kontrola frst

Zpráva

jask · #1 Příspěvek od **jask** » 03 pro 2014 20:05

Dobrý den,

prosím o pomoc, zpomalil se ntb a to celkem dost

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-12-2014 01
Ran by uživatel (administrator) on U-F3DA959F89254 on 03-12-2014 19:47:32
Running from C:\Documents and Settings\uživatel\Plocha
Loaded Profile: uživatel (Available profiles: uživatel & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
() C:\WINDOWS\system32\ati2evxx.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\ConversionService.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Ralink Technology, Corp.) C:\Program Files\Ralink\Common\RaRegistry.exe
(ATI Technologies, Inc.) C:\WINDOWS\system32\atiptaxx.exe
(Alcor Micro, Corp.) C:\Program Files\Multimedia Card Reader\shwicon2k.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(HP) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Memeo) C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
(Syntek Ltd.) C:\WINDOWS\STK03N\STK03NM.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Documents and Settings\uživatel\Plocha\FRSTLauncher (1).exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [118784 2001-08-09] (Alps Electric Co., Ltd.)
HKLM\...\Run: [ATIModeChange] => C:\WINDOWS\system32\Ati2mdxx.exe [28672 2001-09-04] (ATI Technologies, Inc.)
HKLM\...\Run: [AtiPTA] => C:\WINDOWS\system32\atiptaxx.exe [286720 2002-03-12] (ATI Technologies, Inc.)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-03-18] (CANON INC.)
HKLM\...\Run: [Sunkist2k] => C:\Program Files\Multimedia Card Reader\shwicon2k.exe [139264 2005-10-27] (Alcor Micro, Corp.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2014-11-22] (AVAST Software)
HKLM\...\Run: [HPDJ Taskbar Utility] => C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe [196608 2001-11-20] (HP)
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-30] (Piriform Ltd)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\STK03N PNP Monitor.lnk
ShortcutTarget: STK03N PNP Monitor.lnk -> C:\WINDOWS\STK03N\STK03NM.exe (Syntek Ltd.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll (Autodesk)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\Software\Microsoft\Internet Explorer\Main,Vyhledávací stránka = http://www.msn.com/access/allinone.asp
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\Software\Microsoft\Internet Explorer\Main,Úvodní stránka = http://www.microsoft.com/msoffice/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: No Name -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> No File
BHO: No Name -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> No File
Toolbar: HKLM - No Name - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-1343024091-1993962763-1708537768-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {210D0CBC-8B17-48D1-B294-1A338DD2EB3A} http://proxynet.mbudejovice.cz:3333/VatDec.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [113024 2011-07-19] (SuperAdBlocker.com)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\uživatel\Data aplikací\Mozilla\Firefox\Profiles\7wgvahbn.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll ()
FF Plugin: @cadenas.de/PARTwebViewer -> C:\Program Files\cadenas\partwebviewer\bin\x86\32\npwebviewerplugins.dll (CADENAS GmbH)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll No File
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1343024091-1993962763-1708537768-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt [2013-06-19]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-04-24]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR DefaultSearchKeyword: Default -> seznam.cz
CHR DefaultSearchURL: Default -> http://search.seznam.cz/?q={searchTerms}
CHR DefaultSuggestURL: Default -> http://suggest.fulltext.seznam.cz/fullt ... earchTerms}
CHR Profile: C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Avast Online Security) - C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-09-08]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-04]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-22]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-09-07] (SUPERAntiSpyware.com)
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [110592 2002-02-19] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-22] (AVAST Software)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S3 idsvc; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [864256 2007-10-11] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [122880 2007-10-11] (Microsoft Corporation) [File not signed]
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 RalinkRegistryWriter; C:\Program Files\Ralink\Common\RaRegistry.exe [185632 2009-07-14] (Ralink Technology, Corp.)
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [110592 2010-01-21] (WDC) [File not signed]
R2 WDSmartWareBackgroundService; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [20480 2009-06-16] (Memeo) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [48128 2008-04-13] (Microsoft Corporation)
R3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21035 2011-04-19] (Meetinghouse Data Communications) [File not signed]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-11-22] ()
R0 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2014-11-22] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55240 2014-11-22] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-11-22] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787800 2014-11-22] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [423784 2014-11-22] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57928 2014-11-22] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [206248 2014-11-22] ()
S3 AtiDCM; C:\AMD\Support\13-4_xp32_dd_ccc_whql\Bin\atidcmxx.sys [27872 2013-04-11] (Advanced Micro Devices, Inc.)
R1 BANTExt; C:\WINDOWS\System32\Drivers\BANTExt.sys [3840 2013-09-10] () [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 DCamUSBSTK03N; C:\WINDOWS\System32\DRIVERS\STK03NW2.sys [108544 2009-12-18] (Syntek Ltd.)
R2 EAPPkt; C:\WINDOWS\System32\DRIVERS\EAPPkt.sys [38144 2007-10-09] (Realtek) [File not signed]
R3 FUJ02B1; C:\WINDOWS\System32\DRIVERS\FUJ02B1.sys [5248 2001-08-01] (FUJITSU LIMITED)
R3 LucentSoftModem; C:\WINDOWS\System32\DRIVERS\LTSM.sys [807021 2001-12-18] (Lucent Technologies)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 OkiPar; C:\WINDOWS\System32\DRIVERS\OKIPAR.SYS [40192 2001-10-02] (Oki Data Corporation) [File not signed]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R3 rt2870; C:\WINDOWS\System32\DRIVERS\rt2870.sys [724736 2009-08-03] (Ralink Technology, Corp.)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
S3 RTLWUSB; C:\WINDOWS\System32\DRIVERS\RTL8187.sys [332928 2008-06-27] (Realtek Semiconductor Corporation )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R2 Scutum50; C:\WINDOWS\System32\Drivers\Scutum50.sys [19072 2009-04-21] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 scvad_simple; C:\WINDOWS\System32\drivers\SplitCamAudio.sys [18944 2013-11-01] (Windows (R) Win 7 DDK provider)
S3 silabenm; C:\WINDOWS\System32\DRIVERS\silabenm.sys [47176 2011-10-14] (Silicon Laboratories)
S3 silabser; C:\WINDOWS\System32\DRIVERS\silabser.sys [61312 2011-10-14] (Silicon Laboratories)
S3 slabbus; C:\WINDOWS\System32\DRIVERS\slabbus.sys [52384 2004-03-11] (MCCI) [File not signed]
R3 SMCIRDA; C:\WINDOWS\System32\DRIVERS\smcirda.sys [35913 2001-10-24] (SMC)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [685816 2013-06-17] () [File not signed]
S3 SunkFilt; C:\WINDOWS\System32\Drivers\sunkfilt.sys [38468 2005-10-27] (Alcor Micro Corp.) [File not signed]
U3 ax3iyps0; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-03 19:47 - 2014-12-03 19:48 - 00015130 _____ () C:\Documents and Settings\uživatel\Plocha\FRST.txt
2014-12-03 19:47 - 2014-12-03 19:47 - 00000000 ____D () C:\FRST
2014-12-03 19:45 - 2014-12-03 19:45 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\uživatel\Plocha\FRSTLauncher (1).exe
2014-12-03 19:21 - 2014-12-03 19:22 - 01108992 _____ (Farbar) C:\Documents and Settings\uživatel\Plocha\FRST.exe
2014-12-03 19:06 - 2014-12-03 19:07 - 00000000 ____D () C:\rsit
2014-11-22 10:38 - 2014-11-22 10:38 - 00001731 _____ () C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2014-11-22 10:37 - 2014-11-22 10:37 - 00291352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-11-22 10:37 - 2014-11-22 10:37 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-11-18 16:00 - 2014-11-18 16:01 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-11-17 10:52 - 2014-11-17 10:52 - 00000854 _____ () C:\Documents and Settings\uživatel\Dokumenty\cc_20141117_105209.reg
2014-11-17 00:00 - 2014-11-17 00:00 - 00191134 _____ () C:\Documents and Settings\uživatel\Dokumenty\cc_20141117_000012.reg
2014-11-15 14:52 - 2014-11-16 15:02 - 00409791 _____ () C:\Documents and Settings\uživatel\Plocha\klinsoustr.dwg
2014-11-15 14:52 - 2014-11-15 15:55 - 00402050 _____ () C:\Documents and Settings\uživatel\Plocha\klinsoustr.bak
2014-11-14 11:28 - 2014-11-14 11:28 - 00000556 _____ () C:\Documents and Settings\uživatel\Dokumenty\cc_20141114_112804.reg
2014-11-10 11:48 - 2014-11-10 11:48 - 00000726 _____ () C:\Documents and Settings\uživatel\Dokumenty\cc_20141110_114809.reg

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-03 19:48 - 2014-06-17 21:54 - 00000000 ____D () C:\Documents and Settings\uživatel\Local Settings\temp
2014-12-03 19:47 - 2011-03-30 12:10 - 00000000 ___HD () C:\Documents and Settings\uživatel\Local Settings\Data aplikací
2014-12-03 19:47 - 2011-03-30 12:10 - 00000000 ____D () C:\Documents and Settings\uživatel\Plocha
2014-12-03 19:42 - 2014-07-20 19:00 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-12-03 19:07 - 2013-09-30 09:28 - 00000000 ____D () C:\Program Files\trend micro
2014-12-03 19:05 - 2012-07-19 00:39 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-12-03 19:01 - 2011-03-30 09:41 - 01058892 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-03 19:00 - 2007-10-29 13:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-12-03 18:59 - 2011-03-30 12:09 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-03 18:59 - 2011-03-30 11:34 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-12-03 18:59 - 2011-03-30 11:34 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-12-03 16:42 - 2011-03-30 12:10 - 00000272 ___SH () C:\Documents and Settings\uživatel\ntuser.ini
2014-12-03 16:42 - 2011-03-30 12:09 - 00032510 _____ () C:\WINDOWS\SchedLgU.Txt
2014-12-03 16:02 - 2012-10-11 20:26 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-12-03 14:56 - 2012-09-04 11:45 - 00000364 _____ () C:\Documents and Settings\uživatel\Dokumenty\spider.sav
2014-12-03 10:49 - 2011-04-19 19:27 - 00000000 ____D () C:\Program Files\AutoCAD R14
2014-11-28 13:59 - 2014-07-15 16:10 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\lenovo
2014-11-26 12:42 - 2012-04-24 23:04 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-11-26 12:42 - 2012-04-24 23:04 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-11-25 14:45 - 2012-09-22 16:03 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\Warcraft 2
2014-11-24 15:44 - 2013-07-09 12:00 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\Warcraft III
2014-11-23 22:58 - 2011-03-30 12:10 - 00000000 ___RD () C:\Documents and Settings\uživatel\Dokumenty
2014-11-23 22:48 - 2013-02-02 10:40 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\Přijaté soubory
2014-11-23 22:43 - 2011-03-30 12:10 - 00000000 ___RD () C:\Documents and Settings\uživatel\Dokumenty\Obrázky
2014-11-23 14:15 - 2011-03-30 12:10 - 00000000 ____D () C:\Documents and Settings\uživatel
2014-11-23 11:28 - 2012-11-09 10:56 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\3D
2014-11-23 11:19 - 2014-06-09 00:06 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\Stažené soubory
2014-11-23 11:05 - 2013-12-25 17:43 - 00000682 _____ () C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-11-23 11:05 - 2013-12-25 17:43 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2014-11-23 11:05 - 2013-05-09 09:16 - 00000000 ____D () C:\Documents and Settings\uživatel\Nabídka Start\Programy\CCleaner
2014-11-23 11:05 - 2013-05-09 09:15 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-23 10:56 - 2012-04-25 00:18 - 00000000 ____D () C:\WINDOWS\Minidump
2014-11-23 10:50 - 2012-10-26 20:49 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2014-11-22 10:38 - 2011-03-30 11:30 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-11-22 10:37 - 2014-04-24 20:03 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-11-22 10:37 - 2013-03-13 12:00 - 00206248 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-11-22 10:37 - 2013-03-13 12:00 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-11-22 10:37 - 2013-03-13 12:00 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-11-22 10:37 - 2011-04-24 15:51 - 00423784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-11-22 10:37 - 2011-04-24 15:50 - 00787800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-11-22 10:37 - 2011-04-24 15:50 - 00057928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-11-22 10:37 - 2011-04-24 15:50 - 00055240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswrdr.sys
2014-11-18 14:01 - 2013-01-08 13:48 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\DWG
2014-11-18 02:06 - 2011-03-30 09:38 - 00000000 ____D () C:\Program Files\Messenger
2014-11-16 01:18 - 2013-06-19 13:38 - 00000000 ____D () C:\Program Files\PDF Architect
2014-11-16 01:17 - 2013-12-25 00:51 - 00000000 ____D () C:\Program Files\Garmin GPS Plugin
2014-11-14 01:19 - 2011-03-30 11:30 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-11-11 22:02 - 2013-10-17 01:30 - 00000000 ____D () C:\Documents and Settings\uživatel\Data aplikací\Skype
2014-11-05 20:36 - 2012-05-31 11:54 - 00002487 _____ () C:\Documents and Settings\uživatel\Plocha\Microsoft Excel (2).lnk
2014-11-05 16:06 - 2014-08-31 21:37 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\sustruh
2014-11-05 15:56 - 2013-04-22 18:21 - 00000000 _____ () C:\WINDOWS\XXLGSC
2014-11-05 15:56 - 2013-04-22 18:19 - 00005046 _____ () C:\WINDOWS\WTRAN32.INI
2014-11-05 15:29 - 2013-02-16 21:50 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\datasheet

Files to move or delete:
====================
C:\Documents and Settings\uživatel\TempWmicBatchFile.bat

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\uivatel\Plocha" je 562 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\uivatel\\Plocha\\btest.exe"="C:\\Documents and Settings\\uivatel\\Plocha\\btest.exe:*:Enabled:btest"
"C:\\Documents and Settings\\uivatel\\Dokumenty\\Warcraft III\\Warcraft III.exe"="C:\\Documents and Settings\\uivatel\\Dokumenty\\Warcraft III\\Warcraft III.exe:*:Disabled:Warcraft III"
"C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe:*:Enabled:Age of Empires III: Complete Collection"
"C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe:*:Enabled:Age of Empires III: Complete Collection"
"C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3y.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3y.exe:*:Enabled:Age of Empires III: Complete Collection"
"C:\\Program Files\\Microsoft Games\\Age of Empires III\\autopatcher.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\autopatcher.exe:*:Enabled:Age of Empires III: Complete Collection"
"C:\\Program Files\\Microsoft Games\\Age of Empires III\\autopatcher2.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\autopatcher2.exe:*:Enabled:Age of Empires III: Complete Collection"
"C:\\Program Files\\Microsoft Games\\Age of Empires III\\autopatcherx.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\autopatcherx.exe:*:Enabled:Age of Empires III: Complete Collection"
"C:\\Program Files\\Microsoft Games\\Age of Empires III\\autopatchery.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\autopatchery.exe:*:Enabled:Age of Empires III: Complete Collection"
"C:\\Program Files\\Cossacks\\dmcr.exe"="C:\\Program Files\\Cossacks\\dmcr.exe:*:Disabled:dmcr"
"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe:*:Enabled:Google Chrome"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

==================== End Of Log ==============================
osím o pomoc, zpomalil se ntb a to celkem dost

#2 Příspěvek od **Rudy** » 03 pro 2014 20:27

Zdravím!
Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

jask · #3 Příspěvek od **jask** » 03 pro 2014 20:58

tady je log z AdwCleaneru

# AdwCleaner v4.103 - Report created 03/12/2014 at 20:42:35
# Updated 01/12/2014 by Xplode
# Database : 2014-12-03.1 [Live]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : uživatel - U-F3DA959F89254
# Running from : C:\Documents and Settings\uživatel\Plocha\adwcleaner_4.103.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338A754C-B46E-4BF2-8AC8-23DE36862AD3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v31.0 (x86 cs)

-\\ Google Chrome v37.0.2062.102

*************************

AdwCleaner[R1].txt - [1550 octets] - [03/12/2014 20:37:13]
AdwCleaner[S1].txt - [1487 octets] - [03/12/2014 20:42:35]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1547 octets] ##########

#4 Příspěvek od **Rudy** » 03 pro 2014 21:22

Dejte nový log FRST.

jask · #5 Příspěvek od **jask** » 03 pro 2014 21:31

tady je nový log

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-12-2014
Ran by uživatel (administrator) on U-F3DA959F89254 on 03-12-2014 21:25:50
Running from C:\Documents and Settings\uživatel\Plocha
Loaded Profile: uživatel (Available profiles: uživatel & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
() C:\WINDOWS\system32\ati2evxx.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\HelperService.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(pdfforge GmbH) C:\Program Files\PDF Architect\ConversionService.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Ralink Technology, Corp.) C:\Program Files\Ralink\Common\RaRegistry.exe
(ATI Technologies, Inc.) C:\WINDOWS\system32\atiptaxx.exe
(Alcor Micro, Corp.) C:\Program Files\Multimedia Card Reader\shwicon2k.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(HP) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Syntek Ltd.) C:\WINDOWS\STK03N\STK03NM.exe
(Memeo) C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [118784 2001-08-09] (Alps Electric Co., Ltd.)
HKLM\...\Run: [ATIModeChange] => C:\WINDOWS\system32\Ati2mdxx.exe [28672 2001-09-04] (ATI Technologies, Inc.)
HKLM\...\Run: [AtiPTA] => C:\WINDOWS\system32\atiptaxx.exe [286720 2002-03-12] (ATI Technologies, Inc.)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-03-18] (CANON INC.)
HKLM\...\Run: [Sunkist2k] => C:\Program Files\Multimedia Card Reader\shwicon2k.exe [139264 2005-10-27] (Alcor Micro, Corp.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2014-11-22] (AVAST Software)
HKLM\...\Run: [HPDJ Taskbar Utility] => C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe [196608 2001-11-20] (HP)
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-30] (Piriform Ltd)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\STK03N PNP Monitor.lnk
ShortcutTarget: STK03N PNP Monitor.lnk -> C:\WINDOWS\STK03N\STK03NM.exe (Syntek Ltd.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll (Autodesk)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\Software\Microsoft\Internet Explorer\Main,Vyhledávací stránka = http://www.msn.com/access/allinone.asp
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\Software\Microsoft\Internet Explorer\Main,Úvodní stránka = http://www.microsoft.com/msoffice/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: No Name -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> No File
BHO: No Name -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> No File
Toolbar: HKLM - No Name - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-1343024091-1993962763-1708537768-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {210D0CBC-8B17-48D1-B294-1A338DD2EB3A} http://proxynet.mbudejovice.cz:3333/VatDec.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [113024 2011-07-19] (SuperAdBlocker.com)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\uživatel\Data aplikací\Mozilla\Firefox\Profiles\7wgvahbn.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll ()
FF Plugin: @cadenas.de/PARTwebViewer -> C:\Program Files\cadenas\partwebviewer\bin\x86\32\npwebviewerplugins.dll (CADENAS GmbH)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll No File
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1343024091-1993962763-1708537768-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt [2013-06-19]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-04-24]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR DefaultSearchKeyword: Default -> seznam.cz
CHR DefaultSearchURL: Default -> http://search.seznam.cz/?q={searchTerms}
CHR DefaultSuggestURL: Default -> http://suggest.fulltext.seznam.cz/fullt ... earchTerms}
CHR Profile: C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Avast Online Security) - C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-09-08]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-22]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-09-07] (SUPERAntiSpyware.com)
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [110592 2002-02-19] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-22] (AVAST Software)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S3 idsvc; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [864256 2007-10-11] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [122880 2007-10-11] (Microsoft Corporation) [File not signed]
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 RalinkRegistryWriter; C:\Program Files\Ralink\Common\RaRegistry.exe [185632 2009-07-14] (Ralink Technology, Corp.)
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [110592 2010-01-21] (WDC) [File not signed]
R2 WDSmartWareBackgroundService; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [20480 2009-06-16] (Memeo) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [48128 2008-04-13] (Microsoft Corporation)
R3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21035 2011-04-19] (Meetinghouse Data Communications) [File not signed]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-11-22] ()
R0 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2014-11-22] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55240 2014-11-22] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-11-22] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787800 2014-11-22] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [423784 2014-11-22] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57928 2014-11-22] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [206248 2014-11-22] ()
S3 AtiDCM; C:\AMD\Support\13-4_xp32_dd_ccc_whql\Bin\atidcmxx.sys [27872 2013-04-11] (Advanced Micro Devices, Inc.)
R1 BANTExt; C:\WINDOWS\System32\Drivers\BANTExt.sys [3840 2013-09-10] () [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 DCamUSBSTK03N; C:\WINDOWS\System32\DRIVERS\STK03NW2.sys [108544 2009-12-18] (Syntek Ltd.)
R2 EAPPkt; C:\WINDOWS\System32\DRIVERS\EAPPkt.sys [38144 2007-10-09] (Realtek) [File not signed]
R3 FUJ02B1; C:\WINDOWS\System32\DRIVERS\FUJ02B1.sys [5248 2001-08-01] (FUJITSU LIMITED)
R3 LucentSoftModem; C:\WINDOWS\System32\DRIVERS\LTSM.sys [807021 2001-12-18] (Lucent Technologies)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 OkiPar; C:\WINDOWS\System32\DRIVERS\OKIPAR.SYS [40192 2001-10-02] (Oki Data Corporation) [File not signed]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R3 rt2870; C:\WINDOWS\System32\DRIVERS\rt2870.sys [724736 2009-08-03] (Ralink Technology, Corp.)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
S3 RTLWUSB; C:\WINDOWS\System32\DRIVERS\RTL8187.sys [332928 2008-06-27] (Realtek Semiconductor Corporation )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R2 Scutum50; C:\WINDOWS\System32\Drivers\Scutum50.sys [19072 2009-04-21] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R3 scvad_simple; C:\WINDOWS\System32\drivers\SplitCamAudio.sys [18944 2013-11-01] (Windows (R) Win 7 DDK provider)
S3 silabenm; C:\WINDOWS\System32\DRIVERS\silabenm.sys [47176 2011-10-14] (Silicon Laboratories)
S3 silabser; C:\WINDOWS\System32\DRIVERS\silabser.sys [61312 2011-10-14] (Silicon Laboratories)
S3 slabbus; C:\WINDOWS\System32\DRIVERS\slabbus.sys [52384 2004-03-11] (MCCI) [File not signed]
R3 SMCIRDA; C:\WINDOWS\System32\DRIVERS\smcirda.sys [35913 2001-10-24] (SMC)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [685816 2013-06-17] () [File not signed]
S3 SunkFilt; C:\WINDOWS\System32\Drivers\sunkfilt.sys [38468 2005-10-27] (Alcor Micro Corp.) [File not signed]
U3 ahjxh6e0; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-03 21:25 - 2014-12-03 21:25 - 00000000 ____D () C:\Documents and Settings\uživatel\Plocha\FRST-OlderVersion
2014-12-03 20:36 - 2014-12-03 20:42 - 00000000 ____D () C:\AdwCleaner
2014-12-03 20:35 - 2014-12-03 20:35 - 02154496 _____ () C:\Documents and Settings\uživatel\Plocha\adwcleaner_4.103.exe
2014-12-03 19:54 - 2014-12-03 19:54 - 00007475 _____ () C:\Documents and Settings\uživatel\Plocha\Addition.7z
2014-12-03 19:49 - 2014-12-03 19:50 - 00032923 _____ () C:\Documents and Settings\uživatel\Plocha\Addition.txt
2014-12-03 19:47 - 2014-12-03 21:26 - 00014659 _____ () C:\Documents and Settings\uživatel\Plocha\FRST.txt
2014-12-03 19:47 - 2014-12-03 21:26 - 00000000 ____D () C:\FRST
2014-12-03 19:47 - 2014-12-03 19:47 - 00029696 _____ () C:\Documents and Settings\uživatel\Local Settings\Data aplikací\MSGBOX.EXE
2014-12-03 19:21 - 2014-12-03 21:25 - 01110016 _____ (Farbar) C:\Documents and Settings\uživatel\Plocha\FRST.exe
2014-12-03 19:06 - 2014-12-03 19:07 - 00000000 ____D () C:\rsit
2014-11-22 10:38 - 2014-11-22 10:38 - 00001731 _____ () C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2014-11-22 10:37 - 2014-11-22 10:37 - 00291352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-11-22 10:37 - 2014-11-22 10:37 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-11-18 16:00 - 2014-11-18 16:01 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-11-17 10:52 - 2014-11-17 10:52 - 00000854 _____ () C:\Documents and Settings\uživatel\Dokumenty\cc_20141117_105209.reg
2014-11-17 00:00 - 2014-11-17 00:00 - 00191134 _____ () C:\Documents and Settings\uživatel\Dokumenty\cc_20141117_000012.reg
2014-11-15 14:52 - 2014-11-16 15:02 - 00409791 _____ () C:\Documents and Settings\uživatel\Plocha\klinsoustr.dwg
2014-11-15 14:52 - 2014-11-15 15:55 - 00402050 _____ () C:\Documents and Settings\uživatel\Plocha\klinsoustr.bak
2014-11-14 11:28 - 2014-11-14 11:28 - 00000556 _____ () C:\Documents and Settings\uživatel\Dokumenty\cc_20141114_112804.reg
2014-11-10 11:48 - 2014-11-10 11:48 - 00000726 _____ () C:\Documents and Settings\uživatel\Dokumenty\cc_20141110_114809.reg

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-03 21:26 - 2014-06-17 21:54 - 00000000 ____D () C:\Documents and Settings\uživatel\Local Settings\temp
2014-12-03 21:25 - 2011-03-30 12:10 - 00000000 ____D () C:\Documents and Settings\uživatel\Plocha
2014-12-03 20:50 - 2012-07-19 00:39 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-12-03 20:46 - 2011-03-30 09:41 - 01062256 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-03 20:45 - 2011-03-30 12:09 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-03 20:45 - 2011-03-30 11:34 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-12-03 20:45 - 2011-03-30 11:34 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-12-03 20:45 - 2007-10-29 13:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-12-03 20:43 - 2011-03-30 12:10 - 00000272 ___SH () C:\Documents and Settings\uživatel\ntuser.ini
2014-12-03 20:43 - 2011-03-30 12:09 - 00032510 _____ () C:\WINDOWS\SchedLgU.Txt
2014-12-03 20:42 - 2014-07-20 19:00 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-12-03 19:47 - 2011-03-30 12:10 - 00000000 ___HD () C:\Documents and Settings\uživatel\Local Settings\Data aplikací
2014-12-03 19:07 - 2013-09-30 09:28 - 00000000 ____D () C:\Program Files\trend micro
2014-12-03 16:02 - 2012-10-11 20:26 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-12-03 14:56 - 2012-09-04 11:45 - 00000364 _____ () C:\Documents and Settings\uživatel\Dokumenty\spider.sav
2014-12-03 10:49 - 2011-04-19 19:27 - 00000000 ____D () C:\Program Files\AutoCAD R14
2014-11-28 13:59 - 2014-07-15 16:10 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\lenovo
2014-11-26 12:42 - 2012-04-24 23:04 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-11-26 12:42 - 2012-04-24 23:04 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-11-25 14:45 - 2012-09-22 16:03 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\Warcraft 2
2014-11-24 15:44 - 2013-07-09 12:00 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\Warcraft III
2014-11-23 22:58 - 2011-03-30 12:10 - 00000000 ___RD () C:\Documents and Settings\uživatel\Dokumenty
2014-11-23 22:48 - 2013-02-02 10:40 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\Přijaté soubory
2014-11-23 22:43 - 2011-03-30 12:10 - 00000000 ___RD () C:\Documents and Settings\uživatel\Dokumenty\Obrázky
2014-11-23 14:15 - 2011-03-30 12:10 - 00000000 ____D () C:\Documents and Settings\uživatel
2014-11-23 11:28 - 2012-11-09 10:56 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\3D
2014-11-23 11:19 - 2014-06-09 00:06 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\Stažené soubory
2014-11-23 11:05 - 2013-12-25 17:43 - 00000682 _____ () C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-11-23 11:05 - 2013-12-25 17:43 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2014-11-23 11:05 - 2013-05-09 09:16 - 00000000 ____D () C:\Documents and Settings\uživatel\Nabídka Start\Programy\CCleaner
2014-11-23 11:05 - 2013-05-09 09:15 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-23 10:56 - 2012-04-25 00:18 - 00000000 ____D () C:\WINDOWS\Minidump
2014-11-23 10:50 - 2012-10-26 20:49 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2014-11-22 10:38 - 2011-03-30 11:30 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-11-22 10:37 - 2014-04-24 20:03 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-11-22 10:37 - 2013-03-13 12:00 - 00206248 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-11-22 10:37 - 2013-03-13 12:00 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-11-22 10:37 - 2013-03-13 12:00 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-11-22 10:37 - 2011-04-24 15:51 - 00423784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-11-22 10:37 - 2011-04-24 15:50 - 00787800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-11-22 10:37 - 2011-04-24 15:50 - 00057928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-11-22 10:37 - 2011-04-24 15:50 - 00055240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswrdr.sys
2014-11-18 14:01 - 2013-01-08 13:48 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\DWG
2014-11-18 02:06 - 2011-03-30 09:38 - 00000000 ____D () C:\Program Files\Messenger
2014-11-16 01:18 - 2013-06-19 13:38 - 00000000 ____D () C:\Program Files\PDF Architect
2014-11-16 01:17 - 2013-12-25 00:51 - 00000000 ____D () C:\Program Files\Garmin GPS Plugin
2014-11-14 01:19 - 2011-03-30 11:30 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-11-11 22:02 - 2013-10-17 01:30 - 00000000 ____D () C:\Documents and Settings\uživatel\Data aplikací\Skype
2014-11-05 20:36 - 2012-05-31 11:54 - 00002487 _____ () C:\Documents and Settings\uživatel\Plocha\Microsoft Excel (2).lnk
2014-11-05 16:06 - 2014-08-31 21:37 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\sustruh
2014-11-05 15:56 - 2013-04-22 18:21 - 00000000 _____ () C:\WINDOWS\XXLGSC
2014-11-05 15:56 - 2013-04-22 18:19 - 00005046 _____ () C:\WINDOWS\WTRAN32.INI
2014-11-05 15:29 - 2013-02-16 21:50 - 00000000 ____D () C:\Documents and Settings\uživatel\Dokumenty\datasheet

Files to move or delete:
====================
C:\Documents and Settings\uživatel\TempWmicBatchFile.bat

Some content of TEMP:
====================
C:\Documents and Settings\uživatel\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\uživatel\Local Settings\temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

#6 Příspěvek od **Rudy** » 03 pro 2014 21:38

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
BHO: No Name -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> No File
BHO: No Name -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> No File
Toolbar: HKLM - No Name - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-1343024091-1993962763-1708537768-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
U3 ahjxh6e0; No ImagePath
C:\Documents and Settings\uživatel\TempWmicBatchFile.bat
C:\Documents and Settings\uživatel\Local Settings\temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

jask · #7 Příspěvek od **jask** » 03 pro 2014 21:55

tady je fixlog

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 03-12-2014
Ran by uživatel at 2014-12-03 21:43:58 Run:1
Running from C:\Documents and Settings\uživatel\Plocha
Loaded Profile: uživatel (Available profiles: uživatel & Administrator)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
BHO: No Name -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> No File
BHO: No Name -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> No File
Toolbar: HKLM - No Name - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-1343024091-1993962763-1708537768-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
U3 ahjxh6e0; No ImagePath
C:\Documents and Settings\uživatel\TempWmicBatchFile.bat
C:\Documents and Settings\uživatel\Local Settings\temp
End
*****************

"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => Key deleted successfully.
"HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}" => Key deleted successfully.
"HKCR\CLSID\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}" => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value deleted successfully.
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => Key not found.
HKU\S-1-5-21-1343024091-1993962763-1708537768-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.
"HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => Key not found.
ahjxh6e0 => Service deleted successfully.
C:\Documents and Settings\uživatel\TempWmicBatchFile.bat => Moved successfully.

"C:\Documents and Settings\uživatel\Local Settings\temp" directory move:

Could not move "C:\Documents and Settings\uživatel\Local Settings\temp\IMG89.tmp" => Scheduled to move on reboot.
C:\Documents and Settings\uživatel\Local Settings\temp\Quarantine.exe => Moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp\Report.ico => Moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp\Scan.ico => Moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp\sqlite3.dll => Moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp\STATMSI.log => Moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp\Uninstall.ico => Moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp\Výkres1_1_1_8467.bak => Moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp\~5C.bat => Moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp\~5C.tmp => Moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp\~dsver.dat => Moved successfully.
Could not move "C:\Documents and Settings\uživatel\Local Settings\temp" directory. => Scheduled to move on reboot.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-12-03 21:50:12)<=

C:\Documents and Settings\uživatel\Local Settings\temp\IMG89.tmp => Is moved successfully.
C:\Documents and Settings\uživatel\Local Settings\temp => Moved successfully.

==== End of Fixlog ====

#8 Příspěvek od **Rudy** » 03 pro 2014 22:25

Smazáno. Nastala nějaká změna?

jask · #9 Příspěvek od **jask** » 03 pro 2014 22:33

vypadá to mnohem lépe, i když google chrome pořád čeká "čekání na mezipaměť" ale je to lepší
moc děkuji.

#10 Příspěvek od **Rudy** » 03 pro 2014 22:36

Ještě zkuste defragmntovat disk. Nemáte zač!

VIRY.CZ

kontrola frst

kontrola frst

Re: kontrola frst

Re: kontrola frst

Re: kontrola frst

Re: kontrola frst

Re: kontrola frst

Re: kontrola frst

Re: kontrola frst

Re: kontrola frst

Re: kontrola frst