioscrypt Inc.)
S4 Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
S4 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-04-15] (Hewlett-Packard)
S4 HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [34184 2008-05-14] (Hewlett-Packard Development Company, L.P)
S4 HpFkCryptService; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [256512 2008-05-14] (SafeBoot International)
S4 HPFSService; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [77824 2008-05-02] (Hewlett-Packard)
S4 PirritDesktop; C:\Users\adam\AppData\Local\PirritSuggestor\PirritService.exe [52568 2014-02-20] ()
S4 PirritUpdater; C:\Program Files\Pirrit\AutoUpdater.exe [59904 2014-02-20] ()
R2 rpcnet; C:\windows\system32\rpcnet.exe [58288 2012-12-08] (Absolute Software Corp.)
R2 SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [95528 2008-10-31] (Sunbelt Software, Inc.)
R2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
R2 SPF4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [1365288 2008-10-31] (Sunbelt Software, Inc.)
S3 usnjsvc; C:\Program Files\MSN Messenger\usnsvc.exe [97136 2007-01-19] (Microsoft Corporation)
R2 WinRST; C:\Program Files\WinRST\WinRST.exe [59904 2014-02-26] ()
==================== Drivers (Whitelisted) ====================
R3 dtsoftbus01; C:\windows\System32\DRIVERS\dtsoftbus01.sys [239168 2011-11-13] (DT Soft Ltd)
R0 FltMgr; C:\windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [25280 2012-03-12] (LogMeIn, Inc.)
R3 Ntfs; C:\windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
R1 RsvLock; C:\windows\system32\Drivers\RsvLock.sys [12496 2008-05-14] (SafeBoot International)
S3 s0016bus; C:\windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
S3 s125mdfl; C:\windows\System32\DRIVERS\s125mdfl.sys [15112 2007-04-24] (MCCI Corporation)
S3 s125mdm; C:\windows\System32\DRIVERS\s125mdm.sys [108680 2007-04-24] (MCCI Corporation)
S3 s125mgmt; C:\windows\System32\DRIVERS\s125mgmt.sys [100488 2007-04-24] (MCCI Corporation)
S3 s125obex; C:\windows\System32\DRIVERS\s125obex.sys [98696 2007-04-24] (MCCI Corporation)
R0 SafeBoot; C:\windows\system32\Drivers\SafeBoot.sys [108752 2008-05-14] ()
R0 SbAlg; C:\windows\system32\Drivers\SbAlg.sys [51376 2008-05-14] (SafeBoot N.V.)
R0 SbFsLock; C:\windows\system32\Drivers\SbFsLock.sys [12928 2008-05-14] (SafeBoot International)
R1 SbFw; C:\windows\System32\drivers\SbFw.sys [270888 2008-10-31] (Sunbelt Software, Inc.)
R3 SBFWIMCL; C:\windows\System32\DRIVERS\sbfwim.sys [65576 2008-06-21] (Sunbelt Software, Inc.)
R1 sbhips; C:\windows\system32\drivers\sbhips.sys [66600 2008-06-21] (Sunbelt Software, Inc.)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1804160 2008-04-10] ()
R0 sptd; C:\windows\System32\Drivers\sptd.sys [428088 2013-08-11] ()
S3 z530bus; C:\windows\System32\DRIVERS\z530bus.sys [58288 2006-02-17] (MCCI)
U3 at3d21gb; C:\windows\system32\Drivers\at3d21gb.sys [0 ] (IBM Corporation)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NSNDIS5; \??\C:\windows\system32\NSNDIS5.SYS [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-27 10:00 - 2014-03-27 10:01 - 00016506 _____ () C:\Users\adam\Desktop\FRST.txt
2014-03-27 09:58 - 2014-03-27 08:41 - 01145856 _____ (Farbar) C:\Users\adam\Desktop\FRST.exe
2014-03-27 09:58 - 2014-03-27 08:41 - 00112640 _____ (forum.viry.cz) C:\Users\adam\Desktop\FRSTLauncher.exe
2014-03-27 09:15 - 2014-03-27 10:01 - 00000000 ____D () C:\FRST
2014-03-27 00:48 - 2014-03-27 01:04 - 00000000 ____D () C:\Users\adam\Downloads\backups
2014-03-27 00:46 - 2014-03-27 01:03 - 00006691 _____ () C:\Users\adam\Downloads\hijackthis.log
2014-03-27 00:44 - 2014-03-27 00:44 - 00388608 _____ (Trend Micro Inc.) C:\Users\adam\Downloads\hijackthis.exe
2014-03-27 00:28 - 2014-03-27 00:31 - 00319701 _____ (Malwarebytes Corporation ) C:\Users\adam\Downloads\mbam-setup-2.0.0.1000.exe
2014-03-27 00:22 - 2014-03-27 00:22 - 00724952 _____ () C:\Users\adam\Downloads\avenger.zip
2014-03-26 22:35 - 2014-03-27 00:17 - 00000950 _____ () C:\windows\PFRO.log
2014-03-25 22:20 - 2014-03-25 22:21 - 26581444 _____ (Igor Pavlov) C:\Users\adam\Desktop\DSC_0311.exe
2014-03-24 21:44 - 2014-03-24 21:44 - 00000716 _____ () C:\windows\wininit.ini
2014-03-23 23:57 - 2014-03-23 23:57 - 00003366 _____ () C:\Users\adam\Documents\cc_20140323_235731.reg
2014-03-23 23:54 - 2014-03-27 00:17 - 00000000 ____D () C:\Program Files\Avira
2014-03-23 23:54 - 2014-03-26 23:54 - 00000000 ____D () C:\ProgramData\Avira
2014-03-23 23:53 - 2014-03-23 23:53 - 04050888 _____ (Avira Operations GmbH & Co. KG) C:\Users\adam\Downloads\avira_en_av___ws.exe
2014-03-23 23:05 - 2014-03-24 19:56 - 00000000 ____D () C:\Users\adam\AppData\Roaming\systweak
2014-03-23 23:05 - 2014-03-23 23:05 - 00000000 ____D () C:\Users\Janynka a děti\AppData\Local\WinRST
2014-03-23 23:05 - 2014-03-23 23:05 - 00000000 ____D () C:\Users\adam\AppData\Local\WinRST
2014-03-23 23:05 - 2014-03-23 23:05 - 00000000 ____D () C:\Program Files\WinRST
2014-03-23 23:04 - 2014-03-26 23:54 - 00000000 ____D () C:\Users\adam\Documents\FotoMix Data
2014-03-23 23:04 - 2014-03-23 23:04 - 00000000 ____D () C:\Users\adam\AppData\Local\PirritSuggestor
2014-03-23 23:04 - 2014-03-23 23:04 - 00000000 ____D () C:\Program Files\Pirrit
2014-03-23 23:03 - 2014-03-23 23:03 - 01449020 _____ (Digital Photo Software ) C:\Users\adam\Downloads\FotoMixV9Setup.exe
2014-03-23 21:27 - 2014-03-23 21:30 - 56328457 _____ () C:\Users\adam\Downloads\Zoner-Media-Explorer-6-Classic---Full,CZ.zip
2014-03-15 14:27 - 2014-03-15 16:08 - 418836344 _____ (G Data Software AG) C:\Users\adam\Downloads\INT_R_FUL_2014_IS.exe
2014-03-15 14:22 - 2014-02-23 18:44 - 11111424 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 06020608 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 02005504 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 01469440 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-03-15 14:22 - 2014-02-23 18:44 - 01213440 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00916992 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00630272 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00611840 _____ (Microsoft Corporation) C:\windows\system32\mstime.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00387584 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00164352 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00109056 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00055296 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-03-15 14:22 - 2014-02-23 18:44 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\corpol.dll
2014-03-15 14:22 - 2014-02-23 17:45 - 00385024 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-03-15 14:22 - 2014-02-23 17:38 - 01638912 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-03-15 14:22 - 2014-02-23 17:38 - 00174080 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-03-15 14:22 - 2014-02-23 17:38 - 00133632 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-03-15 14:22 - 2014-02-23 17:38 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-03-15 14:22 - 2014-02-07 11:38 - 02050560 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-03-15 14:22 - 2014-02-03 11:37 - 00505344 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-03-15 14:22 - 2014-01-30 08:46 - 00876032 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2014-03-15 14:22 - 2013-11-13 01:30 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
==================== One Month Modified Files and Folders =======
2014-03-27 10:01 - 2014-03-27 10:00 - 00016506 _____ () C:\Users\adam\Desktop\FRST.txt
2014-03-27 10:01 - 2014-03-27 09:15 - 00000000 ____D () C:\FRST
2014-03-27 09:58 - 2010-07-11 22:05 - 00000433 _____ () C:\windows\system32\Drivers\etc\hosts.ics
2014-03-27 09:57 - 2013-01-15 18:38 - 00065536 _____ () C:\windows\system32\Ikeext.etl
2014-03-27 09:57 - 2009-10-14 15:07 - 00058288 _____ (Absolute Software Corp.) C:\windows\system32\rpcnet.dll
2014-03-27 09:57 - 2009-07-08 09:14 - 00017408 _____ () C:\windows\system32\rpcnetp.dll
2014-03-27 09:57 - 2006-11-02 14:01 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-03-27 09:57 - 2006-11-02 13:47 - 00003216 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-27 09:57 - 2006-11-02 13:47 - 00003216 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-27 09:56 - 2009-10-14 15:02 - 00017408 _____ () C:\windows\system32\rpcnetp.exe
2014-03-27 09:20 - 2009-05-23 04:11 - 01426928 _____ () C:\windows\WindowsUpdate.log
2014-03-27 09:20 - 2009-05-23 04:11 - 00004268 _____ () C:\windows\bthservsdp.dat
2014-03-27 09:20 - 2006-11-02 14:01 - 00032626 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2014-03-27 09:18 - 2008-04-17 18:00 - 01614376 _____ () C:\windows\system32\PerfStringBackup.INI
2014-03-27 09:12 - 2006-11-02 12:18 - 00000000 ____D () C:\windows\tracing
2014-03-27 08:41 - 2014-03-27 09:58 - 01145856 _____ (Farbar) C:\Users\adam\Desktop\FRST.exe
2014-03-27 08:41 - 2014-03-27 09:58 - 00112640 _____ (forum.viry.cz) C:\Users\adam\Desktop\FRSTLauncher.exe
2014-03-27 01:04 - 2014-03-27 00:48 - 00000000 ____D () C:\Users\adam\Downloads\backups
2014-03-27 01:03 - 2014-03-27 00:46 - 00006691 _____ () C:\Users\adam\Downloads\hijackthis.log
2014-03-27 00:54 - 2010-05-18 17:19 - 00000958 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-232463255-3589225732-204019539-1004UA.job
2014-03-27 00:44 - 2014-03-27 00:44 - 00388608 _____ (Trend Micro Inc.) C:\Users\adam\Downloads\hijackthis.exe
2014-03-27 00:39 - 2010-03-12 21:39 - 00000000 ____D () C:\wamp
2014-03-27 00:35 - 2013-04-15 20:42 - 00000000 ____D () C:\Program Files\Flashtool
2014-03-27 00:31 - 2014-03-27 00:28 - 00319701 _____ (Malwarebytes Corporation ) C:\Users\adam\Downloads\mbam-setup-2.0.0.1000.exe
2014-03-27 00:22 - 2014-03-27 00:22 - 00724952 _____ () C:\Users\adam\Downloads\avenger.zip
2014-03-27 00:17 - 2014-03-26 22:35 - 00000950 _____ () C:\windows\PFRO.log
2014-03-27 00:17 - 2014-03-23 23:54 - 00000000 ____D () C:\Program Files\Avira
2014-03-26 23:54 - 2014-03-23 23:54 - 00000000 ____D () C:\ProgramData\Avira
2014-03-26 23:54 - 2014-03-23 23:04 - 00000000 ____D () C:\Users\adam\Documents\FotoMix Data
2014-03-26 22:45 - 2010-09-03 11:52 - 00002651 _____ () C:\Users\adam\Desktop\Microsoft Word (2).lnk
2014-03-26 22:33 - 2014-02-23 21:14 - 00016773 _____ () C:\Users\adam\Documents\Silvě.odt
2014-03-26 21:54 - 2010-05-18 17:19 - 00000906 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-232463255-3589225732-204019539-1004Core.job
2014-03-26 21:44 - 2010-08-30 23:01 - 00000000 ____D () C:\Users\adam\AppData\Local\Paint.NET
2014-03-26 20:44 - 2009-06-07 22:15 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-25 22:36 - 2009-06-03 20:34 - 00181248 _____ () C:\Users\adam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-25 22:21 - 2014-03-25 22:20 - 26581444 _____ (Igor Pavlov) C:\Users\adam\Desktop\DSC_0311.exe
2014-03-24 21:44 - 2014-03-24 21:44 - 00000716 _____ () C:\windows\wininit.ini
2014-03-24 19:56 - 2014-03-23 23:05 - 00000000 ____D () C:\Users\adam\AppData\Roaming\systweak
2014-03-23 23:57 - 2014-03-23 23:57 - 00003366 _____ () C:\Users\adam\Documents\cc_20140323_235731.reg
2014-03-23 23:53 - 2014-03-23 23:53 - 04050888 _____ (Avira Operations GmbH & Co. KG) C:\Users\adam\Downloads\avira_en_av___ws.exe
2014-03-23 23:05 - 2014-03-23 23:05 - 00000000 ____D () C:\Users\Janynka a děti\AppData\Local\WinRST
2014-03-23 23:05 - 2014-03-23 23:05 - 00000000 ____D () C:\Users\adam\AppData\Local\WinRST
2014-03-23 23:05 - 2014-03-23 23:05 - 00000000 ____D () C:\Program Files\WinRST
2014-03-23 23:04 - 2014-03-23 23:04 - 00000000 ____D () C:\Users\adam\AppData\Local\PirritSuggestor
2014-03-23 23:04 - 2014-03-23 23:04 - 00000000 ____D () C:\Program Files\Pirrit
2014-03-23 23:03 - 2014-03-23 23:03 - 01449020 _____ (Digital Photo Software ) C:\Users\adam\Downloads\FotoMixV9Setup.exe
2014-03-23 21:30 - 2014-03-23 21:27 - 56328457 _____ () C:\Users\adam\Downloads\Zoner-Media-Explorer-6-Classic---Full,CZ.zip
2014-03-20 00:28 - 2013-08-21 05:31 - 00000000 ____D () C:\windows\system32\MRT
2014-03-20 00:25 - 2006-11-02 11:24 - 87350280 _____ (Microsoft Corporation) C:\windows\system32\mrt.exe
2014-03-17 22:57 - 2012-07-16 20:21 - 00000000 ____D () C:\Users\adam\Desktop\Malina
2014-03-17 18:46 - 2006-11-02 13:47 - 00448896 _____ () C:\windows\system32\FNTCACHE.DAT
2014-03-16 21:40 - 2006-11-02 12:18 - 00000000 ____D () C:\windows\rescache
2014-03-15 22:14 - 2010-05-18 17:24 - 00002073 _____ () C:\Users\adam\Desktop\Google Chrome.lnk
2014-03-15 16:08 - 2014-03-15 14:27 - 418836344 _____ (G Data Software AG) C:\Users\adam\Downloads\INT_R_FUL_2014_IS.exe
2014-03-04 22:31 - 2010-03-12 21:52 - 00000000 ____D () C:\Users\adam\AppData\Local\GHISLER
2014-03-04 20:43 - 2006-11-02 12:18 - 00000000 ____D () C:\windows\Microsoft.NET
2014-03-03 20:22 - 2012-05-08 20:14 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
Some content of TEMP:
====================
C:\Users\adam\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
Multiple Image Resizer .NET (HKLM\...\InstallShield_{011D0235-589D-4B60-B952-3507C7E8D8D8}) (Version: 2.0.0.0 - Acumen Business Systems Ltd)
Multiple Image Resizer .NET (Version: 2.0.0.0 - Acumen Business Systems Ltd) Hidden
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-232463255-3589225732-204019539-1004Core.job => C:\Users\adam\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-232463255-3589225732-204019539-1004UA.job => C:\Users\adam\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\adam\Desktop" je 155 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
"C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence
Re\A7im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^adam^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.0.lnk.disabled
C:\Users\adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk.disabled [x]
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
nefunkční internet
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: nefunkční internet
ahoj,
co tak spustit obnovu systemu k datumu ked fungoval internet
a odvirenie nejak spolu zvladneme 
co tak spustit obnovu systemu k datumu ked fungoval internet
a odvirenie nejak spolu zvladneme FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: nefunkční internet
Děkuji moc, jsem laik, takže tuto funkci jsem nikdy nevyužil, internet začal fungovat, co bych mohl udělat ted?
Re: nefunkční internet
vycisti PC s ADWCleanerom >> scan/clean
+
prescanuj PC s MBAM - log vloz
+
prescanuj PC s MBAM - log vloz
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: nefunkční internet
Omlouvám se, vyčistil jsem to ADWclenerom, po restartu zase internet nejede, MBAM nejde spustit s tím že je setup file corrupted, zkusím ho stáhnout znovu, ale nečekám změnu, přikládám report z ADW, jestli k něčemu je, děkuji.
# AdwCleaner v3.022 - Report created 27/03/2014 at 11:44:00
# Updated 13/03/2014 by Xplode
# Operating System : Windows Vista (TM) Business Service Pack 2 (32 bits)
# Username : adam - NOTEBOOK
# Running from : C:\Users\adam\Downloads\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : PirritDesktop
Service Found : PirritUpdater
***** [ Files / Folders ] *****
File Found : C:\Users\adam\AppData\Roaming\Microsoft\Windows\Start Menu\eBay.lnk
File Found : C:\windows\System32\Tasks\RegClean Pro
Folder Found C:\Program Files\Pirrit
Folder Found C:\Users\adam\AppData\Local\PirritSuggestor
Folder Found C:\Users\adam\AppData\Roaming\AD ON Multimedia
Folder Found C:\Users\adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Found C:\Users\adam\AppData\Roaming\Systweak
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\RegClean Pro
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6C5CCFF-C7D5-4D3A-8F22-D97E93A5B13E}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Key Found : HKLM\Software\Pirrit
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.19507
-\\ Mozilla Firefox v27.0.1 (cs)
[ File : C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\w8llnj1n.default\prefs.js ]
Line Found : user_pref("extensions.inboxcomtoolbar@inbox.com.update.url", "hxxp://toolbar.inbox.com/toolbar/firefox/update.aspx?version=%ITEM_VERSION%&status=%ITEM_STATUS%&appVersion=%APP_VERSION%&appOS=%APP_OS%&a[...]
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=ACA9454E-8462-4863-80E3-2A8E55378F32&n=77fd2e86&p2=^AYY^xdm048^YYA^cz&si=GA_A1C_INTL_CZE_4");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.initialized", true);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.contextKey", "");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.installDate", "2013081222");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.partnerId", "^AYY^xdm048^YYA^cz");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.partnerSubId", "GA_A1C_INTL_CZE_4");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.success", true);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.toolbarId", "ACA9454E-8462-4863-80E3-2A8E55378F32");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.lastActivePing", "1376340116629");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.options.defaultSearch", false);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.options.homePageEnabled", false);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.options.keywordEnabled", false);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.options.tabEnabled", false);
Line Found : user_pref("extensions.toolbar.mindspark.lastInstalled", "allin1convert@mindspark.com");
[ File : C:\Users\Janynka a dìti\AppData\Roaming\Mozilla\Firefox\Profiles\1uj8yvu5.default-1390656649451\prefs.js ]
-\\ Google Chrome v
[ File : C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [4414 octets] - [27/03/2014 11:44:00]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [4474 octets] ##########
# AdwCleaner v3.022 - Report created 27/03/2014 at 11:44:00
# Updated 13/03/2014 by Xplode
# Operating System : Windows Vista (TM) Business Service Pack 2 (32 bits)
# Username : adam - NOTEBOOK
# Running from : C:\Users\adam\Downloads\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : PirritDesktop
Service Found : PirritUpdater
***** [ Files / Folders ] *****
File Found : C:\Users\adam\AppData\Roaming\Microsoft\Windows\Start Menu\eBay.lnk
File Found : C:\windows\System32\Tasks\RegClean Pro
Folder Found C:\Program Files\Pirrit
Folder Found C:\Users\adam\AppData\Local\PirritSuggestor
Folder Found C:\Users\adam\AppData\Roaming\AD ON Multimedia
Folder Found C:\Users\adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Found C:\Users\adam\AppData\Roaming\Systweak
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\RegClean Pro
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6C5CCFF-C7D5-4D3A-8F22-D97E93A5B13E}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Key Found : HKLM\Software\Pirrit
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.19507
-\\ Mozilla Firefox v27.0.1 (cs)
[ File : C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\w8llnj1n.default\prefs.js ]
Line Found : user_pref("extensions.inboxcomtoolbar@inbox.com.update.url", "hxxp://toolbar.inbox.com/toolbar/firefox/update.aspx?version=%ITEM_VERSION%&status=%ITEM_STATUS%&appVersion=%APP_VERSION%&appOS=%APP_OS%&a[...]
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=ACA9454E-8462-4863-80E3-2A8E55378F32&n=77fd2e86&p2=^AYY^xdm048^YYA^cz&si=GA_A1C_INTL_CZE_4");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.initialized", true);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.contextKey", "");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.installDate", "2013081222");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.partnerId", "^AYY^xdm048^YYA^cz");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.partnerSubId", "GA_A1C_INTL_CZE_4");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.success", true);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.toolbarId", "ACA9454E-8462-4863-80E3-2A8E55378F32");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.lastActivePing", "1376340116629");
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.options.defaultSearch", false);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.options.homePageEnabled", false);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.options.keywordEnabled", false);
Line Found : user_pref("extensions.toolbar.mindspark._8hMembers_.options.tabEnabled", false);
Line Found : user_pref("extensions.toolbar.mindspark.lastInstalled", "allin1convert@mindspark.com");
[ File : C:\Users\Janynka a dìti\AppData\Roaming\Mozilla\Firefox\Profiles\1uj8yvu5.default-1390656649451\prefs.js ]
-\\ Google Chrome v
[ File : C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [4414 octets] - [27/03/2014 11:44:00]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [4474 octets] ##########
Re: nefunkční internet
ak si to vycistil s ADWC, pokracuj s RK http://forum.viry.cz/viewtopic.php?f=24&t=120452 VOLBA PROHLEDAT - log sem
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: nefunkční internet
zde je ten log
RogueKiller V8.8.14 [Mar 26 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : adam [Práva správce]
Mód : Kontrola -- Datum : 03/27/2014 12:53:49
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[PROXY IE][PUM] HKCU\[...]\Internet Settings : ProxyServer (hxxp=hxxp://127.0.0.1:9880 [Country: , City: ]) -> NALEZENO
[PROXY IE][PUM] HKCU\[...]\Internet Settings : ProxyEnable (1) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] SSDT[75] : NtCreateSection @ 0x8243CF95 -> HOOKED (Unknown @ 0x90D85FBE)
[Address] SSDT[276] : NtRequestWaitReplyPort @ 0x8244F132 -> HOOKED (Unknown @ 0x90D85FC8)
[Address] SSDT[289] : NtSetContextThread @ 0x8249E2CF -> HOOKED (Unknown @ 0x90D85FC3)
[Address] SSDT[314] : NtSetSecurityObject @ 0x823CB027 -> HOOKED (Unknown @ 0x90D85FCD)
[Address] SSDT[332] : NtSystemDebugControl @ 0x82403EE9 -> HOOKED (Unknown @ 0x90D85FD2)
[Address] SSDT[334] : NtTerminateProcess @ 0x823FC16B -> HOOKED (Unknown @ 0x90D85F5F)
[Address] Shadow SSDT[573] : NtUserSetWindowsHookEx -> HOOKED (Unknown @ 0x90D85FE6)
[Address] Shadow SSDT[576] : NtUserSetWinEventHook -> HOOKED (Unknown @ 0x90D85FEB)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) Hitachi HTS543225L9A300 +++++
--- User ---
[MBR] 353b1ad8131ac6a6c8237930123becbe
[BSP] 51e5e125cbde13ad3517af0ef3600863 : Linux MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 199460 MB
1 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 467419136 | Size: 1025 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 469518704 | Size: 9218 MB
3 - [XXXXXX] EXTEN (0x05) [VISIBLE] Offset (sectors): 408496126 | Size: 28771 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Multi Flash Reader USB Device +++++
--- User ---
[MBR] 4c4f9931ce092c0ce8d4f6269ece1257
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT16 (0x06) [VISIBLE] Offset (sectors): 247 | Size: 1950 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )
+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) ChipsBnk Flash Disk USB Device +++++
--- User ---
[MBR] bebe4c06c36cbcf7831d656c95b5cc76
[BSP] e9afb1269494350e575f709ec27648d4 : Empty MBR Code
Partition table:
0 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 32 | Size: 252 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )
Dokončeno : << RKreport[0]_S_03272014_125349.txt >>
RogueKiller V8.8.14 [Mar 26 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : adam [Práva správce]
Mód : Kontrola -- Datum : 03/27/2014 12:53:49
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[PROXY IE][PUM] HKCU\[...]\Internet Settings : ProxyServer (hxxp=hxxp://127.0.0.1:9880 [Country: , City: ]) -> NALEZENO
[PROXY IE][PUM] HKCU\[...]\Internet Settings : ProxyEnable (1) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] SSDT[75] : NtCreateSection @ 0x8243CF95 -> HOOKED (Unknown @ 0x90D85FBE)
[Address] SSDT[276] : NtRequestWaitReplyPort @ 0x8244F132 -> HOOKED (Unknown @ 0x90D85FC8)
[Address] SSDT[289] : NtSetContextThread @ 0x8249E2CF -> HOOKED (Unknown @ 0x90D85FC3)
[Address] SSDT[314] : NtSetSecurityObject @ 0x823CB027 -> HOOKED (Unknown @ 0x90D85FCD)
[Address] SSDT[332] : NtSystemDebugControl @ 0x82403EE9 -> HOOKED (Unknown @ 0x90D85FD2)
[Address] SSDT[334] : NtTerminateProcess @ 0x823FC16B -> HOOKED (Unknown @ 0x90D85F5F)
[Address] Shadow SSDT[573] : NtUserSetWindowsHookEx -> HOOKED (Unknown @ 0x90D85FE6)
[Address] Shadow SSDT[576] : NtUserSetWinEventHook -> HOOKED (Unknown @ 0x90D85FEB)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) Hitachi HTS543225L9A300 +++++
--- User ---
[MBR] 353b1ad8131ac6a6c8237930123becbe
[BSP] 51e5e125cbde13ad3517af0ef3600863 : Linux MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 199460 MB
1 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 467419136 | Size: 1025 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 469518704 | Size: 9218 MB
3 - [XXXXXX] EXTEN (0x05) [VISIBLE] Offset (sectors): 408496126 | Size: 28771 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Multi Flash Reader USB Device +++++
--- User ---
[MBR] 4c4f9931ce092c0ce8d4f6269ece1257
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT16 (0x06) [VISIBLE] Offset (sectors): 247 | Size: 1950 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )
+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) ChipsBnk Flash Disk USB Device +++++
--- User ---
[MBR] bebe4c06c36cbcf7831d656c95b5cc76
[BSP] e9afb1269494350e575f709ec27648d4 : Empty MBR Code
Partition table:
0 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 32 | Size: 252 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )
Dokončeno : << RKreport[0]_S_03272014_125349.txt >>
Re: nefunkční internet
zopakuj s volbou zmazat
+
vloz log z TDSSKiller
+
vloz log z TDSSKiller
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: nefunkční internet
Nejsem si jistý, jestli je to ten správný log, navíc je moc dlouhý(42 stran), nejde mi sem vložit ani jako příloha, všechny přípony jsou zakázané(txt, doc, rtf...). Bohužel budu u internetu až večer, takže nejsem schopen ověřit, jestli to již jede nebo ne. Každopádně zatím moc děkuji za ochotu, určitě hodlám nějaký příspěvek zaplatit.
Re: nefunkční internet
log ma asi takyto tvar TDSSKiller.2.8.16.0_19.03.2014_16.40.22_log.txt
ak je velmi dlhy skopiruj poslednu stranu logu
ak je velmi dlhy skopiruj poslednu stranu logu
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: nefunkční internet
Tak snad je to ono...
14:34:07.0887 2696 z530bus - ok
14:34:07.0903 2696 ================ Scan global ===============================
14:34:07.0934 2696 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\windows\system32\basesrv.dll
14:34:07.0981 2696 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\windows\system32\winsrv.dll
14:34:07.0996 2696 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\windows\system32\winsrv.dll
14:34:08.0043 2696 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\windows\system32\services.exe
14:34:08.0043 2696 [Global] - ok
14:34:08.0043 2696 ================ Scan MBR ==================================
14:34:08.0059 2696 [ FF1761EF7140665743A6D636F95DFD81 ] \Device\Harddisk0\DR0
14:34:08.0074 2696 \Device\Harddisk0\DR0 - ok
14:34:08.0074 2696 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:34:08.0137 2696 \Device\Harddisk1\DR1 - ok
14:34:08.0152 2696 [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk2\DR4
14:34:12.0162 2696 \Device\Harddisk2\DR4 - ok
14:34:12.0162 2696 ================ Scan VBR ==================================
14:34:12.0162 2696 [ B3D82E94411E4FBB9AC7ECC8DBF91313 ] \Device\Harddisk0\DR0\Partition1
14:34:12.0177 2696 \Device\Harddisk0\DR0\Partition1 - ok
14:34:12.0193 2696 [ 7B44DC269BF123E3D69D565100A8075E ] \Device\Harddisk0\DR0\Partition2
14:34:12.0193 2696 \Device\Harddisk0\DR0\Partition2 - ok
14:34:12.0208 2696 [ 6714B7E10D40D67DAF1161F27EA5CD93 ] \Device\Harddisk0\DR0\Partition3
14:34:12.0224 2696 \Device\Harddisk0\DR0\Partition3 - ok
14:34:12.0224 2696 [ C6F7FEAB2E06C87B340F1A8C6D4E1654 ] \Device\Harddisk1\DR1\Partition1
14:34:12.0224 2696 \Device\Harddisk1\DR1\Partition1 - ok
14:34:12.0224 2696 [ 88C16731752F4FE850D16839C68B2B92 ] \Device\Harddisk2\DR4\Partition1
14:34:12.0224 2696 \Device\Harddisk2\DR4\Partition1 - ok
14:34:12.0240 2696 ============================================================
14:34:12.0240 2696 Scan finished
14:34:12.0240 2696 ============================================================
14:34:12.0240 4048 Detected object count: 2
14:34:12.0240 4048 Actual detected object count: 2
14:34:18.0682 4048 SafeBoot ( LockedFile.Multi.Generic ) - skipped by user
14:34:18.0682 4048 SafeBoot ( LockedFile.Multi.Generic ) - User select action: Skip
14:34:18.0698 4048 sptd ( LockedFile.Multi.Generic ) - skipped by user
14:34:18.0698 4048 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
14:34:35.0203 1832 Deinitialize success
14:34:07.0887 2696 z530bus - ok
14:34:07.0903 2696 ================ Scan global ===============================
14:34:07.0934 2696 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\windows\system32\basesrv.dll
14:34:07.0981 2696 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\windows\system32\winsrv.dll
14:34:07.0996 2696 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\windows\system32\winsrv.dll
14:34:08.0043 2696 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\windows\system32\services.exe
14:34:08.0043 2696 [Global] - ok
14:34:08.0043 2696 ================ Scan MBR ==================================
14:34:08.0059 2696 [ FF1761EF7140665743A6D636F95DFD81 ] \Device\Harddisk0\DR0
14:34:08.0074 2696 \Device\Harddisk0\DR0 - ok
14:34:08.0074 2696 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:34:08.0137 2696 \Device\Harddisk1\DR1 - ok
14:34:08.0152 2696 [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk2\DR4
14:34:12.0162 2696 \Device\Harddisk2\DR4 - ok
14:34:12.0162 2696 ================ Scan VBR ==================================
14:34:12.0162 2696 [ B3D82E94411E4FBB9AC7ECC8DBF91313 ] \Device\Harddisk0\DR0\Partition1
14:34:12.0177 2696 \Device\Harddisk0\DR0\Partition1 - ok
14:34:12.0193 2696 [ 7B44DC269BF123E3D69D565100A8075E ] \Device\Harddisk0\DR0\Partition2
14:34:12.0193 2696 \Device\Harddisk0\DR0\Partition2 - ok
14:34:12.0208 2696 [ 6714B7E10D40D67DAF1161F27EA5CD93 ] \Device\Harddisk0\DR0\Partition3
14:34:12.0224 2696 \Device\Harddisk0\DR0\Partition3 - ok
14:34:12.0224 2696 [ C6F7FEAB2E06C87B340F1A8C6D4E1654 ] \Device\Harddisk1\DR1\Partition1
14:34:12.0224 2696 \Device\Harddisk1\DR1\Partition1 - ok
14:34:12.0224 2696 [ 88C16731752F4FE850D16839C68B2B92 ] \Device\Harddisk2\DR4\Partition1
14:34:12.0224 2696 \Device\Harddisk2\DR4\Partition1 - ok
14:34:12.0240 2696 ============================================================
14:34:12.0240 2696 Scan finished
14:34:12.0240 2696 ============================================================
14:34:12.0240 4048 Detected object count: 2
14:34:12.0240 4048 Actual detected object count: 2
14:34:18.0682 4048 SafeBoot ( LockedFile.Multi.Generic ) - skipped by user
14:34:18.0682 4048 SafeBoot ( LockedFile.Multi.Generic ) - User select action: Skip
14:34:18.0698 4048 sptd ( LockedFile.Multi.Generic ) - skipped by user
14:34:18.0698 4048 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
14:34:35.0203 1832 Deinitialize success
Re: nefunkční internet
skus ten MBAM v nudzovom rezime PC
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: nefunkční internet
Tak internet stále nefungoval, bylo to ale přednastaveným proxy serverem, nyní je to v pořádku, okna taky přestala vyskakovat. MBAB jsem zapnul normálně, ne z nouzového režimu, taky se to zdá O.K., jestli to mám udělat ještě z nouzového režimu, tak mi dej vědět. Nezbývá než poděkovat, pošlu přes účet nějaký dar, kdyby něco, ozval bych se. Děkuji moc za pomoc a trpělivost.
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 27.3.2014
Čas skenování: 23:04:20
Protokol:
Správce: Ano
Verze: 2.00.0.1000
Databáze malwaru: v2014.03.27.07
Databáze rootkitů: v2014.03.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Chameleon: Vypnuto
OS: Windows Vista Service Pack 2
CPU: x86
Souborový systém: NTFS
Uživatel: adam
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 259145
Uplynulý čas: 9 min, 2 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Shuriken: Zapnuto
PUP: Varovat
PUM: Zapnuto
Procesy: 0
(No malicious items detected)
Moduly: 0
(No malicious items detected)
Klíče registru: 0
(No malicious items detected)
Hodnoty registru: 0
(No malicious items detected)
Data registru: 0
(No malicious items detected)
Složky: 0
(No malicious items detected)
Soubory: 0
(No malicious items detected)
Fyzické sektory: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 27.3.2014
Čas skenování: 23:04:20
Protokol:
Správce: Ano
Verze: 2.00.0.1000
Databáze malwaru: v2014.03.27.07
Databáze rootkitů: v2014.03.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Chameleon: Vypnuto
OS: Windows Vista Service Pack 2
CPU: x86
Souborový systém: NTFS
Uživatel: adam
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 259145
Uplynulý čas: 9 min, 2 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Shuriken: Zapnuto
PUP: Varovat
PUM: Zapnuto
Procesy: 0
(No malicious items detected)
Moduly: 0
(No malicious items detected)
Klíče registru: 0
(No malicious items detected)
Hodnoty registru: 0
(No malicious items detected)
Data registru: 0
(No malicious items detected)
Složky: 0
(No malicious items detected)
Soubory: 0
(No malicious items detected)
Fyzické sektory: 0
(No malicious items detected)
(end)
Re: nefunkční internet
OK - pouzite utility mozes odinstalovat/zmazat - CC si ponechaj
rado sa stalo
rado sa stalo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?