zdravim, netusite, jak se zbavit tohoto programu? Nemuzu ho nikde najit, ani nevim, ze bych ho nekdy instaloval.
diky moc
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
SpeedUpMyComputer
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119532
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: SpeedUpMyComputer
Zdravím!
Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .
Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: SpeedUpMyComputer
snad jsem to pochopil spravne, diky
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-12-2013
Ran by Kakánek (administrator) on MAROUŠKOVNÍK on 25-12-2013 22:18:35
Running from C:\Documents and Settings\Kakánek\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Realtek Semiconductor Corp.) C:\Documents and Settings\Kakánek\Local Settings\Temp\RtkBtMnt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904 2009-08-07] (Intel Corporation)
HKLM\...\Run: [LManager] - C:\Program Files\Launch Manager\LManager.exe [817672 2009-02-20] (Dritek System Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [18084864 2009-01-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AzMixerSel] - C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [53248 2006-07-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [IMJPMIG8.1] - C:\WINDOWS\ime\imjp8_1\imjpmig.exe [208952 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [MSPY2002] - C:\WINDOWS\system32\IME\PINTLGNT\IMSCINST.EXE [59392 2008-04-14] ()
HKLM\...\Run: [PHIME2002ASync] - C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [PHIME2002A] - C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [snp2uvc] - rundll32.exe C:\WINDOWS\system32\csnp2uvc.dll,ResetCIDS
HKLM\...\Run: [PLFSetL] - C:\WINDOWS\PLFSetL.exe [94208 2008-07-03] (sonix)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1434920 2009-02-27] (Synaptics Incorporated)
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894
HKCU\...\Run: [SpeedUpMyComputer] - C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2054776 2013-07-22] ()
HKU\Default User\...\Run: [ProductReg] - C:\Program Files\Acer\WR_PopUp\ProductReg.exe [ 2009-04-15] (Acer)
HKU\Default User\...\RunOnce: [ScrSav] -
HKU\Default User\...\RunOnce: [RUN] -
HKU\Marííía\...\Run: [SpybotSD TeaTimer] - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [ 2009-03-05] (Safer-Networking Ltd.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 8w58084376
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://www.icq.com/search/results.php?q ... &ch_id=osd
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=i ... 1I7ACAW_cs
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://www.icq.com/search/results.php?q ... &ch_id=osd
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=i ... 1I7ACAW_cs
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default
FF user.js: detected! => C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\user.js
FF DefaultSearchEngine: Seznam
FF SelectedSearchEngine: Seznam
FF Homepage: hxxp://seznam.cz
FF Keyword.URL: hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.1&q=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\2.0.40115.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8064.0206 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\Kakánek\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\Kakánek\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
FF Extension: Adblock Plus - C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Kak\u00E1nek\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.210.7) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U21) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\2.0.40115.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Kak\u00E1nek\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Kak\u00E1nek\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\pdf.dll No File
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Documents and Settings\Kak\u00E1nek\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.79\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR StartMenuInternet: Google Chrome - C:\Documents and Settings\Marííía\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"
==================== Drivers (Whitelisted) ====================
S4 abp480n5; C:\Windows\system32\DRIVERS\ABP480N5.SYS [23552 2008-04-14] (Microsoft Corporation)
R3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1570240 2009-06-03] (Atheros Communications, Inc.)
S3 btaudio; C:\Windows\System32\drivers\btaudio.sys [533024 2009-06-19] (Broadcom Corporation.)
R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [37160 2008-02-05] (Broadcom Corporation.)
R3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [991136 2009-04-16] (Broadcom Corporation.)
S3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [156816 2008-07-25] (Broadcom Corporation.)
S3 btwmodem; C:\Windows\System32\DRIVERS\btwmodem.sys [37032 2008-02-05] (Broadcom Corporation.)
S3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [45984 2009-06-19] (Broadcom Corporation.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 CYGF32X; C:\Windows\System32\drivers\CygF32x.sys [9600 2004-01-12] (Cygnal Integrated Products)
R3 L1e; C:\Windows\System32\DRIVERS\l1e51x86.sys [38400 2009-02-24] (Atheros Communications, Inc.)
S3 MPE; C:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 PPJoyBus; C:\Windows\System32\drivers\PPJoyBus.sys [11330 2003-08-10] (Deon van der Westhuysen)
S3 PPortJoystick; C:\Windows\System32\drivers\PPortJoy.sys [21922 2003-08-10] (Deon van der Westhuysen)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1769984 2007-10-01] ()
R1 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2006-07-24] ()
S3 dgderdrv; System32\drivers\dgderdrv.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 nmwcd; system32\drivers\ccdcmb.sys [x]
S3 nmwcdc; system32\drivers\ccdcmbo.sys [x]
S3 nmwcdnsu; system32\drivers\nmwcdnsu.sys [x]
S3 nmwcdnsuc; system32\drivers\nmwcdnsuc.sys [x]
S3 NPF; system32\drivers\npf.sys [x]
S3 NSNDIS5; \??\C:\WINDOWS\system32\NSNDIS5.SYS [x]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [x]
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [x]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [x]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [x]
S3 UsbserFilt; system32\DRIVERS\usbser_lowerfltj.sys [x]
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-25 22:18 - 2013-12-25 22:18 - 00014538 _____ C:\Documents and Settings\Kakánek\Plocha\FRST.txt
2013-12-25 22:17 - 2013-12-25 22:17 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Kakánek\Plocha\FRSTLauncher.exe
2013-12-25 22:16 - 2013-12-25 22:16 - 01061649 _____ (Farbar) C:\Documents and Settings\Kakánek\Plocha\FRST.exe
2013-12-25 22:16 - 2013-12-25 22:16 - 00000000 ____D C:\FRST
2013-12-21 14:12 - 2013-12-21 14:11 - 00515873 _____ C:\Documents and Settings\Marííía\Plocha\ů-.htm
2013-12-16 07:30 - 2011-06-21 11:24 - 00032768 _____ C:\WINDOWS\system32\Drivers\sp_rsdrv2.sys
2013-12-12 09:59 - 2013-12-12 10:31 - 292530159 _____ C:\Documents and Settings\Marííía\Plocha\TOM-A-JERRY-10.avi.part
2013-12-11 08:48 - 2013-12-11 08:48 - 09293192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-10 21:56 - 2013-12-10 21:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-06 21:51 - 2013-12-06 21:51 - 00000000 ____D C:\Documents and Settings\Marííía\Data aplikací\Exec
2013-12-06 21:51 - 2013-12-06 21:51 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\firebird
2013-12-06 21:50 - 2013-12-06 21:50 - 00001918 _____ C:\Documents and Settings\All Users\Plocha\Bontia Studio.lnk
2013-12-06 21:50 - 2013-12-06 21:50 - 00001918 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Bontia Studio.lnk
2013-12-06 21:50 - 2013-12-06 21:50 - 00000000 ____D C:\Program Files\Exec
2013-12-06 21:50 - 2013-12-06 21:50 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Exec
2013-12-06 21:41 - 2013-12-06 21:42 - 17632712 _____ C:\Documents and Settings\Marííía\Plocha\BontiaStudioSetupCS.exe
2013-11-30 07:06 - 2013-11-30 07:06 - 00000743 _____ C:\Documents and Settings\Marííía\Plocha\Zástupce - DSC_0077.lnk
2013-11-25 22:24 - 2013-11-25 23:09 - 00000000 ____D C:\WINDOWS\220FB0354744483A9A0B41DF77061583.TMP
2013-11-25 22:24 - 2013-11-25 22:24 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-25 22:24 - 2013-11-25 22:24 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
==================== One Month Modified Files and Folders =======
2013-12-25 22:18 - 2013-12-25 22:18 - 00014538 _____ C:\Documents and Settings\Kakánek\Plocha\FRST.txt
2013-12-25 22:18 - 2009-12-15 01:30 - 00000000 ____D C:\Documents and Settings\Kakánek\Plocha
2013-12-25 22:17 - 2013-12-25 22:17 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Kakánek\Plocha\FRSTLauncher.exe
2013-12-25 22:17 - 2009-08-05 20:21 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-12-25 22:16 - 2013-12-25 22:16 - 01061649 _____ (Farbar) C:\Documents and Settings\Kakánek\Plocha\FRST.exe
2013-12-25 22:16 - 2013-12-25 22:16 - 00000000 ____D C:\FRST
2013-12-25 21:48 - 2013-10-27 19:08 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-25 20:35 - 2009-08-05 18:25 - 02096550 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-25 20:34 - 2013-10-13 07:34 - 00032632 _____ C:\WINDOWS\SchedLgU.Txt
2013-12-25 20:34 - 2012-05-04 06:32 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-25 20:34 - 2011-06-19 09:04 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-12-25 20:34 - 2011-06-19 09:04 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-12-25 20:34 - 2009-12-20 19:30 - 00000178 ___SH C:\Documents and Settings\Marííía\ntuser.ini
2013-12-25 20:34 - 2009-08-05 18:29 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-25 20:33 - 2009-12-15 01:30 - 00000178 ___SH C:\Documents and Settings\Kakánek\ntuser.ini
2013-12-25 20:33 - 2009-08-05 20:21 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-12-25 20:33 - 2009-08-05 20:21 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-12-25 20:28 - 2009-12-20 19:30 - 00000000 ____D C:\Documents and Settings\Marííía\Plocha
2013-12-25 08:29 - 2011-10-18 07:24 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cc8d5e96c96508.job
2013-12-24 15:01 - 2013-10-13 07:34 - 00000288 _____ C:\WINDOWS\Tasks\Registry Optimizer_DEFAULT.job
2013-12-21 14:11 - 2013-12-21 14:12 - 00515873 _____ C:\Documents and Settings\Marííía\Plocha\ů-.htm
2013-12-21 07:50 - 2012-07-12 06:45 - 00001032 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cd5ff190c087ca.job
2013-12-20 18:12 - 2011-10-22 17:07 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1005Core1cc90d4b0d4a376.job
2013-12-16 07:30 - 2009-12-15 01:30 - 00000000 __RHD C:\Documents and Settings\Kakánek\Data aplikací
2013-12-12 10:31 - 2013-12-12 09:59 - 292530159 _____ C:\Documents and Settings\Marííía\Plocha\TOM-A-JERRY-10.avi.part
2013-12-12 09:58 - 2010-05-02 18:05 - 00058368 _____ C:\Documents and Settings\Marííía\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-12 09:39 - 2011-12-04 11:00 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-12-12 09:39 - 2010-11-17 13:04 - 00000000 ____D C:\WINDOWS\Minidump
2013-12-12 09:39 - 2009-12-20 19:30 - 00000000 ____D C:\Documents and Settings\Marííía
2013-12-11 08:48 - 2013-12-11 08:48 - 09293192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-11 08:48 - 2013-03-22 19:50 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-11 08:48 - 2011-10-21 19:57 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-10 21:56 - 2013-12-10 21:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-10 21:56 - 2011-10-29 23:02 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-12-07 17:29 - 2009-12-18 01:23 - 00003069 _____ C:\WINDOWS\wincmd.ini
2013-12-07 08:50 - 2009-08-05 18:30 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-12-06 21:51 - 2013-12-06 21:51 - 00000000 ____D C:\Documents and Settings\Marííía\Data aplikací\Exec
2013-12-06 21:51 - 2013-12-06 21:51 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\firebird
2013-12-06 21:51 - 2009-12-20 19:30 - 00000000 __RHD C:\Documents and Settings\Marííía\Data aplikací
2013-12-06 21:50 - 2013-12-06 21:50 - 00001918 _____ C:\Documents and Settings\All Users\Plocha\Bontia Studio.lnk
2013-12-06 21:50 - 2013-12-06 21:50 - 00001918 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Bontia Studio.lnk
2013-12-06 21:50 - 2013-12-06 21:50 - 00000000 ____D C:\Program Files\Exec
2013-12-06 21:50 - 2013-12-06 21:50 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Exec
2013-12-06 21:49 - 2009-08-05 20:22 - 01124918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-06 21:44 - 2009-12-18 22:19 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-12-06 21:42 - 2013-12-06 21:41 - 17632712 _____ C:\Documents and Settings\Marííía\Plocha\BontiaStudioSetupCS.exe
2013-11-30 07:06 - 2013-11-30 07:06 - 00000743 _____ C:\Documents and Settings\Marííía\Plocha\Zástupce - DSC_0077.lnk
2013-11-28 15:44 - 2009-08-05 18:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2013-11-25 23:09 - 2013-11-25 22:24 - 00000000 ____D C:\WINDOWS\220FB0354744483A9A0B41DF77061583.TMP
2013-11-25 23:09 - 2009-12-15 01:30 - 00000000 ___RD C:\Documents and Settings\Kakánek\Nabídka Start\Programy
2013-11-25 22:38 - 2009-12-20 19:30 - 00001603 _____ C:\Documents and Settings\Marííía\Nabídka Start\Programy\Vzdálená pomoc.lnk
2013-11-25 22:37 - 2009-12-15 01:30 - 00001603 _____ C:\Documents and Settings\Kakánek\Nabídka Start\Programy\Vzdálená pomoc.lnk
2013-11-25 22:35 - 2009-08-05 18:26 - 00001611 _____ C:\Documents and Settings\All Users\Nabídka Start\Přístup a výchozí nastavení programů.lnk
2013-11-25 22:35 - 2009-08-05 18:26 - 00001603 _____ C:\Documents and Settings\Default User\Nabídka Start\Programy\Vzdálená pomoc.lnk
2013-11-25 22:35 - 2009-08-05 18:26 - 00001511 _____ C:\Documents and Settings\All Users\Nabídka Start\Windows Update.lnk
2013-11-25 22:24 - 2013-11-25 22:24 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-25 22:24 - 2013-11-25 22:24 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
Some content of TEMP:
====================
C:\Documents and Settings\Default User\Local Settings\Temp\RtkBtMnt.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\AskPIP_FF_.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\install_flashplayer11x32_mssa_aaa_aih.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\jre-7u45-windows-i586-iftw.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\RtkBtMnt.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\SHSetup.exe
C:\Documents and Settings\Marííía\Local Settings\Temp\RtkBtMnt.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2009-08-06 04:07] - [2008-04-14 13:00] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\Windows\System32\winlogon.exe
[2009-08-06 04:07] - [2008-04-14 13:00] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\Windows\System32\svchost.exe
[2009-08-06 04:07] - [2008-04-14 13:00] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2009-08-06 04:07] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2009-08-06 04:07] - [2008-04-14 13:00] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\Windows\System32\userinit.exe
[2009-08-06 04:07] - [2008-04-14 13:00] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\Drivers\volsnap.sys
[2009-08-06 04:07] - [2008-04-14 13:00] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
==================== End Of Log ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-12-2013
Ran by Kakánek (administrator) on MAROUŠKOVNÍK on 25-12-2013 22:18:35
Running from C:\Documents and Settings\Kakánek\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Realtek Semiconductor Corp.) C:\Documents and Settings\Kakánek\Local Settings\Temp\RtkBtMnt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904 2009-08-07] (Intel Corporation)
HKLM\...\Run: [LManager] - C:\Program Files\Launch Manager\LManager.exe [817672 2009-02-20] (Dritek System Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [18084864 2009-01-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AzMixerSel] - C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [53248 2006-07-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [IMJPMIG8.1] - C:\WINDOWS\ime\imjp8_1\imjpmig.exe [208952 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [MSPY2002] - C:\WINDOWS\system32\IME\PINTLGNT\IMSCINST.EXE [59392 2008-04-14] ()
HKLM\...\Run: [PHIME2002ASync] - C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [PHIME2002A] - C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [snp2uvc] - rundll32.exe C:\WINDOWS\system32\csnp2uvc.dll,ResetCIDS
HKLM\...\Run: [PLFSetL] - C:\WINDOWS\PLFSetL.exe [94208 2008-07-03] (sonix)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1434920 2009-02-27] (Synaptics Incorporated)
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894
HKCU\...\Run: [SpeedUpMyComputer] - C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2054776 2013-07-22] ()
HKU\Default User\...\Run: [ProductReg] - C:\Program Files\Acer\WR_PopUp\ProductReg.exe [ 2009-04-15] (Acer)
HKU\Default User\...\RunOnce: [ScrSav] -
HKU\Default User\...\RunOnce: [RUN] -
HKU\Marííía\...\Run: [SpybotSD TeaTimer] - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [ 2009-03-05] (Safer-Networking Ltd.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 8w58084376
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://www.icq.com/search/results.php?q ... &ch_id=osd
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=i ... 1I7ACAW_cs
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://www.icq.com/search/results.php?q ... &ch_id=osd
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=i ... 1I7ACAW_cs
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default
FF user.js: detected! => C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\user.js
FF DefaultSearchEngine: Seznam
FF SelectedSearchEngine: Seznam
FF Homepage: hxxp://seznam.cz
FF Keyword.URL: hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.1&q=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\2.0.40115.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8064.0206 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\Kakánek\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\Kakánek\Local Settings\Data aplikací\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
FF Extension: Adblock Plus - C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Kak\u00E1nek\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.210.7) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U21) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\2.0.40115.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Kak\u00E1nek\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Kak\u00E1nek\Local Settings\Data aplikac\u00ED\Google\Chrome\Application\15.0.874.121\pdf.dll No File
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Documents and Settings\Kak\u00E1nek\Local Settings\Data aplikac\u00ED\Google\Update\1.3.21.79\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR StartMenuInternet: Google Chrome - C:\Documents and Settings\Marííía\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"
==================== Drivers (Whitelisted) ====================
S4 abp480n5; C:\Windows\system32\DRIVERS\ABP480N5.SYS [23552 2008-04-14] (Microsoft Corporation)
R3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1570240 2009-06-03] (Atheros Communications, Inc.)
S3 btaudio; C:\Windows\System32\drivers\btaudio.sys [533024 2009-06-19] (Broadcom Corporation.)
R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [37160 2008-02-05] (Broadcom Corporation.)
R3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [991136 2009-04-16] (Broadcom Corporation.)
S3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [156816 2008-07-25] (Broadcom Corporation.)
S3 btwmodem; C:\Windows\System32\DRIVERS\btwmodem.sys [37032 2008-02-05] (Broadcom Corporation.)
S3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [45984 2009-06-19] (Broadcom Corporation.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 CYGF32X; C:\Windows\System32\drivers\CygF32x.sys [9600 2004-01-12] (Cygnal Integrated Products)
R3 L1e; C:\Windows\System32\DRIVERS\l1e51x86.sys [38400 2009-02-24] (Atheros Communications, Inc.)
S3 MPE; C:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 PPJoyBus; C:\Windows\System32\drivers\PPJoyBus.sys [11330 2003-08-10] (Deon van der Westhuysen)
S3 PPortJoystick; C:\Windows\System32\drivers\PPortJoy.sys [21922 2003-08-10] (Deon van der Westhuysen)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1769984 2007-10-01] ()
R1 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2006-07-24] ()
S3 dgderdrv; System32\drivers\dgderdrv.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 nmwcd; system32\drivers\ccdcmb.sys [x]
S3 nmwcdc; system32\drivers\ccdcmbo.sys [x]
S3 nmwcdnsu; system32\drivers\nmwcdnsu.sys [x]
S3 nmwcdnsuc; system32\drivers\nmwcdnsuc.sys [x]
S3 NPF; system32\drivers\npf.sys [x]
S3 NSNDIS5; \??\C:\WINDOWS\system32\NSNDIS5.SYS [x]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [x]
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [x]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [x]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [x]
S3 UsbserFilt; system32\DRIVERS\usbser_lowerfltj.sys [x]
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-25 22:18 - 2013-12-25 22:18 - 00014538 _____ C:\Documents and Settings\Kakánek\Plocha\FRST.txt
2013-12-25 22:17 - 2013-12-25 22:17 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Kakánek\Plocha\FRSTLauncher.exe
2013-12-25 22:16 - 2013-12-25 22:16 - 01061649 _____ (Farbar) C:\Documents and Settings\Kakánek\Plocha\FRST.exe
2013-12-25 22:16 - 2013-12-25 22:16 - 00000000 ____D C:\FRST
2013-12-21 14:12 - 2013-12-21 14:11 - 00515873 _____ C:\Documents and Settings\Marííía\Plocha\ů-.htm
2013-12-16 07:30 - 2011-06-21 11:24 - 00032768 _____ C:\WINDOWS\system32\Drivers\sp_rsdrv2.sys
2013-12-12 09:59 - 2013-12-12 10:31 - 292530159 _____ C:\Documents and Settings\Marííía\Plocha\TOM-A-JERRY-10.avi.part
2013-12-11 08:48 - 2013-12-11 08:48 - 09293192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-10 21:56 - 2013-12-10 21:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-06 21:51 - 2013-12-06 21:51 - 00000000 ____D C:\Documents and Settings\Marííía\Data aplikací\Exec
2013-12-06 21:51 - 2013-12-06 21:51 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\firebird
2013-12-06 21:50 - 2013-12-06 21:50 - 00001918 _____ C:\Documents and Settings\All Users\Plocha\Bontia Studio.lnk
2013-12-06 21:50 - 2013-12-06 21:50 - 00001918 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Bontia Studio.lnk
2013-12-06 21:50 - 2013-12-06 21:50 - 00000000 ____D C:\Program Files\Exec
2013-12-06 21:50 - 2013-12-06 21:50 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Exec
2013-12-06 21:41 - 2013-12-06 21:42 - 17632712 _____ C:\Documents and Settings\Marííía\Plocha\BontiaStudioSetupCS.exe
2013-11-30 07:06 - 2013-11-30 07:06 - 00000743 _____ C:\Documents and Settings\Marííía\Plocha\Zástupce - DSC_0077.lnk
2013-11-25 22:24 - 2013-11-25 23:09 - 00000000 ____D C:\WINDOWS\220FB0354744483A9A0B41DF77061583.TMP
2013-11-25 22:24 - 2013-11-25 22:24 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-25 22:24 - 2013-11-25 22:24 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
==================== One Month Modified Files and Folders =======
2013-12-25 22:18 - 2013-12-25 22:18 - 00014538 _____ C:\Documents and Settings\Kakánek\Plocha\FRST.txt
2013-12-25 22:18 - 2009-12-15 01:30 - 00000000 ____D C:\Documents and Settings\Kakánek\Plocha
2013-12-25 22:17 - 2013-12-25 22:17 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Kakánek\Plocha\FRSTLauncher.exe
2013-12-25 22:17 - 2009-08-05 20:21 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-12-25 22:16 - 2013-12-25 22:16 - 01061649 _____ (Farbar) C:\Documents and Settings\Kakánek\Plocha\FRST.exe
2013-12-25 22:16 - 2013-12-25 22:16 - 00000000 ____D C:\FRST
2013-12-25 21:48 - 2013-10-27 19:08 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-25 20:35 - 2009-08-05 18:25 - 02096550 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-25 20:34 - 2013-10-13 07:34 - 00032632 _____ C:\WINDOWS\SchedLgU.Txt
2013-12-25 20:34 - 2012-05-04 06:32 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-25 20:34 - 2011-06-19 09:04 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-12-25 20:34 - 2011-06-19 09:04 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-12-25 20:34 - 2009-12-20 19:30 - 00000178 ___SH C:\Documents and Settings\Marííía\ntuser.ini
2013-12-25 20:34 - 2009-08-05 18:29 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-25 20:33 - 2009-12-15 01:30 - 00000178 ___SH C:\Documents and Settings\Kakánek\ntuser.ini
2013-12-25 20:33 - 2009-08-05 20:21 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-12-25 20:33 - 2009-08-05 20:21 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-12-25 20:28 - 2009-12-20 19:30 - 00000000 ____D C:\Documents and Settings\Marííía\Plocha
2013-12-25 08:29 - 2011-10-18 07:24 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cc8d5e96c96508.job
2013-12-24 15:01 - 2013-10-13 07:34 - 00000288 _____ C:\WINDOWS\Tasks\Registry Optimizer_DEFAULT.job
2013-12-21 14:11 - 2013-12-21 14:12 - 00515873 _____ C:\Documents and Settings\Marííía\Plocha\ů-.htm
2013-12-21 07:50 - 2012-07-12 06:45 - 00001032 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cd5ff190c087ca.job
2013-12-20 18:12 - 2011-10-22 17:07 - 00000982 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1005Core1cc90d4b0d4a376.job
2013-12-16 07:30 - 2009-12-15 01:30 - 00000000 __RHD C:\Documents and Settings\Kakánek\Data aplikací
2013-12-12 10:31 - 2013-12-12 09:59 - 292530159 _____ C:\Documents and Settings\Marííía\Plocha\TOM-A-JERRY-10.avi.part
2013-12-12 09:58 - 2010-05-02 18:05 - 00058368 _____ C:\Documents and Settings\Marííía\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-12 09:39 - 2011-12-04 11:00 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-12-12 09:39 - 2010-11-17 13:04 - 00000000 ____D C:\WINDOWS\Minidump
2013-12-12 09:39 - 2009-12-20 19:30 - 00000000 ____D C:\Documents and Settings\Marííía
2013-12-11 08:48 - 2013-12-11 08:48 - 09293192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-11 08:48 - 2013-03-22 19:50 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-11 08:48 - 2011-10-21 19:57 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-10 21:56 - 2013-12-10 21:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-10 21:56 - 2011-10-29 23:02 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-12-07 17:29 - 2009-12-18 01:23 - 00003069 _____ C:\WINDOWS\wincmd.ini
2013-12-07 08:50 - 2009-08-05 18:30 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-12-06 21:51 - 2013-12-06 21:51 - 00000000 ____D C:\Documents and Settings\Marííía\Data aplikací\Exec
2013-12-06 21:51 - 2013-12-06 21:51 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\firebird
2013-12-06 21:51 - 2009-12-20 19:30 - 00000000 __RHD C:\Documents and Settings\Marííía\Data aplikací
2013-12-06 21:50 - 2013-12-06 21:50 - 00001918 _____ C:\Documents and Settings\All Users\Plocha\Bontia Studio.lnk
2013-12-06 21:50 - 2013-12-06 21:50 - 00001918 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Bontia Studio.lnk
2013-12-06 21:50 - 2013-12-06 21:50 - 00000000 ____D C:\Program Files\Exec
2013-12-06 21:50 - 2013-12-06 21:50 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Exec
2013-12-06 21:49 - 2009-08-05 20:22 - 01124918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-06 21:44 - 2009-12-18 22:19 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-12-06 21:42 - 2013-12-06 21:41 - 17632712 _____ C:\Documents and Settings\Marííía\Plocha\BontiaStudioSetupCS.exe
2013-11-30 07:06 - 2013-11-30 07:06 - 00000743 _____ C:\Documents and Settings\Marííía\Plocha\Zástupce - DSC_0077.lnk
2013-11-28 15:44 - 2009-08-05 18:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2013-11-25 23:09 - 2013-11-25 22:24 - 00000000 ____D C:\WINDOWS\220FB0354744483A9A0B41DF77061583.TMP
2013-11-25 23:09 - 2009-12-15 01:30 - 00000000 ___RD C:\Documents and Settings\Kakánek\Nabídka Start\Programy
2013-11-25 22:38 - 2009-12-20 19:30 - 00001603 _____ C:\Documents and Settings\Marííía\Nabídka Start\Programy\Vzdálená pomoc.lnk
2013-11-25 22:37 - 2009-12-15 01:30 - 00001603 _____ C:\Documents and Settings\Kakánek\Nabídka Start\Programy\Vzdálená pomoc.lnk
2013-11-25 22:35 - 2009-08-05 18:26 - 00001611 _____ C:\Documents and Settings\All Users\Nabídka Start\Přístup a výchozí nastavení programů.lnk
2013-11-25 22:35 - 2009-08-05 18:26 - 00001603 _____ C:\Documents and Settings\Default User\Nabídka Start\Programy\Vzdálená pomoc.lnk
2013-11-25 22:35 - 2009-08-05 18:26 - 00001511 _____ C:\Documents and Settings\All Users\Nabídka Start\Windows Update.lnk
2013-11-25 22:24 - 2013-11-25 22:24 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-25 22:24 - 2013-11-25 22:24 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
Some content of TEMP:
====================
C:\Documents and Settings\Default User\Local Settings\Temp\RtkBtMnt.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\AskPIP_FF_.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\install_flashplayer11x32_mssa_aaa_aih.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\jre-7u45-windows-i586-iftw.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\RtkBtMnt.exe
C:\Documents and Settings\Kakánek\Local Settings\Temp\SHSetup.exe
C:\Documents and Settings\Marííía\Local Settings\Temp\RtkBtMnt.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2009-08-06 04:07] - [2008-04-14 13:00] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1
C:\Windows\System32\winlogon.exe
[2009-08-06 04:07] - [2008-04-14 13:00] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea
C:\Windows\System32\svchost.exe
[2009-08-06 04:07] - [2008-04-14 13:00] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93
C:\Windows\System32\services.exe
[2009-08-06 04:07] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7
C:\Windows\System32\User32.dll
[2009-08-06 04:07] - [2008-04-14 13:00] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53
C:\Windows\System32\userinit.exe
[2009-08-06 04:07] - [2008-04-14 13:00] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239
C:\Windows\System32\Drivers\volsnap.sys
[2009-08-06 04:07] - [2008-04-14 13:00] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1
==================== End Of Log ============================
-
Rudy
- Site Admin
- Příspěvky: 119532
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: SpeedUpMyComputer
Otevřte poznámkový blok a zkopírujte do něj:
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1005Core1cc90d4b0d4a376.job
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKCU\...\Run: [SpeedUpMyComputer] - C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2054776 2013-07-22] ()
C:\Program Files\SmartTweak\SpeedUpMyComputer
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://www.icq.com/search/results.php?q ... &ch_id=osd
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://www.icq.com/search/results.php?q ... &ch_id=osd
FF ProfilePath: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default
FF Keyword.URL: hxxp://search.icq.com/search/afe_result ... 2.0.0.1&q=
FF SearchPlugin: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml
C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml
C:\WINDOWS\220FB0354744483A9A0B41DF77061583.TMP
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cc8d5e96c96508.job
C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cd5ff190c087ca.job
C:\Documents and Settings\Marííía\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Documents and Settings\Default User\Local Settings\Temp
End
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1005Core1cc90d4b0d4a376.job
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: SpeedUpMyComputer
tady to je
diky
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 25-12-2013
Ran by Kakánek at 2013-12-25 23:23:16 Run:1
Running from C:\Documents and Settings\Kakánek\Plocha
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKCU\...\Run: [SpeedUpMyComputer] - C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2054776 2013-07-22] ()
C:\Program Files\SmartTweak\SpeedUpMyComputer
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://www.icq.com/search/results.php?q ... &ch_id=osd
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://www.icq.com/search/results.php?q ... &ch_id=osd
FF ProfilePath: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default
FF Keyword.URL: hxxp://search.icq.com/search/afe_result ... 2.0.0.1&q=
FF SearchPlugin: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml
C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml
C:\WINDOWS\220FB0354744483A9A0B41DF77061583.TMP
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cc8d5e96c96508.job
C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cd5ff190c087ca.job
C:\Documents and Settings\Marííía\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Documents and Settings\Default User\Local Settings\Temp
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\SpeedUpMyComputer => Value deleted successfully.
C:\Program Files\SmartTweak\SpeedUpMyComputer => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\ICQ Search => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{6552C7DD-90A4-4387-B795-F8F96747DE19} => Key not found.
C:\Program Files\SmartTweak\SpeedUpMyComputer => Should not be moved.
Firefox Keyword.URL deleted successfully.
C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml => Moved successfully.
"C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml" => File/Directory not found.
C:\WINDOWS\220FB0354744483A9A0B41DF77061583.TMP => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cc8d5e96c96508.job => Moved successfully.
C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cd5ff190c087ca.job => Moved successfully.
C:\Documents and Settings\Marííía\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => Moved successfully.
C:\Documents and Settings\Default User\Local Settings\Temp => Moved successfully.
==== End of Fixlog ====
EDIT:
s timhle mam delat co?
Diky za doplneni
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1005Core1cc90d4b0d4a376.job
diky
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 25-12-2013
Ran by Kakánek at 2013-12-25 23:23:16 Run:1
Running from C:\Documents and Settings\Kakánek\Plocha
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKCU\...\Run: [SpeedUpMyComputer] - C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2054776 2013-07-22] ()
C:\Program Files\SmartTweak\SpeedUpMyComputer
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://www.icq.com/search/results.php?q ... &ch_id=osd
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://www.icq.com/search/results.php?q ... &ch_id=osd
FF ProfilePath: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default
FF Keyword.URL: hxxp://search.icq.com/search/afe_result ... 2.0.0.1&q=
FF SearchPlugin: C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml
C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml
C:\WINDOWS\220FB0354744483A9A0B41DF77061583.TMP
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cc8d5e96c96508.job
C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cd5ff190c087ca.job
C:\Documents and Settings\Marííía\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Documents and Settings\Default User\Local Settings\Temp
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\SpeedUpMyComputer => Value deleted successfully.
C:\Program Files\SmartTweak\SpeedUpMyComputer => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\ICQ Search => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{6552C7DD-90A4-4387-B795-F8F96747DE19} => Key not found.
C:\Program Files\SmartTweak\SpeedUpMyComputer => Should not be moved.
Firefox Keyword.URL deleted successfully.
C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml => Moved successfully.
"C:\Documents and Settings\Kakánek\Data aplikací\Mozilla\Firefox\Profiles\o6wivkdq.default\searchplugins\icqplugin.xml" => File/Directory not found.
C:\WINDOWS\220FB0354744483A9A0B41DF77061583.TMP => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cc8d5e96c96508.job => Moved successfully.
C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1006Core1cd5ff190c087ca.job => Moved successfully.
C:\Documents and Settings\Marííía\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => Moved successfully.
C:\Documents and Settings\Default User\Local Settings\Temp => Moved successfully.
==== End of Fixlog ====
EDIT:
s timhle mam delat co?
Diky za doplneni
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-4210259494-2027339946-1710738407-1005Core1cc90d4b0d4a376.job
-
Rudy
- Site Admin
- Příspěvky: 119532
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: SpeedUpMyComputer
Tohle je pro mou kontrolu, co bylo smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: SpeedUpMyComputer
vypada to, ze je konecne pryc 
diky moc
diky moc
-
Rudy
- Site Admin
- Příspěvky: 119532
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: SpeedUpMyComputer
Rádo se stalo!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?