Zpomalený Notebook mého miláčka

Zpráva

krteczek01 · #1 Příspěvek od **krteczek01** » 10 kvě 2015 18:08

Dobrý den,
už asi půldne řeším pomalý notebook mé přítelkyně. Ono to není žádné "dělo" ale i tak býval rychlejší v odezvách... sem tam se ozve AVG že něco je vir, někdy to smazat jde a jindy ne...

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-05-2015
Ran by Jirka (administrator) on JIRKA-PC on 10-05-2015 18:30:53
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jirka (Available profiles: Jirka)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
() C:\Users\Jirka\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
() C:\Program Files\AVG SafeGuard toolbar\vprot.exe
() C:\Program Files\FUJIFILM\MyFinePix Studio\dd.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\loggingserver.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
(Safer-Networking Ltd. ) C:\Program Files\Spybot - Search & Destroy 2\spybotsd2-install-bdcore-update.exe
() C:\Windows\Temp\is-FJ5D8.tmp\spybotsd2-install-bdcore-update.tmp
(AVG) C:\Program Files\AVG\AVG PC TuneUp\OneClick.exe
(Google Inc.) C:\Program Files\Google\Update\Install\{78E760F1-51CD-4D7B-92F6-1E8E71A69092}\42.0.2311.135_chrome_installer.exe
(Google Inc.) C:\Windows\Temp\CR_79944.tmp\setup.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-V5.23-delta.exe
(Microsoft Corporation) C:\163ebaf33511594ba6badcabfdb2fc\mrtstub.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\MRT.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Update\Install\{296F65A6-31E4-40B8-873F-A0A990397F4E}\42.0.2311.135_chrome_installer.exe
(Google Inc.) C:\Windows\Temp\CR_A6856.tmp\setup.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(forum.viry.cz) C:\Users\Jirka\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2014\avgui.exe [5188112 2014-12-16] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [vProt] => C:\Program Files\AVG SafeGuard toolbar\vprot.exe [2503704 2015-03-15] ()
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-933092379-2781018883-363472672-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
HKU\S-1-5-21-933092379-2781018883-363472672-1001\...\Run: [uTorrent] => C:\Users\Jirka\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-10] (BitTorrent Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-07-05] (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-933092379-2781018883-363472672-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com?cid={30FC27D5- ... 2014-02-07 20:26:54&v=18.3.0.885&pid=safeguard&sg=&sap=hp
URLSearchHook: HKU\S-1-5-21-933092379-2781018883-363472672-1001 - (No Name) - {be823b8c-a7ec-4078-a321-0f8046cbb48a} - No File
SearchScopes: HKU\S-1-5-21-933092379-2781018883-363472672-1001 -> {68AA5EB8-58AE-4199-8C0E-D240592FEFB7} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKU\S-1-5-21-933092379-2781018883-363472672-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={30 ... 2014-02-07 20:26:54&v=18.3.0.879&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18] (Oracle Corporation)
BHO: AVG SafeGuard toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG SafeGuard toolbar\18.3.0.885\AVG SafeGuard toolbar_toolbar.dll [2015-03-15] (AVG Secure Search)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18] (Oracle Corporation)
Toolbar: HKLM - No Name - {a9d9ea68-5d09-43ef-a0c5-6f6a6f82a0e1} - No File
Toolbar: HKLM - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\18.3.0.885\AVG SafeGuard toolbar_toolbar.dll [2015-03-15] (AVG Secure Search)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.3.0\ViProtocol.dll [2015-02-28] (AVG Secure Search)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 94.74.192.252 94.74.192.244
Tcpip\..\Interfaces\{17FF13F7-ABFC-4669-8A3C-78543770C846}: [NameServer] 10.10.2.10,80.82.144.94

FireFox:
========
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default
FF NewTab: hxxp://www.searchgol.com/?babsrc=NT_ss&mntrId= ... 2&tsp=5014
FF DefaultSearchEngine: AVG Secure Search
FF SelectedSearchEngine: AVG Secure Search
FF Homepage: hxxp://mysearch.avg.com?cid={30FC27D5-01B8-403A-A2EA-8757D466BF45}&mid=c922ddf508ef47d3b95fd146f6064094-3590a82d3fd73eeef9cca0820495fd731807e8f3&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0215tb&pr=fr&d=2014-02-07 20:26:54&v=18.3.0.885&pid=safeguard&sg=&sap=hp
FF Keyword.URL:
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-05-10] ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.3.0\\npsitesafety.dll No File
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @SafePCRepair_89.com/Plugin -> C:\Program Files\SafePCRepair_89\bar\1.bin\NP89Stub.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-07-26] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-09-26] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default\searchplugins\ask-web-search.xml [2013-09-06]
FF SearchPlugin: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default\searchplugins\avg-secure-search.xml [2015-02-28]
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml [2015-03-15]
FF Extension: Default Tab - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default\Extensions\addon@defaulttab.com.xpi [2013-08-11]
FF Extension: Adblock Plus - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-09-26]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-08-26]
FF HKLM\...\Firefox\Extensions: [89ffxtbr@SafePCRepair_89.com] - C:\Program Files\SafePCRepair_89\bar\1.bin
FF Extension: SafePCRepair - C:\Program Files\SafePCRepair_89\bar\1.bin [2013-09-06]
FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.3.0.885
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.3.0.885 [2015-03-15]

Chrome:
=======
CHR Profile: C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-06]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3247120 2014-12-16] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [289328 2014-12-16] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
S2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 DefaultTabUpdate; C:\Users\Jirka\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [107520 2013-08-11] () [File not signed]
S2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [1741624 2013-12-18] (AVG)
R2 vToolbarUpdater18.3.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe [1802776 2015-02-28] (AVG Secure Search)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [483200 2013-07-05] (ITETech )
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [200984 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147736 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [189720 2014-10-24] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [241944 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [98584 2014-10-29] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [197400 2014-10-20] (AVG Technologies CZ, s.r.o.)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
R3 TuneUpUtilitiesDrv; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [12320 2013-12-16] (TuneUp Software)
S1 avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-10 18:30 - 2015-05-10 18:32 - 00014760 _____ () C:\Users\Jirka\Desktop\FRST.txt
2015-05-10 18:28 - 2015-05-10 18:28 - 00112640 _____ (forum.viry.cz) C:\Users\Jirka\Desktop\FRSTLauncher.exe
2015-05-10 18:20 - 2015-05-10 18:20 - 00112640 _____ (forum.viry.cz) C:\Users\Jirka\Downloads\Nepotvrzeno 635678.crdownload
2015-05-10 18:13 - 2015-05-10 18:31 - 00000000 ____D () C:\FRST
2015-05-10 18:07 - 2015-05-10 18:09 - 01141248 _____ (Farbar) C:\Users\Jirka\Desktop\FRST.exe
2015-05-10 18:06 - 2015-05-10 18:06 - 00112640 _____ (forum.viry.cz) C:\Users\Jirka\Downloads\Nepotvrzeno 516162.crdownload
2015-05-10 18:02 - 2015-05-10 18:05 - 00000000 ____D () C:\163ebaf33511594ba6badcabfdb2fc
2015-05-10 17:16 - 2015-05-10 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-05-10 17:16 - 2015-05-10 17:16 - 00000000 ____D () C:\Program Files\Common Files\Skype
2015-05-10 12:19 - 2009-06-10 23:39 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20150510-121921.backup
2015-05-10 11:58 - 2015-05-10 12:02 - 05499960 _____ (Avast Software s.r.o.) C:\Users\Jirka\Downloads\avast_free_antivirus_setup_online.exe
2015-05-10 11:52 - 2015-05-10 11:52 - 00000000 ____D () C:\Mozilla

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-10 18:18 - 2013-06-26 17:18 - 01420414 _____ () C:\Windows\WindowsUpdate.log
2015-05-10 18:13 - 2009-07-14 06:34 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-10 18:13 - 2009-07-14 06:34 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-10 18:11 - 2014-05-07 20:09 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-10 18:09 - 2014-05-07 20:09 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-10 18:06 - 2013-09-03 09:06 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-10 18:05 - 2013-09-03 09:06 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-10 17:55 - 2013-06-26 19:25 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-10 17:50 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-05-10 17:42 - 2013-06-26 17:35 - 01558096 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-10 17:31 - 2013-09-06 11:13 - 00000000 ____D () C:\ProgramData\MFAData
2015-05-10 17:17 - 2013-09-06 12:52 - 00000000 ____D () C:\ProgramData\Skype
2015-05-10 17:16 - 2013-09-06 12:52 - 00000000 ___RD () C:\Program Files\Skype
2015-05-10 17:01 - 2014-01-17 21:14 - 00000000 ____D () C:\Users\Jirka\AppData\Roaming\uTorrent
2015-05-10 16:57 - 2013-07-05 21:21 - 00000000 ____D () C:\Program Files\Driver-Soft
2015-05-10 12:55 - 2013-06-26 19:25 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-05-10 12:55 - 2013-06-26 19:25 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-05-10 11:49 - 2013-09-27 21:50 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2015-05-10 11:40 - 2013-09-06 12:53 - 00000000 ____D () C:\Users\Jirka\AppData\Roaming\Skype
2015-05-10 11:37 - 2013-08-29 19:20 - 00072848 _____ () C:\Windows\setupact.log
2015-05-10 11:37 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-08 10:54 - 2013-09-06 11:16 - 00000000 ____D () C:\Users\Jirka\AppData\Roaming\vlc
2015-05-07 09:24 - 2013-09-06 11:41 - 00059780 _____ () C:\Windows\PFRO.log
2015-05-06 20:20 - 2013-08-11 13:57 - 00001120 __RSH () C:\Users\Jirka\ntuser.pol
2015-05-06 20:20 - 2013-06-26 17:31 - 00000000 ____D () C:\Users\Jirka
2015-05-06 17:05 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF

==================== Files in the root of some directories =======

2014-12-01 18:50 - 2014-12-01 18:50 - 6000640 _____ () C:\Program Files\GUT4395.tmp
2014-01-29 20:07 - 2014-06-04 09:11 - 0003744 _____ () C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
2013-09-23 17:34 - 2013-09-23 17:33 - 0030894 _____ () C:\Users\Jirka\AppData\Roaming\speedanalysis.ico
2013-07-05 22:38 - 2013-07-05 22:47 - 0002902 _____ () C:\ProgramData\LmeUSB.log
2013-07-05 22:38 - 2013-07-05 22:47 - 0002854 _____ () C:\ProgramData\LmeZJSW.log
2013-07-05 22:38 - 2013-07-05 22:47 - 0002903 _____ () C:\ProgramData\LSDmbTH.log
2013-07-05 22:38 - 2013-07-05 22:47 - 0002956 _____ () C:\ProgramData\PipShareTuner.log

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Open Chrome.job => c:\program files\Google\Chrome\Application\chrome.exeF--new-window http:/toolbar.avg.com/

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: AVG AntiVirus Free Edition 2014 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG AntiVirus Free Edition 2014 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jirka\Desktop" je 4777 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlazeServoTool
"C:\Program Files\BlazeVideo\BlazeVideo HDTV Player 6.6 Professional\MediaDetector.exe" [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#2 Příspěvek od **Rudy** » 10 kvě 2015 18:17

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

krteczek01 · #3 Příspěvek od **krteczek01** » 10 kvě 2015 19:28

děkuji, přikládám log:

# AdwCleaner v4.203 - Log vytvořen 10/05/2015 v 19:58:13
# Aktualizováno 30/04/2015 by Xplode
# Databáze : 2015-05-09.1 [Server]
# Operační system : Windows 7 Professional Service Pack 1 (x86)
# Uživatelské jméno : Jirka - JIRKA-PC
# Spuštěno z : C:\Users\Jirka\Desktop\adwcleaner_4.203.exe
# Nastavení : Čištění

***** [ Služby ] *****

[#] Služba Smazáno : DefaultTabUpdate

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\AVG SafeGuard toolbar
Složka Smazáno : C:\ProgramData\AVG Secure Search
Složka Smazáno : C:\ProgramData\AVG Security Toolbar
Složka Smazáno : C:\ProgramData\DSearchLink
Složka Smazáno : C:\ProgramData\IBUpdaterService
Složka Smazáno : C:\Program Files\AVG SafeGuard toolbar
Složka Smazáno : C:\Program Files\AVG Security Toolbar
Složka Smazáno : C:\Program Files\Video Performer
Složka Smazáno : C:\Program Files\SafePCRepair_89
Složka Smazáno : C:\Program Files\Common Files\AVG Secure Search
Složka Smazáno : C:\Users\Jirka\AppData\Local\AVG SafeGuard toolbar
Složka Smazáno : C:\Users\Jirka\AppData\Local\SafePCRepair_89
Složka Smazáno : C:\Users\Jirka\AppData\LocalLow\AVG SafeGuard toolbar
Složka Smazáno : C:\Users\Jirka\AppData\Roaming\7go
Složka Smazáno : C:\Users\Jirka\AppData\Roaming\defaulttab
Složka Smazáno : C:\Users\Jirka\AppData\Roaming\PerformerSoft
Složka Smazáno : C:\Users\Jirka\AppData\Roaming\SeeSimilar02
Složka Smazáno : C:\Users\Jirka\AppData\Roaming\SpeedAnalysis2
Složka Smazáno : C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video Performer
[!] Složka Smazáno : C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default\Extensions\addon@defaulttab.com.xpi
Soubor Smazáno : C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default\Extensions\addon@defaulttab.com.xpi
Soubor Smazáno : C:\Users\Jirka\AppData\Roaming\speedanalysis.ico
Soubor Smazáno : C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default\searchplugins\ask-web-search.xml
Soubor Smazáno : C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default\searchplugins\avg-secure-search.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml

***** [ Naplánované úlohy ] *****

Úloha Smazáno : DTReg
Úloha Smazáno : PC Performer

***** [ Zástupci ] *****

***** [ Registry ] *****

Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\DefaultTabBHO.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Klíč Smazáno : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Klíč Smazáno : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser
Klíč Smazáno : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX
Klíč Smazáno : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíč Smazáno : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Klíč Smazáno : HKLM\SOFTWARE\Classes\S
Klíč Smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Klíč Smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Klíč Smazáno : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@SafePCRepair_89.com/Plugin
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.DynamicBarButton
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.DynamicBarButton.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.FeedManager
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.FeedManager.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.HTMLMenu
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.HTMLMenu.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.HTMLPanel
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.HTMLPanel.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.PseudoTransparentPlugin
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.PseudoTransparentPlugin.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.RadioSettings
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.RadioSettings.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.ScriptButton
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.ScriptButton.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.SettingsPlugin
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.SettingsPlugin.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.SkinLauncherSettings
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.SkinLauncherSettings.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.ThirdPartyInstaller
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.ThirdPartyInstaller.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.ToolbarProtector
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.ToolbarProtector.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.UrlAlertButton
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.XMLSessionPlugin
Klíč Smazáno : HKLM\SOFTWARE\Classes\SafePCRepair_89.XMLSessionPlugin.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{38495740-0035-4471-851E-F5BBB86AB085}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5ed1334e-4e55-40cd-accb-05ce52ad981d}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{2438f6b7-0532-4c8c-9c5c-b34935dd3d70}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9e0e974b-5e9c-4850-89ab-f7b9f189ccad}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{a983b26d-76cb-41c6-947e-4eeff0906747}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{FEB62B15-CC00-4736-AAEC-BA046C9DFF73}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5D13BF91-EA09-4ED8-9ACD-C6BAD32617B9}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DBB6CE-3148-4FEC-B481-103CB3290427}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{93488930-185C-4CED-AFEB-0FD4930F8423}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FF103732-4528-4322-AA8B-F7849AB7776B}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2D33ED6-EBBD-467C-BF6F-F175D9B51363}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BAD84EE2-624D-4E7C-A8BB-41EFD720FD77}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ddeae50-1858-4f3a-8fa9-4774f02eef86}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2438f6b7-0532-4c8c-9c5c-b34935dd3d70}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5ed1334e-4e55-40cd-accb-05ce52ad981d}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9e0e974b-5e9c-4850-89ab-f7b9f189ccad}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a983b26d-76cb-41c6-947e-4eeff0906747}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c34c0e9f-c070-4b05-b912-563c3cff8555}
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BE823B8C-A7EC-4078-A321-0F8046CBB48A}]
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{68AA5EB8-58AE-4199-8C0E-D240592FEFB7}
Klíč Smazáno : HKCU\Software\AVG SafeGuard toolbar
Klíč Smazáno : HKCU\Software\AVG Security Toolbar
Klíč Smazáno : HKCU\Software\Default Tab
Klíč Smazáno : HKCU\Software\performersoft llc
Klíč Smazáno : HKCU\Software\PerformerSoft
Klíč Smazáno : HKCU\Software\AppDataLow\Software\DefaultTab
Klíč Smazáno : HKCU\Software\AppDataLow\Software\SafePCRepair_89
Klíč Smazáno : HKLM\SOFTWARE\AVG SafeGuard toolbar
Klíč Smazáno : HKLM\SOFTWARE\AVG Security Toolbar
Klíč Smazáno : HKLM\SOFTWARE\Default Tab
Klíč Smazáno : HKLM\SOFTWARE\Driver-Soft
Klíč Smazáno : HKLM\SOFTWARE\PerformerSoft
Klíč Smazáno : HKLM\SOFTWARE\Trymedia Systems
Klíč Smazáno : HKLM\SOFTWARE\SafePCRepair_89
Klíč Smazáno : HKU\.DEFAULT\Software\AVG SafeGuard toolbar
Klíč Smazáno : HKU\.DEFAULT\Software\DefaultTab
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video Performer
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Driver Genius Professional Edition_is1

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17689

-\\ Mozilla Firefox v32.0.2 (x86 cs)

[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("browser.newtab.url", "hxxp://www.searchgol.com/?babsrc=NT_ss&mntrId= ... 2&tsp=5014");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultenginename", "AVG Secure Search");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.selectedEngine", "AVG Secure Search");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.mywebsearch.prevDefaultEngine", "Google");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.mywebsearch.prevKwdEnabled", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.mywebsearch.prevKwdURL", "hxxp://search.tb.ask.com/search/GGmain.jhtml?st=kwd&ptb=E33F9C62-908F-4A44-B57C-39618E2ABDF9&n=77fd04ba&ind=2013070522&p2=^HJ^xdm073^YYA^cz&si=pconverte[...]
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.mywebsearch.prevSelectedEngine", "Google");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=E33F9C62-908F-4A44-B57C-39618E2ABDF9&n=77fd04ba&p2=^HJ^xdm073^YYA^cz&si=pconverter");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.enabled", false);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.user.defined", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.initialized", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.contextKey", "");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.installDate", "2013070522");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerId", "^HJ^xdm073^YYA^cz");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerSubId", "pconverter");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.success", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.toolbarId", "E33F9C62-908F-4A44-B57C-39618E2ABDF9");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.lastActivePing", "1373095789743");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.options.defaultSearch", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.options.homePageEnabled", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.options.keywordEnabled", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.options.tabEnabled", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.weather.location", "10001");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=E2534FE1-3881-4ACF-B619-EA4A44EFB7F7&n=77fd5333&p2=^AW7^xdm055^YYA^cz&si=GA_SAF_INTL_CZE_35");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.hp.enabled", false);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.hp.user.defined", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.initialized", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.installation.contextKey", "");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.installation.installDate", "2013090611");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.installation.partnerId", "^AW7^xdm055^YYA^cz");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.installation.partnerSubId", "GA_SAF_INTL_CZE_35");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.installation.success", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.installation.toolbarId", "E2534FE1-3881-4ACF-B619-EA4A44EFB7F7");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.lastActivePing", "1380042660674");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.options.defaultSearch", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.options.homePageEnabled", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.options.keywordEnabled", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.options.tabEnabled", true);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.searchHistory", "krte\rekve\rearní\rekve\rerní\rekKass \reský taínseznamkaseznamka sexkrtek akalhotkykaufladve\rerní\rkyve\rern[...]
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._89Members_.weather.location", "10001");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark.hp.enabled", false);
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "");
[ogvlc6y1.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark.lastInstalled", "safepcrepair@mindspark.com");

-\\ Google Chrome v41.0.2272.89

*************************

AdwCleaner[R0].txt - [18708 bytů] - [10/05/2015 19:54:31]
AdwCleaner[S0].txt - [18814 bytů] - [10/05/2015 19:58:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [18873 bytů] ##########

#4 Příspěvek od **Rudy** » 10 kvě 2015 19:46

Dejte nový log FRST.

krteczek01 · #5 Příspěvek od **krteczek01** » 10 kvě 2015 19:57

Děkuji, vkládám log:
¨
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-05-2015
Ran by Jirka (administrator) on JIRKA-PC on 10-05-2015 20:52:28
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jirka (Available profiles: Jirka)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Jirka\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2014\avgui.exe [5188112 2014-12-16] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-933092379-2781018883-363472672-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-07-05] (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-933092379-2781018883-363472672-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com?cid={30FC27D5- ... 2014-02-07 20:26:54&v=18.3.0.885&pid=safeguard&sg=&sap=hp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-933092379-2781018883-363472672-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={30 ... 2014-02-07 20:26:54&v=18.3.0.879&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18] (Oracle Corporation)
Toolbar: HKLM - No Name - {a9d9ea68-5d09-43ef-a0c5-6f6a6f82a0e1} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 94.74.192.252 94.74.192.244
Tcpip\..\Interfaces\{17FF13F7-ABFC-4669-8A3C-78543770C846}: [NameServer] 10.10.2.10,80.82.144.94

FireFox:
========
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default
FF Homepage: hxxp://mysearch.avg.com?cid={30FC27D5-01B8-403A-A2EA-8757D466BF45}&mid=c922ddf508ef47d3b95fd146f6064094-3590a82d3fd73eeef9cca0820495fd731807e8f3&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0215tb&pr=fr&d=2014-02-07 20:26:54&v=18.3.0.885&pid=safeguard&sg=&sap=hp
FF Keyword.URL:
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-05-10] ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-07-26] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-09-26] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\ogvlc6y1.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-09-26]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-08-26]
FF HKLM\...\Firefox\Extensions: [89ffxtbr@SafePCRepair_89.com] - C:\Program Files\SafePCRepair_89\bar\1.bin

Chrome:
=======
CHR Profile: C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-06]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3247120 2014-12-16] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [289328 2014-12-16] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [1741624 2013-12-18] (AVG)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [483200 2013-07-05] (ITETech )
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [200984 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147736 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [189720 2014-10-24] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [241944 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [98584 2014-10-29] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [197400 2014-10-20] (AVG Technologies CZ, s.r.o.)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
R3 TuneUpUtilitiesDrv; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [12320 2013-12-16] (TuneUp Software)
S1 avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-10 20:51 - 2015-05-10 20:51 - 00112640 _____ (forum.viry.cz) C:\Users\Jirka\Desktop\FRSTLauncher.exe
2015-05-10 20:02 - 2015-05-10 20:08 - 00000000 ___SD () C:\Windows\system32\GWX
2015-05-10 20:02 - 2015-05-10 20:02 - 00000000 ____D () C:\Windows\system32\appraiser
2015-05-10 19:54 - 2015-05-10 19:59 - 00000000 ____D () C:\AdwCleaner
2015-05-10 19:52 - 2015-05-10 19:52 - 00025643 _____ () C:\Users\Jirka\Desktop\FRST2.txt
2015-05-10 19:51 - 2015-05-10 19:51 - 02204160 _____ () C:\Users\Jirka\Desktop\adwcleaner_4.203.exe
2015-05-10 18:30 - 2015-05-10 20:53 - 00010043 _____ () C:\Users\Jirka\Desktop\FRST.txt
2015-05-10 18:13 - 2015-05-10 20:52 - 00000000 ____D () C:\FRST
2015-05-10 18:07 - 2015-05-10 18:09 - 01141248 _____ (Farbar) C:\Users\Jirka\Desktop\FRST.exe
2015-05-10 17:16 - 2015-05-10 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-05-10 17:16 - 2015-05-10 17:16 - 00000000 ____D () C:\Program Files\Common Files\Skype
2015-05-10 13:36 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-05-10 13:36 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-05-10 13:36 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-05-10 13:36 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-05-10 13:36 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-05-10 13:36 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-05-10 13:36 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-05-10 13:36 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-05-10 13:36 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-05-10 13:36 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-10 13:36 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-10 13:36 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-05-10 13:36 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-05-10 13:36 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-05-10 13:36 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-05-10 13:36 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-05-10 13:36 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-05-10 13:36 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-05-10 13:36 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-05-10 13:36 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-05-10 13:36 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-05-10 13:36 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-05-10 13:36 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-05-10 13:36 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-05-10 13:36 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-05-10 13:36 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-05-10 13:36 - 2015-01-28 01:36 - 01167520 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-05-10 13:34 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-10 13:34 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-05-10 13:34 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-05-10 13:34 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-05-10 13:34 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-05-10 13:34 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-05-10 13:34 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-05-10 13:34 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-05-10 13:34 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-05-10 13:34 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-05-10 13:34 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-05-10 13:34 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-05-10 13:34 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-10 13:34 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-05-10 13:34 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-05-10 13:34 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-10 13:34 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-05-10 13:34 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-10 13:34 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-05-10 13:34 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-05-10 13:34 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-10 13:34 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-05-10 13:34 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-05-10 13:34 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-10 13:34 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-05-10 13:34 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-05-10 13:34 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-05-10 13:34 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-10 13:34 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-10 13:34 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-10 13:34 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-05-10 13:34 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-10 13:34 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-10 13:34 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-10 13:34 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-10 13:34 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-10 13:34 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-10 13:34 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-05-10 13:34 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-10 13:34 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-10 13:34 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-10 13:34 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-10 13:34 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-05-10 13:28 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-05-10 13:21 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-05-10 13:21 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-05-10 12:19 - 2009-06-10 23:39 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20150510-121921.backup
2015-05-10 11:58 - 2015-05-10 12:02 - 05499960 _____ (Avast Software s.r.o.) C:\Users\Jirka\Downloads\avast_free_antivirus_setup_online.exe
2015-05-10 11:52 - 2015-05-10 11:52 - 00000000 ____D () C:\Mozilla

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-10 20:53 - 2013-06-26 19:25 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-10 20:49 - 2014-01-17 21:14 - 00000000 ____D () C:\Users\Jirka\AppData\Roaming\uTorrent
2015-05-10 20:43 - 2013-06-26 17:18 - 01468234 _____ () C:\Windows\WindowsUpdate.log
2015-05-10 20:42 - 2014-01-07 00:06 - 00000000 ____D () C:\Users\Jirka\Desktop\Nová složka
2015-05-10 20:23 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-05-10 20:16 - 2009-07-14 06:34 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-10 20:16 - 2009-07-14 06:34 - 00014256 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-10 20:09 - 2014-05-07 20:09 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-10 20:08 - 2014-05-07 20:09 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-10 20:08 - 2013-08-11 13:57 - 00001120 __RSH () C:\Users\Jirka\ntuser.pol
2015-05-10 20:08 - 2013-06-26 17:31 - 00000000 ____D () C:\Users\Jirka
2015-05-10 20:06 - 2013-09-06 11:41 - 00060236 _____ () C:\Windows\PFRO.log
2015-05-10 20:06 - 2013-08-29 19:20 - 00072904 _____ () C:\Windows\setupact.log
2015-05-10 20:06 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-10 20:02 - 2014-05-07 19:36 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-05-10 20:02 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat
2015-05-10 18:40 - 2013-09-03 09:06 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-10 18:05 - 2013-09-03 09:06 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-10 17:42 - 2013-06-26 17:35 - 01558096 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-10 17:31 - 2013-09-06 11:13 - 00000000 ____D () C:\ProgramData\MFAData
2015-05-10 17:17 - 2013-09-06 12:52 - 00000000 ____D () C:\ProgramData\Skype
2015-05-10 17:16 - 2013-09-06 12:52 - 00000000 ___RD () C:\Program Files\Skype
2015-05-10 16:57 - 2013-07-05 21:21 - 00000000 ____D () C:\Program Files\Driver-Soft
2015-05-10 12:55 - 2013-06-26 19:25 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-05-10 12:55 - 2013-06-26 19:25 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-05-10 11:49 - 2013-09-27 21:50 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2015-05-10 11:40 - 2013-09-06 12:53 - 00000000 ____D () C:\Users\Jirka\AppData\Roaming\Skype
2015-05-08 10:54 - 2013-09-06 11:16 - 00000000 ____D () C:\Users\Jirka\AppData\Roaming\vlc
2015-05-06 17:05 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF

==================== Files in the root of some directories =======

2014-12-01 18:50 - 2014-12-01 18:50 - 6000640 _____ () C:\Program Files\GUT4395.tmp
2014-01-29 20:07 - 2014-06-04 09:11 - 0003744 _____ () C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
2013-07-05 22:38 - 2013-07-05 22:47 - 0002902 _____ () C:\ProgramData\LmeUSB.log
2013-07-05 22:38 - 2013-07-05 22:47 - 0002854 _____ () C:\ProgramData\LmeZJSW.log
2013-07-05 22:38 - 2013-07-05 22:47 - 0002903 _____ () C:\ProgramData\LSDmbTH.log
2013-07-05 22:38 - 2013-07-05 22:47 - 0002956 _____ () C:\ProgramData\PipShareTuner.log

Some content of TEMP:
====================
C:\Users\Jirka\AppData\Local\Temp\Quarantine.exe
C:\Users\Jirka\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Open Chrome.job => c:\program files\Google\Chrome\Application\chrome.exeF--new-window http:/toolbar.avg.com/

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: AVG AntiVirus Free Edition 2014 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG AntiVirus Free Edition 2014 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jirka\Desktop" je 4779 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlazeServoTool
"C:\Program Files\BlazeVideo\BlazeVideo HDTV Player 6.6 Professional\MediaDetector.exe" [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#6 Příspěvek od **Rudy** » 10 kvě 2015 20:54

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-933092379-2781018883-363472672-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com?cid={30FC27D5- ... 2014-02-07 20:26:54&v=18.3.0.885&pid=safeguard&sg=&sap=hp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-933092379-2781018883-363472672-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={30 ... 2014-02-07 20:26:54&v=18.3.0.879&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
C:\Program Files\Skype\Toolbars
Toolbar: HKLM - No Name - {a9d9ea68-5d09-43ef-a0c5-6f6a6f82a0e1} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
FF Homepage: hxxp://mysearch.avg.com?cid={30FC27D5-01B8-403A-A2EA-8757D466BF45}&mid=c922ddf508ef47d3b95fd146f6064094-3590a82d3fd73eeef9cca0820495fd731807e8f3&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0215tb&pr=fr&d=2014-02-07 20:26:54&v=18.3.0.885&pid=safeguard&sg=&sap=hp
FF Keyword.URL:
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF HKLM\...\Firefox\Extensions: [89ffxtbr@SafePCRepair_89.com] - C:\Program Files\SafePCRepair_89\bar\1.bin
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Program Files\GUT4395.tmp
C:\Users\Jirka\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

krteczek01 · #7 Příspěvek od **krteczek01** » 10 kvě 2015 21:11

Děkuji, další várka:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 09-05-2015
Ran by Jirka at 2015-05-10 22:02:55 Run:1
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jirka (Available profiles: Jirka)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKU\S-1-5-21-933092379-2781018883-363472672-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com?cid={30FC27D5- ... 2014-02-07 20:26:54&v=18.3.0.885&pid=safeguard&sg=&sap=hp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-933092379-2781018883-363472672-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={30 ... 2014-02-07 20:26:54&v=18.3.0.879&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
C:\Program Files\Skype\Toolbars
Toolbar: HKLM - No Name - {a9d9ea68-5d09-43ef-a0c5-6f6a6f82a0e1} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
FF Homepage: hxxp://mysearch.avg.com?cid={30FC27D5-01B8-403A-A2EA-8757D466BF45}&mid=c922ddf508ef47d3b95fd146f6064094-3590a82d3fd73eeef9cca0820495fd731807e8f3&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0215tb&pr=fr&d=2014-02-07 20:26:54&v=18.3.0.885&pid=safeguard&sg=&sap=hp
FF Keyword.URL:
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF HKLM\...\Firefox\Extensions: [89ffxtbr@SafePCRepair_89.com] - C:\Program Files\SafePCRepair_89\bar\1.bin
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Program Files\GUT4395.tmp
C:\Users\Jirka\AppData\Local\Temp
End
*****************

HKU\S-1-5-21-933092379-2781018883-363472672-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-933092379-2781018883-363472672-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}" => Key deleted successfully.
HKCR\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
C:\Program Files\Skype\Toolbars => Moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{a9d9ea68-5d09-43ef-a0c5-6f6a6f82a0e1} => value deleted successfully.
HKCR\CLSID\{a9d9ea68-5d09-43ef-a0c5-6f6a6f82a0e1} => Key not found.
"HKCR\PROTOCOLS\Handler\skypec2c" => Key deleted successfully.
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
Firefox homepage deleted successfully.
Firefox Keyword.URL deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
HKLM\Software\Mozilla\Firefox\Extensions\\89ffxtbr@SafePCRepair_89.com => value deleted successfully.
c2cautoupdatesvc => Service stopped successfully.
c2cautoupdatesvc => Service deleted successfully.
c2cpnrsvc => Service stopped successfully.
c2cpnrsvc => Service deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Program Files\GUT4395.tmp => Moved successfully.

"C:\Users\Jirka\AppData\Local\Temp" directory move:

Could not move "C:\Users\Jirka\AppData\Local\Temp" directory. => Scheduled to move on reboot.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-05-10 22:08:56)<=

C:\Users\Jirka\AppData\Local\Temp => Moved successfully.

==== End of Fixlog 22:08:58 ====

#8 Příspěvek od **Rudy** » 10 kvě 2015 21:38

Smazáno. Nastala nějaká změna?

krteczek01 · #9 Příspěvek od **krteczek01** » 10 kvě 2015 21:45

Děkuji, odezva zrychlena, už se na něm dá normálně fungovat!

Ještě jednou moc děkuji

#10 Příspěvek od **Rudy** » 11 kvě 2015 16:54

Rádo se stalo!

VIRY.CZ

Zpomalený Notebook mého miláčka

Zpomalený Notebook mého miláčka

Re: Zpomalený Notebook mého miláčka

Re: Zpomalený Notebook mého miláčka

Re: Zpomalený Notebook mého miláčka

Re: Zpomalený Notebook mého miláčka

Re: Zpomalený Notebook mého miláčka

Re: Zpomalený Notebook mého miláčka

Re: Zpomalený Notebook mého miláčka

Re: Zpomalený Notebook mého miláčka

Re: Zpomalený Notebook mého miláčka