Dobrý den, kovářova kobyla chodí bosa, tak se u mě na notebooku objevil problém.
Napřed zmizel irfanview, pak přístup k IE, Mozille, prostě nenalezeny, stejně jako některé další programy, hlavně čistící. Po restartu se ukázala modrá obrazovka, pak probliklo "poškejte"...
Naštěstí jsem ve stažených souborech měla uložený exe ccleaneru, který otravně nabízí Google Chrome, tak jsem to neexistující internet obešla a stáhla si GCH. Je nicméně zpomalená.
Avast našel malware, přesunula jsem jej do truhly, tak snad z nejhoršího venku. Přesto prosím o pomoc a nahlédnutí.
FRST se mi pokládal opakovaně, než se mi ho povedlo spustit. Povedlo se nainstalovat další bojovníky, tak už se snažím, přesto... naštěstí mi soubory už to dále nemaže, snad ten jeden soubor, co byl dán do truhly byl ten pravý. VitSoft mi našel přes 6tis. chyb v registrech (obvykle mívám jednu nebo několik), tak se uklízí.
FRST výsledek.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-09-2014
Ran by uzivatel (administrator) on NTBACER on 16-09-2014 21:38:04
Running from C:\Documents and Settings\uzivatel\Plocha
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-05] (AVAST Software)
Winlogon\Notify\!SASWinLogon: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [X]
HKLM\...99B7938DA9E4}\LocalServer32: [Default-wmiprvse] <==== ATTENTION!
HKU\S-1-5-21-343818398-1547161642-1801674531-1003\...\Run: [] => (the data entry has 824 more characters).
SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - No File
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - No File
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
ShellExecuteHooks: - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
FireFox:
========
FF ProfilePath: C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\winhhlow.default-1371402308171
FF Homepage: hxxp://www.centrum.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @java.com/JavaPlugin,version=10.21.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @xstandard.com/XStandard -> C:\Program Files\XStandard\Bin\NPXStandard.dll No File
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll No File
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-05-08]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
Chrome:
=======
CHR HomePage: Default -> DE0425024A90108E1FBCE8C268AF1839F51FE9FFE6BD3432EDA6C0C649D0FBDA
CHR DefaultSearchKeyword: Default -> 0387A4E182E747890A4EA552151A35609293537D9F7B6562774D567E25F9AEB2
CHR DefaultSearchProvider: Default -> F042CA5EC3243BEE59CEDA4A1BE7489C0D6EA39970012821B331469ADCE5B3E6
CHR DefaultSearchURL: Default -> 95B4653CC58EE9BF5F6AE68E362AE5B8C09217AF14A1D33FB87B36F8D4FEADBD
CHR CustomProfile: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-16]
CHR Extension: (Google Docs) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-16]
CHR Extension: (Google Drive) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-16]
CHR Extension: (YouTube) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-16]
CHR Extension: (Google Search) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-16]
CHR Extension: (Google Sheets) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-16]
CHR Extension: (avast! Online Security) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-16]
CHR Extension: (Google Wallet) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-16]
CHR Extension: (Gmail) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-16]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-01]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-01] (AVAST Software)
S3 CiSvc; %SystemRoot%\system32\cisvc.exe [X]
S4 MDM; "C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1585728 2009-09-30] (Atheros Communications, Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-08-01] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-08-01] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-08-01] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-08-01] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-08-01] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-08-05] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-08-01] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-08-01] ()
R2 Ethpdrv; C:\WINDOWS\System32\DRIVERS\ethpdrv.sys [9728 2005-09-08] (Gemfor s.r.o.) [File not signed]
S3 IntcHdmiAddService; C:\WINDOWS\System32\drivers\IntcHdmi.sys [105984 2007-05-05] (Intel(R) Corporation) [File not signed]
S3 ipw_bus; C:\WINDOWS\System32\DRIVERS\ipw_bus.sys [58320 2005-09-27] (MCCI)
S3 ipw_mdfl; C:\WINDOWS\System32\DRIVERS\ipw_mdfl.sys [8272 2005-09-27] (MCCI)
S3 ipw_mdm; C:\WINDOWS\System32\DRIVERS\ipw_mdm.sys [95440 2005-09-27] (MCCI)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
U3 TrueSight; c:\windows\system32\drivers\TrueSight.sys [111872 2012-01-03] () [File not signed]
S4 IntelIde; No ImagePath
S1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [X]
S1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [X]
U1 WS2IFSL; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-16 21:37 - 2014-09-16 21:38 - 00010776 _____ () C:\Documents and Settings\uzivatel\Plocha\FRST.txt
2014-09-16 21:37 - 2014-09-16 21:34 - 02105856 _____ (Farbar) C:\Documents and Settings\uzivatel\Plocha\FRST64.exe
2014-09-16 21:36 - 2014-09-16 21:36 - 00013556 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213559.reg
2014-09-16 21:36 - 2014-09-16 21:33 - 01097728 _____ (Farbar) C:\Documents and Settings\uzivatel\Plocha\FRST.exe
2014-09-16 21:30 - 2014-09-16 21:30 - 02339272 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_212957.reg
2014-09-16 21:30 - 2014-09-16 21:30 - 00031936 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213051.reg
2014-09-16 21:19 - 2014-09-16 21:19 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-09-16 21:19 - 2014-09-16 21:19 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job
2014-09-16 21:19 - 2014-09-16 21:19 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-09-16 21:18 - 2014-09-16 21:18 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-16 21:15 - 2014-09-16 21:17 - 00000000 ____D () C:\Program Files\Google
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\xerox
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\outlook express
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\netmeeting
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\msn gaming zone
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\movie maker
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\microsoft frontpage
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\system
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\speechengines
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\mssoap
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-16 20:54 - 2014-09-16 20:54 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\knihy
2014-09-09 20:28 - 2014-09-10 20:24 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\pro fillovy
2014-09-08 21:37 - 2014-09-10 20:31 - 00000836 _____ () C:\Documents and Settings\uzivatel\Dokumenty\valencia_zkr.txt
2014-09-02 17:24 - 2014-09-02 17:24 - 00000040 _____ () C:\Documents and Settings\uzivatel\Dokumenty\duchod.txt
2014-08-24 22:25 - 2014-08-31 23:45 - 00000125 _____ () C:\Documents and Settings\uzivatel\Dokumenty\predelane.txt
2014-08-17 20:22 - 2014-08-17 20:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\PSPad editor
2014-08-17 15:32 - 2014-08-17 15:32 - 00000640 _____ () C:\Documents and Settings\uzivatel\Dokumenty\killbill.txt
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-16 21:38 - 2014-09-16 21:37 - 00010776 _____ () C:\Documents and Settings\uzivatel\Plocha\FRST.txt
2014-09-16 21:38 - 2013-10-02 10:43 - 00000000 ____D () C:\FRST
2014-09-16 21:38 - 2012-01-03 15:26 - 00000000 ____D () C:\Documents and Settings\uzivatel\Local Settings\temp
2014-09-16 21:38 - 2009-12-23 01:59 - 00000000 ____D () C:\Documents and Settings\uzivatel\Plocha
2014-09-16 21:36 - 2014-09-16 21:36 - 00013556 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213559.reg
2014-09-16 21:36 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Dokumenty
2014-09-16 21:34 - 2014-09-16 21:37 - 02105856 _____ (Farbar) C:\Documents and Settings\uzivatel\Plocha\FRST64.exe
2014-09-16 21:33 - 2014-09-16 21:36 - 01097728 _____ (Farbar) C:\Documents and Settings\uzivatel\Plocha\FRST.exe
2014-09-16 21:30 - 2014-09-16 21:30 - 02339272 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_212957.reg
2014-09-16 21:30 - 2014-09-16 21:30 - 00031936 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213051.reg
2014-09-16 21:28 - 2009-12-23 01:59 - 00000000 ____D () C:\Documents and Settings\uzivatel
2014-09-16 21:19 - 2014-09-16 21:19 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-09-16 21:19 - 2014-09-16 21:19 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job
2014-09-16 21:19 - 2014-09-16 21:19 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-09-16 21:19 - 2009-12-23 02:44 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-09-16 21:19 - 2009-12-23 02:44 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-09-16 21:18 - 2014-09-16 21:18 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-16 21:18 - 2011-01-15 09:44 - 00000682 _____ () C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-09-16 21:17 - 2014-09-16 21:15 - 00000000 ____D () C:\Program Files\Google
2014-09-16 21:17 - 2009-12-23 02:45 - 00928972 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-16 21:13 - 2009-12-23 01:54 - 02089092 ____N () C:\WINDOWS\WindowsUpdate.log
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\xerox
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\outlook express
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\netmeeting
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\msn gaming zone
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\movie maker
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\microsoft frontpage
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\system
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\speechengines
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\mssoap
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-16 21:12 - 2009-12-23 02:48 - 00000159 ____N () C:\WINDOWS\wiadebug.log
2014-09-16 21:12 - 2009-12-23 02:48 - 00000049 ____N () C:\WINDOWS\wiaservc.log
2014-09-16 21:12 - 2009-12-23 01:49 - 00000000 ____D () C:\Program Files\Windows NT
2014-09-16 21:11 - 2009-12-23 01:59 - 00000272 ___SH () C:\Documents and Settings\uzivatel\ntuser.ini
2014-09-16 20:59 - 2010-03-14 14:26 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
2014-09-16 20:54 - 2014-09-16 20:54 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\knihy
2014-09-16 20:54 - 2010-05-23 20:11 - 00147462 ____H () C:\treeinfo.wc
2014-09-16 18:10 - 2012-09-05 17:41 - 00000000 ___RD () C:\Program Files\Skype
2014-09-16 18:10 - 2009-12-23 03:14 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-09-16 18:09 - 2013-01-22 08:25 - 00000000 ____D () C:\Program Files\DawinciKlientM21
2014-09-16 18:09 - 2011-09-27 14:33 - 00000000 ____D () C:\Program Files\Common Files\Nikon
2014-09-16 18:09 - 2010-01-29 20:55 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-09-16 18:08 - 2009-12-23 03:11 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-09-16 18:08 - 2009-12-23 03:11 - 00000000 ____D () C:\Program Files\Adobe
2014-09-16 17:47 - 2001-10-25 18:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-09-11 10:01 - 2010-05-25 13:44 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\rodiny
2014-09-11 10:01 - 2010-01-15 18:35 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\ROCENKY
2014-09-10 21:08 - 2009-12-23 08:12 - 00002517 _____ () C:\Documents and Settings\uzivatel\Plocha\Microsoft Office Excel 2003.lnk
2014-09-10 20:31 - 2014-09-08 21:37 - 00000836 _____ () C:\Documents and Settings\uzivatel\Dokumenty\valencia_zkr.txt
2014-09-10 20:24 - 2014-09-09 20:28 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\pro fillovy
2014-09-08 21:04 - 2010-12-05 21:29 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\chov dostihy dle zemi
2014-09-08 15:30 - 2010-01-15 18:21 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\PLEMENICI
2014-09-08 13:52 - 2010-01-26 19:54 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\rakouske rocenky
2014-09-04 22:54 - 2011-08-06 11:24 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\prace
2014-09-02 17:24 - 2014-09-02 17:24 - 00000040 _____ () C:\Documents and Settings\uzivatel\Dokumenty\duchod.txt
2014-08-31 23:45 - 2014-08-24 22:25 - 00000125 _____ () C:\Documents and Settings\uzivatel\Dokumenty\predelane.txt
2014-08-31 20:49 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Dokumenty\Obrázky
2014-08-25 23:56 - 2014-05-07 19:38 - 00036363 _____ () C:\WINDOWS\CSTBox.INI
2014-08-17 20:24 - 2010-04-05 23:42 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\www OLD
2014-08-17 20:22 - 2014-08-17 20:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\PSPad editor
2014-08-17 20:12 - 2014-03-02 15:10 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\www
2014-08-17 15:32 - 2014-08-17 15:32 - 00000640 _____ () C:\Documents and Settings\uzivatel\Dokumenty\killbill.txt
Some content of TEMP:
====================
C:\Documents and Settings\uzivatel\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp_ydxlr.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nalezený malware, vygumované programy, MODRÁ obrazovka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Modrá obrazovka se už neobjevila.
Přikládám log (a děkuji moc za velmi rychlou reakci, samozřejmě zase přispěju).
# AdwCleaner v3.310 - Report created 16/09/2014 at 22:04:30
# Updated 12/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : uzivatel - NTBACER
# Running from : C:\Documents and Settings\uzivatel\Dokumenty\Downloads\adwcleaner_3.310.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
***** [ Browsers ] *****
-\\ Internet Explorer v0.0.0.0
-\\ Mozilla Firefox v32.0 (x86 cs)
[ File : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\winhhlow.default-1371402308171\prefs.js ]
-\\ Google Chrome v37.0.2062.120
[ File : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [3613 octets] - [02/10/2013 09:31:54]
AdwCleaner[R1].txt - [938 octets] - [02/10/2013 09:46:14]
AdwCleaner[R2].txt - [997 octets] - [02/10/2013 10:15:03]
AdwCleaner[R3].txt - [1413 octets] - [16/09/2014 22:03:34]
AdwCleaner[S0].txt - [3584 octets] - [02/10/2013 09:41:46]
AdwCleaner[S1].txt - [1057 octets] - [02/10/2013 10:16:03]
AdwCleaner[S2].txt - [1336 octets] - [16/09/2014 22:04:30]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1396 octets] ##########
Přikládám log (a děkuji moc za velmi rychlou reakci, samozřejmě zase přispěju).
# AdwCleaner v3.310 - Report created 16/09/2014 at 22:04:30
# Updated 12/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : uzivatel - NTBACER
# Running from : C:\Documents and Settings\uzivatel\Dokumenty\Downloads\adwcleaner_3.310.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
***** [ Browsers ] *****
-\\ Internet Explorer v0.0.0.0
-\\ Mozilla Firefox v32.0 (x86 cs)
[ File : C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\winhhlow.default-1371402308171\prefs.js ]
-\\ Google Chrome v37.0.2062.120
[ File : C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [3613 octets] - [02/10/2013 09:31:54]
AdwCleaner[R1].txt - [938 octets] - [02/10/2013 09:46:14]
AdwCleaner[R2].txt - [997 octets] - [02/10/2013 10:15:03]
AdwCleaner[R3].txt - [1413 octets] - [16/09/2014 22:03:34]
AdwCleaner[S0].txt - [3584 octets] - [02/10/2013 09:41:46]
AdwCleaner[S1].txt - [1057 octets] - [02/10/2013 10:16:03]
AdwCleaner[S2].txt - [1336 octets] - [16/09/2014 22:04:30]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1396 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Nový log z FRST
Exitoval mi nesčetněkrát, po restartu PC jen dvakrát, na potřetí rozběhnut. Už jdu spát, zítra do práce, tak až zítra večer. Snad se to povede vyřešit... Ráno na to ještě mrknu. Díky moc!
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-09-2014
Ran by uzivatel (administrator) on NTBACER on 16-09-2014 22:55:33
Running from C:\Documents and Settings\uzivatel\Plocha
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Skype Technologies) C:\Program Files\Skype\Updater\Updater.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-05] (AVAST Software)
HKLM\...99B7938DA9E4}\LocalServer32: [Default-wmiprvse] <==== ATTENTION!
HKU\S-1-5-21-343818398-1547161642-1801674531-1003\...\Run: [] => (the data entry has 824 more characters).
SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - No File
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - No File
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
ShellExecuteHooks: - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
FireFox:
========
FF ProfilePath: C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\winhhlow.default-1371402308171
FF Homepage: hxxp://www.centrum.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-05-08]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
Chrome:
=======
CHR HomePage: Default ->
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR DefaultSearchKeyword: Default -> 0387A4E182E747890A4EA552151A35609293537D9F7B6562774D567E25F9AEB2
CHR DefaultSearchProvider: Default -> F042CA5EC3243BEE59CEDA4A1BE7489C0D6EA39970012821B331469ADCE5B3E6
CHR DefaultSearchURL: Default -> 95B4653CC58EE9BF5F6AE68E362AE5B8C09217AF14A1D33FB87B36F8D4FEADBD
CHR CustomProfile: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-16]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-16]
CHR Extension: (Disk Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-16]
CHR Extension: (YouTube) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-16]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-16]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-16]
CHR Extension: (avast! Online Security) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-16]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-16]
CHR Extension: (Gmail) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-16]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-01]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-01] (AVAST Software)
S3 CiSvc; %SystemRoot%\system32\cisvc.exe [X]
S4 MDM; "C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1585728 2009-09-30] (Atheros Communications, Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-08-01] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-08-01] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-08-01] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-08-01] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-08-01] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-08-05] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-08-01] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-08-01] ()
R2 Ethpdrv; C:\WINDOWS\System32\DRIVERS\ethpdrv.sys [9728 2005-09-08] (Gemfor s.r.o.) [File not signed]
S3 IntcHdmiAddService; C:\WINDOWS\System32\drivers\IntcHdmi.sys [105984 2007-05-05] (Intel(R) Corporation) [File not signed]
S3 ipw_bus; C:\WINDOWS\System32\DRIVERS\ipw_bus.sys [58320 2005-09-27] (MCCI)
S3 ipw_mdfl; C:\WINDOWS\System32\DRIVERS\ipw_mdfl.sys [8272 2005-09-27] (MCCI)
S3 ipw_mdm; C:\WINDOWS\System32\DRIVERS\ipw_mdm.sys [95440 2005-09-27] (MCCI)
R3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
U3 TrueSight; c:\windows\system32\drivers\TrueSight.sys [111872 2012-01-03] () [File not signed]
S4 IntelIde; No ImagePath
S1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [X]
S1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [X]
U1 WS2IFSL; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-16 22:04 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-09-16 21:44 - 2014-09-16 21:45 - 00000878 _____ () C:\Documents and Settings\uzivatel\Plocha\Vit Registry Fix.lnk
2014-09-16 21:44 - 2014-09-16 21:44 - 00000000 ____D () C:\Program Files\VITSOFT
2014-09-16 21:37 - 2014-09-16 22:55 - 00010048 _____ () C:\Documents and Settings\uzivatel\Plocha\FRST.txt
2014-09-16 21:36 - 2014-09-16 21:36 - 00013556 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213559.reg
2014-09-16 21:36 - 2014-09-16 21:33 - 01097728 _____ (Farbar) C:\Documents and Settings\uzivatel\Plocha\FRST.exe
2014-09-16 21:30 - 2014-09-16 21:30 - 02339272 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_212957.reg
2014-09-16 21:30 - 2014-09-16 21:30 - 00031936 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213051.reg
2014-09-16 21:19 - 2014-09-16 21:19 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-09-16 21:19 - 2014-09-16 21:19 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job
2014-09-16 21:19 - 2014-09-16 21:19 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-09-16 21:18 - 2014-09-16 21:18 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-16 21:15 - 2014-09-16 21:17 - 00000000 ____D () C:\Program Files\Google
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\xerox
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\outlook express
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\netmeeting
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\msn gaming zone
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\movie maker
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\microsoft frontpage
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\system
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\speechengines
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\mssoap
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-16 20:54 - 2014-09-16 20:54 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\knihy
2014-09-09 20:28 - 2014-09-10 20:24 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\pro fillovy
2014-09-08 21:37 - 2014-09-10 20:31 - 00000836 _____ () C:\Documents and Settings\uzivatel\Dokumenty\valencia_zkr.txt
2014-09-02 17:24 - 2014-09-02 17:24 - 00000040 _____ () C:\Documents and Settings\uzivatel\Dokumenty\duchod.txt
2014-08-24 22:25 - 2014-08-31 23:45 - 00000125 _____ () C:\Documents and Settings\uzivatel\Dokumenty\predelane.txt
2014-08-17 20:22 - 2014-09-16 21:51 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\PSPad editor
2014-08-17 15:32 - 2014-08-17 15:32 - 00000640 _____ () C:\Documents and Settings\uzivatel\Dokumenty\killbill.txt
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-16 22:55 - 2014-09-16 21:37 - 00010048 _____ () C:\Documents and Settings\uzivatel\Plocha\FRST.txt
2014-09-16 22:55 - 2013-10-02 10:43 - 00000000 ____D () C:\FRST
2014-09-16 22:55 - 2012-01-03 15:26 - 00000000 ____D () C:\Documents and Settings\uzivatel\Local Settings\temp
2014-09-16 22:55 - 2009-12-23 01:59 - 00000000 ____D () C:\Documents and Settings\uzivatel\Plocha
2014-09-16 22:55 - 2009-12-23 01:54 - 02095931 _____ () C:\WINDOWS\WindowsUpdate.log
2014-09-16 22:54 - 2009-12-23 02:48 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-09-16 22:54 - 2009-12-23 02:48 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-09-16 22:53 - 2009-12-23 01:59 - 00000272 ___SH () C:\Documents and Settings\uzivatel\ntuser.ini
2014-09-16 22:53 - 2009-12-23 01:59 - 00000000 ____D () C:\Documents and Settings\uzivatel
2014-09-16 22:22 - 2009-12-23 02:44 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-09-16 22:22 - 2009-12-23 02:44 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-09-16 22:04 - 2013-10-02 09:31 - 00000000 ____D () C:\AdwCleaner
2014-09-16 22:04 - 2009-12-23 01:58 - 00000178 ___SH () C:\Documents and Settings\LocalService\ntuser.ini
2014-09-16 21:59 - 2010-01-16 12:51 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-09-16 21:51 - 2014-08-17 20:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\PSPad editor
2014-09-16 21:51 - 2014-06-29 13:20 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\KooBits
2014-09-16 21:51 - 2014-05-07 19:33 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\CanoScan 8600F
2014-09-16 21:51 - 2014-03-21 21:05 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\CBR Reader
2014-09-16 21:51 - 2014-03-11 18:45 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\OpenVPN
2014-09-16 21:51 - 2013-10-02 11:55 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\The KMPlayer
2014-09-16 21:51 - 2012-02-20 01:03 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\XStandard
2014-09-16 21:51 - 2011-09-27 14:44 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Nikon Transfer
2014-09-16 21:51 - 2011-05-08 22:48 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Defraggler
2014-09-16 21:51 - 2010-08-22 09:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\xp-AntiSpy
2014-09-16 21:51 - 2010-08-02 14:26 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
2014-09-16 21:51 - 2010-01-27 10:25 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\TreePad Lite
2014-09-16 21:51 - 2010-01-25 20:31 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Lingea Lexicon 2002
2014-09-16 21:51 - 2010-01-25 20:19 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Lingea Lexicon 2002
2014-09-16 21:51 - 2010-01-16 12:51 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
2014-09-16 21:51 - 2010-01-05 18:38 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\IrfanView
2014-09-16 21:51 - 2009-12-23 03:17 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Codec Pack
2014-09-16 21:51 - 2009-12-23 03:12 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\WinRAR
2014-09-16 21:51 - 2009-12-23 03:12 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\WinRAR
2014-09-16 21:51 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Příslušenství
2014-09-16 21:51 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Nabídka Start\Programy
2014-09-16 21:45 - 2014-09-16 21:44 - 00000878 _____ () C:\Documents and Settings\uzivatel\Plocha\Vit Registry Fix.lnk
2014-09-16 21:44 - 2014-09-16 21:44 - 00000000 ____D () C:\Program Files\VITSOFT
2014-09-16 21:44 - 2011-05-08 22:41 - 00000898 _____ () C:\Documents and Settings\uzivatel\Plocha\Vit Registry Fix 9.5.lnk
2014-09-16 21:44 - 2011-05-08 22:41 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\VITSOFT
2014-09-16 21:36 - 2014-09-16 21:36 - 00013556 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213559.reg
2014-09-16 21:36 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Dokumenty
2014-09-16 21:33 - 2014-09-16 21:36 - 01097728 _____ (Farbar) C:\Documents and Settings\uzivatel\Plocha\FRST.exe
2014-09-16 21:30 - 2014-09-16 21:30 - 02339272 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_212957.reg
2014-09-16 21:30 - 2014-09-16 21:30 - 00031936 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213051.reg
2014-09-16 21:19 - 2014-09-16 21:19 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-09-16 21:19 - 2014-09-16 21:19 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job
2014-09-16 21:19 - 2014-09-16 21:19 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-09-16 21:18 - 2014-09-16 21:18 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-16 21:18 - 2011-01-15 09:44 - 00000682 _____ () C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-09-16 21:17 - 2014-09-16 21:15 - 00000000 ____D () C:\Program Files\Google
2014-09-16 21:17 - 2009-12-23 02:45 - 00928972 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-16 21:15 - 2013-09-29 01:03 - 00000000 ____D () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\xerox
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\outlook express
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\netmeeting
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\msn gaming zone
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\movie maker
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\microsoft frontpage
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\system
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\speechengines
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\mssoap
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-16 21:12 - 2009-12-23 01:49 - 00000000 ____D () C:\Program Files\Windows NT
2014-09-16 20:59 - 2010-03-14 14:26 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
2014-09-16 20:54 - 2014-09-16 20:54 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\knihy
2014-09-16 20:54 - 2010-05-23 20:11 - 00147462 ____H () C:\treeinfo.wc
2014-09-16 18:10 - 2012-09-05 17:41 - 00000000 ___RD () C:\Program Files\Skype
2014-09-16 18:10 - 2009-12-23 03:14 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-09-16 18:09 - 2013-01-22 08:25 - 00000000 ____D () C:\Program Files\DawinciKlientM21
2014-09-16 18:09 - 2011-09-27 14:33 - 00000000 ____D () C:\Program Files\Common Files\Nikon
2014-09-16 18:09 - 2010-01-29 20:55 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-09-16 18:08 - 2009-12-23 03:11 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-09-16 18:08 - 2009-12-23 03:11 - 00000000 ____D () C:\Program Files\Adobe
2014-09-16 17:47 - 2001-10-25 18:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-09-11 10:01 - 2010-05-25 13:44 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\rodiny
2014-09-11 10:01 - 2010-01-15 18:35 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\ROCENKY
2014-09-10 21:08 - 2009-12-23 08:12 - 00002517 _____ () C:\Documents and Settings\uzivatel\Plocha\Microsoft Office Excel 2003.lnk
2014-09-10 20:31 - 2014-09-08 21:37 - 00000836 _____ () C:\Documents and Settings\uzivatel\Dokumenty\valencia_zkr.txt
2014-09-10 20:24 - 2014-09-09 20:28 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\pro fillovy
2014-09-08 21:04 - 2010-12-05 21:29 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\chov dostihy dle zemi
2014-09-08 15:30 - 2010-01-15 18:21 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\PLEMENICI
2014-09-08 13:52 - 2010-01-26 19:54 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\rakouske rocenky
2014-09-04 22:54 - 2011-08-06 11:24 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\prace
2014-09-02 17:24 - 2014-09-02 17:24 - 00000040 _____ () C:\Documents and Settings\uzivatel\Dokumenty\duchod.txt
2014-08-31 23:45 - 2014-08-24 22:25 - 00000125 _____ () C:\Documents and Settings\uzivatel\Dokumenty\predelane.txt
2014-08-31 20:49 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Dokumenty\Obrázky
2014-08-25 23:56 - 2014-05-07 19:38 - 00036363 _____ () C:\WINDOWS\CSTBox.INI
2014-08-17 20:24 - 2010-04-05 23:42 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\www OLD
2014-08-17 20:12 - 2014-03-02 15:10 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\www
2014-08-17 15:32 - 2014-08-17 15:32 - 00000640 _____ () C:\Documents and Settings\uzivatel\Dokumenty\killbill.txt
Some content of TEMP:
====================
C:\Documents and Settings\uzivatel\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp_ydxlr.dll
C:\Documents and Settings\uzivatel\Local Settings\temp\Quarantine.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
Exitoval mi nesčetněkrát, po restartu PC jen dvakrát, na potřetí rozběhnut. Už jdu spát, zítra do práce, tak až zítra večer. Snad se to povede vyřešit... Ráno na to ještě mrknu. Díky moc!
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-09-2014
Ran by uzivatel (administrator) on NTBACER on 16-09-2014 22:55:33
Running from C:\Documents and Settings\uzivatel\Plocha
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Skype Technologies) C:\Program Files\Skype\Updater\Updater.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-05] (AVAST Software)
HKLM\...99B7938DA9E4}\LocalServer32: [Default-wmiprvse] <==== ATTENTION!
HKU\S-1-5-21-343818398-1547161642-1801674531-1003\...\Run: [] => (the data entry has 824 more characters).
SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - No File
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - No File
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
ShellExecuteHooks: - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
FireFox:
========
FF ProfilePath: C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\winhhlow.default-1371402308171
FF Homepage: hxxp://www.centrum.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-05-08]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
Chrome:
=======
CHR HomePage: Default ->
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR DefaultSearchKeyword: Default -> 0387A4E182E747890A4EA552151A35609293537D9F7B6562774D567E25F9AEB2
CHR DefaultSearchProvider: Default -> F042CA5EC3243BEE59CEDA4A1BE7489C0D6EA39970012821B331469ADCE5B3E6
CHR DefaultSearchURL: Default -> 95B4653CC58EE9BF5F6AE68E362AE5B8C09217AF14A1D33FB87B36F8D4FEADBD
CHR CustomProfile: C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-16]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-16]
CHR Extension: (Disk Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-16]
CHR Extension: (YouTube) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-16]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-16]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-16]
CHR Extension: (avast! Online Security) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-16]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-16]
CHR Extension: (Gmail) - C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-16]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-01]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-01] (AVAST Software)
S3 CiSvc; %SystemRoot%\system32\cisvc.exe [X]
S4 MDM; "C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1585728 2009-09-30] (Atheros Communications, Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-08-01] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-08-01] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-08-01] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-08-01] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-08-01] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-08-05] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-08-01] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-08-01] ()
R2 Ethpdrv; C:\WINDOWS\System32\DRIVERS\ethpdrv.sys [9728 2005-09-08] (Gemfor s.r.o.) [File not signed]
S3 IntcHdmiAddService; C:\WINDOWS\System32\drivers\IntcHdmi.sys [105984 2007-05-05] (Intel(R) Corporation) [File not signed]
S3 ipw_bus; C:\WINDOWS\System32\DRIVERS\ipw_bus.sys [58320 2005-09-27] (MCCI)
S3 ipw_mdfl; C:\WINDOWS\System32\DRIVERS\ipw_mdfl.sys [8272 2005-09-27] (MCCI)
S3 ipw_mdm; C:\WINDOWS\System32\DRIVERS\ipw_mdm.sys [95440 2005-09-27] (MCCI)
R3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
U3 TrueSight; c:\windows\system32\drivers\TrueSight.sys [111872 2012-01-03] () [File not signed]
S4 IntelIde; No ImagePath
S1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [X]
S1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [X]
U1 WS2IFSL; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-16 22:04 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-09-16 21:44 - 2014-09-16 21:45 - 00000878 _____ () C:\Documents and Settings\uzivatel\Plocha\Vit Registry Fix.lnk
2014-09-16 21:44 - 2014-09-16 21:44 - 00000000 ____D () C:\Program Files\VITSOFT
2014-09-16 21:37 - 2014-09-16 22:55 - 00010048 _____ () C:\Documents and Settings\uzivatel\Plocha\FRST.txt
2014-09-16 21:36 - 2014-09-16 21:36 - 00013556 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213559.reg
2014-09-16 21:36 - 2014-09-16 21:33 - 01097728 _____ (Farbar) C:\Documents and Settings\uzivatel\Plocha\FRST.exe
2014-09-16 21:30 - 2014-09-16 21:30 - 02339272 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_212957.reg
2014-09-16 21:30 - 2014-09-16 21:30 - 00031936 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213051.reg
2014-09-16 21:19 - 2014-09-16 21:19 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-09-16 21:19 - 2014-09-16 21:19 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job
2014-09-16 21:19 - 2014-09-16 21:19 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-09-16 21:18 - 2014-09-16 21:18 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-16 21:15 - 2014-09-16 21:17 - 00000000 ____D () C:\Program Files\Google
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\xerox
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\outlook express
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\netmeeting
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\msn gaming zone
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\movie maker
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\microsoft frontpage
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\system
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\speechengines
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\mssoap
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-16 20:54 - 2014-09-16 20:54 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\knihy
2014-09-09 20:28 - 2014-09-10 20:24 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\pro fillovy
2014-09-08 21:37 - 2014-09-10 20:31 - 00000836 _____ () C:\Documents and Settings\uzivatel\Dokumenty\valencia_zkr.txt
2014-09-02 17:24 - 2014-09-02 17:24 - 00000040 _____ () C:\Documents and Settings\uzivatel\Dokumenty\duchod.txt
2014-08-24 22:25 - 2014-08-31 23:45 - 00000125 _____ () C:\Documents and Settings\uzivatel\Dokumenty\predelane.txt
2014-08-17 20:22 - 2014-09-16 21:51 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\PSPad editor
2014-08-17 15:32 - 2014-08-17 15:32 - 00000640 _____ () C:\Documents and Settings\uzivatel\Dokumenty\killbill.txt
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-16 22:55 - 2014-09-16 21:37 - 00010048 _____ () C:\Documents and Settings\uzivatel\Plocha\FRST.txt
2014-09-16 22:55 - 2013-10-02 10:43 - 00000000 ____D () C:\FRST
2014-09-16 22:55 - 2012-01-03 15:26 - 00000000 ____D () C:\Documents and Settings\uzivatel\Local Settings\temp
2014-09-16 22:55 - 2009-12-23 01:59 - 00000000 ____D () C:\Documents and Settings\uzivatel\Plocha
2014-09-16 22:55 - 2009-12-23 01:54 - 02095931 _____ () C:\WINDOWS\WindowsUpdate.log
2014-09-16 22:54 - 2009-12-23 02:48 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-09-16 22:54 - 2009-12-23 02:48 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-09-16 22:53 - 2009-12-23 01:59 - 00000272 ___SH () C:\Documents and Settings\uzivatel\ntuser.ini
2014-09-16 22:53 - 2009-12-23 01:59 - 00000000 ____D () C:\Documents and Settings\uzivatel
2014-09-16 22:22 - 2009-12-23 02:44 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-09-16 22:22 - 2009-12-23 02:44 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-09-16 22:04 - 2013-10-02 09:31 - 00000000 ____D () C:\AdwCleaner
2014-09-16 22:04 - 2009-12-23 01:58 - 00000178 ___SH () C:\Documents and Settings\LocalService\ntuser.ini
2014-09-16 21:59 - 2010-01-16 12:51 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-09-16 21:51 - 2014-08-17 20:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\PSPad editor
2014-09-16 21:51 - 2014-06-29 13:20 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\KooBits
2014-09-16 21:51 - 2014-05-07 19:33 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\CanoScan 8600F
2014-09-16 21:51 - 2014-03-21 21:05 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\CBR Reader
2014-09-16 21:51 - 2014-03-11 18:45 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\OpenVPN
2014-09-16 21:51 - 2013-10-02 11:55 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\The KMPlayer
2014-09-16 21:51 - 2012-02-20 01:03 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\XStandard
2014-09-16 21:51 - 2011-09-27 14:44 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Nikon Transfer
2014-09-16 21:51 - 2011-05-08 22:48 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Defraggler
2014-09-16 21:51 - 2010-08-22 09:22 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\xp-AntiSpy
2014-09-16 21:51 - 2010-08-02 14:26 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Silverlight
2014-09-16 21:51 - 2010-01-27 10:25 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\TreePad Lite
2014-09-16 21:51 - 2010-01-25 20:31 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Lingea Lexicon 2002
2014-09-16 21:51 - 2010-01-25 20:19 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Lingea Lexicon 2002
2014-09-16 21:51 - 2010-01-16 12:51 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
2014-09-16 21:51 - 2010-01-05 18:38 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\IrfanView
2014-09-16 21:51 - 2009-12-23 03:17 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Codec Pack
2014-09-16 21:51 - 2009-12-23 03:12 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\WinRAR
2014-09-16 21:51 - 2009-12-23 03:12 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\WinRAR
2014-09-16 21:51 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Příslušenství
2014-09-16 21:51 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Nabídka Start\Programy
2014-09-16 21:45 - 2014-09-16 21:44 - 00000878 _____ () C:\Documents and Settings\uzivatel\Plocha\Vit Registry Fix.lnk
2014-09-16 21:44 - 2014-09-16 21:44 - 00000000 ____D () C:\Program Files\VITSOFT
2014-09-16 21:44 - 2011-05-08 22:41 - 00000898 _____ () C:\Documents and Settings\uzivatel\Plocha\Vit Registry Fix 9.5.lnk
2014-09-16 21:44 - 2011-05-08 22:41 - 00000000 ____D () C:\Documents and Settings\uzivatel\Nabídka Start\Programy\VITSOFT
2014-09-16 21:36 - 2014-09-16 21:36 - 00013556 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213559.reg
2014-09-16 21:36 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Dokumenty
2014-09-16 21:33 - 2014-09-16 21:36 - 01097728 _____ (Farbar) C:\Documents and Settings\uzivatel\Plocha\FRST.exe
2014-09-16 21:30 - 2014-09-16 21:30 - 02339272 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_212957.reg
2014-09-16 21:30 - 2014-09-16 21:30 - 00031936 _____ () C:\Documents and Settings\uzivatel\Dokumenty\cc_20140916_213051.reg
2014-09-16 21:19 - 2014-09-16 21:19 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-09-16 21:19 - 2014-09-16 21:19 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job
2014-09-16 21:19 - 2014-09-16 21:19 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome
2014-09-16 21:18 - 2014-09-16 21:18 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-16 21:18 - 2011-01-15 09:44 - 00000682 _____ () C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-09-16 21:17 - 2014-09-16 21:15 - 00000000 ____D () C:\Program Files\Google
2014-09-16 21:17 - 2009-12-23 02:45 - 00928972 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-16 21:15 - 2013-09-29 01:03 - 00000000 ____D () C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\xerox
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\outlook express
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\netmeeting
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\msn gaming zone
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\movie maker
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\microsoft frontpage
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\system
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\speechengines
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\mssoap
2014-09-16 21:12 - 2014-09-16 21:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-16 21:12 - 2009-12-23 01:49 - 00000000 ____D () C:\Program Files\Windows NT
2014-09-16 20:59 - 2010-03-14 14:26 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\Stažené soubory
2014-09-16 20:54 - 2014-09-16 20:54 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\knihy
2014-09-16 20:54 - 2010-05-23 20:11 - 00147462 ____H () C:\treeinfo.wc
2014-09-16 18:10 - 2012-09-05 17:41 - 00000000 ___RD () C:\Program Files\Skype
2014-09-16 18:10 - 2009-12-23 03:14 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-09-16 18:09 - 2013-01-22 08:25 - 00000000 ____D () C:\Program Files\DawinciKlientM21
2014-09-16 18:09 - 2011-09-27 14:33 - 00000000 ____D () C:\Program Files\Common Files\Nikon
2014-09-16 18:09 - 2010-01-29 20:55 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-09-16 18:08 - 2009-12-23 03:11 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-09-16 18:08 - 2009-12-23 03:11 - 00000000 ____D () C:\Program Files\Adobe
2014-09-16 17:47 - 2001-10-25 18:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-09-11 10:01 - 2010-05-25 13:44 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\rodiny
2014-09-11 10:01 - 2010-01-15 18:35 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\ROCENKY
2014-09-10 21:08 - 2009-12-23 08:12 - 00002517 _____ () C:\Documents and Settings\uzivatel\Plocha\Microsoft Office Excel 2003.lnk
2014-09-10 20:31 - 2014-09-08 21:37 - 00000836 _____ () C:\Documents and Settings\uzivatel\Dokumenty\valencia_zkr.txt
2014-09-10 20:24 - 2014-09-09 20:28 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\pro fillovy
2014-09-08 21:04 - 2010-12-05 21:29 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\chov dostihy dle zemi
2014-09-08 15:30 - 2010-01-15 18:21 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\PLEMENICI
2014-09-08 13:52 - 2010-01-26 19:54 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\rakouske rocenky
2014-09-04 22:54 - 2011-08-06 11:24 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\prace
2014-09-02 17:24 - 2014-09-02 17:24 - 00000040 _____ () C:\Documents and Settings\uzivatel\Dokumenty\duchod.txt
2014-08-31 23:45 - 2014-08-24 22:25 - 00000125 _____ () C:\Documents and Settings\uzivatel\Dokumenty\predelane.txt
2014-08-31 20:49 - 2009-12-23 01:59 - 00000000 ___RD () C:\Documents and Settings\uzivatel\Dokumenty\Obrázky
2014-08-25 23:56 - 2014-05-07 19:38 - 00036363 _____ () C:\WINDOWS\CSTBox.INI
2014-08-17 20:24 - 2010-04-05 23:42 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\www OLD
2014-08-17 20:12 - 2014-03-02 15:10 - 00000000 ____D () C:\Documents and Settings\uzivatel\Dokumenty\www
2014-08-17 15:32 - 2014-08-17 15:32 - 00000640 _____ () C:\Documents and Settings\uzivatel\Dokumenty\killbill.txt
Some content of TEMP:
====================
C:\Documents and Settings\uzivatel\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp_ydxlr.dll
C:\Documents and Settings\uzivatel\Local Settings\temp\Quarantine.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End Of Log ============================
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM\...99B7938DA9E4}\LocalServer32: [Default-wmiprvse] <==== ATTENTION!
SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - No File
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - No File
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - No File
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
ShellExecuteHooks: - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - No File [ ]
CHR DefaultSearchKeyword: Default -> 0387A4E182E747890A4EA552151A35609293537D9F7B6562774D567E25F9AEB2
CHR DefaultSearchProvider: Default -> F042CA5EC3243BEE59CEDA4A1BE7489C0D6EA39970012821B331469ADCE5B3E6
CHR DefaultSearchURL: Default -> 95B4653CC58EE9BF5F6AE68E362AE5B8C09217AF14A1D33FB87B36F8D4FEADBD
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job
C:\Documents and Settings\uzivatel\Local Settings\temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Provedeno, log vložen 
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 12-09-2014
Ran by uzivatel at 2014-09-17 20:33:58 Run:2
Running from C:\Documents and Settings\uzivatel\Plocha
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...99B7938DA9E4}\LocalServer32: [Default-wmiprvse] <==== ATTENTION!
SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - No File
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - No File
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - No File
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
ShellExecuteHooks: - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - No File [ ]
CHR DefaultSearchKeyword: Default -> 0387A4E182E747890A4EA552151A35609293537D9F7B6562774D567E25F9AEB2
CHR DefaultSearchProvider: Default -> F042CA5EC3243BEE59CEDA4A1BE7489C0D6EA39970012821B331469ADCE5B3E6
CHR DefaultSearchURL: Default -> 95B4653CC58EE9BF5F6AE68E362AE5B8C09217AF14A1D33FB87B36F8D4FEADBD
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job
C:\Documents and Settings\uzivatel\Local Settings\temp
End
*****************
HKLM\Software\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32\\Default => Value was restored successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\UPnPMonitor => value deleted successfully.
"HKLM\Software\Classes\CLSID\{e57ce738-33e8-4c51-8354-bb4de9d215d1}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => Key deleted successfully.
"HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key not found.
"HKCR\PROTOCOLS\Handler\http\0x00000001" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF42-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\http\oledb" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF40-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\https\0x00000001" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF42-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\https\oledb" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF40-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\ipp\0x00000001" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF42-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\ms-itss" => Key deleted successfully.
"HKCR\CLSID\{0A9007C0-4076-11D3-8789-0000F8105754}" => Key not found.
"HKCR\PROTOCOLS\Handler\msdaipp\0x00000001" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF42-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\msdaipp\oledb" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF40-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\mso-offdap11" => Key deleted successfully.
"HKCR\CLSID\{32505114-5902-49B2-880A-1F7738E5A384}" => Key not found.
"HKCR\PROTOCOLS\Filter\text/xml" => Key deleted successfully.
"HKCR\CLSID\{807553E5-5146-11D5-A672-00B0D022E945}" => Key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} => value deleted successfully.
"HKCR\CLSID\{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}" => Key not found.
Chrome DefaultSearchKeyword deleted successfully.
CHR DefaultSearchProvider: Default -> F042CA5EC3243BEE59CEDA4A1BE7489C0D6EA39970012821B331469ADCE5B3E6 ==> The Chrome "Settings" can be used to fix the entry.
Chrome DefaultSearchURL deleted successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job => Moved successfully.
C:\Documents and Settings\uzivatel\Local Settings\temp => Moved successfully.
==== End of Fixlog ====
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 12-09-2014
Ran by uzivatel at 2014-09-17 20:33:58 Run:2
Running from C:\Documents and Settings\uzivatel\Plocha
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...99B7938DA9E4}\LocalServer32: [Default-wmiprvse] <==== ATTENTION!
SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - No File
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - No File
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - No File
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
ShellExecuteHooks: - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - No File [ ]
CHR DefaultSearchKeyword: Default -> 0387A4E182E747890A4EA552151A35609293537D9F7B6562774D567E25F9AEB2
CHR DefaultSearchProvider: Default -> F042CA5EC3243BEE59CEDA4A1BE7489C0D6EA39970012821B331469ADCE5B3E6
CHR DefaultSearchURL: Default -> 95B4653CC58EE9BF5F6AE68E362AE5B8C09217AF14A1D33FB87B36F8D4FEADBD
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job
C:\Documents and Settings\uzivatel\Local Settings\temp
End
*****************
HKLM\Software\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32\\Default => Value was restored successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\UPnPMonitor => value deleted successfully.
"HKLM\Software\Classes\CLSID\{e57ce738-33e8-4c51-8354-bb4de9d215d1}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => Key deleted successfully.
"HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key not found.
"HKCR\PROTOCOLS\Handler\http\0x00000001" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF42-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\http\oledb" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF40-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\https\0x00000001" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF42-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\https\oledb" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF40-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\ipp\0x00000001" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF42-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\ms-itss" => Key deleted successfully.
"HKCR\CLSID\{0A9007C0-4076-11D3-8789-0000F8105754}" => Key not found.
"HKCR\PROTOCOLS\Handler\msdaipp\0x00000001" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF42-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\msdaipp\oledb" => Key deleted successfully.
"HKCR\CLSID\{E1D2BF40-A96B-11d1-9C6B-0000F875AC61}" => Key not found.
"HKCR\PROTOCOLS\Handler\mso-offdap11" => Key deleted successfully.
"HKCR\CLSID\{32505114-5902-49B2-880A-1F7738E5A384}" => Key not found.
"HKCR\PROTOCOLS\Filter\text/xml" => Key deleted successfully.
"HKCR\CLSID\{807553E5-5146-11D5-A672-00B0D022E945}" => Key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} => value deleted successfully.
"HKCR\CLSID\{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}" => Key not found.
Chrome DefaultSearchKeyword deleted successfully.
CHR DefaultSearchProvider: Default -> F042CA5EC3243BEE59CEDA4A1BE7489C0D6EA39970012821B331469ADCE5B3E6 ==> The Chrome "Settings" can be used to fix the entry.
Chrome DefaultSearchURL deleted successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfd1e325aeda52.job => Moved successfully.
C:\Documents and Settings\uzivatel\Local Settings\temp => Moved successfully.
==== End of Fixlog ====
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Je to stabilní, nic mi nemizí, registry jsou čisté (oproti včerejšku, kdy mi to vyplivlo přes 6 tisíc chyb), (snad jen je divné, že ačkoliv IE byl sežrán, opakovaně mi to ukazuje nějaké IE soubory v ROOTech, i přes čištění), internet šlape jak má. Většina programů je vyoutovaných, tak budu už instalovat zpátky - už můžu? -, tak se modlím, abych se zase neozvala, že jsem si stáhla novou breberku.
Kamarád doporučuje Commodo Internet Security, co si myslíte Vy?
Prosím, ještě nezavírejte toto téma, zítra večer budu instalovat programy, tak kdyby se objevila nějaká související nestabilita, napsala bych sem.
Prozatím moc a moc děkuji, příspěvek zašlu.
Kamarád doporučuje Commodo Internet Security, co si myslíte Vy?
Prosím, ještě nezavírejte toto téma, zítra večer budu instalovat programy, tak kdyby se objevila nějaká související nestabilita, napsala bych sem.
Prozatím moc a moc děkuji, příspěvek zašlu.
- Přílohy
-
- IE soubory v ROOTech
- IE.jpg (19.78 KiB) Zobrazeno 1720 x
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Comodo IS jako celý balík je placený. Free je jen firewall. Jinak proti němu nic nemám. Nainstalujte a ozvěte se. Zatím není zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
Tak i po instalaci vše OK, téma se už může zamknout Ještě jednou děkuji, příspěvek byl odeslán.
Přeji pěkný den.
Ještě jednou děkuji, příspěvek byl odeslán. Přeji pěkný den.
-
Rudy
- Site Admin
- Příspěvky: 119547
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nalezený malware, vygumované programy, MODRÁ obrazovka
I vám hezký den a za příspěvk děkujeme. Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?