Nezobrazují se ikonky default. prohlížeče u *.htm a *.html »

[cernohous13]

Stáhneš a nainstaluješ Unlocker z odkazu zde: http://www.brothersoft.com/download-unl ... 08761.html

V Prohlížeči vyhledáš soubor, který potřebuješ smazat a klikneš na něj pravým myšítkem.
Vyskočí kontextová nabídka a bude v ní i Unlocker

Unlocker.png (12.6 KiB) Zobrazeno 3063 x

Otevře se okno a vlevo dole bude rozbalovací nabídka akcí - vybereš "Smazat" a dáš "OK"

[Agolas]

Děkuji za vysvětlení .

[cernohous13]

Tak se ti to podařilo - nebo je ještě nějaký problém?

[Agolas]

Ano děkuji za všechno vymzal jsem si co bylo potřeba.Ale vždycky každý den se mi asi 5x zasekne PC a 2 minuty sním nemůžu nic dělat , to asi přetěžiji CPU nebo ne ?

[cernohous13]

Udělej ještě scan MBAM

Stáhni a nainstaluj MBAM zde http://www.download.com/Malwarebytes-An ... tag=button
Spustit > na 3.záložce "Aktualizace" > Kontrola aktualizací
následně na 1.záložce "Skener" > Provést rychlý sken > Skenovat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení

[Agolas]

Mě tato stránka furt navádí na program TechTracker mám ho stahnout ?

[cernohous13]

Koukni sem: http://www.slunecnice.cz/sw/malwarebytes-anti-malware/

[Agolas]

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4052

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

17.9.2010 21:32:13
mbam-log-2010-09-17 (21-32-13).txt

Typ skenu: Rychlý sken
Skenované objekty: 115022
Uplynulý čas: 16 minuta(y), 21 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[cernohous13]

Malware škůdci by tam být nemuseli.

Problém se zamrzáním může způsobovat toto:

System drive C: has 6 GB (6%) free of 100 GB
Total RAM: 1024 MB (41% free)
C:\Windows\system32\dfrgui.exe

- málo volné RAM (1G na Win7 není žádná sláva)
- málo volného místa na disku a spuštěná defragmentace
- různé updaty

[SDP] c:\program files\facesmooch toolbar\update_checker.exe
[Google Update] "c:\users\hnizdil\appdata\local\google\update\googleupdate.exe" /c

[Agolas]

dfrgui.exe mám vymzat avengerem ? nebo co mám dělet dál?

[cernohous13]

Mazat se nebude, jen se nebude automaticky spouštět.

Dej aktuální RSIT log

[Agolas]

Logfile of random's system information tool 1.08 (written by random/random)
Run by hnizdil at 2010-09-19 13:40:53
Microsoft Windows 7 Home Premium
System drive C: has 8 GB (8%) free of 100 GB
Total RAM: 1024 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:41:12, on 19.9.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\FaceSmooch Toolbar\update_checker.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\hnizdil\Downloads\RSIT.exe
C:\Program Files\trend micro\hnizdil.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/?pc=AVBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/facesmooch/{0 ... 4FCDB5FC3A}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/facesmooch/{0 ... 4FCDB5FC3A}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ssm&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files\FaceSmooch Toolbar\tbhelper.dll
O2 - BHO: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.8.1\bh\facemoods.dll (file missing)
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\FaceSmooch Toolbar\tbcore3.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.8.1\facemoodsTlbr.dll (file missing)
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: FaceSmooch Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\FaceSmooch Toolbar\tbcore3.dll
O3 - Toolbar: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SDP] c:\program files\facesmooch toolbar\update_checker.exe
O4 - HKLM\..\Run: [facemoods] "c:\program files\facemoods.com\facemoods\1.4.8.1\facemoodssrv.exe" /md i
O4 - HKLM\..\Run: [EEventManager] c:\progra~1\epsons~1\eventm~1\eeventmanager.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKCU\..\Run: [ICQ] "c:\program files\icq7.2\icq.exe" silent loginmode=4
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [EPSON SX110 Series] c:\windows\system32\spool\drivers\w32x86\3\e_fatifbe.exe /fu "c:\windows\temp\e_seb5d.tmp" /ef "hkcu"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "c:\users\hnizdil\appdata\local\google\update\googleupdate.exe" /c
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 6103 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-886626186-4199107485-4221113157-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-886626186-4199107485-4221113157-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
QuickStores-Toolbar - C:\Windows\system32\mscoree.dll [2009-11-25 297808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files\facemoods.com\facemoods\1.4.8.1\bh\facemoods.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
SMTTB2009 Class - C:\Program Files\FaceSmooch Toolbar\tbcore3.dll [2010-02-16 2495488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files\facemoods.com\facemoods\1.4.8.1\facemoodsTlbr.dll []
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-03-28 1017592]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{338B4DFE-2E2C-4338-9E41-E176D497299E} - FaceSmooch Toolbar - C:\Program Files\FaceSmooch Toolbar\tbcore3.dll [2010-02-16 2495488]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - QuickStores-Toolbar - C:\Windows\system32\mscoree.dll [2009-11-25 297808]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=c:\program files\eset\eset smart security\egui.exe [2009-11-16 2054360]
"SDP"=c:\program files\facesmooch toolbar\update_checker.exe [2010-06-27 131584]
"facemoods"=c:\program files\facemoods.com\facemoods\1.4.8.1\facemoodssrv.exe /md i []
"EEventManager"=c:\progra~1\epsons~1\eventm~1\eeventmanager.exe [2008-12-04 665424]
"UnlockerAssistant"=C:\Program Files\Unlocker\UnlockerAssistant.exe [2010-07-04 17408]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ICQ"=c:\program files\icq7.2\icq.exe [2010-08-22 133432]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"EPSON SX110 Series"=c:\windows\system32\spool\drivers\w32x86\3\e_fatifbe.exe [2008-09-27 199680]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
"Google Update"=c:\users\hnizdil\appdata\local\google\update\googleupdate.exe [2010-07-25 136176]
"Steam"=C:\Program Files\Steam\Steam.exe -silent []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-09-19 13:40:53 ----D---- C:\rsit
2010-09-17 21:14:54 ----A---- C:\mbam-error.txt
2010-09-17 21:09:31 ----D---- C:\Users\hnizdil\AppData\Roaming\Malwarebytes
2010-09-17 21:09:03 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2010-09-17 21:08:56 ----D---- C:\ProgramData\Malwarebytes
2010-09-17 21:08:55 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-09-17 21:08:55 ----A---- C:\Windows\system32\drivers\mbam.sys
2010-09-17 16:46:55 ----D---- C:\Program Files\Common Files\Steam
2010-09-16 19:36:40 ----D---- C:\Program Files\Unlocker
2010-09-16 19:35:39 ----D---- C:\Users\hnizdil\AppData\Roaming\QuickStoresToolbar
2010-09-15 23:14:30 ----A---- C:\Windows\system32\iertutil.dll
2010-09-15 10:39:34 ----A---- C:\Windows\system32\spoolsv.exe
2010-09-13 21:06:43 ----D---- C:\Avenger
2010-09-13 16:30:52 ----D---- C:\ProgramData\XoftSpySE
2010-09-12 18:27:41 ----D---- C:\Program Files\FaceSmooch Toolbar
2010-09-03 21:15:31 ----D---- C:\Program Files\CCleaner
2010-09-01 19:34:05 ----D---- C:\Program Files\trend micro
2010-08-25 07:25:59 ----A---- C:\Windows\system32\oleaut32.dll
2010-08-24 19:20:41 ----D---- C:\ProgramData\Blizzard Entertainment.temp
2010-08-24 19:20:41 ----D---- C:\Program Files\Common Files\Blizzard Entertainment.temp
2010-08-22 12:55:09 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 months======

2010-09-19 13:41:12 ----D---- C:\Windows\Temp
2010-09-19 13:41:05 ----D---- C:\Windows\Prefetch
2010-09-19 13:34:12 ----D---- C:\Windows\system32\config
2010-09-18 09:42:52 ----D---- C:\Windows\System32
2010-09-18 09:42:51 ----D---- C:\Windows
2010-09-18 09:42:50 ----D---- C:\Windows\system32\drivers
2010-09-18 09:02:34 ----D---- C:\Program Files\Mozilla Firefox
2010-09-18 00:21:28 ----RD---- C:\Program Files
2010-09-17 21:33:32 ----D---- C:\Windows\inf
2010-09-17 21:33:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-09-17 21:08:56 ----HD---- C:\ProgramData
2010-09-17 16:47:03 ----SHD---- C:\Windows\Installer
2010-09-17 16:46:55 ----D---- C:\Program Files\Common Files
2010-09-17 16:46:14 ----SHD---- C:\System Volume Information
2010-09-16 22:42:45 ----D---- C:\Windows\debug
2010-09-16 19:35:40 ----RSD---- C:\Windows\assembly
2010-09-16 13:35:10 ----D---- C:\Windows\system32\Tasks
2010-09-16 10:28:34 ----D---- C:\Windows\winsxs
2010-09-15 23:14:43 ----A---- C:\Windows\system32\MRT.exe
2010-09-15 23:14:35 ----D---- C:\Windows\system32\catroot
2010-09-15 21:54:12 ----D---- C:\Program Files\EA Sports
2010-09-14 18:19:23 ----D---- C:\Windows\Tasks
2010-09-14 16:14:54 ----HD---- C:\Program Files\InstallShield Installation Information
2010-09-14 15:38:46 ----D---- C:\Windows\system32\catroot2
2010-09-08 18:11:24 ----SD---- C:\Users\hnizdil\AppData\Roaming\Microsoft
2010-09-04 18:53:25 ----D---- C:\Users\hnizdil\AppData\Roaming\ICQ
2010-09-01 15:17:42 ----D---- C:\Windows\LiveKernelReports
2010-08-27 11:21:32 ----D---- C:\Windows\system32\NDF
2010-08-27 11:04:15 ----D---- C:\Users\hnizdil\AppData\Roaming\uTorrent
2010-08-27 07:58:18 ----D---- C:\Program Files\ICQ7.2
2010-08-25 22:14:31 ----D---- C:\Windows\AppPatch
2010-08-23 08:01:46 ----D---- C:\Windows\Downloaded Program Files
2010-08-20 09:12:16 ----D---- C:\ProgramData\Electronic Arts

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-08-06 691696]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-11-16 116520]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-11-16 135048]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-11-16 38240]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-14 4194816]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2009-06-19 33096]
R3 KMWDFILTERx86;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 25088]
R3 P17;SB Live! 24-bit; C:\Windows\system32\drivers\P17.sys [2007-02-05 1122304]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2009-07-14 43008]
S3 a4ipto2c;a4ipto2c; C:\Windows\system32\drivers\a4ipto2c.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 EagleXNt;EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys []
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-11-16 735960]
R2 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [2007-12-17 143872]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-03-28 246520]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-11-16 20680]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2010-09-17 411432]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-25 1343400]

-----------------EOF-----------------

[cernohous13]

Trváš na těchto ptákovinách nebo je můžeme odstranit?
C:\Program Files\FaceSmooch Toolbar
C:\Program Files\facemoods.com

Podle tvého rozhodnutí připravím další postup

[Agolas]

Můžeme je odstranit

[cernohous13]

Spusť program C:\Program Files\trend micro\hnizdil.exe
klik Do a system scan only
ve vytvořeném logu dej fajfku do čtverečků před následující řádky:

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/facesmooch/{0 ... 4FCDB5FC3A}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/facesmooch/{0 ... 4FCDB5FC3A}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ssm&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

klik na FixChecked -> OK
-----------------------------------------------------------------

Stáhni OTM z odkazu a rozbal nejlépe na plochu.
http://oldtimer.geekstogo.com/OTM.exe
http://www.itxassociates.com/OT-Tools/OTM.exe

Spusť program „OTM.exe“ (pro Vistu/Win7 – pravým a „Run As Administrator“).
Do okna pod žlutou čáru vlož celý text zeleným písmem ze „Scriptu“

Klikni na červené „Moveit!“
Do své odpovědi vlož obsah zeleného okna
Při nabídce restartu „YES“
a log potom najdeš v C:\_OTM\MovedFiles\

OTM script

Kód: Vybrat vše

:Processes
explorer.exe

:Files
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-886626186-4199107485-4221113157-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-886626186-4199107485-4221113157-1000UA.job
C:\Program Files\FaceSmooch Toolbar
C:\Program Files\facemoods.com
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s

:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{855F3B16-6D32-4fe6-8A56-BBB695989046}"=-
"{CA3EB689-8F09-4026-AA10-B9534C691CE0}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{DB4E9724-F518-4dfd-9C7C-78B52103CAB9}"=-
"{855F3B16-6D32-4FE6-8A56-BBB695989046}"=-
"{32099AAC-C132-4136-9E9A-4E364A424E17}"=-
"{338B4DFE-2E2C-4338-9E41-E176D497299E}"=-
"{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SDP"=-
"facemoods"=-
"UnlockerAssistant"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
"Google Update"=-
"Steam"=-

:Commands
[PURITY]
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[REBOOT]

---------------------------------------------------------

Stáhni TempFolderCleaner http://www.itxassociates.com/OT-Tools/TFC.exe
Zavři všechny programy a spusť. Po ukončení akce bude PC restartován.
Pokud ne, restartuj sám.
(čistí Temp složky , nečistí URL, historii, prefetch ani cookies)

-----------------------------------------------------------
stáhni program OTC tady: http://oldtimer.geekstogo.com/OTC.exe - spusť ho -> "CleanUp" (smaže dříve použité čističe)
-----------------------------------------------------------
Mohu doporučit kontrolu a vyčištění Ccleanerem

Stáhni Ccleaner - http://www.slunecnice.cz/sw/ccleaner/
Při instalaci vyhodit fajfku u "Instalovat Yahoo! Toolbar"

zavřít Internetový prohlížeč a
spustit "Čistič" > "Spustit Ccleaner" - odstraní nepotřebné
spustit "Registry" > "Hledej problémy" > "Opravit vybrané problémy"
souhlas se zálohou registrů - opakovat dokud nebudou registry čisté.
Návod:http://jnp.zive.cz/Clanky/Prirucka-do-k ... fault.aspx

Ten si můžeš nechat i na budoucí občasné čištění.
------------------------------------------
nový RSIT