Reklamy

[miselina]

Zdravím, od doby co jsem se odstěhovala do UK mám všude samé reklamy. Když jsem chtěla online spustit video, po chvíli se vypnulo a spustila se velmi hlasitá reklama. Toto jsem vyřešila instalací Adblocku do Chromu, ale poslední dobou mám na každé stránce podtrhaná slova v textu, která odkazují na reklamy. Když kliknu do prostoru, kam mám psát, nebo téměř kamkoliv kam kliknu myší, vždy se nejdřív otevře nová karta s reklamou. Též jsou všude rozmístěné po stránkách, že text je rozházený nebo překrytý obrázkem či textem opět odkazující jinam. Předem díky za radu, je to neuvěřitelně otravné.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Miska at 2014-08-30 23:51:46
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 213 GB (70%) free of 305 GB
Total RAM: 3066 MB (26% free)


======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\ca37bbb9-9d52-4288-9a05-947719d3307b-4.job - C:\Program Files\Freeven pro\ca37bbb9-9d52-4288-9a05-947719d3307b-4.exe /dlyyx /ipAjkS='Freeven pro' /RZMEe='C:\Program Files\Freeven pro\54248.xpi' /KCEioxPw=54248 /PZTxxIDa='001360' /neBZNVA='0' /DVcyUGVTU='0' /yhQUPP=71B9EE7A374B4777BA3B587A298EA368IE /vkiXoWI=e9525d1b20fc449d656584bff378accf /CUVacLpP=1_34_05_12 /KxjWhSYl=1.34.5.12 /zvFGdO=1399970638 /iPAmb=http://stats.clientstaticserv.com /cOOHb=http://errors.clientstaticserv.com /ITHcCsW=300 /eMcMzQqlr=a0046b9b-fdb9-497f-a4b1-2a108ad6007a@5cdf80b7-0420-4bb7-b3c0-e188e6f4fb8a.com /uHoOTb=0.94 /IMxFMvdU=aa0046b9bfdb9497fa4b12a108ad6007a5cdf80b704204bb7b3c0e188e6f4fb8acom54248 /gcYWH=https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /54248.rdf /zBuPsr='Freeven pro' /AGCurDE='Feven Shopping Companion' /tlRBUcOAw='Freeven' /KFogOD=ch /useBVhqo /TMJfpmfr /uQrkmlOZ /NPTQIFu='http://update.clientstaticserv.com/ff_a ... pdate.json' /qqZZHhI='task' /WPhgr=''
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015Core.job - C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015UA.job - C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GlaryInitialize 4.job - C:\Program Files\Glary Utilities 4\Initialize.exe
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000Core.job - C:\Users\note007\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000UA.job - C:\Users\note007\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\SoftwareUpdateGU4.job - C:\Program Files\Glary Utilities 4\SoftwareUpdate.exe -autorun

=========Mozilla firefox=========

ProfilePath - C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\a2rvhcve.default

prefs.js - "browser.startup.homepage" - "http://www.trovi.com/?gd=&ctid=CT331793 ... 1167&SSPV="

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.1.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
NPOFF12.DLL
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
amazondotcom.xml
babylon.xml
bing.xml
eBay.xml
google.xml
twitter.xml
wikipedia.xml
yahoo.xml

C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\a2rvhcve.default\extensions\
a0046b9b-fdb9-497f-a4b1-2a108ad6007a@5cdf80b7-0420-4bb7-b3c0-e188e6f4fb8a.com

C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\a2rvhcve.default\searchplugins\
conduit-search.xml
Google.xml
trovi-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-08-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-02 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-08-08 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-07-23 498744]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-11-28 59280]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 951576]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-02 3873704]
"Internet Helper Anti-phishing"=C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe [2013-05-14 235072]
"fst_gb_5"= []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21 959904]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2013-03-10 2598496]
"GUDelayStartup"=C:\Program Files\Glary Utilities 4\StartupManager.exe [2014-02-26 37152]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]
"Facebook Update"=C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-16 138096]
"GoogleChromeAutoLaunch_296A339F9BF8CE49C679CFCF97A5BC12"=C:\Program Files\Google\Chrome\Application\chrome.exe [2014-08-07 860488]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
WDDMStatus.lnk - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-08-30 23:51:47 ----D---- C:\Program Files\trend micro
2014-08-30 23:51:46 ----D---- C:\rsit
2014-08-28 07:47:52 ----A---- C:\Windows\system32\win32k.sys
2014-08-28 07:47:51 ----A---- C:\Windows\system32\gdi32.dll
2014-08-14 17:55:52 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-14 17:55:40 ----A---- C:\Windows\system32\icardres.dll
2014-08-14 17:55:18 ----A---- C:\Windows\system32\icardagt.exe
2014-08-14 17:55:04 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 06:25:31 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 06:25:30 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-08-13 06:25:30 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 06:25:30 ----A---- C:\Windows\system32\cdd.dll
2014-08-13 06:25:27 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 06:25:26 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 06:25:26 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 06:25:25 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 06:25:24 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 06:25:24 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 06:25:23 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 06:25:23 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 06:25:23 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 06:25:23 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 06:25:22 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 06:25:19 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 06:25:19 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 06:25:19 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 06:25:18 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 06:25:18 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 06:25:17 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 06:25:16 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 06:25:15 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 06:25:14 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 06:25:14 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 06:25:12 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 06:25:12 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 06:25:11 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 06:25:11 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 06:25:09 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 06:25:07 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 06:25:05 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 06:24:00 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 06:23:47 ----A---- C:\Windows\system32\msi.dll
2014-08-13 06:23:46 ----A---- C:\Windows\system32\authui.dll
2014-08-13 06:23:45 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 06:23:45 ----A---- C:\Windows\system32\consent.exe
2014-08-13 06:23:40 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 06:23:36 ----A---- C:\Windows\system32\aeinv.dll
2014-08-13 06:23:35 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 06:23:28 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 06:23:28 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 06:23:28 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 06:23:28 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 06:23:27 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-12 07:50:24 ----D---- C:\Program Files\Common Files\Skype
2014-08-10 13:57:34 ----D---- C:\Program Files\Phenomedia AG
2014-08-10 13:57:11 ----A---- C:\Windows\IsUn0407.exe
2014-08-08 23:53:46 ----D---- C:\Program Files\Common Files\Java
2014-08-08 23:53:32 ----A---- C:\Windows\system32\javaws.exe
2014-08-08 23:53:20 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2014-08-08 23:53:20 ----A---- C:\Windows\system32\javaw.exe
2014-08-08 23:53:20 ----A---- C:\Windows\system32\java.exe
2014-08-02 10:40:41 ----A---- C:\Windows\system32\wups2.dll
2014-08-02 10:40:41 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-02 10:40:40 ----A---- C:\Windows\system32\wucltux.dll
2014-08-02 10:40:40 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-02 10:40:27 ----A---- C:\Windows\system32\wups.dll
2014-08-02 10:40:27 ----A---- C:\Windows\system32\wudriver.dll
2014-08-02 10:40:27 ----A---- C:\Windows\system32\wuapi.dll
2014-08-02 10:40:13 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-02 10:40:12 ----A---- C:\Windows\system32\wuapp.exe

======List of files/folders modified in the last 1 month======

2014-08-30 23:52:01 ----D---- C:\Windows\Prefetch
2014-08-30 23:51:47 ----D---- C:\Program Files
2014-08-30 23:51:45 ----D---- C:\Windows\Temp
2014-08-30 23:48:14 ----D---- C:\Users\Miska\AppData\Roaming\Skype
2014-08-30 17:27:41 ----D---- C:\Windows\system32\config
2014-08-30 17:26:02 ----D---- C:\Windows\inf
2014-08-30 17:26:01 ----D---- C:\Windows\debug
2014-08-30 17:26:01 ----D---- C:\Windows
2014-08-30 17:13:28 ----HD---- C:\ProgramData
2014-08-30 17:13:28 ----A---- C:\ProgramData\HPWALog.txt
2014-08-30 17:12:45 ----D---- C:\ProgramData\Internet Helper Anti-phishing
2014-08-30 01:22:42 ----D---- C:\Windows\winsxs
2014-08-29 20:04:18 ----D---- C:\Windows\System32
2014-08-29 19:45:00 ----SHD---- C:\System Volume Information
2014-08-28 07:46:19 ----D---- C:\Windows\system32\catroot2
2014-08-28 07:46:19 ----D---- C:\Windows\system32\catroot
2014-08-18 16:45:51 ----D---- C:\Windows\system32\NDF
2014-08-16 00:13:38 ----HD---- C:\Config.Msi
2014-08-15 18:02:14 ----SHD---- C:\Windows\Installer
2014-08-15 15:17:12 ----D---- C:\Windows\rescache
2014-08-15 07:57:53 ----D---- C:\Windows\system32\en-US
2014-08-15 07:57:53 ----D---- C:\Windows\system32\cs-CZ
2014-08-15 07:57:53 ----D---- C:\Windows\PolicyDefinitions
2014-08-15 07:57:52 ----D---- C:\Program Files\Internet Explorer
2014-08-14 23:54:49 ----D---- C:\Windows\Microsoft.NET
2014-08-14 23:53:18 ----RSD---- C:\Windows\assembly
2014-08-14 19:12:16 ----D---- C:\Windows\system32\drivers
2014-08-14 19:12:16 ----D---- C:\Windows\ehome
2014-08-14 19:12:15 ----SD---- C:\Windows\system32\CompatTel
2014-08-14 19:12:12 ----RSD---- C:\Windows\Fonts
2014-08-14 18:11:24 ----D---- C:\ProgramData\Microsoft Help
2014-08-14 18:10:31 ----D---- C:\Windows\system32\MRT
2014-08-14 18:00:48 ----A---- C:\Windows\system32\MRT.exe
2014-08-12 07:50:31 ----D---- C:\ProgramData\Skype
2014-08-12 07:50:24 ----D---- C:\Program Files\Common Files
2014-08-09 00:08:58 ----D---- C:\ProgramData\Oracle
2014-08-05 23:34:07 ----RD---- C:\Program Files\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-05-02 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-05-02 180632]
R0 BootDefragDriver;BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [2014-02-26 14528]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 231960]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-04-22 466008]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-05-02 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-02 776976]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-02 411552]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2014-01-22 56080]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-05-02 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-05-02 67824]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-02 67776]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 ATSwpWDF;AuthenTec TruePrint USB WBF WDF Driver; C:\Windows\System32\Drivers\ATSwpWDF.sys [2009-12-03 625224]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETw5s32.sys [2010-01-13 6755840]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S1 vdgkdgim;vdgkdgim; \??\C:\Windows\system32\drivers\vdgkdgim.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 CVirtA;Cisco Systems VPN Adapter; C:\Windows\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
S3 FTDIBUS;Suunto Sports Instrument Driver; C:\Windows\system32\drivers\ftdibus.sys [2008-03-13 57536]
S3 FTSER2K;Suunto USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2008-03-13 72000]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []
S3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service; C:\Windows\system32\DRIVERS\InputFilter_FlexDef2b.sys [2010-06-18 14848]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl.sys [2011-05-10 18432]
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 104264]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 pppop;PPPoP WAN Adapter; C:\Windows\system32\DRIVERS\pppop.sys [2011-03-21 36384]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2011-05-10 42496]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2009-02-13 11520]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 DNE;Deterministic Network Enhancer Miniport; C:\Windows\system32\DRIVERS\dne2000.sys [2008-11-16 131984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-08-11 55184]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-02 50344]
R2 buuoujqmrk32;buuoujqmrk32; C:\Program Files\003\buuoujqmrk32.exe [2014-05-07 541696]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 22216]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 WDDMService;WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2010-09-08 237056]
R2 WDSC;WD File Management Shadow Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2010-09-08 484352]
R2 Websteroids;Websteroids; C:\ProgramData\Websteroids\up\2.6.80\WebsteroidsService.exe [2014-04-29 65912]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
S2 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-08 262320]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-05-13 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-23 135664]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 WDFME;WD File Management Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2010-09-08 1034752]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-05-13 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-23 135664]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-10 115608]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 279776]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-08-18 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[vyosek]

Zdravim

Odinstalujte Microsoft Security Client\

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[miselina]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x86
Ran by Miska on ne 31.08.2014 at 0:13:35,91
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\searchprotect



~~~ Files



~~~ Folders



~~~ FireFox

Failed to delete: [File] "C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 31.08.2014 at 0:17:06,45
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[miselina]

# AdwCleaner v3.308 - Report created 31/08/2014 at 00:21:30
# Updated 20/08/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : Miska - ARECUK-NOTEBOOK
# Running from : C:\Users\Miska\Desktop\adwcleaner_3.308.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : buuoujqmrk32
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
Service Deleted : Websteroids

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\Websteroids
Folder Deleted : C:\Program Files\003
Folder Deleted : C:\Program Files\Free Games 111
Folder Deleted : C:\Program Files\globalUpdate
Folder Deleted : C:\Program Files\predm
Folder Deleted : C:\Program Files\ScanTack
Folder Deleted : C:\Program Files\Uninstaller
Folder Deleted : C:\Program Files\Freeven pro
Folder Deleted : C:\Windows\system32\SearchProtect
Folder Deleted : C:\Users\Miska\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Miska\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Miska\AppData\Local\WeatherAlerts
Folder Deleted : C:\Users\Miska\AppData\Local\Websteroids
Folder Deleted : C:\Users\Miska\AppData\Roaming\eIntaller
Folder Deleted : C:\Users\Miska\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\a2rvhcve.default\Extensions\a0046b9b-fdb9-497f-a4b1-2a108ad6007a@5cdf80b7-0420-4bb7-b3c0-e188e6f4fb8a.com
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\a2rvhcve.default\searchplugins\conduit-search.xml
File Deleted : C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\sdy1imzu.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\a2rvhcve.default\searchplugins\trovi-search.xml
File Deleted : C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
File Deleted : C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\[opt]rs0\user.js
File Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences

***** [ Scheduled Tasks ] *****

Task Deleted : Desk 365 RunAsStdUser
Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : ca37bbb9-9d52-4288-9a05-947719d3307b-4

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\bi_client_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\bi_client_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayerUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayerUpdater_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updateBrowseFox_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updateBrowseFox_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamInternetEnhancer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamInternetEnhancer_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Websteroids_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Websteroids_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebsteroidsService_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebsteroidsService_RASMANCS
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKCU\Software\5368f8de63de449
Key Deleted : HKLM\SOFTWARE\5368f8de63de449
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A2773ED4-83BD-488A-A186-73590706C916}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10AD2C61-0898-4348-8600-14A342F22AC3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10AD2C61-0898-4348-8600-14A342F22AC3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C45EC9F0-8333-465D-9728-074BD41985C9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\SAFARI.EXE\shell\open\command
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\SearchProtectINT
Key Deleted : HKCU\Software\TutoTag
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\Supra Savings
Key Deleted : HKCU\Software\AppDataLow\Software\Freeven pro
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\hdcode
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\LevelQualityWatcher
Key Deleted : HKLM\SOFTWARE\suprasavings
Key Deleted : HKLM\SOFTWARE\Tutorials
Key Deleted : HKLM\SOFTWARE\Freeven pro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DMUninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Free Games 111
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Websteroids
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Freeven pro

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v20.0.1 (en-US)

[ File : C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\sdy1imzu.default\prefs.js ]

Line Deleted : user_pref("icqtoolbar.engineVerified", false);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "3.6.15");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.version", "1.1.5");
Line Deleted : user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&q=");

[ File : C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\a2rvhcve.default\prefs.js ]

Line Deleted : user_pref("browser.startup.homepage", "hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid ... -4870-8A53[...]
Line Deleted : user_pref("browser.search.selectedEngine", "Trovi search");

[ File : C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ]


[ File : C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\[opt]rs0\prefs.js ]


-\\ Google Chrome v36.0.1985.143

[ File : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxps://docs.koongo.com/dosearchsite.action?queryString={searchTerms}

[ File : C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Startup_urls] : hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid ... 1167&SSPV=
Deleted [Startup_urls] : hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid ... 1167&SSPV=
Deleted [Homepage] : hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid ... 1167&SSPV=
Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb

*************************

AdwCleaner[R0].txt - [13744 octets] - [31/08/2014 00:19:32]
AdwCleaner[S0].txt - [13565 octets] - [31/08/2014 00:21:30]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [13626 octets] ##########

[vyosek]

Dobre rano

Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[miselina]

Snažím se podle návodu vše stáhnout, ale vždy když se pokusím stáhnout FRSTLauncher nahlásí mi to že je stránka nedostupná, nebo že se neodeslaly žádná data.

[vyosek]

Spustte tedy jen FRST

[miselina]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:30-08-2014 01
Ran by Miska (administrator) on ARECUK-NOTEBOOK on 31-08-2014 11:09:47
Running from C:\Users\Miska\Desktop
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Rocket Division Software) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
() C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
(Glarysoft Ltd) C:\Program Files\Glary Utilities 4\SoftwareUpdate.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Internet Helper) C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Rainlendar2\Rainlendar2.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
() C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [WirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1791272 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-05-02] (AVAST Software)
HKLM\...\Run: [Internet Helper Anti-phishing] => C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe [235072 2013-05-14] (Internet Helper)
HKLM\...\Run: [fst_gb_5] => [X]
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [2598496 2013-03-10] ()
HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 4\StartupManager.exe [37152 2014-02-26] (Glarysoft Ltd)
HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\...\Run: [Facebook Update] => C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-04-16] (Facebook Inc.)
HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\...\Run: [GoogleChromeAutoLaunch_296A339F9BF8CE49C679CFCF97A5BC12] => C:\Program Files\Google\Chrome\Application\chrome.exe [860488 2014-08-07] (Google Inc.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
BootExecute: autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Hosts: 217.21.186.135 admin.stage.zwembadstore.be
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1

FireFox:
========
FF ProfilePath: C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\a2rvhcve.default
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=1.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Miska\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Miska\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Extension: No Name - C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2014-03-03]
FF Extension: Torntv 3 - C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\profiles\extensions\trtv3@trtv.com.xpi [2013-06-30]
FF Extension: Firefox Old Version Update Hotfix - C:\Users\Miska\AppData\Roaming\Mozilla\Firefox\Profiles\a2rvhcve.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-08-31]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-06-15]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid ... 1167&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid ... 1167&SSPV=", "hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid ... 1167&SSPV="
CHR CustomProfile: C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-15]
CHR Extension: (Disk Google) - C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-15]
CHR Extension: (YouTube) - C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-03]
CHR Extension: (Adblock Plus) - C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-05-16]
CHR Extension: (Vyhledávání Google) - C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-03]
CHR Extension: (Peněženka Google) - C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-03]
CHR Extension: (Gmail) - C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-03]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Miska\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2014-03-05]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-02] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [769432 2012-07-13] (Nero AG)
R2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software) [File not signed]
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [237056 2010-09-08] (WDC) [File not signed]
R2 WDFME; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [1034752 2010-09-08] () [File not signed]
R2 WDSC; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [484352 2010-09-08] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-05-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-05-02] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-05-02] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-05-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [776976 2014-05-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411552 2014-05-02] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [67776 2014-05-02] (AVAST Software)
R1 aswTdi; C:\Windows\system32\Drivers\aswTdi.sys [56080 2014-01-22] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2014-05-02] ()
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [14528 2014-02-26] (Glarysoft Ltd)
S3 CVirtA; C:\Windows\System32\DRIVERS\CVirtA.sys [5275 2007-01-18] (Cisco Systems, Inc.)
S4 DNE; C:\Windows\System32\DRIVERS\dne2000.sys [131984 2008-11-16] (Deterministic Networks, Inc.)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [57536 2008-03-13] (FTDI Ltd.)
S3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [14848 2010-06-18] (Siliten)
S3 pppop; C:\Windows\System32\DRIVERS\pppop.sys [36384 2011-03-21] (Fortinet Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2013-04-22] (Duplex Secure Ltd.)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [42496 2011-05-10] (Apple, Inc.) [File not signed]
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()
U3 aapso4t5; C:\Windows\system32\Drivers\aapso4t5.sys [0 ] (Advanced Micro Devices)
U3 aybvp8a8; C:\Windows\system32\Drivers\aybvp8a8.sys [0 ] (Advanced Micro Devices)
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S1 vdgkdgim; \??\C:\Windows\system32\drivers\vdgkdgim.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-31 11:08 - 2014-08-31 11:10 - 00017044 _____ () C:\Users\Miska\Desktop\FRST.txt
2014-08-31 11:08 - 2014-08-31 11:09 - 00031415 _____ () C:\Users\Miska\Desktop\Addition.txt
2014-08-31 11:07 - 2014-08-31 11:09 - 00000000 ____D () C:\FRST
2014-08-31 10:59 - 2014-08-31 10:59 - 00000000 ____D () C:\Users\Miska\Documents\Workout
2014-08-31 10:59 - 2014-08-31 10:59 - 00000000 ____D () C:\Users\Miska\Documents\Games
2014-08-31 10:50 - 2014-08-31 10:50 - 01095680 _____ (Farbar) C:\Users\Miska\Desktop\FRST.exe
2014-08-31 10:48 - 2014-08-31 10:48 - 00112107 _____ (forum.viry.cz) C:\Users\Miska\Downloads\VerzeOS.exe
2014-08-31 00:23 - 2014-08-31 10:41 - 00000112 _____ () C:\Windows\setupact.log
2014-08-31 00:23 - 2014-08-31 00:23 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-31 00:22 - 2014-08-31 00:22 - 00000310 _____ () C:\Windows\PFRO.log
2014-08-31 00:20 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-08-31 00:19 - 2014-08-31 00:22 - 00000000 ____D () C:\AdwCleaner
2014-08-31 00:19 - 2014-08-31 00:19 - 01364531 _____ () C:\Users\Miska\Desktop\adwcleaner_3.308.exe
2014-08-31 00:17 - 2014-08-31 00:17 - 00000821 _____ () C:\Users\Miska\Desktop\JRT.txt
2014-08-30 23:51 - 2014-08-30 23:52 - 00000000 ____D () C:\rsit
2014-08-30 23:51 - 2014-08-30 23:52 - 00000000 ____D () C:\Program Files\trend micro
2014-08-30 23:51 - 2014-08-30 23:51 - 01107968 _____ () C:\Users\Miska\Downloads\RSIT.exe
2014-08-28 07:47 - 2014-08-23 02:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 07:47 - 2014-08-23 01:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-17 21:01 - 2014-08-22 13:02 - 00000000 ____D () C:\Users\Miska\Documents\Noty
2014-08-14 17:55 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 17:55 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 17:55 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 17:55 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 06:25 - 2014-08-01 00:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-13 06:25 - 2014-07-25 14:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 06:25 - 2014-07-25 14:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 06:25 - 2014-07-25 14:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 06:25 - 2014-07-25 13:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-13 06:25 - 2014-07-25 13:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-13 06:25 - 2014-07-25 13:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-13 06:25 - 2014-07-25 13:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-13 06:25 - 2014-07-25 13:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 06:25 - 2014-07-25 13:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 06:25 - 2014-07-25 13:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-13 06:25 - 2014-07-25 13:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 06:25 - 2014-07-25 13:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-13 06:25 - 2014-07-25 13:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-13 06:25 - 2014-07-25 13:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-13 06:25 - 2014-07-25 13:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 06:25 - 2014-07-25 12:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 06:25 - 2014-07-25 12:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 06:25 - 2014-07-25 12:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 06:25 - 2014-07-25 12:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-13 06:25 - 2014-07-25 12:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 06:25 - 2014-07-25 12:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 06:25 - 2014-07-25 12:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 06:25 - 2014-07-25 12:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-13 06:25 - 2014-07-25 12:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 06:25 - 2014-07-25 12:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-13 06:25 - 2014-07-25 12:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 06:25 - 2014-07-25 11:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-13 06:25 - 2014-07-25 11:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 06:25 - 2014-07-25 11:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 06:25 - 2014-07-14 02:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 06:25 - 2014-06-16 02:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 06:25 - 2014-06-16 02:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-13 06:25 - 2014-06-16 02:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-13 06:24 - 2014-07-16 03:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 06:23 - 2014-08-07 02:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-13 06:23 - 2014-08-07 02:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-13 06:23 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 06:23 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 06:23 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 06:23 - 2014-07-09 02:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 06:23 - 2014-07-09 02:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 06:23 - 2014-07-08 23:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-13 06:23 - 2014-06-25 02:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-13 06:23 - 2014-06-03 10:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 06:23 - 2014-06-03 10:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 06:23 - 2014-06-03 10:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 06:23 - 2014-06-03 10:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-12 07:50 - 2014-08-12 07:50 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-08-10 13:57 - 2014-08-10 13:57 - 00001114 _____ () C:\Users\Public\Desktop\Moorhuhn 2 V1.1.lnk
2014-08-10 13:57 - 2014-08-10 13:57 - 00000000 ____D () C:\Program Files\Phenomedia AG
2014-08-10 13:57 - 1998-11-17 13:44 - 00328704 _____ (InstallShield Software Corporation ) C:\Windows\IsUn0407.exe
2014-08-10 13:56 - 2014-08-10 13:56 - 06010515 _____ () C:\Users\Miska\Downloads\cc_mh2v11.exe
2014-08-08 23:53 - 2014-08-08 23:53 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-08 23:53 - 2014-08-08 23:53 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-08 23:53 - 2014-08-08 23:53 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-08 23:53 - 2014-08-08 23:53 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-08 23:53 - 2014-08-08 23:53 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-02 10:40 - 2014-05-14 17:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-02 10:40 - 2014-05-14 17:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-02 10:40 - 2014-05-14 17:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-02 10:40 - 2014-05-14 17:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-02 10:40 - 2014-05-14 17:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-02 10:40 - 2014-05-14 17:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-02 10:40 - 2014-05-14 17:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-02 10:40 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-02 10:40 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-31 11:10 - 2014-08-31 11:08 - 00017044 _____ () C:\Users\Miska\Desktop\FRST.txt
2014-08-31 11:09 - 2014-08-31 11:08 - 00031415 _____ () C:\Users\Miska\Desktop\Addition.txt
2014-08-31 11:09 - 2014-08-31 11:07 - 00000000 ____D () C:\FRST
2014-08-31 11:03 - 2009-12-17 17:53 - 01900004 _____ () C:\Windows\WindowsUpdate.log
2014-08-31 10:59 - 2014-08-31 10:59 - 00000000 ____D () C:\Users\Miska\Documents\Workout
2014-08-31 10:59 - 2014-08-31 10:59 - 00000000 ____D () C:\Users\Miska\Documents\Games
2014-08-31 10:59 - 2010-02-23 15:18 - 00000942 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-31 10:53 - 2014-04-16 19:48 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015UA.job
2014-08-31 10:50 - 2014-08-31 10:50 - 01095680 _____ (Farbar) C:\Users\Miska\Desktop\FRST.exe
2014-08-31 10:49 - 2009-07-14 05:34 - 00017120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-31 10:49 - 2009-07-14 05:34 - 00017120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-31 10:48 - 2014-08-31 10:48 - 00112107 _____ (forum.viry.cz) C:\Users\Miska\Downloads\VerzeOS.exe
2014-08-31 10:44 - 2014-03-03 10:38 - 00000316 _____ () C:\Windows\Tasks\GlaryInitialize 4.job
2014-08-31 10:44 - 2013-06-15 15:15 - 00000000 ___RD () C:\Users\Miska\Disk Google
2014-08-31 10:43 - 2014-05-07 19:03 - 00000346 _____ () C:\Windows\Tasks\SoftwareUpdateGU4.job
2014-08-31 10:43 - 2013-07-13 12:16 - 00000000 ____D () C:\Users\Miska\.rainlendar2
2014-08-31 10:43 - 2010-02-23 15:18 - 00000938 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-31 10:41 - 2014-08-31 00:23 - 00000112 _____ () C:\Windows\setupact.log
2014-08-31 10:41 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-31 01:28 - 2012-09-03 09:13 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-31 00:40 - 2012-08-08 21:16 - 00000970 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000UA.job
2014-08-31 00:23 - 2014-08-31 00:23 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-31 00:22 - 2014-08-31 00:22 - 00000310 _____ () C:\Windows\PFRO.log
2014-08-31 00:22 - 2014-08-31 00:19 - 00000000 ____D () C:\AdwCleaner
2014-08-31 00:19 - 2014-08-31 00:19 - 01364531 _____ () C:\Users\Miska\Desktop\adwcleaner_3.308.exe
2014-08-31 00:17 - 2014-08-31 00:17 - 00000821 _____ () C:\Users\Miska\Desktop\JRT.txt
2014-08-31 00:11 - 2011-10-10 21:25 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-08-31 00:03 - 2013-04-21 07:01 - 00000000 ____D () C:\Users\Miska\AppData\Roaming\Skype
2014-08-30 23:52 - 2014-08-30 23:51 - 00000000 ____D () C:\rsit
2014-08-30 23:52 - 2014-08-30 23:51 - 00000000 ____D () C:\Program Files\trend micro
2014-08-30 23:51 - 2014-08-30 23:51 - 01107968 _____ () C:\Users\Miska\Downloads\RSIT.exe
2014-08-30 21:40 - 2012-08-08 21:16 - 00000918 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000Core.job
2014-08-30 19:53 - 2014-04-16 19:48 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015Core.job
2014-08-30 01:22 - 2009-07-14 05:33 - 00406936 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-23 02:46 - 2014-08-28 07:47 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 01:42 - 2014-08-28 07:47 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 13:02 - 2014-08-17 21:01 - 00000000 ____D () C:\Users\Miska\Documents\Noty
2014-08-18 16:45 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-08-15 18:07 - 2014-04-15 08:46 - 00002089 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-15 15:17 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-08-14 23:54 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-14 19:12 - 2014-05-06 08:46 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-14 18:10 - 2013-07-16 01:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 18:00 - 2010-03-08 17:09 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-12 07:50 - 2014-08-12 07:50 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-08-10 13:57 - 2014-08-10 13:57 - 00001114 _____ () C:\Users\Public\Desktop\Moorhuhn 2 V1.1.lnk
2014-08-10 13:57 - 2014-08-10 13:57 - 00000000 ____D () C:\Program Files\Phenomedia AG
2014-08-10 13:56 - 2014-08-10 13:56 - 06010515 _____ () C:\Users\Miska\Downloads\cc_mh2v11.exe
2014-08-08 23:53 - 2014-08-08 23:53 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-08 23:53 - 2014-08-08 23:53 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-08 23:53 - 2014-08-08 23:53 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-08 23:53 - 2014-08-08 23:53 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-08 23:53 - 2014-08-08 23:53 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-07 02:43 - 2014-08-13 06:23 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 02:39 - 2014-08-13 06:23 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-05 23:34 - 2014-03-03 10:28 - 00000000 ___RD () C:\Program Files\Skype
2014-08-05 09:20 - 2009-12-24 18:18 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-01 00:16 - 2014-08-13 06:25 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

Some content of TEMP:
====================
C:\Users\Miska\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-28 09:03

==================== End Of Log ============================

[miselina]

reklamy zmizely, takže to už je vše? každopádně díky moc

[vyosek]

Jeste trochu procistime

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [Internet Helper Anti-phishing] => C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe [235072 2013-05-14] (Internet Helper)
  HKLM\...\Run: [fst_gb_5] => [X]
  HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
  HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
  HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\...\Run: [Facebook Update] => C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-04-16] (Facebook Inc.)
  HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\...\Run: [GoogleChromeAutoLaunch_296A339F9BF8CE49C679CFCF97A5BC12] => C:\Program Files\Google\Chrome\Application\chrome.exe [860488 2014-08-07] (Google Inc.)
  
  CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT331793 ... 1167&SSPV=
  CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid=EB_ORIGINAL_CTID&ISID=M6777C437-E496-491B-B4D7-9B02B32035FB&SearchSource=55&CUI=&UM=5&UP=SP33367450-CDE6-4870-8A53-F702C7391167&SSPV=", "hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid=EB_ORIGINAL_CTID&ISID=M6777C437-E496-491B-B4D7-9B02B32035FB&SearchSource=55&CUI=&UM=5&UP=SP33367450-CDE6-4870-8A53-F702C7391167&SSPV="
  CHR CustomProfile: C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default
  
  2014-08-31 11:08 - 2014-08-31 11:10 - 00017044 _____ () C:\Users\Miska\Desktop\FRST.txt
  2014-08-31 11:08 - 2014-08-31 11:09 - 00031415 _____ () C:\Users\Miska\Desktop\Addition.txt
  2014-08-31 10:48 - 2014-08-31 10:48 - 00112107 _____ (forum.viry.cz) C:\Users\Miska\Downloads\VerzeOS.exe
  2014-08-31 00:23 - 2014-08-31 10:41 - 00000112 _____ () C:\Windows\setupact.log
  2014-08-31 00:23 - 2014-08-31 00:23 - 00000000 _____ () C:\Windows\setuperr.log
  2014-08-31 00:22 - 2014-08-31 00:22 - 00000310 _____ () C:\Windows\PFRO.log
  2014-08-31 00:20 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
  2014-08-31 00:19 - 2014-08-31 00:22 - 00000000 ____D () C:\AdwCleaner
  2014-08-31 00:19 - 2014-08-31 00:19 - 01364531 _____ () C:\Users\Miska\Desktop\adwcleaner_3.308.exe
  2014-08-31 00:17 - 2014-08-31 00:17 - 00000821 _____ () C:\Users\Miska\Desktop\JRT.txt
  2014-08-30 23:51 - 2014-08-30 23:52 - 00000000 ____D () C:\rsit
  2014-08-30 23:51 - 2014-08-30 23:52 - 00000000 ____D () C:\Program Files\trend micro
  2014-08-30 23:51 - 2014-08-30 23:51 - 01107968 _____ () C:\Users\Miska\Downloads\RSIT.exe
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015Core.job => C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe
  Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015UA.job => C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe
  Task: C:\Windows\Tasks\GlaryInitialize 4.job => C:\Program Files\Glary Utilities 4\Initialize.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000Core.job => C:\Users\note007\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000UA.job => C:\Users\note007\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\SoftwareUpdateGU4.job => C:\Program Files\Glary Utilities 4\SoftwareUpdate.exe
  
  
  Hosts:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[miselina]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 03-09-2014
Ran by Miska at 2014-09-04 19:31:20 Run:1
Running from C:\Users\Miska\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [Internet Helper Anti-phishing] => C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe [235072 2013-05-14] (Internet Helper)
HKLM\...\Run: [fst_gb_5] => [X]
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\...\Run: [Facebook Update] => C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-04-16] (Facebook Inc.)
HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\...\Run: [GoogleChromeAutoLaunch_296A339F9BF8CE49C679CFCF97A5BC12] => C:\Program Files\Google\Chrome\Application\chrome.exe [860488 2014-08-07] (Google Inc.)

CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT331793 ... 1167&SSPV=
CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid ... 1167&SSPV=", "hxxp://www.trovi.com/?gd=&ctid=CT3317933&octid ... 1167&SSPV="
CHR CustomProfile: C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default

2014-08-31 11:08 - 2014-08-31 11:10 - 00017044 _____ () C:\Users\Miska\Desktop\FRST.txt
2014-08-31 11:08 - 2014-08-31 11:09 - 00031415 _____ () C:\Users\Miska\Desktop\Addition.txt
2014-08-31 10:48 - 2014-08-31 10:48 - 00112107 _____ (forum.viry.cz) C:\Users\Miska\Downloads\VerzeOS.exe
2014-08-31 00:23 - 2014-08-31 10:41 - 00000112 _____ () C:\Windows\setupact.log
2014-08-31 00:23 - 2014-08-31 00:23 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-31 00:22 - 2014-08-31 00:22 - 00000310 _____ () C:\Windows\PFRO.log
2014-08-31 00:20 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-08-31 00:19 - 2014-08-31 00:22 - 00000000 ____D () C:\AdwCleaner
2014-08-31 00:19 - 2014-08-31 00:19 - 01364531 _____ () C:\Users\Miska\Desktop\adwcleaner_3.308.exe
2014-08-31 00:17 - 2014-08-31 00:17 - 00000821 _____ () C:\Users\Miska\Desktop\JRT.txt
2014-08-30 23:51 - 2014-08-30 23:52 - 00000000 ____D () C:\rsit
2014-08-30 23:51 - 2014-08-30 23:52 - 00000000 ____D () C:\Program Files\trend micro
2014-08-30 23:51 - 2014-08-30 23:51 - 01107968 _____ () C:\Users\Miska\Downloads\RSIT.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015Core.job => C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015UA.job => C:\Users\Miska\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GlaryInitialize 4.job => C:\Program Files\Glary Utilities 4\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000Core.job => C:\Users\note007\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000UA.job => C:\Users\note007\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SoftwareUpdateGU4.job => C:\Program Files\Glary Utilities 4\SoftwareUpdate.exe


Hosts:
Reboot:
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Internet Helper Anti-phishing => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\fst_gb_5 => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update => value deleted successfully.
HKU\S-1-5-21-2319072021-1088288207-3607337782-1015\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_296A339F9BF8CE49C679CFCF97A5BC12 => value deleted successfully.
Chrome HomePage deleted successfully.
Chrome StartupUrls deleted successfully.

========================= CHR CustomProfile: C:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default ========================

"CHR CustomProC:\Users\Miska\AppData\Local\Google\Chrome\User Data\Default" not found.
====== End Of File: ======

"C:\Users\Miska\Desktop\FRST.txt" => File/Directory not found.
"C:\Users\Miska\Desktop\Addition.txt" => File/Directory not found.
C:\Users\Miska\Downloads\VerzeOS.exe => Moved successfully.
C:\Windows\setupact.log => Moved successfully.
C:\Windows\setuperr.log => Moved successfully.
C:\Windows\PFRO.log => Moved successfully.
C:\Windows\system32\sqlite3.dll => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Miska\Desktop\adwcleaner_3.308.exe => Moved successfully.
"C:\Users\Miska\Desktop\JRT.txt" => File/Directory not found.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Users\Miska\Downloads\RSIT.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015Core.job => Moved successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1015UA.job => Moved successfully.
C:\Windows\Tasks\GlaryInitialize 4.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2319072021-1088288207-3607337782-1000UA.job => Moved successfully.
C:\Windows\Tasks\SoftwareUpdateGU4.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot.

==== End of Fixlog ====

[vyosek]

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

[miselina]

všecko proběhlo v poho. Děkuji mockrát!

[vyosek]

Nemate zac, rad jsem pomohl Zase nekdy

A na zaklade Pravidla o zamykani temat