Opakující se zobrazování ruských stránek

Zpráva

Kanarek · #31 Příspěvek od **Kanarek** » 03 lis 2014 20:38

Velikost 65 646 448 640 bajtů

Před ukončením oprav vyskočilo upozornění:
C:\Windows\Task\GoogleUpdateTaskMachineCore.job
K souboru není přidružen program, který by mohl tuto akci provést. Nainstalujte potřebný program, pokud je již nainstalovaný, vytvořte přidružení pomocí ovládacího panelu Výchozí programy.

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: All Users

User: Beny
->Temp folder emptied: 965960 bytes
->Temporary Internet Files folder emptied: 35335548 bytes
->Google Chrome cache emptied: 7545935 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 3225 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes

User: HomeGroupUser$
->Temp folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 10001425 bytes
RecycleBin emptied: 48640 bytes

Total Files Cleaned = 51,00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Beny
->Flash cache emptied: 0 bytes

User: Default

User: Default User

User: Guest

User: HomeGroupUser$

User: Public

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
< C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c >
C:\Users\Beny\Desktop\cmd.bat deleted successfully.
C:\Users\Beny\Desktop\cmd.txt deleted successfully.
Invalid Switch: installsource scheduler
C:\Windows\zoek-delete.exe moved successfully.
C:\zoek_backup\C_Users_Beny_AppData_Roaming_vlc folder moved successfully.
C:\zoek_backup\C_Users_Beny_AppData_Local_cache\hb\imgs folder moved successfully.
C:\zoek_backup\C_Users_Beny_AppData_Local_cache\hb folder moved successfully.
C:\zoek_backup\C_Users_Beny_AppData_Local_cache folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}v12.0.21005\packages\vcRuntimeAdditional_x86 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}v12.0.21005\packages folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}v12.0.21005 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{D3B98B1B-A286-49A0-A1D9-E4D3B93E6670}v2.3.4 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{ce085a78-074e-4823-8dc1-8a721b94b76d} folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{BF133B81-EEE5-4751-8F64-9BC8E42708A7}v3.2.9.0 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{aece03a3-686f-4b3c-9931-9dafb71829b7} folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{AA2A50EB-24BA-49C4-ACAA-73BFF91F9D7E}v3.2.9.0 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{1B54E2F7-0396-478A-8868-267922A98854}v3.2.9.0 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}v12.0.21005\packages\vcRuntimeMinimum_x86 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}v12.0.21005\packages folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}v12.0.21005 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\E15AD80FC74277EF2048312E9A71AF56B2EBA622\redist folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\E15AD80FC74277EF2048312E9A71AF56B2EBA622 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache\50FF9D096590CF3B3381BEEC17A070EE067D4835 folder moved successfully.
C:\zoek_backup\C_PROGRA~2_Package Cache folder moved successfully.
C:\zoek_backup folder moved successfully.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-1424593332-1298421875-114481279-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Users\Beny\Desktop\~WRL0004.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL0068.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL0203.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL1099.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL1398.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL1457.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL1882.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL2978.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL3041.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL3247.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL3375.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL3535.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL3630.tmp deleted successfully.
C:\Users\Beny\Desktop\~WRL3676.tmp deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP35B3.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3D6.tmp\AspNetMMCExt.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3D6.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4829.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP7C7F.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9C6D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9EB4.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPB931.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF21.tmp folder deleted successfully.
C:\Windows\Installer\MSI40D1.tmp- folder deleted successfully.
C:\Windows\Installer\MSI488E.tmp- folder deleted successfully.
C:\Windows\Installer\MSI4B5.tmp- folder deleted successfully.
C:\Windows\Installer\MSI536C.tmp- folder deleted successfully.
C:\Windows\Installer\MSI5CFF.tmp- folder deleted successfully.
C:\Windows\Installer\MSI7876.tmp- folder deleted successfully.
C:\Windows\Installer\MSI7FB7.tmp- folder deleted successfully.
C:\Windows\Installer\MSI8770.tmp- folder deleted successfully.
C:\Windows\Installer\MSI8E9A.tmp- folder deleted successfully.
C:\Windows\Installer\MSI9476.tmp- folder deleted successfully.
C:\Windows\Installer\MSIA1B6.tmp- folder deleted successfully.
C:\Windows\Installer\MSICD91.tmp- folder deleted successfully.
C:\Windows\Installer\MSID649.tmp- folder deleted successfully.
C:\Windows\Installer\MSIF94F.tmp- folder deleted successfully.
File move failed. \Users\Beny\Desktop\Veřejné složky\Jára\ZoneAlarm Pro 8.0.400.020\keygen.rar scheduled to be moved on reboot.
File move failed. \Users\Beny\Desktop\Veřejné složky\Jára\ZoneAlarm Pro 8.0.400.020\keygen\keygen.exe scheduled to be moved on reboot.
\Users\Beny\AppData\Roaming\Opera Software\Opera Stable\1D6C.tmp deleted successfully.
\Users\Beny\AppData\Roaming\Opera Software\Opera Stable\944D.tmp deleted successfully.
\Users\Beny\AppData\Roaming\Opera Software\Opera Stable\CE77.tmp deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Beny^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk\ deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 11032014_202408

Files\Folders moved on Reboot...
File\Folder C:\Users\Beny\AppData\Local\Temp\etilqs_Cfyo4BwGJmYymTc not found!
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. \Users\Beny\Desktop\Veřejné složky\Jára\ZoneAlarm Pro 8.0.400.020\keygen.rar scheduled to be moved on reboot.
File move failed. \Users\Beny\Desktop\Veřejné složky\Jára\ZoneAlarm Pro 8.0.400.020\keygen\keygen.exe scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

#32 Příspěvek od **Márty84** » 03 lis 2014 21:27

Najdete a smazte tyto dva soubory
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

Kanarek píše:Velikost 65 646 448 640 bajtů

Velikost plochy by nemela preshovat 200 - 300 MB! Brzdi to chod pc. Cili ji trosku uklidte a na plochu dejte jen zastupce. Jen pozor na obcasnou chybu, ze uzivatele maji na plose slozku, v ni dalsi a v ni dalsi a do te to schovaji. To je sice hezke, ale plochu to nezmensi, jen je to v jinem supliku

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat.

vyosek píše: T-Cleaner http://tharifas.sweb.cz/T-Cleaner.exe
Stahnete a spustte

Pro potvrzeni volby mackejte A, Enter

Po pouziti utilitu smazte

Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak je na tom pc.

Kanarek · #33 Příspěvek od **Kanarek** » 04 lis 2014 20:59

Velikost plochy vyřešena. Měl jsem na ni složku, do které jsem cpal téměř všechno.

Vše ostatní také provedeno, takže to budu chvíli sledovat a dám vědět.

PS: tak je to tam někde stále. Zdá se mi ale, že nehledě na co kliknu, vybíhá balík stránek. Stále se opakují ty samé.

#34 Příspěvek od **Márty84** » 05 lis 2014 09:21

Zkuste, zda to dela i v nouzovem rezimu s praci v siti.

Kanarek · #35 Příspěvek od **Kanarek** » 18 lis 2014 16:37

Zkouším se dostat do nouzového režimu, ale nedaří se. Při zapnutí počítače mačkám F8, ale zobrazí se mi pouze bootovací menu a ne nabídka s výběrem možností spuštění počítače. Externí HDD jsem od počítače odpojil.

#36 Příspěvek od **cernohous13** » 18 lis 2014 17:09

Zdravím, a než se kolega vrátí z trasy vyzkoušej
v bootmenu označ HD/oddíl kde máš systém -> Enter
a ihned znovu F8
já

#37 Příspěvek od **Márty84** » 18 lis 2014 20:53

Pripadne tady bez mackani http://forum.viry.cz/viewtopic.php?f=46&t=7554

Kanarek · #38 Příspěvek od **Kanarek** » 18 lis 2014 21:44

Tak se zdá, že v nouzovém režimu nežádoucí okna nevyskakují.

#39 Příspěvek od **Márty84** » 18 lis 2014 21:55

Postupujte podle navodu kolegy

vyosek píše: Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/
Ulozte nejlepe na Plochu a rozbalte

Spustte kliknutim na mbar

Nyni postupne kliknete na Next a Update

Po dokonceni update (aktualizace) databaze kliknete opet na Next

Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC

Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko

Tez zkontrolujte, jetsli je zatrzitko u Create Restore point

Nyni kliknete na CleanUp cimz nalezenou infekci odstranime

PC bude restartovan

Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte

Kanarek · #40 Příspěvek od **Kanarek** » 18 lis 2014 22:20

Nebylo nalezeno nic, log tedy není.

Možná se zkusím zeptat ještě k přeinstalování prohlížeče. Mám zkusit vymazat i všechny oblíbené stránky a tak? Napadlo mě, zda není problém v něčem co mám v oblíbených, ale zase dělo se to i v Chromu, kde nemám nic (žádné oblíbené), tak to nejspíše nesouvisí.
Možná ještě detailněji popíši, jak se problém projevuje. Dnes se např stalo: otevřu viry.cz, najedu myší na odkaz Forum, kliknu a otevře se mi nové okno s nějakou tou nevyžádanou stránkou a samotný odkaz jakoby nefungoval. Musím přejít zpět do okna s otevřenou stránkou viry.cz a kliknout na odkaz Forum znovu.

#41 Příspěvek od **Márty84** » 19 lis 2014 05:19

Postupujte podle tohoto navodu a dejte log http://forum.viry.cz/viewtopic.php?f=13&t=133100

Kanarek · #42 Příspěvek od **Kanarek** » 19 lis 2014 11:31

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-11-2014
Ran by Beny (administrator) on BENY-PC on 19-11-2014 11:22:22
Running from C:\Users\Beny\Desktop
Loaded Profile: Beny (Available profiles: Beny & UpdatusUser)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(BitTorrent Inc.) C:\Users\Beny\AppData\Roaming\uTorrent\uTorrent.exe
(Syntek Ltd.) C:\Windows\STK03N\STK03NM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
() C:\Program Files\Opera\25.0.1614.71\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(Opera Software) C:\Program Files\Opera\25.0.1614.71\opera.exe
(forum.viry.cz) C:\Users\Beny\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5223016 2014-10-31] (AVAST Software)
HKU\S-1-5-21-1424593332-1298421875-114481279-1000\...\Run: [uTorrent] => C:\Users\Beny\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-10-30] (BitTorrent Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\STK03N PNP Monitor.lnk
ShortcutTarget: STK03N PNP Monitor.lnk -> C:\Windows\STK03N\STK03NM.exe (Syntek Ltd.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1424593332-1298421875-114481279-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1424593332-1298421875-114481279-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1424593332-1298421875-114481279-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 217.195.165.131 217.195.160.10

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1424593332-1298421875-114481279-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Beny\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-30]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-02]
CHR Extension: (Dokumenty Google) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-17]
CHR Extension: (Disk Google) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-17]
CHR Extension: (YouTube) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-22]
CHR Extension: (Vyhledávání Google) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-22]
CHR Extension: (Avast SafePrice) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-11-12]
CHR Extension: (Tabulky Google) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-02]
CHR Extension: (Avast Online Security) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-11-02]
CHR Extension: (Everysale.Net) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iapdadaeaebaoigieglfababneoaifnf [2014-07-24]
CHR Extension: (Peněženka Google) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-31]
CHR Extension: (Gmail) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-22]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2014-10-30]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-30]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2012-12-01] (Adobe Systems) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-30] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3192344 2014-10-30] (Avast Software)
S2 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [437080 2014-07-01] (Garmin Ltd or its subsidiaries)
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-05-14] ()

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-10-30] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [70384 2014-10-31] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-10-30] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-10-30] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787800 2014-10-31] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422760 2014-10-30] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [91496 2014-10-30] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [206248 2014-10-30] ()
S3 DCamUSBSTK03N; C:\Windows\System32\DRIVERS\STK03NW2.sys [108544 2009-12-18] (Syntek Ltd.)
S3 DFX11_1; C:\Windows\System32\drivers\dfx11_1.sys [24424 2012-12-13] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-11-27] (DT Soft Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2012-12-13] (Apple, Inc.) [File not signed]
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [218192 2014-10-30] (Avast Software)
S3 XFDriver; C:\Program Files\Xfire2\XFDriver.sys [16648 2013-03-14] (XFire)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-19 11:22 - 2014-11-19 11:22 - 00011449 _____ () C:\Users\Beny\Desktop\FRST.txt
2014-11-19 11:20 - 2014-11-19 11:20 - 00112640 _____ (forum.viry.cz) C:\Users\Beny\Desktop\FRSTLauncher.exe
2014-11-19 11:19 - 2014-11-19 11:22 - 00000000 ____D () C:\FRST
2014-11-19 11:18 - 2014-11-19 11:19 - 01108992 _____ (Farbar) C:\Users\Beny\Desktop\FRST.exe
2014-11-19 11:06 - 2014-11-19 11:06 - 00000197 _____ () C:\Windows\system32\2014-11-19-10-06-23.047-AvastVBoxSVC.exe-3804.log
2014-11-18 22:06 - 2014-11-18 22:17 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-11-18 22:06 - 2014-11-18 22:06 - 00115928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-18 22:06 - 2014-11-18 22:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-18 22:05 - 2014-11-18 22:17 - 00000000 ____D () C:\Users\Beny\Desktop\mbar
2014-11-18 22:05 - 2014-11-18 22:05 - 00079576 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-18 22:04 - 2014-11-19 11:09 - 00011688 _____ () C:\Windows\WindowsUpdate.log
2014-11-18 22:04 - 2014-11-18 22:04 - 14439696 _____ (Malwarebytes Corp.) C:\Users\Beny\Desktop\mbar-1.08.1.1001.exe
2014-11-18 22:03 - 2014-11-18 22:04 - 14439696 _____ (Malwarebytes Corp.) C:\Users\Beny\Downloads\mbar-1.08.1.1001.exe
2014-11-18 22:01 - 2014-11-19 11:05 - 00000168 _____ () C:\Windows\setupact.log
2014-11-18 22:01 - 2014-11-18 22:01 - 00000596 _____ () C:\Windows\PFRO.log
2014-11-18 22:01 - 2014-11-18 22:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-18 16:35 - 2014-11-18 16:35 - 00000197 _____ () C:\Windows\system32\2014-11-18-15-35-08.054-AvastVBoxSVC.exe-3528.log
2014-11-18 16:03 - 2014-11-18 16:04 - 00000197 _____ () C:\Windows\system32\2014-11-18-15-03-57.049-AvastVBoxSVC.exe-4156.log
2014-11-18 09:08 - 2014-11-18 09:08 - 00000197 _____ () C:\Windows\system32\2014-11-18-08-08-11.045-AvastVBoxSVC.exe-4004.log
2014-11-17 19:25 - 2014-11-17 19:26 - 00000197 _____ () C:\Windows\system32\2014-11-17-18-25-31.026-AvastVBoxSVC.exe-2948.log
2014-11-14 14:42 - 2014-11-19 11:05 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-14 14:42 - 2014-11-19 08:47 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-14 12:43 - 2014-11-14 12:43 - 00025088 _____ () C:\Users\Beny\Downloads\rammstein.xls
2014-11-14 12:05 - 2014-11-19 11:08 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-14 11:56 - 2014-11-14 11:56 - 00000197 _____ () C:\Windows\system32\2014-11-14-10-56-26.080-AvastVBoxSVC.exe-3568.log
2014-11-14 09:43 - 2014-11-14 09:43 - 00000197 _____ () C:\Windows\system32\2014-11-14-08-43-09.074-AvastVBoxSVC.exe-3724.log
2014-11-13 16:04 - 2014-11-13 16:05 - 00000197 _____ () C:\Windows\system32\2014-11-13-15-04-59.036-AvastVBoxSVC.exe-3592.log
2014-11-13 12:09 - 2014-11-18 16:34 - 00000000 ___RD () C:\Users\Beny\Dropbox
2014-11-13 12:05 - 2014-11-13 12:05 - 00323640 _____ (Dropbox, Inc.) C:\Users\Beny\Downloads\DropboxInstaller.exe
2014-11-13 10:17 - 2014-11-13 10:17 - 00000197 _____ () C:\Windows\system32\2014-11-13-09-17-52.048-AvastVBoxSVC.exe-2596.log
2014-11-12 23:04 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 23:04 - 2014-09-19 10:23 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-12 23:04 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 23:04 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 23:04 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 23:04 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 23:04 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 23:04 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 23:04 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 23:04 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 23:04 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 23:03 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 23:03 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 23:03 - 2014-11-06 04:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 23:03 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 23:03 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 23:03 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 23:03 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 23:03 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 23:03 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 23:03 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 23:03 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 23:03 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 23:03 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 23:03 - 2014-11-06 03:59 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 23:03 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 23:03 - 2014-11-06 03:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 23:03 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 23:03 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 23:03 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 23:03 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 23:03 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 23:03 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 23:03 - 2014-11-06 03:22 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 23:03 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 23:03 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 23:03 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 23:03 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 23:03 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 23:03 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 23:03 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 23:03 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 23:03 - 2014-10-14 02:56 - 00136632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 23:03 - 2014-10-14 02:50 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 23:03 - 2014-10-14 02:50 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 23:03 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 23:03 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 23:03 - 2014-10-10 01:45 - 02379264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 23:03 - 2014-10-03 02:44 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 23:03 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 23:03 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 23:03 - 2014-10-03 02:44 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 23:03 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 08:35 - 2014-11-12 08:35 - 00000197 _____ () C:\Windows\system32\2014-11-12-07-35-10.008-AvastVBoxSVC.exe-2624.log
2014-11-11 17:54 - 2014-11-11 17:54 - 00000197 _____ () C:\Windows\system32\2014-11-11-16-54-23.055-AvastVBoxSVC.exe-3916.log
2014-11-10 20:44 - 2014-11-10 20:44 - 00000197 _____ () C:\Windows\system32\2014-11-10-19-44-35.074-AvastVBoxSVC.exe-3304.log
2014-11-10 12:06 - 2014-11-11 10:29 - 00000000 ____D () C:\Users\Beny\Downloads\Public
2014-11-10 09:10 - 2014-11-10 09:11 - 00000197 _____ () C:\Windows\system32\2014-11-10-08-10-56.085-AvastVBoxSVC.exe-3872.log
2014-11-09 23:09 - 2014-11-09 23:25 - 289736179 _____ () C:\Users\Beny\Downloads\Mestecko-South-Park-08x13-s08e13-Cartmanuv-neuveritelny-dar-HD.mkv
2014-11-09 19:27 - 2014-11-09 19:27 - 00000197 _____ () C:\Windows\system32\2014-11-09-18-27-48.076-AvastVBoxSVC.exe-3492.log
2014-11-07 11:55 - 2014-11-07 11:55 - 00000197 _____ () C:\Windows\system32\2014-11-07-10-55-04.083-AvastVBoxSVC.exe-3884.log
2014-11-07 08:59 - 2014-11-07 08:59 - 00000197 _____ () C:\Windows\system32\2014-11-07-07-59-05.062-AvastVBoxSVC.exe-2768.log
2014-11-06 18:50 - 2014-11-06 18:50 - 00000197 _____ () C:\Windows\system32\2014-11-06-17-50-15.024-AvastVBoxSVC.exe-3816.log
2014-11-06 13:07 - 2014-11-06 19:55 - 00000000 ____D () C:\Users\Beny\Downloads\Die Antwoord - Donker Mag
2014-11-06 08:43 - 2014-11-06 08:43 - 00000197 _____ () C:\Windows\system32\2014-11-06-07-43-34.017-AvastVBoxSVC.exe-3684.log
2014-11-05 23:38 - 2014-11-05 23:39 - 00000197 _____ () C:\Windows\system32\2014-11-05-22-38-58.069-AvastVBoxSVC.exe-3944.log
2014-11-05 09:43 - 2014-11-05 09:43 - 00000197 _____ () C:\Windows\system32\2014-11-05-08-43-14.097-AvastVBoxSVC.exe-3832.log
2014-11-04 22:01 - 2014-11-04 22:01 - 00001168 _____ () C:\Users\Beny\Desktop\Veřejné složky.lnk
2014-11-04 21:45 - 2014-11-04 21:45 - 00001356 _____ () C:\Users\Beny\Desktop\Red Dwarf.lnk
2014-11-04 21:03 - 2014-11-04 21:56 - 00000000 ____D () C:\Program Files\Veřejné složky
2014-11-04 20:55 - 2014-11-04 21:03 - 00000247 _____ () C:\Windows\system32\2014-11-04-19-55-47.070-aswFe.exe-6024.log
2014-11-04 20:45 - 2014-11-04 20:45 - 00000197 _____ () C:\Windows\system32\2014-11-04-19-45-30.007-AvastVBoxSVC.exe-5656.log
2014-11-04 19:34 - 2014-11-04 20:44 - 00000247 _____ () C:\Windows\system32\2014-11-04-18-34-13.002-aswFe.exe-5708.log
2014-11-04 08:26 - 2014-11-04 08:26 - 00001863 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2014-11-04 08:26 - 2014-11-04 08:26 - 00000000 ____D () C:\Program Files\Defraggler
2014-11-04 08:24 - 2014-11-04 08:24 - 04362512 _____ (Piriform Ltd) C:\Users\Beny\Downloads\dfsetup218.exe
2014-11-04 08:23 - 2014-11-04 08:23 - 00000197 _____ () C:\Windows\system32\2014-11-04-07-23-20.056-AvastVBoxSVC.exe-3544.log
2014-11-03 22:38 - 2014-11-03 22:38 - 00000247 _____ () C:\Windows\system32\2014-11-03-21-38-17.015-aswFe.exe-5636.log
2014-11-03 22:31 - 2014-11-03 22:38 - 00000247 _____ () C:\Windows\system32\2014-11-03-21-31-15.083-aswFe.exe-4212.log
2014-11-03 22:30 - 2014-11-03 22:30 - 00001396 _____ () C:\Users\Beny\Downloads\cc_20141103_223009.reg
2014-11-03 22:14 - 2014-11-03 22:14 - 00000197 _____ () C:\Windows\system32\2014-11-03-21-14-00.074-AvastVBoxSVC.exe-5892.log
2014-11-03 20:31 - 2014-11-03 20:32 - 00000197 _____ () C:\Windows\system32\2014-11-03-19-31-39.031-AvastVBoxSVC.exe-2988.log
2014-11-03 09:48 - 2014-11-03 09:48 - 00001093 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-11-03 09:48 - 2014-11-03 09:48 - 00001093 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-11-03 09:46 - 2014-11-03 09:47 - 00004104 _____ () C:\Users\Beny\Documents\cc_20141103_094641.reg
2014-11-03 09:27 - 2014-11-03 09:27 - 00000197 _____ () C:\Windows\system32\2014-11-03-08-27-44.038-AvastVBoxSVC.exe-3608.log
2014-11-02 22:35 - 2014-11-02 22:44 - 52172800 _____ () C:\Users\Beny\Downloads\u780029781.tar
2014-11-02 22:35 - 2014-11-02 22:35 - 00121383 _____ () C:\Users\Beny\Downloads\u780029781_jakce.sql.gz
2014-11-02 16:57 - 2014-11-03 22:11 - 00000000 ____D () C:\Program Files\trend micro
2014-10-31 20:08 - 2014-10-31 20:08 - 00000197 _____ () C:\Windows\system32\2014-10-31-19-08-21.016-AvastVBoxSVC.exe-1744.log
2014-10-31 17:18 - 2014-10-31 17:47 - 00008533 _____ () C:\zoek-results.log
2014-10-31 17:17 - 2014-10-31 17:17 - 00000000 ____D () C:\Users\Beny\Downloads\zoek
2014-10-31 17:14 - 2014-10-31 16:58 - 01292800 _____ () C:\Users\Beny\Desktop\zoek.exe
2014-10-31 17:02 - 2014-10-31 17:02 - 00000280 _____ () C:\Windows\system32\2014-10-31-16-02-40.059-aswFe.exe-3908.log
2014-10-31 16:59 - 2014-10-31 17:00 - 00000280 _____ () C:\Windows\system32\2014-10-31-15-59-49.010-aswFe.exe-3184.log
2014-10-31 16:59 - 2014-10-31 16:59 - 00000280 _____ () C:\Windows\system32\2014-10-31-15-59-07.051-aswFe.exe-6032.log
2014-10-31 16:54 - 2014-10-31 16:54 - 00000280 _____ () C:\Windows\system32\2014-10-31-15-54-14.066-aswFe.exe-1104.log
2014-10-31 16:52 - 2014-10-31 16:53 - 00000280 _____ () C:\Windows\system32\2014-10-31-15-52-52.082-aswFe.exe-6068.log
2014-10-31 16:46 - 2014-10-31 16:46 - 00000000 ____D () C:\Windows\ERUNT
2014-10-31 15:57 - 2014-10-31 15:58 - 00000197 _____ () C:\Windows\system32\2014-10-31-14-57-51.039-AvastVBoxSVC.exe-4236.log
2014-10-31 09:34 - 2014-10-31 09:34 - 00000197 _____ () C:\Windows\system32\2014-10-31-08-34-23.097-AvastVBoxSVC.exe-3744.log
2014-10-30 18:51 - 2014-10-30 18:51 - 00000197 _____ () C:\Windows\system32\2014-10-30-17-51-40.090-AvastVBoxSVC.exe-1436.log
2014-10-30 13:13 - 2014-10-30 13:13 - 00000197 _____ () C:\Windows\system32\2014-10-30-12-13-21.024-AvastVBoxSVC.exe-2988.log
2014-10-30 10:39 - 2014-10-30 10:40 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Beny\Downloads\mbam-setup-2.0.3.1025.exe
2014-10-30 10:28 - 2014-10-30 10:28 - 00000197 _____ () C:\Windows\system32\2014-10-30-09-28-29.071-AvastVBoxSVC.exe-3652.log
2014-10-30 01:23 - 2014-11-18 21:47 - 00000000 ____D () C:\Users\Beny\AppData\Roaming\Dropbox
2014-10-30 01:23 - 2014-10-30 01:23 - 00000247 _____ () C:\Windows\system32\2014-10-30-00-23-11.053-aswFe.exe-4952.log
2014-10-30 01:18 - 2014-10-30 01:22 - 00000247 _____ () C:\Windows\system32\2014-10-30-00-18-06.052-aswFe.exe-4772.log
2014-10-30 01:18 - 2014-10-30 01:18 - 00000197 _____ () C:\Windows\system32\2014-10-30-00-18-01.093-AvastVBoxSVC.exe-1324.log
2014-10-30 01:09 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-10-30 01:08 - 2014-10-30 01:09 - 00000000 ____D () C:\Windows\system32\vbox
2014-10-30 00:59 - 2014-10-30 01:00 - 01375089 _____ () C:\Users\Beny\Desktop\adwcleaner_3.311.exe
2014-10-30 00:59 - 2014-10-30 00:59 - 00002117 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-10-30 00:59 - 2014-10-30 00:59 - 00000000 ____D () C:\Users\Beny\AppData\Roaming\AVAST Software
2014-10-30 00:59 - 2014-10-30 00:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2014-10-30 00:57 - 2014-10-31 20:07 - 00787800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-10-30 00:57 - 2014-10-31 20:07 - 00070384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2014-10-30 00:57 - 2014-10-30 00:57 - 00422760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-10-30 00:57 - 2014-10-30 00:57 - 00291352 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-10-30 00:57 - 2014-10-30 00:57 - 00206248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-10-30 00:57 - 2014-10-30 00:57 - 00091496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-10-30 00:57 - 2014-10-30 00:57 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-10-30 00:57 - 2014-10-30 00:57 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-10-30 00:57 - 2014-10-30 00:57 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-10-30 00:57 - 2014-10-30 00:57 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-10-30 00:56 - 2014-10-30 00:56 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-10-30 00:56 - 2014-10-30 00:56 - 00000000 ____D () C:\Program Files\AVAST Software
2014-10-29 20:19 - 2014-10-29 20:19 - 04862664 _____ (AVAST Software) C:\Users\Beny\Downloads\avast_free_antivirus_setup_online.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-19 11:21 - 2012-11-27 17:59 - 00000000 ____D () C:\Users\Beny\AppData\Roaming\uTorrent
2014-11-19 11:13 - 2009-07-14 05:34 - 00021904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-19 11:13 - 2009-07-14 05:34 - 00021904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-19 11:05 - 2012-11-21 20:21 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-19 11:05 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-19 08:23 - 2012-11-22 16:37 - 00000000 ____D () C:\Users\Beny\AppData\Roaming\Canon
2014-11-18 16:13 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-11-18 16:09 - 2012-11-21 20:21 - 00000000 ____D () C:\Program Files\Opera
2014-11-17 21:57 - 2010-11-20 22:01 - 01470062 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-14 12:08 - 2012-12-02 10:55 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-11-14 12:08 - 2012-12-02 10:55 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-11-13 12:09 - 2012-11-21 20:17 - 00000000 ____D () C:\Users\Beny
2014-11-13 11:01 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-11-13 10:21 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-13 10:15 - 2009-07-14 05:33 - 00282672 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-13 09:41 - 2013-08-14 21:13 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-13 09:37 - 2012-11-23 17:24 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-04 23:37 - 2014-07-14 20:49 - 00000009 _____ () C:\Windows\sierra.ini
2014-11-04 23:37 - 2012-12-03 19:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra
2014-11-04 23:33 - 2013-07-03 21:17 - 00000000 ____D () C:\My Video
2014-10-31 20:25 - 2009-07-14 03:04 - 00000215 _____ () C:\Windows\system.ini
2014-10-30 21:15 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Default
2014-10-30 21:15 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Public
2014-10-30 01:27 - 2014-08-28 08:25 - 00000000 ____D () C:\Users\Beny\AppData\Local\Adobe
2014-10-30 00:31 - 2014-07-25 09:34 - 00000002 _____ () C:\Users\Beny\rgmnr
2014-10-28 06:35 - 2012-11-21 20:24 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-27 22:51 - 2013-11-16 20:04 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-27 12:13 - 2012-11-21 20:17 - 00000000 ____D () C:\Users\Beny\AppData\Local\VirtualStore
2014-10-24 10:30 - 2012-11-21 20:26 - 00000000 ____D () C:\Program Files\Common Files\Steam

Some content of TEMP:
====================
C:\Users\Beny\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpizpv24.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-11-18 11:55

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:298.08 GB) (Free:91.36 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive f: (Elements) (Fixed) (Total:931.48 GB) (Free:616.03 GB) NTFS

Available physical RAM: 462.09 MB
Total physical RAM: 2046.49 MB
Percentage of memory in use: 77%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 95579557)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 3AE1FCC1)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Beny\Desktop" je 125 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#43 Příspěvek od **Márty84** » 19 lis 2014 11:53

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION

CHR Extension: (Everysale.Net) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iapdadaeaebaoigieglfababneoaifnf [2014-07-24]

C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iapdadaeaebaoigieglfababneoaifnf
C:\Users\Beny\Desktop\mbar-1.08.1.1001.exe
C:\Users\Beny\Downloads\mbar-1.08.1.1001.exe
C:\Users\Beny\AppData\Roaming\Opera Software\Opera Stable\Extensions\iapdadaeaebaoigieglfababneoaifnf

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

Kanarek · #44 Příspěvek od **Kanarek** » 19 lis 2014 16:27

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 17-11-2014
Ran by Beny at 2014-11-19 16:23:51 Run:1
Running from C:\Users\Beny\Desktop
Loaded Profile: Beny (Available profiles: Beny & UpdatusUser)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION

CHR Extension: (Everysale.Net) - C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iapdadaeaebaoigieglfababneoaifnf [2014-07-24]

C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iapdadaeaebaoigieglfababneoaifnf
C:\Users\Beny\Desktop\mbar-1.08.1.1001.exe
C:\Users\Beny\Downloads\mbar-1.08.1.1001.exe
C:\Users\Beny\AppData\Roaming\Opera Software\Opera Stable\Extensions\iapdadaeaebaoigieglfababneoaifnf

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iapdadaeaebaoigieglfababneoaifnf => Moved successfully.
"C:\Users\Beny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iapdadaeaebaoigieglfababneoaifnf" => File/Directory not found.
C:\Users\Beny\Desktop\mbar-1.08.1.1001.exe => Moved successfully.
C:\Users\Beny\Downloads\mbar-1.08.1.1001.exe => Moved successfully.
C:\Users\Beny\AppData\Roaming\Opera Software\Opera Stable\Extensions\iapdadaeaebaoigieglfababneoaifnf => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 36.9 MB temporary data.

The system needed a reboot.

==== End of Fixlog ====

#45 Příspěvek od **Márty84** » 19 lis 2014 19:23

Nastala nejaka zmena?

VIRY.CZ

Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek

Re: Opakující se zobrazování ruských stránek