Vyskakující reklamní stránky v prohlížečích

Zpráva

bohous01 · #1 Příspěvek od **bohous01** » 13 říj 2015 18:11

Zdravím,
prosím o kontrolu logu. V prohlížečích IE a Mozilla prakticky na každé kliknutí vyskakují reklamní stránky v samostatných oknech, v Google Chrome se problém vyskytuje taky, ale méně. Počítač byl bez antiviru, nyní nainstalován Avast Free, který našel desítky infikovaných souborů, ale problémy úplně nevyřešil.

Předem díky
---------------------
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:12-10-2015
Ran by Lenovo (administrator) on NOTEBOOK (13-10-2015 18:50:09)
Running from C:\Users\Lenovo\Desktop
Loaded Profiles: Lenovo (Available Profiles: Lenovo)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(Vimicro) C:\Program Files (x86)\USB Camera2\VM332STI.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-15] (Conexant Systems, Inc.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2013-12-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2013-12-08] (Lenovo(beijing) Limited)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (IvoSoft)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-27] (Synaptics Incorporated)
HKLM-x32\...\Run: [332BigDog] => C:\Program Files (x86)\USB Camera2\VM332STI.EXE [548864 2012-03-21] (Vimicro)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-10-09] (AVAST Software)
HKU\S-1-5-21-3922014775-476238916-793784252-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-09] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (IvoSoft)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-12-08]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{67A7CA02-B3D0-4807-B88F-970D79A082D5}: [NameServer] 199.203.131.145,82.163.143.167
Tcpip\..\Interfaces\{67A7CA02-B3D0-4807-B88F-970D79A082D5}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.gboxapp.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.gboxapp.com/
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKLM-x32 -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.goodforsearch.info/?l=1&q={searchTerms}&pid=2921&r=2015/05/10&hid=11507217868994325399&lg=EN&cc=CZ&unqvl=86
SearchScopes: HKLM-x32 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.goodforsearch.info/?l=1&q={searchTerms}&pid=2921&r=2015/05/10&hid=11507217868994325399&lg=EN&cc=CZ&unqvl=86
SearchScopes: HKU\S-1-5-21-3922014775-476238916-793784252-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-3922014775-476238916-793784252-1001 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.goodforsearch.info/?l=1&q={searchTerms}&pid=2921&r=2015/05/10&hid=11507217868994325399&lg=EN&cc=CZ&unqvl=86
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-09] (AVAST Software)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (IvoSoft)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-09] (AVAST Software)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (IvoSoft)

FireFox:
========
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v12oof3e.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-07-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-07-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-11-11] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v12oof3e.default\searchplugins\WebSearch.xml [2015-05-15]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-10-09]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://websearch.goodforsearch.info/?pid=2921&r=2015/05/10&hid=11507217868994325399&lg=EN&cc=CZ&unqvl=86"
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-09]
CHR Extension: (Disk Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-09]
CHR Extension: (YouTube) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-09]
CHR Extension: (Vyhledávání Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-09]
CHR Extension: (Avast Online Security) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-10-09]
CHR Extension: (AirDroid Notifier) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\imlonnilcaednlloaadgddbjfliioklh [2015-05-10]
CHR Extension: (Peněženka Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-09]
CHR Extension: (Gmail) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-09]
CHR Extension: (UniDeals) - C:\ProgramData\mkphlfdeiohblcdejiboaepapckblfkb\ []
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-10-09]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-09] (AVAST Software)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [959256 2012-11-16] (Broadcom Corporation.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 TrustedInstaller; %SystemRoot%\servicing\TrustedInstaller.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-10-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-10-09] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-09] (AVAST Software)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-13 18:50 - 2015-10-13 18:50 - 00016748 _____ C:\Users\Lenovo\Desktop\FRST.txt
2015-10-13 18:49 - 2015-10-13 18:50 - 00000000 ____D C:\FRST
2015-10-13 18:47 - 2015-10-13 18:47 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Desktop\FRSTLauncher.exe
2015-10-13 18:45 - 2015-10-13 18:45 - 02196480 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe
2015-10-13 18:22 - 2015-10-13 18:22 - 00000000 ____D C:\Users\Lenovo\AppData\Local\TeamViewer
2015-10-13 18:20 - 2015-10-13 18:20 - 00001066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-10-13 18:20 - 2015-10-13 18:20 - 00001054 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-10-13 18:20 - 2015-10-13 18:20 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-10-13 18:19 - 2015-10-13 18:19 - 08206600 _____ (TeamViewer GmbH) C:\Users\Lenovo\Downloads\TeamViewer_Setup_cs (1).exe
2015-10-09 14:37 - 2015-10-09 14:37 - 08206600 _____ (TeamViewer GmbH) C:\Users\Lenovo\Downloads\TeamViewer_Setup_cs.exe
2015-10-09 14:31 - 2015-10-09 14:32 - 00000231 _____ C:\WINDOWS\setupact.log
2015-10-09 14:31 - 2015-10-09 14:31 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-10-09 14:19 - 2015-10-09 14:19 - 00490568 _____ () C:\Users\Lenovo\Downloads\LSBsetup.exe
2015-10-09 11:02 - 2015-10-09 11:02 - 00005564 _____ C:\Users\Lenovo\Documents\cc_20151009_110232.reg
2015-10-09 11:01 - 2015-10-09 11:01 - 00094842 _____ C:\Users\Lenovo\Documents\cc_20151009_110123.reg
2015-10-09 10:57 - 2015-10-09 10:57 - 00002792 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-10-09 10:57 - 2015-10-09 10:57 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-10-09 10:57 - 2015-10-09 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-09 10:57 - 2015-10-09 10:57 - 00000000 ____D C:\Program Files\CCleaner
2015-10-09 10:55 - 2015-10-09 10:55 - 06677440 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup510.exe
2015-10-09 09:41 - 2015-10-09 09:41 - 05693008 _____ (AVAST Software) C:\Users\Lenovo\Downloads\avast_free_antivirus_setup_online (1).exe
2015-10-09 08:31 - 2015-10-09 08:31 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\AVAST Software
2015-10-09 08:30 - 2015-10-09 10:48 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-10-09 08:30 - 2015-10-09 08:30 - 00001949 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-10-09 08:30 - 2015-10-09 08:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-10-09 08:29 - 2015-10-09 08:29 - 01049880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00448968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-10-09 08:29 - 2015-10-09 08:29 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00153744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-10-09 08:29 - 2015-10-09 08:29 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-10-09 08:25 - 2015-10-09 08:25 - 00000000 ____D C:\Program Files\AVAST Software
2015-10-09 08:19 - 2015-10-09 08:19 - 05693008 _____ (AVAST Software) C:\Users\Lenovo\Downloads\avast_free_antivirus_setup_online.exe
2015-09-21 15:51 - 2015-10-09 08:43 - 00000000 ____D C:\Program Files (x86)\DNS Unlocker

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-13 18:49 - 2014-12-20 08:41 - 01918996 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-13 18:44 - 2014-04-09 14:02 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\ClassicShell
2015-10-13 18:33 - 2014-12-21 07:45 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3922014775-476238916-793784252-1001
2015-10-13 18:28 - 2014-04-09 12:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-13 18:27 - 2014-12-26 18:18 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-10-13 18:16 - 2015-02-11 19:03 - 00003974 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9FCC1BAB-1732-4CE9-8121-E7E95D0CE7E8}
2015-10-13 18:15 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-12 06:05 - 2014-09-24 18:23 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-12 06:05 - 2014-09-24 17:39 - 00739924 _____ C:\WINDOWS\system32\perfh005.dat
2015-10-12 06:05 - 2014-09-24 17:39 - 00151610 _____ C:\WINDOWS\system32\perfc005.dat
2015-10-11 22:00 - 2014-12-04 15:58 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-09 14:32 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-09 10:58 - 2014-12-20 08:11 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-09 10:58 - 2014-09-08 12:26 - 00000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2015-10-09 10:45 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-09 10:41 - 2014-04-09 12:54 - 00001146 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-10-09 10:41 - 2014-04-09 12:54 - 00001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-09 09:38 - 2014-04-09 13:55 - 00000000 ____D C:\ProgramData\Norton
2015-10-09 08:48 - 2015-06-07 12:03 - 00000000 ____D C:\Program Files (x86)\Share with Facebook Twitter Google Email
2015-10-09 08:48 - 2015-05-10 10:11 - 00000000 ____D C:\Program Files (x86)\UniDeals
2015-10-09 08:44 - 2015-06-07 12:03 - 00000000 ____D C:\Program Files (x86)\HHAppy2Savee
2015-10-09 08:44 - 2015-06-07 12:03 - 00000000 ____D C:\Program Files (x86)\Happy2Savee
2015-10-09 08:44 - 2015-06-07 12:03 - 00000000 ____D C:\Program Files (x86)\Happy2Saave
2015-10-09 08:43 - 2015-06-13 21:39 - 00000000 ____D C:\Program Files (x86)\Fun2SaavE
2015-10-09 08:43 - 2015-05-18 21:27 - 00000000 ____D C:\Program Files (x86)\DuIgiSavER
2015-10-09 08:43 - 2015-05-18 21:27 - 00000000 ____D C:\Program Files (x86)\DowwnSavE
2015-10-09 08:42 - 2015-05-18 21:28 - 00000000 ____D C:\Program Files (x86)\Best of 3d Football Soccer Games 2013
2015-10-09 08:42 - 2015-05-18 21:27 - 00000000 ____D C:\Program Files (x86)\BitSaaveR
2015-10-09 08:42 - 2015-05-10 10:12 - 00000000 ____D C:\Program Files (x86)\bestadblocker
2015-10-09 08:42 - 2015-05-10 10:12 - 00000000 ____D C:\Program Files (x86)\AirDroid Notifier
2015-10-09 08:33 - 2015-05-10 10:13 - 00000000 ____D C:\Program Files (x86)\AppendEngine
2015-10-09 08:33 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-09 08:33 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-10-09 08:32 - 2015-07-31 12:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2015-10-09 06:06 - 2015-07-05 21:37 - 00000020 _____ C:\Users\Lenovo\AppData\Roaming\appdataFr2.bin
2015-10-08 18:16 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-21 20:01 - 2014-12-04 15:58 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-09-21 20:00 - 2015-07-14 21:00 - 18819272 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2015-09-21 15:51 - 2015-05-10 10:11 - 00000000 ____D C:\ProgramData\14887237305190576793
2015-09-14 21:37 - 2014-12-20 08:25 - 00000000 ____D C:\Users\Lenovo
2015-09-13 09:36 - 2014-04-09 11:53 - 00001129 _____ C:\Users\Lenovo\Desktop\Cyberlink Power2Go.lnk

==================== Files in the root of some directories =======

2015-05-17 12:41 - 2015-05-17 12:41 - 0000079 _____ () C:\Program Files (x86)\prefs.js
2015-07-05 21:37 - 2015-10-09 06:06 - 0000020 _____ () C:\Users\Lenovo\AppData\Roaming\appdataFr2.bin
2015-06-17 22:07 - 2015-07-08 10:51 - 0000024 _____ () C:\Users\Lenovo\AppData\Roaming\appdataFr25.bin
2013-12-08 12:57 - 2013-12-08 12:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-10-09 11:07

==================== End of FRST.txt ============================

#2 Příspěvek od **Rudy** » 13 říj 2015 18:32

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

bohous01 · #3 Příspěvek od **bohous01** » 13 říj 2015 18:58

# AdwCleaner v5.013 - Logfile created 13/10/2015 at 19:52:06
# Updated 09/10/2015 by Xplode
# Database : 2015-10-09.3 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Lenovo - NOTEBOOK
# Running from : C:\Users\Lenovo\Desktop\adwcleaner_5.013.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\bestadblocker
[-] Folder Deleted : C:\Program Files (x86)\DNS Unlocker
[!] Folder Not Deleted : C:\Program Files (x86)\bestadblocker
[-] Folder Deleted : C:\Program Files (x86)\BitSaaveR
[-] Folder Deleted : C:\Program Files (x86)\DowwnSavE
[-] Folder Deleted : C:\Program Files (x86)\DuIgiSavER
[-] Folder Deleted : C:\Program Files (x86)\Fun2SaavE
[-] Folder Deleted : C:\Program Files (x86)\Happy2Saave
[-] Folder Deleted : C:\Program Files (x86)\Happy2Savee
[-] Folder Deleted : C:\Program Files (x86)\HHAppy2Savee
[-] Folder Deleted : C:\Program Files (x86)\UniDeals
[-] Folder Deleted : C:\ProgramData\14887237305190576793
[-] Folder Deleted : C:\ProgramData\mkphlfdeiohblcdejiboaepapckblfkb
[-] Folder Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\imlonnilcaednlloaadgddbjfliioklh

***** [ Files ] *****

[-] File Deleted : C:\Program Files (x86)\mozilla firefox\dbghelp.dll
[-] File Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ogminpmldncgcmokldnmmapddoccmhfl_0.localstorage
[-] File Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_imlonnilcaednlloaadgddbjfliioklh_0.localstorage
[-] File Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] File Deleted : C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v12oof3e.default\searchplugins\WebSearch.xml

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\5da059a482fd494db3f252126fbc3d5b
[-] Key Deleted : HKLM\SOFTWARE\e6930105-2727-1201-cfed-8097261b246e
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{6e922691}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1F831F60-05FB-474D-93A3-42DA68E7EB8F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{40951615-F2E2-4855-9BB0-68F80D247514}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5518881B-BB38-46C7-A27C-024DA02AD167}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{917A80E3-C425-4F5F-B8D3-4804A0CCA924}
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKCU\Software\WEBAPP
[-] Key Deleted : HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
[-] Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Key Deleted : HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
[-] Key Deleted : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
[-] Key Deleted : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Your Software Deals_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E1527582-8509-4011-B922-29E3FB548882}_is1
[!] Key Not Deleted : [x64] HKCU\Software\WEBAPP
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[!] Key Not Deleted : HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
[!] Key Not Deleted : HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[!] Key Not Deleted : HKU\S-1-5-18\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
[!] Key Not Deleted : HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
[-] Data Restored : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{67A7CA02-B3D0-4807-B88F-970D79A082D5} [NameServer]
[-] Data Restored : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{67A7CA02-B3D0-4807-B88F-970D79A082D5} [NameServer]

***** [ Web browsers ] *****

[-] [C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : websearch
[-] [C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://websearch.goodforsearch.info/?pid=2921&r=2015/05/10&hid=11507217868994325399&lg=EN&cc=CZ&unqvl=86
[-] [C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : imlonnilcaednlloaadgddbjfliioklh
[-] [C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mkphlfdeiohblcdejiboaepapckblfkb
[-] [C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ogminpmldncgcmokldnmmapddoccmhfl

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [6742 bytes] ##########

#4 Příspěvek od **Rudy** » 13 říj 2015 19:39

Dejte nový log FRST.

bohous01 · #5 Příspěvek od **bohous01** » 13 říj 2015 19:46

Přikládám 2.log FRST
---
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:12-10-2015
Ran by Lenovo (administrator) on NOTEBOOK (13-10-2015 20:43:27)
Running from C:\Users\Lenovo\Desktop
Loaded Profiles: Lenovo (Available Profiles: Lenovo)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(Vimicro) C:\Program Files (x86)\USB Camera2\VM332STI.EXE
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-15] (Conexant Systems, Inc.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2013-12-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2013-12-08] (Lenovo(beijing) Limited)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (IvoSoft)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-27] (Synaptics Incorporated)
HKLM-x32\...\Run: [332BigDog] => C:\Program Files (x86)\USB Camera2\VM332STI.EXE [548864 2012-03-21] (Vimicro)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-10-09] (AVAST Software)
HKU\S-1-5-21-3922014775-476238916-793784252-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-09] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (IvoSoft)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-12-08]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{67A7CA02-B3D0-4807-B88F-970D79A082D5}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-3922014775-476238916-793784252-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-3922014775-476238916-793784252-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-09] (AVAST Software)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (IvoSoft)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-09] (AVAST Software)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (IvoSoft)

FireFox:
========
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v12oof3e.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-07-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-07-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-11-11] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-10-09]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found

Chrome:
=======
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-09]
CHR Extension: (Disk Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-09]
CHR Extension: (YouTube) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-09]
CHR Extension: (Vyhledávání Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-09]
CHR Extension: (Avast Online Security) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-10-09]
CHR Extension: (Peněženka Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-09]
CHR Extension: (Gmail) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-09]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-10-09]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-09] (AVAST Software)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [959256 2012-11-16] (Broadcom Corporation.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 TrustedInstaller; %SystemRoot%\servicing\TrustedInstaller.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-10-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-10-09] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-09] (AVAST Software)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-13 20:43 - 2015-10-13 20:43 - 00015482 _____ C:\Users\Lenovo\Desktop\FRST.txt
2015-10-13 19:50 - 2015-10-13 20:14 - 00000000 ____D C:\AdwCleaner
2015-10-13 19:47 - 2015-10-13 19:47 - 01682432 _____ C:\Users\Lenovo\Desktop\adwcleaner_5.013.exe
2015-10-13 19:09 - 2015-10-13 19:09 - 00007380 _____ C:\Users\Lenovo\Desktop\Addition.zip
2015-10-13 18:49 - 2015-10-13 20:43 - 00000000 ____D C:\FRST
2015-10-13 18:47 - 2015-10-13 18:47 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Desktop\FRSTLauncher.exe
2015-10-13 18:45 - 2015-10-13 18:45 - 02196480 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe
2015-10-13 18:22 - 2015-10-13 18:22 - 00000000 ____D C:\Users\Lenovo\AppData\Local\TeamViewer
2015-10-13 18:20 - 2015-10-13 20:42 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-10-13 18:20 - 2015-10-13 18:20 - 00001066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-10-13 18:20 - 2015-10-13 18:20 - 00001054 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-10-13 18:19 - 2015-10-13 18:19 - 08206600 _____ (TeamViewer GmbH) C:\Users\Lenovo\Downloads\TeamViewer_Setup_cs (1).exe
2015-10-09 14:37 - 2015-10-09 14:37 - 08206600 _____ (TeamViewer GmbH) C:\Users\Lenovo\Downloads\TeamViewer_Setup_cs.exe
2015-10-09 14:31 - 2015-10-13 19:54 - 00000462 _____ C:\WINDOWS\setupact.log
2015-10-09 14:31 - 2015-10-09 14:31 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-10-09 14:19 - 2015-10-09 14:19 - 00490568 _____ () C:\Users\Lenovo\Downloads\LSBsetup.exe
2015-10-09 11:02 - 2015-10-09 11:02 - 00005564 _____ C:\Users\Lenovo\Documents\cc_20151009_110232.reg
2015-10-09 11:01 - 2015-10-09 11:01 - 00094842 _____ C:\Users\Lenovo\Documents\cc_20151009_110123.reg
2015-10-09 10:57 - 2015-10-09 10:57 - 00002792 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-10-09 10:57 - 2015-10-09 10:57 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-10-09 10:57 - 2015-10-09 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-09 10:57 - 2015-10-09 10:57 - 00000000 ____D C:\Program Files\CCleaner
2015-10-09 10:55 - 2015-10-09 10:55 - 06677440 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup510.exe
2015-10-09 09:41 - 2015-10-09 09:41 - 05693008 _____ (AVAST Software) C:\Users\Lenovo\Downloads\avast_free_antivirus_setup_online (1).exe
2015-10-09 08:31 - 2015-10-09 08:31 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\AVAST Software
2015-10-09 08:30 - 2015-10-09 10:48 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-10-09 08:30 - 2015-10-09 08:30 - 00001949 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-10-09 08:30 - 2015-10-09 08:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-10-09 08:29 - 2015-10-09 08:29 - 01049880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00448968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-10-09 08:29 - 2015-10-09 08:29 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00153744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-10-09 08:29 - 2015-10-09 08:29 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-10-09 08:29 - 2015-10-09 08:29 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-10-09 08:25 - 2015-10-09 08:25 - 00000000 ____D C:\Program Files\AVAST Software
2015-10-09 08:19 - 2015-10-09 08:19 - 05693008 _____ (AVAST Software) C:\Users\Lenovo\Downloads\avast_free_antivirus_setup_online.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-13 20:43 - 2014-12-20 08:41 - 01969764 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-13 20:05 - 2014-12-21 07:45 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3922014775-476238916-793784252-1001
2015-10-13 20:02 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-13 20:00 - 2014-12-04 15:58 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-13 19:54 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-13 19:54 - 2013-08-22 16:44 - 00395936 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-10-13 19:52 - 2015-04-25 07:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-13 19:12 - 2014-04-09 14:02 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\ClassicShell
2015-10-13 18:28 - 2014-04-09 12:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-13 18:27 - 2014-12-26 18:18 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-10-13 18:16 - 2015-02-11 19:03 - 00003974 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9FCC1BAB-1732-4CE9-8121-E7E95D0CE7E8}
2015-10-12 06:05 - 2014-09-24 18:23 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-12 06:05 - 2014-09-24 17:39 - 00739924 _____ C:\WINDOWS\system32\perfh005.dat
2015-10-12 06:05 - 2014-09-24 17:39 - 00151610 _____ C:\WINDOWS\system32\perfc005.dat
2015-10-09 10:58 - 2014-12-20 08:11 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-09 10:58 - 2014-09-08 12:26 - 00000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2015-10-09 10:45 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-09 10:41 - 2014-04-09 12:54 - 00001146 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-10-09 10:41 - 2014-04-09 12:54 - 00001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-09 09:38 - 2014-04-09 13:55 - 00000000 ____D C:\ProgramData\Norton
2015-10-09 08:48 - 2015-06-07 12:03 - 00000000 ____D C:\Program Files (x86)\Share with Facebook Twitter Google Email
2015-10-09 08:42 - 2015-05-18 21:28 - 00000000 ____D C:\Program Files (x86)\Best of 3d Football Soccer Games 2013
2015-10-09 08:42 - 2015-05-10 10:12 - 00000000 ____D C:\Program Files (x86)\AirDroid Notifier
2015-10-09 08:33 - 2015-05-10 10:13 - 00000000 ____D C:\Program Files (x86)\AppendEngine
2015-10-09 08:33 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-09 08:33 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-10-09 08:32 - 2015-07-31 12:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2015-10-09 06:06 - 2015-07-05 21:37 - 00000020 _____ C:\Users\Lenovo\AppData\Roaming\appdataFr2.bin
2015-10-08 18:16 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-21 20:01 - 2014-12-04 15:58 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-09-21 20:00 - 2015-07-14 21:00 - 18819272 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2015-09-14 21:37 - 2014-12-20 08:25 - 00000000 ____D C:\Users\Lenovo
2015-09-13 09:36 - 2014-04-09 11:53 - 00001129 _____ C:\Users\Lenovo\Desktop\Cyberlink Power2Go.lnk

==================== Files in the root of some directories =======

2015-05-17 12:41 - 2015-05-17 12:41 - 0000079 _____ () C:\Program Files (x86)\prefs.js
2015-07-05 21:37 - 2015-10-09 06:06 - 0000020 _____ () C:\Users\Lenovo\AppData\Roaming\appdataFr2.bin
2015-06-17 22:07 - 2015-07-08 10:51 - 0000024 _____ () C:\Users\Lenovo\AppData\Roaming\appdataFr25.bin
2013-12-08 12:57 - 2013-12-08 12:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Lenovo\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-10-13 20:05

==================== End of FRST.txt ============================

#6 Příspěvek od **Rudy** » 13 říj 2015 19:50

Otevřte poznámkový blok a zkopírujte do něj:

Start
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
C:\ProgramData\DP45977C.lfl
C:\Users\Lenovo\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

bohous01 · #7 Příspěvek od **bohous01** » 13 říj 2015 19:54

Fix result of Farbar Recovery Scan Tool (x64) Version:12-10-2015
Ran by Lenovo (2015-10-13 20:53:36) Run:1
Running from C:\Users\Lenovo\Desktop
Loaded Profiles: Lenovo (Available Profiles: Lenovo)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
C:\ProgramData\DP45977C.lfl
C:\Users\Lenovo\AppData\Local\Temp
End
*****************

"HKLM\SOFTWARE\Policies\Google" => key removed successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\Users\Lenovo\AppData\Local\Temp => moved successfully

==== End of Fixlog 20:53:37 ====

#8 Příspěvek od **Rudy** » 13 říj 2015 20:43

Smazáno. Nastala nějaká změna?

bohous01 · #9 Příspěvek od **bohous01** » 13 říj 2015 21:00

Chrome a Mozilla se zdají OK, ale IE blbne dál. PC jsem před zkouškou restartorval

#10 Příspěvek od **Rudy** » 13 říj 2015 21:39

Ještě zkuste spustit toto:

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

bohous01 · #11 Příspěvek od **bohous01** » 14 říj 2015 11:23

Zoek.exe v5.0.0.1 Updated 13-October-2015
Tool run by Lenovo on st 14. 10. 2015 at 10:43:36,00.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Lenovo\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

14. 10. 2015 10:45:55 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\AppendEngine deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Users\Lenovo\AppData\Local\CrashDumps deleted successfully
C:\Users\Lenovo\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Lenovo\AppData\Local\EmieSiteList deleted successfully
C:\Users\Lenovo\AppData\Local\EmieUserList deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TrustedInstaller deleted successfully

==== FireFox Fix ======================

Deleted from C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v12oof3e.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz/");

Added to C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v12oof3e.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v12oof3e.default

user.js not found
---- Lines extensions.31q1DdeXGu1VOz14 removed from prefs.js ----
user_pref("extensions.31q1DdeXGu1VOz14.epoch", "1");
user_pref("extensions.31q1DdeXGu1VOz14.scode", "void(0);");
user_pref("extensions.31q1DdeXGu1VOz14.url", "http://groupsuperset.info/sync/?q=C6qUo ... qjr4pihGhe
---- Lines extensions.UNes2XnBw91IpYqA removed from prefs.js ----
user_pref("extensions.UNes2XnBw91IpYqA.epoch", "1");
user_pref("extensions.UNes2XnBw91IpYqA.scode", "void(0);");
user_pref("extensions.UNes2XnBw91IpYqA.url", "http://veterant.info/sync/?q=C6qUojw8rT ... ihGheDUojw
---- Lines extensions.hGn4m4EgfFjoxAJF removed from prefs.js ----
user_pref("extensions.hGn4m4EgfFjoxAJF.epoch", "1");
user_pref("extensions.hGn4m4EgfFjoxAJF.scode", "void(0);");
user_pref("extensions.hGn4m4EgfFjoxAJF.url", "http://veterance.info/sync/?q=C6qUojw8r ... pihGheDUoj
---- Lines extensions.kQphkhtAXm0Uok8J removed from prefs.js ----
user_pref("extensions.kQphkhtAXm0Uok8J.epoch", "1");
user_pref("extensions.kQphkhtAXm0Uok8J.scode", "void(0);");
user_pref("extensions.kQphkhtAXm0Uok8J.url", "http://softwareziip.info/sync/?q=C6qUoj ... jr4pihGheD
---- FireFox user.js and prefs.js backups ----

prefs_201514.10._1114_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\AppendEngine not found
C:\PROGRA~2\AirDroid Notifier deleted
C:\PROGRA~2\Best of 3d Football Soccer Games 2013 deleted
C:\PROGRA~2\Giddy Green deleted
C:\PROGRA~2\Share with Facebook Twitter Google Email deleted
C:\windows\SysNative\Tasks\OFFICE2013ACT deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
"C:\WINDOWS\Syswow64\Windows.Media.MediaControl.dll" not deleted
"C:\WINDOWS\Syswow64\Windows.Media.Streaming.ps.dll" not deleted
"C:\WINDOWS\Syswow64\Windows.Networking.Connectivity.dll" not deleted
"C:\WINDOWS\Syswow64\Windows.UI.Immersive.dll" not deleted
"C:\WINDOWS\Syswow64\Windows.UI.Input.Inking.dll" not deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v12oof3e.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [09. 10. 2015 08:29]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v12oof3e.default
1A62BB86D17B8DC0D4339BACC8D60635 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll - Shockwave Flash

==== Chromium Look ======================

Google Chrome Version: 44.0.2403.155

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx[09. 10. 2015 08:29]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[09. 10. 2015 08:29]

Avast Online Security - Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Chromium Fix ======================

C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{97A790CF-1845-4BAA-A97A-551DA4916D7D}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"
{407202DE-33FB-44F7-B6D2-5937CD2D4F7B} Google Url="http://www.google.com/search?q={searchT ... f8&oe=utf8"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={sear"
{97A790CF-1845-4BAA-A97A-551DA4916D7D} Bing Url="http://www.bing.com/search?q={searchTer ... &pc=MALNJS"

==== Reset Google Chrome ======================

C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lenovo\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Lenovo\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Lenovo\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Lenovo\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Lenovo\AppData\Local\Mozilla\Firefox\Profiles\v12oof3e.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=16 folders=4 2536325 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Lenovo\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Lenovo\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\WINDOWS\Syswow64\Windows.Media.MediaControl.dll" not deleted
"C:\WINDOWS\Syswow64\Windows.Media.Streaming.ps.dll" not deleted
"C:\WINDOWS\Syswow64\Windows.Networking.Connectivity.dll" not deleted
"C:\WINDOWS\Syswow64\Windows.UI.Immersive.dll" not deleted
"C:\WINDOWS\Syswow64\Windows.UI.Input.Inking.dll" not deleted

==== EOF on st 14. 10. 2015 at 12:14:04,93 ======================

#12 Příspěvek od **Rudy** » 14 říj 2015 16:55

Zoek smazal, co mohl. Nastala nějaká změna?

bohous01 · #13 Příspěvek od **bohous01** » 14 říj 2015 19:33

Bohužel nenastala, v IE stále vyskakují na každé kliknutí reklamní stránky. Zase mám ale přehled o možnostech přivydělání, výhry v milionářských loteriích nebo o letákových akcích.

#14 Příspěvek od **Rudy** » 14 říj 2015 20:22

Zkuste IE přeinstalovat.

bohous01 · #15 Příspěvek od **bohous01** » 16 říj 2015 06:36

IE nejde odinstalovat, jde jenom vypnout jako funkce systému Windows, ne ale v tomto počítači. Tady se při spuštění "Zapnout nebo vypnout součásti Windows" objeví jen bílé okno bez možnosti něco nastavit.
Problém ale asi bude jinde, vyskakující okna s reklamou se vrátili i do Mozilly a do Google Chrome.

VIRY.CZ

Vyskakující reklamní stránky v prohlížečích

Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích

Re: Vyskakující reklamní stránky v prohlížečích