VIRY.CZ

Dobrý večer,
prosím Vás mám problém s NTB. Před týdnem se začala objevovat vyskakující reklama a během serfování je PC strašně pomalý. NTB užívají rodiče a od nich se žádnou rozumnou informaci nedozvím
Prosím o kontrolu logu, předem děkuji.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Toshiba at 2014-10-13 21:05:39
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 26 GB (34%) free of 76 GB
Total RAM: 2045 MB (25% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:08:49, on 13.10.2014
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16575)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\conime.exe
C:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\cmd.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Norton 360\Engine\21.6.0.32\coNatHst.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Toshiba\Downloads\RSIT.exe
C:\Program Files\trend micro\Toshiba.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/?utm_source=ch-to ... paign=home
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://toolbar.inbox.com/search/ie.aspx ... =11&lng=cs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://toolbar.inbox.com/help/sa_custom ... tbid=80093
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://toolbar.inbox.com/help/sa_custom ... tbid=80093
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\21.6.0.32\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL
O2 - BHO: AppGraffiti - {6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} - C:\PROGRA~1\APPGRA~1\APPGRA~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\21.6.0.32\coIEPlg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKCU\..\Run: [NextLive] C:\Windows\system32\rundll32.exe "C:\Users\Toshiba\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\Programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: eBay - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url2.pl?CZ (file missing)
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/red ... &site=home (file missing)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programy\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: Služba Google Update (gupdate1ca69de35625797) (gupdate1ca69de35625797) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

--
End of file - 8327 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\User_Feed_Synchronization-{F4F1435F-FE23-4335-A25A-9F2520EC2EA5}.job - C:\Windows\system32\msfeedssync.exe sync

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files\Norton 360\Engine\21.6.0.32\coIEPlg.dll [2014-09-20 655200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL [2014-08-26 392336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}]
AppGraffiti - C:\PROGRA~1\APPGRA~1\APPGRA~1.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2007-06-11 501384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton 360\Engine\21.6.0.32\coIEPlg.dll [2014-09-20 655200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-04-25 4444160]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2007-05-23 509496]
"KeNotify"=C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [2006-11-06 34352]
"NDSTray.exe"=NDSTray.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NextLive"=C:\Users\Toshiba\AppData\Roaming\newnext.me\nengine.dll [2013-11-14 1283584]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\atashost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-10-13 21:05:41 ----D---- C:\Program Files\trend micro
2014-10-13 21:05:39 ----D---- C:\rsit
2014-10-10 15:51:01 ----D---- C:\Program Files\Synaptics
2014-10-09 18:45:35 ----SHD---- C:\Config.Msi
2014-09-25 16:08:08 ----A---- C:\Windows\system32\tzres.dll
2014-09-25 16:01:31 ----A---- C:\Windows\system32\FlashPlayerInstaller.exe

======List of files/folders modified in the last 1 month======

2014-10-13 21:05:41 ----RD---- C:\Program Files
2014-10-13 21:05:35 ----D---- C:\Windows\Temp
2014-10-10 17:45:53 ----D---- C:\Windows\System32
2014-10-10 17:35:56 ----D---- C:\Windows\system32\Tasks
2014-10-10 17:35:02 ----D---- C:\ProgramData\Norton
2014-10-10 17:29:27 ----D---- C:\Windows\system32\drivers\N360
2014-10-10 17:29:09 ----D---- C:\Windows\system32\catroot
2014-10-10 17:29:08 ----D---- C:\Windows\inf
2014-10-10 17:28:58 ----D---- C:\Windows\system32\drivers
2014-10-10 17:27:58 ----D---- C:\Users\Toshiba\AppData\Roaming\newnext.me
2014-10-10 17:26:24 ----D---- C:\Windows
2014-10-10 17:25:45 ----D---- C:\Program Files\Common Files\Symantec Shared
2014-10-10 17:21:30 ----DC---- C:\Windows\system32\DRVSTORE
2014-10-10 17:19:23 ----D---- C:\Program Files\Norton 360
2014-10-10 17:17:46 ----D---- C:\Program Files\NortonInstaller
2014-10-10 16:39:56 ----D---- C:\Windows\rescache
2014-10-10 15:52:30 ----D---- C:\Windows\tracing
2014-10-10 15:46:37 ----D---- C:\Windows\winsxs
2014-10-10 15:44:05 ----D---- C:\Windows\system32\catroot2
2014-10-10 15:42:11 ----SHD---- C:\System Volume Information
2014-10-10 15:21:39 ----D---- C:\Users\Toshiba\AppData\Roaming\Skype
2014-10-10 15:10:41 ----D---- C:\Program Files\Crawler
2014-10-10 15:08:33 ----D---- C:\Windows\Tasks
2014-10-10 15:02:15 ----D---- C:\ProgramData\Ulead Systems
2014-10-10 15:02:15 ----D---- C:\Program Files\Common Files\Ulead Systems
2014-10-10 14:59:31 ----HD---- C:\Program Files\InstallShield Installation Information
2014-10-10 14:56:19 ----SHD---- C:\Windows\Installer
2014-10-09 21:11:26 ----D---- C:\Users\Toshiba\AppData\Roaming\Seznam.cz
2014-10-09 21:10:24 ----D---- C:\Program Files\Seznam.cz
2014-10-09 21:06:35 ----HD---- C:\ProgramData
2014-10-09 21:04:53 ----D---- C:\Program Files\TOSHIBA
2014-10-09 21:04:53 ----D---- C:\Program Files\Common Files
2014-10-09 18:44:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-10-09 18:44:07 ----D---- C:\Windows\system32\quicktime
2014-10-09 18:43:58 ----D---- C:\Windows\Prefetch
2014-10-09 07:41:32 ----D---- C:\Windows\system32\WDI
2014-10-08 20:52:21 ----D---- C:\Windows\system32\config
2014-10-08 20:52:15 ----D---- C:\Windows\system32\spool
2014-10-08 20:52:15 ----D---- C:\Windows\system32\Msdtc
2014-10-08 20:52:14 ----D---- C:\Windows\system32\wbem
2014-10-08 20:52:14 ----D---- C:\Windows\registration
2014-09-25 16:10:10 ----D---- C:\Windows\system32\cs-CZ
2014-09-25 16:02:10 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-09-15 09:06:04 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2006-07-28 19456]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2007-12-30 715248]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\N360\1506000.020\SYMDS.SYS [2014-08-26 367704]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\N360\1506000.020\SYMEFA.SYS [2014-08-26 936152]
R0 tos_sps32;TOSHIBA tos_sps32 Service; C:\Windows\system32\DRIVERS\tos_sps32.sys [2007-04-27 285184]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 23640]
R1 BHDrvx86;BHDrvx86; \??\C:\Program Files\Norton 360\NortonData\21.6.0.32\Definitions\BASHDefs\20140801.001\BHDrvx86.sys [2014-08-26 1101616]
R1 ccSet_N360;N360 Settings Manager; C:\Windows\system32\drivers\N360\1506000.020\ccSetx86.sys [2014-02-21 127064]
R1 IDSVix86;IDSVix86; \??\C:\Program Files\Norton 360\NortonData\21.6.0.32\Definitions\IPSDefs\20141009.002\IDSvix86.sys [2014-10-09 476888]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\Windows\system32\drivers\N360\1506000.020\SRTSPX.SYS [2014-08-26 32984]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\N360\1506000.020\Ironx86.SYS [2014-08-06 209624]
R1 SYMTDIv;Symantec Vista Network Dispatch Driver; C:\Windows\system32\drivers\N360\1506000.020\SYMTDIV.SYS [2014-08-26 384728]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-02 983552]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-07-29 919552]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-05-16 2602496]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-04-25 1771944]
R3 NAVENG;NAVENG; \??\C:\Program Files\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20141009.016\NAVENG.SYS [2014-08-11 95704]
R3 NAVEX15;NAVEX15; \??\C:\Program Files\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20141009.016\NAVEX15.SYS [2014-08-11 1636696]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 SRTSP;Symantec Real Time Storage Protection; C:\Windows\System32\Drivers\N360\1506000.020\SRTSP.SYS [2014-08-26 664792]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2014-10-10 142936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-03-20 208688]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-18 16128]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2009-06-19 290816]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S2 DgiVecp;Team MFP Comm Driver; C:\Windows\System32\Drivers\DgiVecp.sys [2003-07-29 40448]
S3 ag5rnhn2;ag5rnhn2; C:\Windows\system32\drivers\ag5rnhn2.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys []
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 23424]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 102912]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 101120]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS [2008-03-29 21248]
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS [2008-03-29 20096]
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 28672]
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-12-25 67072]
S3 SYMFW;Symantec Network Filter Driver; C:\Windows\System32\Drivers\N360\0308030.006\SYMFW.SYS []
S3 SYMNDISV;Symantec Network Filter Driver; C:\Windows\System32\Drivers\N360\0308030.006\SYMNDISV.SYS []
S3 Tosrfcom;Tosrfcom; C:\Windows\system32\drivers\Tosrfcom.sys []
S3 TpChoice;Touch Pad Detection Filter driver; C:\Windows\system32\DRIVERS\TpChoice.sys []
S3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-07-12 73344]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 UVCFTR;UVCFTR; C:\Windows\system32\DRIVERS\UVCFTR_S.SYS [2007-03-12 11264]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 F-Secure Filter;F-Secure File System Filter; \??\C:\Program Files\F-Secure\Anti-Virus\Win2K\FSfilter.sys []
S4 F-Secure Recognizer;F-Secure File System Recognizer; \??\C:\Program Files\F-Secure\Anti-Virus\Win2K\FSrec.sys []
S4 KR10I;KR10I; C:\Windows\system32\drivers\kr10i.sys [2007-01-18 219392]
S4 KR10N;KR10N; C:\Windows\system32\drivers\kr10n.sys [2007-01-18 211072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-04 64704]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-05-16 602112]
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2006-11-14 40960]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 FSMA;FSMA; C:\Program Files\F-Secure\Common\FSMA32.EXE [2008-12-04 117400]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 N360;Norton 360; C:\Program Files\Norton 360\Engine\21.6.0.32\N360.exe [2014-09-21 265040]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2006-05-25 114688]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2007-03-29 427576]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate1ca69de35625797;Služba Google Update (gupdate1ca69de35625797); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-20 133104]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-25 267440]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-20 133104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-13 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-01-19 115608]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Dobrý večer,
zde zasílám logy:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.3 (10.14.2014:1)
OS: Windows Vista (TM) Home Premium x86
Ran by Toshiba on Łt 14.10.2014 at 20:49:37,89
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\nextlive



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}



~~~ Files

Successfully deleted: [File] "C:\Users\Toshiba\appdata\local\google\chrome\user data\default\local storage\http_www.speedanalysis.com_0.localstorage"
Successfully deleted: [File] "C:\Users\Toshiba\appdata\local\google\chrome\user data\default\local storage\http_www.speedanalysis.com_0.localstorage-journal"
Successfully deleted: [File] "C:\Users\Toshiba\appdata\local\google\chrome\user data\default\local storage\http_www.superfish.com_0.localstorage"
Successfully deleted: [File] "C:\Users\Toshiba\appdata\local\google\chrome\user data\default\local storage\http_www.superfish.com_0.localstorage-journal"



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Toshiba\AppData\Roaming\newnext.me"
Successfully deleted: [Folder] "C:\Users\Toshiba\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Toshiba\appdata\locallow\appgraffiti"
Successfully deleted: [Folder] "C:\Program Files\crawler"
Successfully deleted: [Folder] "C:\Program Files\icq6toolbar"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\appgraffiti"
Successfully deleted: [Folder] "C:\Users\Toshiba\AppData\Roaming\microsoft\windows\start menu\programs\mobogenie"



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Toshiba\appdata\local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl
Successfully deleted: [Folder] C:\Users\Toshiba\appdata\local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 14.10.2014 at 20:53:37,73
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

a ještě jeden:
# AdwCleaner v4.000 - Report created 14/10/2014 at 21:07:28
# DB v2014-10-14.6
# Updated 12/10/2014 by Xplode
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : Toshiba - TOSHIBA-PC
# Running from : C:\Users\Toshiba\Desktop\adwcleaner_4.000.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Toshiba\AppData\Local\genienext
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\ICQToolbarData
Folder Deleted : C:\Users\Toshiba\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Toshiba\Documents\Mobogenie
Folder Deleted : C:\Users\Toshiba\AppData\Local\Popajar
Folder Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\SweetIMToolbarData
Folder Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\SweetPacksToolbarData
Folder Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Deleted : C:\Program Files\Mozilla Firefox\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\Extensions\AppGraffiti@AppGraffiti.com
File Deleted : C:\Users\Toshiba\daemonprocess.txt
File Deleted : C:\Users\Administrator\Desktop\eBay.lnk
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\crawlersrch.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin.gif
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin.src
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-10.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-11.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-12.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-13.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-14.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-15.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-16.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-17.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-18.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-19.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-5.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-6.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-7.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-8.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\icqplugin-9.xml
File Deleted : C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\a3v414kw.default\searchplugins\SweetIm.xml

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\angobeimajilfhlcpeiccndaifchnppl
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Classes\AppGraffiti.AppGraffitiJS
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B6}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{D3D233D5-9F6D-436C-B6C7-E63F77503B30}]
Key Deleted : HKCU\Software\AppGraffiti
Key Deleted : HKCU\Software\Popajar
Key Deleted : HKCU\Software\SmileysWeLove
Key Deleted : HKCU\Software\SweetIM
Key Deleted : HKLM\SOFTWARE\AppGraffiti
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\SweetIM

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16575

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v18.0.1 (cs)

[a3v414kw.default] - Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.sweetim.com/search.asp?src=2&q=");
[a3v414kw.default] - Line Deleted : user_pref("browser.search.order.1", "Crawler Search");
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.engineVerified", false);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.geolastmodified", 1358268342);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.history", "Zednick%C3%A9%20pr%C3%A1ce||%C5%98emesln%C3%ADci||Auta%20Autobazar%20Volkswagen%20Golf||Auta%20Autobazar%20Volkswagen%20Passat||Auta%20Autobazar%20BMW%20520||kamna%20n[...]
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.installTime", "1346783089");
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.installsource", "1");
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.itbsitescount", 0);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.previousFFVersion", "18.0.1");
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.removedsitescount", 80);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.suggestions", false);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.uniqueID", "126547056812654705681265495119803");
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1358782315);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.version", "2.0.1.6");
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[a3v414kw.default] - Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
[a3v414kw.default] - Line Deleted : user_pref("keyword.URL", "hxxp://search.sweetim.com/search.asp?barid={4D3F520A-CB0D-42FA-B948-AE5BC0292DD5}&src=2&q=");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.RevertDialog.enable", "false");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "0");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.Visibility.enable", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.Visibility.intervaldays", "7");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.cda.HideOveride.enable", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.cda.returnValue", "disable");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.0.enable", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-handler.js");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.0.height", "335");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.0.url", "hxxp://www.sweetim.com/simffbar/options_remote ... crg=$cargo;");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.0.width", "761");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.1.enable", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-handler.js");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.1.height", "300");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.1.width", "500");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.2.enable", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handler.js");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.2.height", "150");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.2.url", "hxxp://www.sweetim.com/simffbar/simcdadialog.asp");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dialogs.2.width", "530");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.google.com/.*|.*.google.co.in/.*|.*.google.com.br/.*|.*.google.es/.*|.*.youtube.com/.*|.*.yahoo.com/.*|.[...]
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.keywordUrlGuard.enable", "false");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.mode.debug", "false");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.newtab.created", "false");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.newtab.enable", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "chrome://browser-region/locale/region.properties");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "resource:/browserconfig.properties");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.rc.url", "hxxp://www.sweetim.com/simffbar/rc.html?toolba ... crg=$cargo;");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "hxxp://(www.|apps.)?facebook\\.com.*");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.0.enable", "false");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.0.url", "hxxp://sc.sweetim.com/apps/in/fb/infb.js");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.1.callback", "simVerification");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "hxxps://(www.|apps.)?facebook\\.com.*");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.1.elementid", "id_script_sim_fb");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.1.enable", "false");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.1.id", "id_script_fb_hxxpS");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.1.url", "hxxps://sc.sweetim.com/apps/in/fb/infb.js");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "false");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.2.callback", "");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.2.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..*|.*.yahoo..*|.*.youtube.com.*|.*ask.com.*|.*.sweetim.com.*");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.2.domain-whitelist", "");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.2.elementid", "id_predict_include_script");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.2.enable", "false");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.2.id", "id_script_prad");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.scripts.2.url", "hxxp://cdn1.certified-apps.com/scripts/shared/enable.js?si=3104&tid=chff1");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engine=\"hxxp://*google.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.yahoo.com/*\" param=\"[...]
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.search.history", "zelenausporam.cz");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.search.history.capacity", "10");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.searchguard.enable", "false");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.simapp_id", "{4D3F520A-CB0D-42FA-B948-AE5BC0292DD5}");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com");
[a3v414kw.default] - Line Deleted : user_pref("sweetim.toolbar.version", "1.9.0.0");

-\\ Google Chrome v37.0.2062.124


*************************

AdwCleaner[R1].txt - [18703 octets] - [14/10/2014 21:01:48]
AdwCleaner[S0].txt - [18800 octets] - [14/10/2014 21:07:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [18861 octets] ##########

děkuji za kontrolu

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;
  emptyalltemp;
  resethosts;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Děkuji za rady.. Bohužel NTB nevydržel a odporoučel se do křemíkového nebe Budiž mu elektrony lehké..
Nejspíše umřel disk a vzhledem k jeho stavu, bude rozebrán na náhradní díly.

Nemate tedy zac

Tema uzaviram