vyskakující okna v firefoxu

Zpráva

Georgios · #1 Příspěvek od **Georgios** » 17 srp 2014 08:06

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:16-08-2014 03
Ran by Administrator (administrator) on U-F4CC5AF774AF4 on 17-08-2014 08:54:30
Running from C:\Documents and Settings\Administrator\Plocha
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Cherished Technololgy LIMITED) C:\Documents and Settings\All Users\Data aplikací\IePluginServices\PluginService.exe
(IObit) C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(C-Dilla Ltd) C:\WINDOWS\system32\drivers\CDANTSRV.EXE
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
() C:\Program Files\EnhanceEmpire\updateEnhanceEmpire.exe
() C:\Program Files\EnhanceEmpire\bin\utilEnhanceEmpire.exe
() C:\Program Files\EnhanceEmpire\bin\EnhanceEmpire.PurBrowse.exe
() C:\Program Files\EnhanceEmpire\bin\EnhanceEmpire.BrowserAdapter.exe
() C:\Program Files\SupTab\HpUI.exe
() C:\Program Files\SupTab\Loader32.exe
(Pinnacle Systems GmbH) C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 7\ASC.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(C. Ghisler & Co.) C:\totalcmd\TOTALCMD.EXE

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\.DEFAULT\...\Run: [DWQueuedReporting] => C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [434080 2011-07-27] (Microsoft Corporation)
HKU\S-1-5-21-2000478354-492894223-725345543-500\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2000478354-492894223-725345543-500\...\Run: [Advanced SystemCare 7] => C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe [2295584 2014-04-21] (IObit)
HKU\S-1-5-21-2000478354-492894223-725345543-500\...\Run: [Allmyapps] => C:\Documents and Settings\Administrator\Data aplikací\Allmyapps\Allmyapps.exe [6782328 2014-05-25] (Allmyapps)
HKU\S-1-5-21-2000478354-492894223-725345543-500\...\Run: [Allmyapps Update] => C:\Documents and Settings\Administrator\Data aplikací\Allmyapps\AllmyappsUpdater.exe [317304 2014-05-25] (Allmyapps)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Administrator\Data aplikací\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Administrator\Data aplikací\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Administrator\Data aplikací\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Administrator\Data aplikací\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
URLSearchHook: HKCU - SearchHook Class - {D8278076-BC68-4484-9233-6E7F1628B56C} - C:\Program Files\AskPartnerNetwork\Toolbar\searchhook.dll (APN LLC.)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com/?type=sc&ts=1 ... XX9VM3LVDS
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=ds& ... earchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=ds& ... earchTerms}
SearchScopes: HKLM - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKLM - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - DefaultScope {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://www.google.com/search?ie=utf-8&o ... earchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.dalesearch.com/?q={searchTer ... 0&tsp=5021
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... C23D9D2A15
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=ds& ... earchTerms}
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://www.google.com/search?ie=utf-8&o ... earchTerms}
SearchScopes: HKCU - {45EBD02C-EDF8-4A4F-80E4-21084FEE0197} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKCU - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... earchTerms}
SearchScopes: HKCU - {B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD} URL = http://eu.ask.com/web?l=dis&o=APN10089& ... earchTerms}
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: Search App by Ask -> {4F524A2D-5350-4500-76A7-7A786E7484D7} -> C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll (APN LLC.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
Toolbar: HKLM - Search App by Ask - {4F524A2D-5350-4500-76A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll (APN LLC.)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {4B4D5056-3600-A76A-76A7-7A786E7484D7} - No File
DPF: {1F831FA2-42FC-11D4-95A6-0080AD30DCE1} file:///C:/Program%20Files/AutoCAD%202002%20Cz/InstFred.ocx
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 4302836265
DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} file:///C:/Program%20Files/AutoCAD%202002%20Cz/AcDcToday.ocx
DPF: {AE563723-B4F5-11D4-A415-00108302FDFD} file:///C:/Program%20Files/AutoCAD%202002%20Cz/InstBanr.ocx
DPF: {F281A59C-7B65-11D3-8617-0010830243BD} file:///C:/Program%20Files/AutoCAD%202002%20Cz/AcPreview.ocx
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390
FF NewTab: hxxp://www.sweet-page.com/newtab/?type=nt&ts=1 ... XX9VM3LVDS
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.search.ask.com/?tpid=ORJ-SPE&o=APN1 ... psv=&pt=tb
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\searchplugins\amazon.xml
FF SearchPlugin: C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\searchplugins\ask-search.xml
FF SearchPlugin: C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\sweet-page.xml
FF Extension: Site Matcher - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\sitematcher_srcs@sitematcher_srcs.com [2014-08-06]
FF Extension: Lišta Centrum.cz - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\toolbar@centrumholdings.com [2014-05-22]
FF Extension: Seznam lištička - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-06-04]
FF Extension: Amazon 1Button App for Firefox - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\abb@amazon.com.xpi [2014-01-31]
FF Extension: Slick Savings - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\savingsslider@mybrowserbar.com.xpi [2014-05-22]
FF Extension: KMP Media Toolbar - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\toolbar_KMPV7c@apn.ask.com.xpi [2014-03-27]
FF Extension: Search App by Ask - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\toolbar_ORJ-SPE@apn.ask.com.xpi [2014-06-26]
FF Extension: EnhanceEmpire - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\{7951da45-7bdd-437b-929a-ec3e88ff6c84}.xpi [2014-08-06]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-06-11]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-06-11]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-06-11]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-30]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2009-10-01]
FF HKLM\...\Firefox\Extensions: [{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}] - C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-08]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe http://www.sweet-page.com/?type=sc&ts=1 ... XX9VM3LVDS

Chrome:
=======
CHR HomePage: hxxp://www.sweet-page.com/?type=hp&ts=14073305 ... XX9VM3LVDS
CHR StartupUrls: "hxxp://www.sweet-page.com/?type=hp&ts=14073305 ... XX9VM3LVDS"
CHR DefaultSearchKeyword: sweet-page
CHR DefaultSearchProvider: name
CHR DefaultSearchURL: http://www.sweet-page.com/web/?type=ds& ... earchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Docs) - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-08]
CHR Extension: (Disk Google) - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-08]
CHR Extension: (YouTube) - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-08]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-08]
CHR Extension: (avast! Online Security) - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-16]
CHR Extension: (Slick Savings) - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-07-16]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-08]
CHR Extension: (Gmail) - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-08]
CHR HKLM\...\Chrome\Extension: [cikkkfooompgefbcjlgdjejfdknkheaj] - C:\Program Files\Common Files\Spigot\GC\DomainErrorHelper_1.0_0.crx [2014-04-08]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-16]
CHR HKLM\...\Chrome\Extension: [gpiifgmgnfdiblgpaepbmfdkcheicgof] - C:\Program Files\Common Files\Spigot\GC\nta_1.0_0.crx [2014-07-16]
CHR HKLM\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files\Common Files\Spigot\GC\saebay_1.1.crx [2014-07-16]
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Slick Savings\coupons.crx [2014-05-21]
CHR HKLM\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files\Common Files\Spigot\GC\saamazon_1.0.crx [2014-05-21]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [165784 2014-06-14] (APN LLC.)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2009-08-13] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-16] (AVAST Software)
R2 C-DillaSrv; C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE [32256 2001-09-10] (C-Dilla Ltd) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2010-12-28] (Macrovision Europe Ltd.) [File not signed]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2008-03-25] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-03-25] (Hewlett-Packard Co.) [File not signed]
R2 IePluginServices; C:\Documents and Settings\All Users\Data aplikací\IePluginServices\PluginService.exe [694784 2014-08-06] (Cherished Technololgy LIMITED) [File not signed]
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [342336 2014-01-24] (IObit)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-08-09] (Oracle Corporation)
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [53248 2005-06-21] (Hewlett-Packard Company) [File not signed]
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-31] () [File not signed]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [43520 2008-02-28] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53248 2008-02-28] (Hewlett-Packard) [File not signed]
S3 SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2009-10-02] (SolidWorks) [File not signed]
R2 Update EnhanceEmpire; C:\Program Files\EnhanceEmpire\updateEnhanceEmpire.exe [323368 2014-08-12] ()
R2 Util EnhanceEmpire; C:\Program Files\EnhanceEmpire\bin\utilEnhanceEmpire.exe [323368 2014-08-12] ()
S2 Updater Service for AMZN; C:\Program Files\Amazon Browser Bar\ToolbarUpdaterService.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2014-05-25] (Creative)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-07-16] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-07-16] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-07-16] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-07-16] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-07-16] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-07-16] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-07-16] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-07-16] ()
S3 C-Dilla; C:\WINDOWS\system32\drivers\CDANT.SYS [57392 2001-09-10] (Macrovision) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S4 FileMonitor; C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys [247968 2013-03-23] (IObit)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-04-16] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-04-16] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-04-16] (HP)
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [106296 2014-05-25] (JMicron Technology Corp.)
R3 MarvinBus; C:\WINDOWS\System32\DRIVERS\MarvinBus.sys [171520 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2014-05-25] (Creative Technology Ltd.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R3 RegFilter; C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\regfilter.sys [31776 2013-11-19] (IObit.com)
R3 RTHDMIAzAudService; C:\WINDOWS\System32\drivers\RtKHDMI.sys [4125352 2014-05-25] (Realtek Semiconductor Corp.)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-04] (Realtek Semiconductor Corporation)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [15808 2014-06-04] (IObit)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [691696 2010-12-07] () [File not signed]
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
R3 UrlFilter; C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\UrlFilter.sys [17360 2013-11-19] (IObit.com)
R3 usbcamcl; C:\WINDOWS\System32\DRIVERS\usbcamcl.sys [38784 2011-11-25] (usb camera)
R1 {75e31400-eac4-49b7-986c-d198f0b97db7}Gt; C:\WINDOWS\System32\drivers\{75e31400-eac4-49b7-986c-d198f0b97db7}Gt.sys [55240 2014-07-08] (StdLib)
U3 ahpcwvry; C:\WINDOWS\system32\Drivers\ahpcwvry.sys [0 ] (Microsoft Corporation)
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
U1 WS2IFSL;
U2 wuaserv;

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-17 08:54 - 2014-08-17 08:54 - 00027925 _____ () C:\Documents and Settings\Administrator\Plocha\FRST.txt
2014-08-17 08:53 - 2014-08-17 08:54 - 00000000 ____D () C:\FRST
2014-08-17 08:53 - 2014-08-17 08:53 - 01093632 _____ (Farbar) C:\Documents and Settings\Administrator\Plocha\FRST.exe
2014-08-16 11:18 - 2014-07-08 18:42 - 00055240 _____ (StdLib) C:\WINDOWS\system32\Drivers\{75e31400-eac4-49b7-986c-d198f0b97db7}Gt.sys
2014-08-15 18:57 - 2014-08-15 18:57 - 05859760 _____ (ShieldApps) C:\ComputerSpeedOptimizerSetup.exe
2014-08-15 08:39 - 2014-08-15 08:39 - 03552760 _____ (tuneuppro.com ) C:\tall_150806393656267020.exe
2014-08-15 08:31 - 2014-08-17 08:07 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2014-08-15 08:31 - 2014-08-17 08:07 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-08-15 08:31 - 2014-08-16 22:00 - 00032444 _____ () C:\WINDOWS\SchedLgU.Txt
2014-08-15 08:31 - 2014-08-15 08:31 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-08-14 08:22 - 2014-08-14 08:22 - 03552760 _____ (tuneuppro.com ) C:\tall_140806222764339389.exe
2014-08-10 12:30 - 2014-08-10 12:30 - 05931575 _____ () C:\prilohy_12820.zip
2014-08-10 12:29 - 2014-08-10 12:29 - 04992439 _____ () C:\prilohy_12818.zip
2014-08-09 08:02 - 2014-08-09 08:02 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-08-09 08:02 - 2014-08-09 08:02 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-08-09 08:02 - 2014-08-09 08:02 - 00096680 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-08-09 08:02 - 2014-08-09 08:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2014-08-09 08:02 - 2014-08-09 08:01 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-08-09 08:02 - 2014-08-09 08:01 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-08-06 19:24 - 2014-08-06 19:24 - 05781496 _____ (ShieldApps) C:\PCSpeedRepairSetup.exe
2014-08-06 18:35 - 2014-08-10 14:41 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\Lavasoft
2014-08-06 18:33 - 2014-08-06 18:33 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\LavasoftStatistics
2014-08-06 18:29 - 2014-08-10 14:49 - 00000000 ____D () C:\Program Files\Lavasoft
2014-08-06 18:18 - 2014-08-06 18:18 - 01728896 _____ () C:\AdAwareWebInstaller_win32_11.1.5354.0.exe
2014-08-06 16:11 - 2014-08-06 16:11 - 00000000 __SHD () C:\Documents and Settings\LocalService\IETldCache
2014-08-06 16:11 - 2014-08-06 16:11 - 00000000 ___RD () C:\Documents and Settings\LocalService\Oblíbené položky
2014-08-06 15:22 - 2014-08-14 08:24 - 03552760 _____ (tuneuppro.com ) C:\tall_060801215972945613.exe
2014-08-06 15:17 - 2014-08-17 08:11 - 00000280 _____ () C:\WINDOWS\Tasks\SmartDefrag3_Update.job
2014-08-06 15:16 - 2014-08-06 15:16 - 00000829 _____ () C:\Documents and Settings\All Users\Plocha\Smart Defrag 3.lnk
2014-08-06 15:16 - 2014-08-06 15:16 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Smart Defrag 3
2014-08-06 15:16 - 2014-06-04 15:17 - 00109856 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2014-08-06 15:16 - 2014-06-04 15:17 - 00015808 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2014-08-06 15:08 - 2014-08-10 14:51 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\sweet-page
2014-08-06 15:08 - 2014-08-06 19:49 - 00000000 ____D () C:\Program Files\SupTab
2014-08-06 15:08 - 2014-08-06 15:08 - 00000000 ____D () C:\Program Files\SiteLookup
2014-08-06 15:08 - 2014-08-06 15:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect
2014-08-06 15:08 - 2014-08-06 15:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\IePluginServices
2014-08-06 15:08 - 2014-08-06 15:08 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\SimilarAddon
2014-08-06 15:06 - 2014-08-06 19:48 - 00000000 ____D () C:\Program Files\EnhanceEmpire
2014-08-06 15:06 - 2014-08-06 15:23 - 00001591 _____ () C:\Documents and Settings\Administrator\Plocha\KMP Games.lnk
2014-08-06 15:04 - 2014-08-06 15:04 - 32833984 _____ (PandoraTV) C:\Documents and Settings\Administrator\Plocha\KMPlayer_3-9-0-126.exe
2014-08-05 08:23 - 2014-08-05 08:23 - 02807744 _____ (tuneuppro.com ) C:\tupp_050806233993710360.exe
2014-08-05 08:23 - 2014-08-05 08:23 - 02807744 _____ (tuneuppro.com ) C:\tupp_0508062234214593.exe
2014-08-04 12:48 - 2014-08-04 12:48 - 01677928 _____ (Skype Technologies S.A.) C:\Documents and Settings\Administrator\Plocha\SkypeSetup.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-17 08:54 - 2014-08-17 08:54 - 00027925 _____ () C:\Documents and Settings\Administrator\Plocha\FRST.txt
2014-08-17 08:54 - 2014-08-17 08:53 - 00000000 ____D () C:\FRST
2014-08-17 08:54 - 2013-12-25 19:18 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\Skype
2014-08-17 08:54 - 2009-09-30 10:39 - 00000000 ____D () C:\Documents and Settings\Administrator\Plocha
2014-08-17 08:54 - 2009-09-30 10:39 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Temp
2014-08-17 08:53 - 2014-08-17 08:53 - 01093632 _____ (Farbar) C:\Documents and Settings\Administrator\Plocha\FRST.exe
2014-08-17 08:53 - 2014-07-16 09:43 - 00000954 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-17 08:36 - 2013-02-01 21:14 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-17 08:32 - 2009-10-01 11:29 - 00002542 _____ () C:\WINDOWS\WINCMD.INI
2014-08-17 08:25 - 2009-09-30 10:34 - 01376651 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-17 08:20 - 2014-05-25 03:46 - 58007552 _____ () C:\WINDOWS\system32\config\software.iobit
2014-08-17 08:20 - 2014-05-25 03:46 - 00344064 _____ () C:\WINDOWS\system32\config\default.iobit
2014-08-17 08:20 - 2014-05-25 03:46 - 00053248 _____ () C:\WINDOWS\system32\config\SECURITY.iobit
2014-08-17 08:20 - 2014-05-25 03:46 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iobit
2014-08-17 08:20 - 2009-09-30 10:39 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-08-17 08:20 - 2009-09-30 10:39 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-08-17 08:20 - 2009-09-30 10:38 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-08-17 08:12 - 2014-05-31 19:40 - 00000288 _____ () C:\WINDOWS\Tasks\Driver Booster Update.job
2014-08-17 08:12 - 2009-09-30 13:12 - 00262144 _____ () C:\WINDOWS\system32\config\ACEEvent.evt
2014-08-17 08:11 - 2014-08-06 15:17 - 00000280 _____ () C:\WINDOWS\Tasks\SmartDefrag3_Update.job
2014-08-17 08:11 - 2014-07-16 09:43 - 00000950 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-17 08:11 - 2014-05-31 19:40 - 00000286 _____ () C:\WINDOWS\Tasks\Driver Booster Scan.job
2014-08-17 08:11 - 2014-04-08 05:38 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-08-17 08:11 - 2014-03-27 12:51 - 00000238 _____ () C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2014-08-17 08:11 - 2013-02-16 13:25 - 00000324 _____ () C:\WINDOWS\Tasks\YourFile DownloaderUpdate.job
2014-08-17 08:11 - 2007-10-29 14:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-08-17 08:10 - 2007-10-29 14:00 - 00000927 _____ () C:\WINDOWS\win.ini
2014-08-17 08:07 - 2014-08-15 08:31 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2014-08-17 08:07 - 2014-08-15 08:31 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-08-17 08:07 - 2009-09-30 10:39 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-08-16 22:00 - 2014-08-15 08:31 - 00032444 _____ () C:\WINDOWS\SchedLgU.Txt
2014-08-16 22:00 - 2009-09-30 10:39 - 00000272 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-08-16 20:24 - 2014-05-18 19:47 - 00000000 ____D () C:\The KMPlayer
2014-08-16 15:16 - 2013-12-26 19:53 - 00001324 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-08-15 20:34 - 2014-05-16 17:23 - 00000486 _____ () C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
2014-08-15 18:57 - 2014-08-15 18:57 - 05859760 _____ (ShieldApps) C:\ComputerSpeedOptimizerSetup.exe
2014-08-15 08:39 - 2014-08-15 08:39 - 03552760 _____ (tuneuppro.com ) C:\tall_150806393656267020.exe
2014-08-15 08:31 - 2014-08-15 08:31 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-08-14 09:53 - 2009-09-30 10:39 - 00000000 ___HD () C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2014-08-14 08:34 - 2011-10-23 14:30 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-08-14 08:31 - 2013-09-26 20:18 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-08-14 08:27 - 2009-09-30 13:08 - 96303304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-08-14 08:24 - 2014-08-06 15:22 - 03552760 _____ (tuneuppro.com ) C:\tall_060801215972945613.exe
2014-08-14 08:22 - 2014-08-14 08:22 - 03552760 _____ (tuneuppro.com ) C:\tall_140806222764339389.exe
2014-08-13 18:56 - 2014-07-16 09:44 - 00001819 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-08-11 08:01 - 2009-09-30 11:48 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-08-10 14:51 - 2014-08-06 15:08 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\sweet-page
2014-08-10 14:49 - 2014-08-06 18:29 - 00000000 ____D () C:\Program Files\Lavasoft
2014-08-10 14:49 - 2009-09-30 10:39 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací
2014-08-10 14:41 - 2014-08-06 18:35 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\Lavasoft
2014-08-10 14:40 - 2009-09-30 11:50 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-08-10 14:40 - 2009-09-30 11:50 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-08-10 13:03 - 2010-01-03 14:02 - 00000000 ____D () C:\Documents and Settings\Administrator\Dokumenty\Moje naskenované obrázky
2014-08-10 12:30 - 2014-08-10 12:30 - 05931575 _____ () C:\prilohy_12820.zip
2014-08-10 12:29 - 2014-08-10 12:29 - 04992439 _____ () C:\prilohy_12818.zip
2014-08-10 08:14 - 2013-02-16 13:25 - 00000000 ____D () C:\Program Files\YourFileDownloader
2014-08-09 08:02 - 2014-08-09 08:02 - 00272808 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-08-09 08:02 - 2014-08-09 08:02 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-08-09 08:02 - 2014-08-09 08:02 - 00096680 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-08-09 08:02 - 2014-08-09 08:02 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2014-08-09 08:01 - 2014-08-09 08:02 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-08-09 08:01 - 2014-08-09 08:02 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-08-09 08:01 - 2010-09-26 13:06 - 00000000 ____D () C:\Program Files\Java
2014-08-09 04:40 - 2014-03-27 12:51 - 00000232 _____ () C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2014-08-06 19:49 - 2014-08-06 15:08 - 00000000 ____D () C:\Program Files\SupTab
2014-08-06 19:48 - 2014-08-06 15:06 - 00000000 ____D () C:\Program Files\EnhanceEmpire
2014-08-06 19:48 - 2009-10-01 20:07 - 00000000 ____D () C:\Program Files\AutoCAD 2002 Cz
2014-08-06 19:24 - 2014-08-06 19:24 - 05781496 _____ (ShieldApps) C:\PCSpeedRepairSetup.exe
2014-08-06 18:33 - 2014-08-06 18:33 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\LavasoftStatistics
2014-08-06 18:23 - 2011-03-31 20:06 - 00131072 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-08-06 18:21 - 2010-04-06 13:51 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2014-08-06 18:18 - 2014-08-06 18:18 - 01728896 _____ () C:\AdAwareWebInstaller_win32_11.1.5354.0.exe
2014-08-06 16:11 - 2014-08-06 16:11 - 00000000 __SHD () C:\Documents and Settings\LocalService\IETldCache
2014-08-06 16:11 - 2014-08-06 16:11 - 00000000 ___RD () C:\Documents and Settings\LocalService\Oblíbené položky
2014-08-06 15:23 - 2014-08-06 15:06 - 00001591 _____ () C:\Documents and Settings\Administrator\Plocha\KMP Games.lnk
2014-08-06 15:23 - 2012-06-19 07:53 - 00000760 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Mozilla Firefox.lnk
2014-08-06 15:23 - 2012-06-19 07:53 - 00000754 _____ () C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
2014-08-06 15:16 - 2014-08-06 15:16 - 00000829 _____ () C:\Documents and Settings\All Users\Plocha\Smart Defrag 3.lnk
2014-08-06 15:16 - 2014-08-06 15:16 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Smart Defrag 3
2014-08-06 15:08 - 2014-08-06 15:08 - 00000000 ____D () C:\Program Files\SiteLookup
2014-08-06 15:08 - 2014-08-06 15:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect
2014-08-06 15:08 - 2014-08-06 15:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\IePluginServices
2014-08-06 15:08 - 2014-08-06 15:08 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\SimilarAddon
2014-08-06 15:06 - 2014-05-18 19:48 - 00000556 _____ () C:\Documents and Settings\Administrator\Plocha\KMPlayer.lnk
2014-08-06 15:04 - 2014-08-06 15:04 - 32833984 _____ (PandoraTV) C:\Documents and Settings\Administrator\Plocha\KMPlayer_3-9-0-126.exe
2014-08-05 20:40 - 2011-04-23 08:04 - 00000064 _____ () C:\WINDOWS\system32\rp_stats.dat
2014-08-05 20:40 - 2011-04-23 08:04 - 00000044 _____ () C:\WINDOWS\system32\rp_rules.dat
2014-08-05 08:23 - 2014-08-05 08:23 - 02807744 _____ (tuneuppro.com ) C:\tupp_050806233993710360.exe
2014-08-05 08:23 - 2014-08-05 08:23 - 02807744 _____ (tuneuppro.com ) C:\tupp_0508062234214593.exe
2014-08-05 08:16 - 2012-06-19 07:53 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-08-04 12:48 - 2014-08-04 12:48 - 01677928 _____ (Skype Technologies S.A.) C:\Documents and Settings\Administrator\Plocha\SkypeSetup.exe
2014-08-04 12:11 - 2014-05-21 19:41 - 00001852 _____ () C:\Documents and Settings\All Users\Plocha\Advanced SystemCare 7.lnk
2014-08-04 11:59 - 2014-06-11 09:36 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-07-28 20:09 - 2009-09-30 10:39 - 00000000 ___RD () C:\Documents and Settings\Administrator\Dokumenty
2014-07-28 18:05 - 2011-10-23 15:30 - 00002563 _____ () C:\Documents and Settings\Administrator\Plocha\Microsoft Office Word 2007.lnk
2014-07-25 08:14 - 2010-12-01 20:43 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-24 08:28 - 2010-12-01 20:43 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
2014-07-20 07:56 - 2014-05-25 16:45 - 04420840 _____ (Systweak Inc ) C:\rcp_dcomnew_util_300.exe

Some content of TEMP:
====================
C:\Documents and Settings\Administrator\Local Settings\Temp\APNSetup.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

#2 Příspěvek od **Rudy** » 17 srp 2014 10:37

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\Program Files\SupTab
C:\Program Files\AskPartnerNetwork
URLSearchHook: HKCU - SearchHook Class - {D8278076-BC68-4484-9233-6E7F1628B56C} - C:\Program Files\AskPartnerNetwork\Toolbar\searchhook.dll (APN LLC.)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com/?type=sc&ts=1 ... XX9VM3LVDS
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=ds& ... VM3LVDS&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=ds& ... VM3LVDS&q={searchTerms}
SearchScopes: HKLM - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKLM - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.dalesearch.com/?q={searchTer ... 0&tsp=5021
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=H3&apn_dtid=YYYYYYYYCZ&apn_uid=94C3CE5D-8B6F-4916-990C-748F4FE91EB4&apn_sauid=7116917C-B09F-4F92-807A-90C23D9D2A15
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.sweet-page.com/web/?type=ds& ... VM3LVDS&q={searchTerms}
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKCU - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.as ... =CT2786678
SearchScopes: HKCU - {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.com/websearch/ref=bit ... 300&query={searchTerms}
SearchScopes: HKCU - {B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD} URL = http://eu.ask.com/web?l=dis&o=APN10089& ... &apn_dtid=^YYYYYY^YY^CZ&apn_ptnrs=^A5F&apn_uid=8890883081064989&p2=^A5F^YYYYYY^YY^CZ&q={searchTerms}
BHO: Search App by Ask -> {4F524A2D-5350-4500-76A7-7A786E7484D7} -> C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll (APN LLC.)
Toolbar: HKLM - Search App by Ask - {4F524A2D-5350-4500-76A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll (APN LLC.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {4B4D5056-3600-A76A-76A7-7A786E7484D7} - No File
FF ProfilePath: C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390
FF NewTab: hxxp://www.sweet-page.com/newtab/?type= ... XX9VM3LVDS
FF Homepage: hxxp://www.search.ask.com/?tpid=ORJ-SPE ... psv=&pt=tb
FF Extension: Amazon 1Button App for Firefox - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\abb@amazon.com.xpi [2014-01-31]
FF Extension: Slick Savings - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\savingsslider@mybrowserbar.com.xpi [2014-05-22]
FF Extension: KMP Media Toolbar - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\toolbar_KMPV7c@apn.ask.com.xpi [2014-03-27]
FF Extension: Search App by Ask - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\toolbar_ORJ-SPE@apn.ask.com.xpi [2014-06-26]
FF Extension: EnhanceEmpire - C:\Documents and Settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\oj8tfizj.default-1397878618390\Extensions\{7951da45-7bdd-437b-929a-ec3e88ff6c84}.xpi [2014-08-06]
CHR HomePage: hxxp://www.sweet-page.com/?type=hp&ts=1 ... XX9VM3LVDS
CHR StartupUrls: "hxxp://www.sweet-page.com/?type=hp&ts=14073305 ... XX9VM3LVDS"
CHR DefaultSearchKeyword: sweet-page
CHR DefaultSearchProvider: name
CHR DefaultSearchURL: http://www.sweet-page.com/web/?type=ds& ... VM3LVDS&q={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Slick Savings) - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk [2014-07-16]
CHR HKLM\...\Chrome\Extension: [gpiifgmgnfdiblgpaepbmfdkcheicgof] - C:\Program Files\Common Files\Spigot\GC\nta_1.0_0.crx [2014-07-16]
CHR HKLM\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files\Common Files\Spigot\GC\saebay_1.1.crx [2014-07-16]
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Slick Savings\coupons.crx [2014-05-21]
CHR HKLM\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files\Common Files\Spigot\GC\saamazon_1.0.crx [2014-05-21]
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\Administrator\Data aplikací\sweet-page
C:\Documents and Settings\Administrator\Local Settings\Temp
End

Uložte na plochu jako fixlist.txt. Pak znovu spusťte FRST a klikněte na >Fix<. Zkopírujte sem pak log, který se na závěr vytvoří.

VIRY.CZ

vyskakující okna v firefoxu

vyskakující okna v firefoxu

Re: vyskakující okna v firefoxu