VIRY.CZ

Dobrý den,

posílám log a prosím o pomoc. Dostala se mi do PC nějaká havěť.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Johny at 2013-11-25 20:10:28
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 63 GB (63%) free of 100 GB
Total RAM: 3582 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:10:29 PM, on 2013-11-25
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16736)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
D:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
D:\Program Files\RocketDock\RocketDock.exe
D:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
D:\Data\Martin\RSIT.exe
C:\Program Files\trend micro\Johny.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.pur-esult.info/?pid=72 ... g=EN&cc=CZ
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.pur-esult.info/?pid=72 ... g=EN&cc=CZ
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {91da5e8a-3318-4f8c-b67e-5964de3ab546} - (no file)
O2 - BHO: YoutubeAdblocker - {724EC357-AEB6-57C3-7075-0B8012E34A14} - C:\Program Files\YoutubeAdblocker\mufso_nnlt.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [ZoneAlarm Installer] "C:\Users\Johny\AppData\Local\Temp\{907A1104-E812-4b5c-959B-E4DAB37A96AB}\Launcher.exe" "C:\Users\Johny\AppData\Local\Temp\{907A1104-E812-4b5c-959B-E4DAB37A96AB}\Install.exe" /r install /c "EN\INSTALL.XML" /w
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "D:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [DivXMediaServer] D:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [20131121] D:\Program Files\AVAST Software\Avast\setup\emupdate\5e0b6186-b984-47f7-968f-6b3e1149c811.exe /check
O4 - HKCU\..\Run: [RocketDock] "D:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Johny\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://D:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - D:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 5745 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2894219329-1490401813-2391296416-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2894219329-1490401813-2391296416-1001UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724EC357-AEB6-57C3-7075-0B8012E34A14}]
YoutubeAdblocker - C:\Program Files\YoutubeAdblocker\mufso_nnlt.dll [2013-11-25 425984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-10-28 606544]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-10-28 606544]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ZoneAlarm Installer"=C:\Users\Johny\AppData\Local\Temp\{907A1104-E812-4b5c-959B-E4DAB37A96AB}\Launcher.exe C:\Users\Johny\AppData\Local\Temp\{907A1104-E812-4b5c-959B-E4DAB37A96AB}\Install.exe /r install /c EN\INSTALL.XML /w []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"AvastUI.exe"=D:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-10-29 3567800]
"DivXMediaServer"=D:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2013-09-11 450560]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2013-08-29 1861968]
"20131121"=D:\Program Files\AVAST Software\Avast\setup\emupdate\5e0b6186-b984-47f7-968f-6b3e1149c811.exe [2013-11-23 180184]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=D:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"DAEMON Tools Lite"=D:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-08-28 3671904]
"Google Update"=C:\Users\Johny\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-04 116648]
""= []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=DivX.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.DIVX"=DivX.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-11-25 20:06:51 ----D---- C:\rsit
2013-11-25 20:06:51 ----D---- C:\Program Files\trend micro
2013-11-25 19:46:23 ----D---- C:\Users\Johny\AppData\Roaming\SkypEmoticons
2013-11-25 19:46:19 ----D---- C:\Program Files\Searchh-NewTTab
2013-11-25 19:45:59 ----A---- C:\Users\Johny\AppData\Roaming\LiveSupport.exe_log.txt
2013-11-25 19:45:58 ----A---- C:\Users\Johny\AppData\Roaming\regsvr32.exe_log.txt
2013-11-25 19:45:16 ----D---- C:\ProgramData\QuickSet
2013-11-25 19:44:37 ----D---- C:\ProgramData\YoutubeAdblocker
2013-11-25 19:44:37 ----D---- C:\Program Files\YoutubeAdblocker
2013-11-25 19:44:17 ----D---- C:\Program Files\surfu and keep
2013-11-25 19:44:00 ----D---- C:\ProgramData\262b905b255bff8e
2013-11-25 19:43:07 ----D---- C:\ProgramData\InstallMate
2013-11-22 16:16:49 ----D---- C:\Users\Johny\AppData\Roaming\NVIDIA
2013-11-22 12:03:20 ----D---- C:\Users\Johny\AppData\Roaming\DivX
2013-11-21 17:39:25 ----D---- C:\Program Files\PC Connectivity Solution
2013-11-21 16:15:48 ----D---- C:\Users\Johny\AppData\Roaming\Need for Speed World
2013-11-20 13:27:29 ----D---- C:\Users\Johny\AppData\Roaming\LibreOffice
2013-11-18 21:58:36 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-11-18 21:58:36 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-11-18 21:58:35 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-11-18 21:58:35 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-11-18 21:58:35 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-11-18 21:58:35 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-11-18 21:58:35 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-11-18 18:28:07 ----D---- C:\Users\Johny\AppData\Roaming\BitTorrent Sync
2013-11-16 20:06:39 ----A---- C:\Windows\system32\drivers\PnkBstrK.sys
2013-11-16 20:06:35 ----A---- C:\Windows\system32\PnkBstrB.exe
2013-11-16 20:06:27 ----A---- C:\Windows\system32\PnkBstrA.exe
2013-11-16 19:30:59 ----D---- C:\Users\Johny\AppData\Roaming\ViberPC
2013-11-13 03:05:57 ----A---- C:\Windows\system32\jscript.dll
2013-11-13 03:05:56 ----A---- C:\Windows\system32\jscript9.dll
2013-11-13 03:05:55 ----A---- C:\Windows\system32\jsproxy.dll
2013-11-13 03:05:55 ----A---- C:\Windows\system32\ieui.dll
2013-11-13 03:05:55 ----A---- C:\Windows\system32\iesetup.dll
2013-11-13 03:05:54 ----A---- C:\Windows\system32\urlmon.dll
2013-11-13 03:05:54 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-13 03:05:54 ----A---- C:\Windows\system32\msfeeds.dll
2013-11-13 03:05:54 ----A---- C:\Windows\system32\iesysprep.dll
2013-11-13 03:05:54 ----A---- C:\Windows\system32\iernonce.dll
2013-11-13 03:05:54 ----A---- C:\Windows\system32\ie4uinit.exe
2013-11-13 03:05:53 ----A---- C:\Windows\system32\iertutil.dll
2013-11-13 03:05:52 ----A---- C:\Windows\system32\wininet.dll
2013-11-13 03:05:50 ----A---- C:\Windows\system32\ieframe.dll
2013-11-13 03:05:49 ----A---- C:\Windows\system32\mshtml.dll
2013-11-12 22:23:47 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-12 22:23:47 ----A---- C:\Windows\system32\credui.dll
2013-11-12 22:23:47 ----A---- C:\Windows\system32\authui.dll
2013-11-12 22:23:44 ----A---- C:\Windows\system32\sspisrv.dll
2013-11-12 22:23:44 ----A---- C:\Windows\system32\sspicli.dll
2013-11-12 22:23:44 ----A---- C:\Windows\system32\schannel.dll
2013-11-12 22:23:44 ----A---- C:\Windows\system32\secur32.dll
2013-11-12 22:23:44 ----A---- C:\Windows\system32\ncrypt.dll
2013-11-12 22:23:44 ----A---- C:\Windows\system32\lsass.exe
2013-11-12 22:23:44 ----A---- C:\Windows\system32\lsasrv.dll
2013-11-12 22:23:44 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-11-12 22:23:44 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-11-12 22:23:44 ----A---- C:\Windows\system32\drivers\cng.sys
2013-11-12 22:23:42 ----A---- C:\Windows\system32\gdi32.dll
2013-11-12 22:23:40 ----A---- C:\Windows\system32\nshwfp.dll
2013-11-12 22:23:40 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-11-12 22:23:40 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-11-12 22:23:37 ----A---- C:\Windows\system32\crypt32.dll
2013-10-29 01:17:47 ----D---- C:\Users\Johny\AppData\Roaming\AVAST Software
2013-10-28 19:06:01 ----A---- C:\Windows\system32\comctl32.dll
2013-10-28 19:05:59 ----A---- C:\Windows\system32\drivers\usbscan.sys
2013-10-28 19:05:59 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-28 19:05:59 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-28 19:05:54 ----A---- C:\Windows\system32\mswsock.dll
2013-10-28 19:05:54 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-28 19:05:53 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-28 19:05:50 ----A---- C:\Windows\system32\drivers\usbser.sys
2013-10-28 19:05:48 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-28 19:05:44 ----A---- C:\Windows\system32\tdh.dll
2013-10-28 19:05:44 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-28 19:05:44 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-10-28 19:05:43 ----A---- C:\Windows\system32\win32k.sys
2013-10-28 19:05:43 ----A---- C:\Windows\system32\ntdll.dll
2013-10-28 19:05:43 ----A---- C:\Windows\system32\advapi32.dll
2013-10-28 19:05:41 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-28 19:05:38 ----A---- C:\Windows\system32\lpk.dll
2013-10-28 19:05:38 ----A---- C:\Windows\system32\fontsub.dll
2013-10-28 19:05:38 ----A---- C:\Windows\system32\dciman32.dll
2013-10-28 19:05:38 ----A---- C:\Windows\system32\atmlib.dll
2013-10-28 19:05:38 ----A---- C:\Windows\system32\atmfd.dll
2013-10-28 19:05:31 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-28 19:05:19 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-28 19:05:19 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-28 19:05:19 ----A---- C:\Windows\system32\davclnt.dll
2013-10-28 19:05:07 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-28 19:05:05 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

======List of files/folders modified in the last 1 month======

2013-11-25 20:10:28 ----D---- C:\Windows\Temp
2013-11-25 20:06:51 ----RD---- C:\Program Files
2013-11-25 20:02:03 ----D---- C:\Windows\System32
2013-11-25 20:02:03 ----D---- C:\Windows\inf
2013-11-25 20:02:03 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-11-25 20:00:46 ----D---- C:\Windows\system32\config
2013-11-25 19:57:34 ----D---- C:\ProgramData\NVIDIA
2013-11-25 19:55:22 ----SHD---- C:\System Volume Information
2013-11-25 19:52:57 ----HD---- C:\ProgramData
2013-11-25 19:51:58 ----D---- C:\Windows\system32\Tasks
2013-11-25 19:51:54 ----D---- C:\Windows\Tasks
2013-11-25 19:45:53 ----D---- C:\Windows\Prefetch
2013-11-25 11:56:31 ----D---- C:\Windows\system32\catroot2
2013-11-24 20:48:16 ----D---- C:\Users\Johny\AppData\Roaming\Skype
2013-11-24 16:29:28 ----D---- C:\Windows\system32\wdi
2013-11-23 10:37:04 ----SHD---- C:\Windows\Installer
2013-11-23 10:36:59 ----D---- C:\ProgramData\Microsoft Help
2013-11-22 12:03:39 ----RSD---- C:\Windows\Fonts
2013-11-22 12:03:39 ----D---- C:\ProgramData\DivX
2013-11-22 12:03:36 ----D---- C:\Program Files\DivX
2013-11-22 12:03:29 ----D---- C:\Program Files\Common Files\DivX Shared
2013-11-21 18:30:23 ----D---- C:\Program Files\Battlelog Web Plugins
2013-11-21 18:29:36 ----D---- C:\Windows\system32\catroot
2013-11-21 17:45:13 ----D---- C:\Program Files\Nokia
2013-11-21 17:45:13 ----D---- C:\Program Files\Common Files\Nokia
2013-11-21 17:39:29 ----DC---- C:\Windows\system32\DRVSTORE
2013-11-21 17:39:29 ----D---- C:\Windows\system32\DriverStore
2013-11-21 17:39:29 ----D---- C:\Windows\system32\drivers
2013-11-21 16:04:30 ----SD---- C:\Users\Johny\AppData\Roaming\Microsoft
2013-11-21 15:53:18 ----HD---- C:\Program Files\Common Files\EAInstaller
2013-11-20 17:18:07 ----D---- C:\Windows\Microsoft.NET
2013-11-20 14:49:18 ----SD---- C:\ProgramData\Microsoft
2013-11-20 14:49:18 ----D---- C:\Program Files\Microsoft.NET
2013-11-20 13:27:09 ----RSD---- C:\Windows\assembly
2013-11-20 13:02:05 ----D---- C:\Program Files\Common Files\microsoft shared
2013-11-20 13:01:36 ----D---- C:\Windows\ShellNew
2013-11-20 13:01:20 ----D---- C:\Program Files\Common Files\DESIGNER
2013-11-20 12:58:49 ----D---- C:\Program Files\Common Files\System
2013-11-20 12:58:49 ----A---- C:\Windows\win.ini
2013-11-19 09:01:42 ----D---- C:\Windows\winsxs
2013-11-17 00:43:25 ----D---- C:\Program Files\Common Files
2013-11-16 20:40:42 ----D---- C:\ProgramData\Skype
2013-11-16 20:40:38 ----RD---- C:\Program Files\Skype
2013-11-16 19:06:13 ----D---- C:\Users\Johny\AppData\Roaming\Origin
2013-11-16 19:06:13 ----D---- C:\ProgramData\Origin
2013-11-16 19:03:26 ----D---- C:\Program Files\Common Files\Adobe
2013-11-14 22:02:01 ----D---- C:\Windows\rescache
2013-11-13 03:23:05 ----D---- C:\Windows\system32\cs-CZ
2013-11-13 03:23:05 ----D---- C:\Program Files\Internet Explorer
2013-11-13 03:05:48 ----D---- C:\Windows\system32\MRT
2013-11-13 03:00:28 ----A---- C:\Windows\system32\MRT.exe
2013-11-11 05:50:18 ----N---- C:\Windows\system32\MpSigStub.exe
2013-10-29 01:13:48 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-28 19:05:58 ----D---- C:\Windows
2013-10-28 19:05:51 ----A---- C:\Windows\system32\aswBoot.exe
2013-10-28 19:04:15 ----D---- C:\ProgramData\AVAST Software

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-08-30 21576]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-10-28 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-10-28 178304]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-10-28 79720]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-10-28 774392]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-08 403440]
R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-10-28 57672]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-08-31 242240]
R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-10-28 35656]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-10-28 70384]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 50704]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-03 65640]
R2 avast! Antivirus;avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-10-28 50344]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 639776]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2013-11-17 76888]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-25 1260320]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-01 150648]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-11 1343400]
S4 avast! Firewall;avast! Firewall; D:\Program Files\AVAST Software\Avast\afwServ.exe []

-----------------EOF-----------------

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x86
Ran by Johny on 2013-11-25 at 21:02:51,37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2894219329-1490401813-2391296416-1001\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\livesupport
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\sprotector
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\iminent
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\1clicktorrentfile
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}



~~~ Files

Successfully deleted: [File] "C:\end"



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Johny\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Johny\appdata\locallow\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\Johny\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Users\Johny\documents\optimizer pro"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2013-11-25 at 21:04:30,38
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

# AdwCleaner v3.013 - Report created 25/11/2013 at 21:10:09
# Updated 24/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Johny - JOHNYHOPC
# Running from : C:\Users\Johny\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\QuickSet
Folder Deleted : C:\ProgramData\YoutubeAdblocker
Folder Deleted : C:\Program Files\1ClickDownload
Folder Deleted : C:\Program Files\YoutubeAdblocker
Folder Deleted : C:\Users\Johny\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
Folder Deleted : C:\Users\Johny\AppData\Roaming\SkypEmoticons

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\Software\DivX\Install\Setup\WizardLayout\ConduitToolbar
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16736


-\\ Google Chrome v

[ File : C:\Users\Johny\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : icon_url
Deleted : search_url
Deleted : keyword

*************************

AdwCleaner[R0].txt - [2204 octets] - [25/11/2013 21:08:39]
AdwCleaner[S0].txt - [2183 octets] - [25/11/2013 21:10:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2243 octets] ##########

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222

• Provedte aktualizaci
• Provedte uplny sken - nic nemazte
• MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.11.25.06

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16736
Johny :: JOHNYHOPC [administrátor]

Ochrana: Povolena

2013-11-25 9:39:34 PM
MBAM-log-2013-11-25 (22-31-18).txt

Typ: Kompletní kontrola (C:\|D:\|E:\|G:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 512955
Uplynulý čas: 51 minut, 22 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKLM\SOFTWARE\Speedchecker Limited\PC Speed Up (PUP.Optional.PCSpeedUp.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Users\Johny\AppData\Local\Temp\ct3288691 (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Temp\ct3297861 (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 26
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4W3M4G2P\search_defender_alternate_166[1].exe (PUP.Optional.SProtect.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BBXX8R3N\mism[1].exe (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KL2MKWK5\agent2[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PHQ0FZKW\ezdownloader[1].exe (PUP.Optional.EZDownloader.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QXV1M9NX\OptimizerPro[1].exe (PUP.Optional.OptimizerPro.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QXV1M9NX\checktbexist[1].exe (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R909E8RH\psupport_install[1].exe (PUP.Optional.SProtect.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Google\Chrome\User Data\Default\Cache\f_050a47 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Google\Chrome\User Data\Default\File System\001\t\00\00000000 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\YoutubeAdblocker\mufso_nnlt.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Program Files\YoutubeAdblocker\mufso_nnlt.x64.dll.vir (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Správa fotografií\ACDSee 9\!Crack!\patch.exe (Trojan.Bancos) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Tvorba grafiky\Ostatní\Macromedia Studio MX 2004\Authorware 6.5\Authorware 6.5 Hardware Key Remover\hdkeyremover.exe (Trojan.Bancos) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Tvorba grafiky\Ostatní\Macromedia Studio MX 2004\Authorware 6.5\Keygen\Keygen.exe (Trojan.Agent.CK) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Tvorba grafiky\Ostatní\Macromedia Studio MX 2004\Director MX\Keygen\CORE10k.EXE (PUP.Keygen.Intro) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Tvorba grafiky\Ostatní\Macromedia Studio MX 2004\Flash Communication Server MX\FlashCom MX keygen.exe (Trojan.Agent.CK) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Internet a sítě\Bezpečnost\Proxy a Firewall\Kerio 4.1.1\keriopersonalfirewallv4.1.1patchphell.zip (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Multimédia\Převody formátů\MediaCoder 0.7.1.4482\MediaCoder-0.7.1.4482.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Multimédia\Vypalování CD a DVD\DAEMON Tools 4454-0316\DTLite4454-0316.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Multimédia\Vypalování CD a DVD\DAEMON Tools 4.41.3 Lite\DTLite4413-0173.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Utility a ostatní\Komprese\Winrar 3.80 CZ\patch.exe (Malware.Tool) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Temp\ct3288691\chromeid.txt (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Temp\ct3288691\ism.exe (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Temp\ct3288691\setup.ini.txt (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Temp\ct3297861\chromeid.txt (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Temp\ct3297861\setup.ini.txt (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.

(konec)

Dovolim si otazku, ma cenu lecit PC, ktere si uzivatel s prominutim zaliska hned vlastni blbosti zpatky diky crackum\keygenum a podobnym "dobrotami" Nehlede na porusovani autorskeho zakona

V podstatě jste odpověděl za mě. Ony programy však již delší dobu nepoužívám PC potřebuji v současné době výhradně k práci v LibreOffice a k hledání práce. Pokud mi nepomůžete, budu muset udělat kompletní reinstall Windows. Tak jak?

Pokud budete zadat v budoucnu o pomoc na foru a v PC budou nalezeny prvky warezu, muze byt pomoc odmitnuta

Vsechny nalezy MBAMu smazte, objevi se log, ten rad uvidim

Provedu,

máte na mysli všechny označené nebo prostě úplně všechny?

Uplne vse co MBAM nalezl...

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.11.25.06

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16736
Johny :: JOHNYHOPC [administrátor]

Ochrana: Povolena

2013-11-25 9:39:34 PM
mbam-log-2013-11-25 (21-39-34).txt

Typ: Kompletní kontrola (C:\|D:\|E:\|G:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 512955
Uplynulý čas: 51 minut, 22 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 1
HKLM\SOFTWARE\Speedchecker Limited\PC Speed Up (PUP.Optional.PCSpeedUp.A) -> Přesun do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Users\Johny\AppData\Local\Temp\ct3288691 (PUP.Optional.Conduit.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Temp\ct3297861 (PUP.Optional.Conduit.A) -> Přesun do karantény a smazání se zdařilo.

Nalezené soubory: 26
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4W3M4G2P\search_defender_alternate_166[1].exe (PUP.Optional.SProtect.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BBXX8R3N\mism[1].exe (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KL2MKWK5\agent2[1].exe (PUP.Optional.MultiPlug.A) -> Nebyla provedena žádná instrukce.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PHQ0FZKW\ezdownloader[1].exe (PUP.Optional.EZDownloader.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QXV1M9NX\OptimizerPro[1].exe (PUP.Optional.OptimizerPro.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QXV1M9NX\checktbexist[1].exe (PUP.Optional.Conduit.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R909E8RH\psupport_install[1].exe (PUP.Optional.SProtect.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Google\Chrome\User Data\Default\Cache\f_050a47 (PUP.Optional.InstalleRex) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Google\Chrome\User Data\Default\File System\001\t\00\00000000 (PUP.Optional.InstalleRex) -> Přesun do karantény a smazání se zdařilo.
C:\AdwCleaner\Quarantine\C\Program Files\YoutubeAdblocker\mufso_nnlt.dll.vir (PUP.Optional.MultiPlug.A) -> Přesun do karantény a smazání se zdařilo.
C:\AdwCleaner\Quarantine\C\Program Files\YoutubeAdblocker\mufso_nnlt.x64.dll.vir (PUP.Optional.MultiPlug.A) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Správa fotografií\ACDSee 9\!Crack!\patch.exe (Trojan.Bancos) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Tvorba grafiky\Ostatní\Macromedia Studio MX 2004\Authorware 6.5\Authorware 6.5 Hardware Key Remover\hdkeyremover.exe (Trojan.Bancos) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Tvorba grafiky\Ostatní\Macromedia Studio MX 2004\Authorware 6.5\Keygen\Keygen.exe (Trojan.Agent.CK) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Tvorba grafiky\Ostatní\Macromedia Studio MX 2004\Director MX\Keygen\CORE10k.EXE (PUP.Keygen.Intro) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Grafika a design\Tvorba grafiky\Ostatní\Macromedia Studio MX 2004\Flash Communication Server MX\FlashCom MX keygen.exe (Trojan.Agent.CK) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Internet a sítě\Bezpečnost\Proxy a Firewall\Kerio 4.1.1\keriopersonalfirewallv4.1.1patchphell.zip (RiskWare.Tool.CK) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Multimédia\Převody formátů\MediaCoder 0.7.1.4482\MediaCoder-0.7.1.4482.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Multimédia\Vypalování CD a DVD\DAEMON Tools 4454-0316\DTLite4454-0316.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Multimédia\Vypalování CD a DVD\DAEMON Tools 4.41.3 Lite\DTLite4413-0173.exe (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.
D:\Data\Martin\STORAGE\D\Data\Martin\Instalačky\PC\Utility a ostatní\Komprese\Winrar 3.80 CZ\patch.exe (Malware.Tool) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Temp\ct3288691\chromeid.txt (PUP.Optional.Conduit.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Temp\ct3288691\ism.exe (PUP.Optional.Conduit.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Temp\ct3288691\setup.ini.txt (PUP.Optional.Conduit.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Temp\ct3297861\chromeid.txt (PUP.Optional.Conduit.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Johny\AppData\Local\Temp\ct3297861\setup.ini.txt (PUP.Optional.Conduit.A) -> Přesun do karantény a smazání se zdařilo.

(konec)

Poprosim o log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100

Pouze log FRST a možná neúplný. Program přestal pracovat a Addition nebyl vytvořen

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-11-2013 01
Ran by Johny (administrator) on JOHNYHOPC on 25-11-2013 23:11:44
Running from C:\Users\Johny\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) D:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Windows\System32\PnkBstrA.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(AVAST Software) D:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
() D:\Program Files\RocketDock\RocketDock.exe
(DT Soft Ltd) D:\Program Files\DAEMON Tools Lite\DTLite.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(forum.viry.cz) C:\Users\Johny\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Corporation) C:\Windows\System32\PING.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ZoneAlarm Installer] - "C:\Users\Johny\AppData\Local\Temp\{907A1104-E812-4b5c-959B-E4DAB37A96AB}\Launcher.exe" "C:\Users\Johny\AppData\Local\Temp\{907A1104-E812-4b5c-959B-E4DAB37A96AB}\Install.exe" /r install /c "EN\INSTALL.XML" /w <===== ATTENTION
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] - D:\Program Files\AVAST Software\Avast\avastui.exe [3567800 2013-10-29] (AVAST Software)
HKLM\...\Run: [DivXMediaServer] - D:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-09-11] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM\...\Run: [20131121] - D:\Program Files\AVAST Software\Avast\Setup\emupdate\5e0b6186-b984-47f7-968f-6b3e1149c811.exe [180184 2013-11-23] (AVAST Software)
HKCU\...\Run: [RocketDock] - D:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKCU\...\Run: [DAEMON Tools Lite] - D:\Program Files\DAEMON Tools Lite\DTLite.exe [3671904 2012-08-28] (DT Soft Ltd)
HKCU\...\Run: [Google Update] - C:\Users\Johny\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-04] (Google Inc.)
HKCU\...\Run: [] - [x]
MountPoints2: G - G:\autorun.exe
MountPoints2: {9304a38c-0757-11e2-8309-001d7d067cbd} - H:\NokiaPCIA_Autorun.exe

==================== Internet (Whitelisted) ====================

URLSearchHook: HKCU - (No Name) - {91da5e8a-3318-4f8c-b67e-5964de3ab546} - No File
SearchScopes: HKLM - DefaultScope value is missing.
BHO: YoutubeAdblocker - {724EC357-AEB6-57C3-7075-0B8012E34A14} - C:\Program Files\YoutubeAdblocker\mufso_nnlt.dll No File
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: ""
CHR DefaultSearchURL: (WebSearch) - http://websearch.pur-esult.info/?l=1&q= ... g=EN&cc=CZ
CHR DefaultSuggestURL: (WebSearch) - http://localhost
CHR Extension: (Google Wallet) - C:\Users\Johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_1
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Johny\AppData\Local\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

R2 avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-28] (AVAST Software)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-11-17] ()
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
U4 avast! Firewall; "D:\Program Files\AVAST Software\Avast\afwServ.exe" [x]

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [35656 2013-10-28] (AVAST Software)
R0 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [21576 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [70384 2013-10-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [79720 2013-10-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2013-10-28] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [774392 2013-10-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [403440 2013-11-08] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57672 2013-10-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178304 2013-10-28] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-08-31] (DT Soft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [50704 2010-01-27] (CACE Technologies, Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-25 23:11 - 2013-11-25 23:11 - 00015327 _____ C:\Users\Johny\Desktop\LM.bat
2013-11-25 23:11 - 2013-11-25 23:11 - 00006621 _____ C:\Users\Johny\Desktop\FRST.txt
2013-11-25 23:05 - 2013-11-25 23:11 - 00029696 _____ C:\Users\Johny\AppData\Local\MSGBOX.EXE
2013-11-25 23:05 - 2013-11-25 23:05 - 00000000 ____D C:\FRST
2013-11-25 23:04 - 2013-11-25 23:04 - 00112640 _____ (forum.viry.cz) C:\Users\Johny\Desktop\FRSTLauncher.exe
2013-11-25 23:03 - 2013-11-25 23:03 - 01091605 _____ (Farbar) C:\Users\Johny\Desktop\FRST.exe
2013-11-25 21:23 - 2013-11-25 21:23 - 00001071 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-25 21:23 - 2013-11-25 21:23 - 00000000 ____D C:\Users\Johny\AppData\Roaming\Malwarebytes
2013-11-25 21:23 - 2013-11-25 21:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-25 21:23 - 2013-11-25 21:23 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-11-25 21:23 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-25 21:19 - 2013-11-25 21:20 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Johny\Desktop\mbam-setup.exe
2013-11-25 21:08 - 2013-11-25 21:10 - 00000000 ____D C:\AdwCleaner
2013-11-25 21:07 - 2013-11-25 21:07 - 01091882 _____ C:\Users\Johny\Desktop\adwcleaner.exe
2013-11-25 21:04 - 2013-11-25 21:04 - 00003532 _____ C:\Users\Johny\Desktop\JRT.txt
2013-11-25 21:02 - 2013-11-25 21:02 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 20:19 - 2013-11-25 20:19 - 01034531 _____ (Thisisu) C:\Users\Johny\Desktop\JRT.exe
2013-11-25 20:06 - 2013-11-25 20:10 - 00000000 ____D C:\Program Files\trend micro
2013-11-25 20:06 - 2013-11-25 20:06 - 00000000 ____D C:\rsit
2013-11-25 19:46 - 2013-11-25 19:52 - 00000000 ____D C:\Program Files\Searchh-NewTTab
2013-11-25 19:44 - 2013-11-25 19:52 - 00000000 ____D C:\ProgramData\262b905b255bff8e
2013-11-25 19:44 - 2013-11-25 19:48 - 00000000 ____D C:\Program Files\surfu and keep
2013-11-25 19:43 - 2013-11-25 19:46 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-22 16:16 - 2013-11-22 16:16 - 00000000 ____D C:\Users\Johny\AppData\Roaming\NVIDIA
2013-11-22 12:03 - 2013-11-22 16:16 - 00000000 ____D C:\Users\Johny\AppData\Roaming\DivX
2013-11-21 17:39 - 2013-11-21 17:39 - 00000000 ____D C:\Program Files\PC Connectivity Solution
2013-11-21 16:15 - 2013-11-21 16:15 - 00000000 ____D C:\Users\Johny\AppData\Roaming\Need for Speed World
2013-11-21 16:01 - 2013-11-21 16:01 - 00000000 ____D C:\Users\Johny\AppData\Local\Electronic_Arts_Inc
2013-11-20 13:27 - 2013-11-20 13:27 - 00000000 ____D C:\Users\Johny\AppData\Roaming\LibreOffice
2013-11-20 13:26 - 2013-11-20 13:26 - 00002320 _____ C:\Users\Public\Desktop\LibreOffice 4.1.lnk
2013-11-19 22:49 - 2013-11-19 22:49 - 00000774 _____ C:\Users\Johny\Documents\Martin.lnk
2013-11-18 21:58 - 2013-09-04 02:15 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-11-18 21:58 - 2013-09-04 02:14 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-11-18 21:58 - 2013-09-04 02:14 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-11-18 21:58 - 2013-09-04 02:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-11-18 21:58 - 2013-09-04 02:14 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-11-18 21:58 - 2013-09-04 02:14 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-11-18 21:58 - 2013-09-04 02:14 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-11-18 18:28 - 2013-11-19 01:12 - 00000000 ____D C:\Users\Johny\AppData\Roaming\BitTorrent Sync
2013-11-16 20:06 - 2013-11-25 20:15 - 00290184 _____ C:\Windows\system32\PnkBstrB.exe
2013-11-16 20:06 - 2013-11-25 20:15 - 00139032 _____ C:\Windows\system32\Drivers\PnkBstrK.sys
2013-11-16 20:06 - 2013-11-25 19:22 - 00290184 _____ C:\Windows\system32\PnkBstrB.ex0
2013-11-16 20:06 - 2013-11-17 18:39 - 00076888 _____ C:\Windows\system32\PnkBstrA.exe
2013-11-16 19:30 - 2013-11-24 19:26 - 00000000 ____D C:\Users\Johny\AppData\Roaming\ViberPC
2013-11-16 19:30 - 2013-11-24 19:26 - 00000000 ____D C:\Users\Johny\AppData\Local\Viber
2013-11-16 19:30 - 2013-11-16 19:30 - 00001069 _____ C:\Users\Johny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber.lnk
2013-11-16 19:04 - 2013-11-16 19:04 - 00000000 ____D C:\Users\Johny\AppData\Local\ESN
2013-11-13 03:05 - 2013-10-12 08:04 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-13 03:05 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-13 03:05 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-13 03:05 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-13 03:05 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-13 03:05 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 22:23 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-12 22:23 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-12 22:23 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-12 22:23 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-12 22:23 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-12 22:23 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-12 22:23 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-12 22:23 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-12 22:23 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-12 22:23 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-12 22:23 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-12 22:23 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-12 22:23 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-12 22:23 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-12 22:23 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-12 22:23 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-12 22:23 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-12 22:23 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-29 01:17 - 2013-10-29 01:17 - 00000000 ____D C:\Users\Johny\AppData\Roaming\AVAST Software
2013-10-28 19:06 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-28 19:05 - 2013-09-14 01:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-28 19:05 - 2013-09-08 03:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-28 19:05 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-28 19:05 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-10-28 19:05 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-28 19:05 - 2013-08-29 02:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-28 19:05 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-28 19:05 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-28 19:05 - 2013-08-29 02:12 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2013-10-28 19:05 - 2013-08-28 02:04 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-28 19:05 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-28 19:05 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-28 19:05 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-28 19:05 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-28 19:05 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-28 19:05 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-28 19:05 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-28 19:05 - 2013-07-03 05:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-28 19:05 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-28 19:05 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-28 19:05 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-28 19:05 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-28 19:05 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-28 19:05 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-28 19:05 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-28 19:05 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

==================== One Month Modified Files and Folders =======

2013-11-25 23:11 - 2013-11-25 23:11 - 00015327 _____ C:\Users\Johny\Desktop\LM.bat
2013-11-25 23:11 - 2013-11-25 23:11 - 00006621 _____ C:\Users\Johny\Desktop\FRST.txt
2013-11-25 23:11 - 2013-11-25 23:05 - 00029696 _____ C:\Users\Johny\AppData\Local\MSGBOX.EXE
2013-11-25 23:08 - 2009-07-14 05:34 - 00014832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-25 23:08 - 2009-07-14 05:34 - 00014832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-25 23:07 - 2012-08-09 17:20 - 01470062 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-25 23:05 - 2013-11-25 23:05 - 00000000 ____D C:\FRST
2013-11-25 23:05 - 2012-08-09 17:17 - 01230077 _____ C:\Windows\WindowsUpdate.log
2013-11-25 23:04 - 2013-11-25 23:04 - 00112640 _____ (forum.viry.cz) C:\Users\Johny\Desktop\FRSTLauncher.exe
2013-11-25 23:04 - 2013-10-04 00:25 - 00000962 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2894219329-1490401813-2391296416-1001UA.job
2013-11-25 23:03 - 2013-11-25 23:03 - 01091605 _____ (Farbar) C:\Users\Johny\Desktop\FRST.exe
2013-11-25 23:01 - 2012-08-14 19:23 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-25 23:01 - 2012-08-14 02:18 - 00069534 _____ C:\Windows\PFRO.log
2013-11-25 23:01 - 2012-08-13 12:48 - 00068803 _____ C:\Windows\setupact.log
2013-11-25 23:01 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-25 21:23 - 2013-11-25 21:23 - 00001071 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-25 21:23 - 2013-11-25 21:23 - 00000000 ____D C:\Users\Johny\AppData\Roaming\Malwarebytes
2013-11-25 21:23 - 2013-11-25 21:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-25 21:23 - 2013-11-25 21:23 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-11-25 21:20 - 2013-11-25 21:19 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Johny\Desktop\mbam-setup.exe
2013-11-25 21:10 - 2013-11-25 21:08 - 00000000 ____D C:\AdwCleaner
2013-11-25 21:10 - 2012-08-09 19:04 - 00000000 ____D C:\Users\Johny\AppData\Roaming\CheckPoint
2013-11-25 21:07 - 2013-11-25 21:07 - 01091882 _____ C:\Users\Johny\Desktop\adwcleaner.exe
2013-11-25 21:04 - 2013-11-25 21:04 - 00003532 _____ C:\Users\Johny\Desktop\JRT.txt
2013-11-25 21:02 - 2013-11-25 21:02 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 20:19 - 2013-11-25 20:19 - 01034531 _____ (Thisisu) C:\Users\Johny\Desktop\JRT.exe
2013-11-25 20:15 - 2013-11-16 20:06 - 00290184 _____ C:\Windows\system32\PnkBstrB.exe
2013-11-25 20:15 - 2013-11-16 20:06 - 00139032 _____ C:\Windows\system32\Drivers\PnkBstrK.sys
2013-11-25 20:15 - 2012-08-14 19:30 - 00290184 _____ C:\Windows\system32\PnkBstrB.xtr
2013-11-25 20:10 - 2013-11-25 20:06 - 00000000 ____D C:\Program Files\trend micro
2013-11-25 20:06 - 2013-11-25 20:06 - 00000000 ____D C:\rsit
2013-11-25 19:52 - 2013-11-25 19:46 - 00000000 ____D C:\Program Files\Searchh-NewTTab
2013-11-25 19:52 - 2013-11-25 19:44 - 00000000 ____D C:\ProgramData\262b905b255bff8e
2013-11-25 19:48 - 2013-11-25 19:44 - 00000000 ____D C:\Program Files\surfu and keep
2013-11-25 19:46 - 2013-11-25 19:43 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-25 19:22 - 2013-11-16 20:06 - 00290184 _____ C:\Windows\system32\PnkBstrB.ex0
2013-11-25 19:03 - 2013-10-04 00:25 - 00000910 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2894219329-1490401813-2391296416-1001Core.job
2013-11-24 20:48 - 2012-08-10 21:05 - 00000000 ____D C:\Users\Johny\AppData\Roaming\Skype
2013-11-24 19:26 - 2013-11-16 19:30 - 00000000 ____D C:\Users\Johny\AppData\Roaming\ViberPC
2013-11-24 19:26 - 2013-11-16 19:30 - 00000000 ____D C:\Users\Johny\AppData\Local\Viber
2013-11-23 16:36 - 2012-08-09 17:36 - 00123464 _____ C:\Users\Johny\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-23 16:35 - 2009-07-14 05:33 - 00492008 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-23 10:36 - 2012-08-09 17:51 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-22 16:16 - 2013-11-22 16:16 - 00000000 ____D C:\Users\Johny\AppData\Roaming\NVIDIA
2013-11-22 16:16 - 2013-11-22 12:03 - 00000000 ____D C:\Users\Johny\AppData\Roaming\DivX
2013-11-22 12:03 - 2012-09-21 00:51 - 00000000 ____D C:\Program Files\Common Files\DivX Shared
2013-11-22 12:03 - 2012-09-21 00:50 - 00000000 ____D C:\Program Files\DivX
2013-11-22 12:03 - 2012-09-21 00:48 - 00000000 ____D C:\ProgramData\DivX
2013-11-21 18:30 - 2012-08-14 16:23 - 00000000 ____D C:\Program Files\Battlelog Web Plugins
2013-11-21 17:45 - 2012-11-05 21:24 - 00002047 _____ C:\Users\Public\Desktop\Nokia Suite.lnk
2013-11-21 17:45 - 2012-11-05 21:24 - 00000000 ____D C:\Program Files\Common Files\Nokia
2013-11-21 17:45 - 2012-09-26 12:11 - 00000000 ____D C:\Program Files\Nokia
2013-11-21 17:39 - 2013-11-21 17:39 - 00000000 ____D C:\Program Files\PC Connectivity Solution
2013-11-21 17:39 - 2012-09-26 12:02 - 00093004 _____ C:\Windows\DPINST.LOG
2013-11-21 16:15 - 2013-11-21 16:15 - 00000000 ____D C:\Users\Johny\AppData\Roaming\Need for Speed World
2013-11-21 16:01 - 2013-11-21 16:01 - 00000000 ____D C:\Users\Johny\AppData\Local\Electronic_Arts_Inc
2013-11-20 17:18 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-11-20 14:49 - 2012-08-09 17:52 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-11-20 13:27 - 2013-11-20 13:27 - 00000000 ____D C:\Users\Johny\AppData\Roaming\LibreOffice
2013-11-20 13:26 - 2013-11-20 13:26 - 00002320 _____ C:\Users\Public\Desktop\LibreOffice 4.1.lnk
2013-11-20 13:02 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-11-20 13:01 - 2012-08-09 17:52 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-11-20 13:01 - 2009-07-14 10:19 - 00000000 ____D C:\Windows\ShellNew
2013-11-20 12:58 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\System
2013-11-20 12:58 - 2009-07-14 03:04 - 00000387 _____ C:\Windows\win.ini
2013-11-19 22:49 - 2013-11-19 22:49 - 00000774 _____ C:\Users\Johny\Documents\Martin.lnk
2013-11-19 01:12 - 2013-11-18 18:28 - 00000000 ____D C:\Users\Johny\AppData\Roaming\BitTorrent Sync
2013-11-17 18:39 - 2013-11-16 20:06 - 00076888 _____ C:\Windows\system32\PnkBstrA.exe
2013-11-17 18:30 - 2012-08-13 19:21 - 00138056 _____ C:\Users\Johny\AppData\Roaming\PnkBstrK.sys
2013-11-16 20:40 - 2012-08-10 21:05 - 00000000 ___RD C:\Program Files\Skype
2013-11-16 20:40 - 2012-08-10 21:05 - 00000000 ____D C:\ProgramData\Skype
2013-11-16 19:30 - 2013-11-16 19:30 - 00001069 _____ C:\Users\Johny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber.lnk
2013-11-16 19:06 - 2012-08-09 22:51 - 00000000 ____D C:\Users\Johny\AppData\Local\Origin
2013-11-16 19:06 - 2012-08-09 22:51 - 00000000 ____D C:\ProgramData\Origin
2013-11-16 19:06 - 2012-08-09 22:33 - 00000000 ____D C:\Users\Johny\AppData\Roaming\Origin
2013-11-16 19:04 - 2013-11-16 19:04 - 00000000 ____D C:\Users\Johny\AppData\Local\ESN
2013-11-16 19:03 - 2012-09-10 08:44 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-11-14 22:02 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2013-11-13 03:05 - 2013-08-09 00:26 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 03:00 - 2012-08-13 11:30 - 80340640 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-11 05:50 - 2012-08-10 20:32 - 00230048 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-08 21:01 - 2012-08-09 19:59 - 00403440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2013-10-29 01:17 - 2013-10-29 01:17 - 00000000 ____D C:\Users\Johny\AppData\Roaming\AVAST Software
2013-10-29 01:13 - 2012-08-09 18:57 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-28 19:05 - 2013-04-10 19:19 - 00178304 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-28 19:05 - 2013-04-10 19:19 - 00049944 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-28 19:05 - 2012-08-09 19:59 - 00774392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-28 19:05 - 2012-08-09 19:59 - 00269216 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-28 19:05 - 2012-08-09 19:59 - 00079720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-28 19:05 - 2012-08-09 19:59 - 00070384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-28 19:05 - 2012-08-09 19:59 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-28 19:05 - 2012-08-09 19:59 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-28 19:05 - 2012-08-09 19:59 - 00035656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-28 19:04 - 2012-08-09 19:59 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-28 19:03 - 2009-07-14 03:04 - 00002577 _____ C:\Windows\system32\config.nt

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [ZoneAlarm Installer] - "C:\Users\Johny\AppData\Local\Temp\{907A1104-E812-4b5c-959B-E4DAB37A96AB}\Launcher.exe" "C:\Users\Johny\AppData\Local\Temp\{907A1104-E812-4b5c-959B-E4DAB37A96AB}\Install.exe" /r install /c "EN\INSTALL.XML" /w <===== ATTENTION
  HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
  HKLM\...\Run: [DivXMediaServer] - D:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-09-11] (DivX, LLC)
  HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
  HKCU\...\Run: [DAEMON Tools Lite] - D:\Program Files\DAEMON Tools Lite\DTLite.exe [3671904 2012-08-28] (DT Soft Ltd)
  HKCU\...\Run: [Google Update] - C:\Users\Johny\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-04] (Google Inc.)
  HKCU\...\Run: [] - [x]
  MountPoints2: G - G:\autorun.exe
  MountPoints2: {9304a38c-0757-11e2-8309-001d7d067cbd} - H:\NokiaPCIA_Autorun.exe
  
  URLSearchHook: HKCU - (No Name) - {91da5e8a-3318-4f8c-b67e-5964de3ab546} - No File
  SearchScopes: HKLM - DefaultScope value is missing.
  BHO: YoutubeAdblocker - {724EC357-AEB6-57C3-7075-0B8012E34A14} - C:\Program Files\YoutubeAdblocker\mufso_nnlt.dll No File
  
  CHR RestoreOnStartup: ""
  CHR DefaultSearchURL: (WebSearch) - http://websearch.pur-esult.info/?l=1&q={searchTerms}&pid=724&r=2013/11/25&hid=10034018869033879364&lg=EN&cc=CZ
  CHR DefaultSuggestURL: (WebSearch) - http://localhost
  
  2013-11-25 23:11 - 2013-11-25 23:11 - 00015327 _____ C:\Users\Johny\Desktop\LM.bat
  2013-11-25 23:05 - 2013-11-25 23:11 - 00029696 _____ C:\Users\Johny\AppData\Local\MSGBOX.EXE
  2013-11-25 23:04 - 2013-11-25 23:04 - 00112640 _____ (forum.viry.cz) C:\Users\Johny\Desktop\FRSTLauncher.exe
  2013-11-25 19:46 - 2013-11-25 19:52 - 00000000 ____D C:\Program Files\Searchh-NewTTab
  C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2894219329-1490401813-2391296416-1001Core.job
  C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2894219329-1490401813-2391296416-1001UA.job
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt