VIRY.CZ

Dobrý večer nevím jestli píšu na správné forum , ale potřebovala bych pomoct s uplnou obnovou systemu nebo preinstalaci windowsu mam netbook Asus EePC 1101HA a je strasne zasekany jsou tam nesmyslny veci atd. Tak bych vas chtela poprosit jestli by jste mi tady s tim nemohli pomoct moc dekuju . Kristina

Zdravím!
Co když se pokusíme NB vyčistit? Chcete-li, dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

muzeme to zkusit akorat mi nejde stahnout ten frst launcher http://vyosek.ic.cz/pro_usery/FRSTLauncher.exe hodi me to na stranku a pisou tam ze je to nebezpecne nebo co a pak se mi tam objevi neco anglicky a nestahuje se to

Zkuste to odtud: http://www.bleepingcomputer.com/downloa ... ool/dl/81/ . Případnou hlášku antivir ignorujte, některé antiviry ho nemají rádi. FRST běžně používáme, je to skenovací a mazací nástroj.

tak uz jsem to stahla akorat nevim co stim jsem antitalent pres pc

Spusťte a vyčkejte, až se objeví log. Pak ho sem zkopírujte.

tak tady to je asi toho bude hodne k cisteni ten netbook pouzival muj 5 letej bracha a muj tata takze tam jsou nastahovany blbosti a zbytecnosti ukazalo mi to dva logy chcete i ten druhej ??

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-05-2015
Ran by Lukasek (administrator) on KRISTINA-PC on 11-05-2015 19:57:39
Running from C:\Users\Lukasek\Desktop
Loaded Profiles: Lukasek (Available profiles: Lukasek)
Platform: Microsoft Windows 7 Home Premium (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser path: "C:\Program Files\Comodo\Dragon\dragon.exe" -- "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
() C:\Windows\System32\AsusService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Comodo Security Solutions, Inc.) C:\Program Files\Comodo\Dragon\dragon_updater.exe
() C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
(PS Media s.r.o.) C:\Windows\System32\ssins.exe
() C:\Program Files\Trend Micro\Internet Security\TmPfw.exe
() C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ECAREME) C:\Program Files\ASUS\Asus WebStorage\BackupService.exe
() C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
() C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
() C:\Program Files\ASUS\Eee Docking\Eee Docking.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(APN LLC.) C:\Users\Lukasek\AppData\Local\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Program Files\Trend Micro\BM\TMBMSRV.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.EXE
(Farbar) C:\Users\Lukasek\Desktop\FRST (2).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-28] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-20] (Synaptics Incorporated)
HKLM\...\Run: [HotkeyService] => C:\Program Files\EeePC\HotkeyService\HotkeyService.exe [750008 2009-09-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [SuperHybridEngine] => C:\Program Files\EeePC\SHE\SuperHybridEngine.exe [407552 2009-08-21] (ASUSTeK Computer Inc.)
HKLM\...\Run: [EeeStorageBackup] => C:\Program Files\ASUS\Asus WebStorage\BackupService.exe [947472 2009-07-31] (ECAREME)
HKLM\...\Run: [UfSeAgnt.exe] => C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe [1024368 2010-02-23] ()
HKLM\...\Run: [LiveUpdate] => C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe [803304 2009-08-28] ()
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [83240 2009-07-20] (Synaptics Incorporated)
HKLM\...\Run: [IgfxExt] => C:\Windows\system32\IgfxExt.exe [174616 2009-10-15] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7625248 2009-07-20] (Realtek Semiconductor)
HKLM\...\Run: [ASUSWebStorage] => C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [737104 2011-07-29] (ecareme)
HKLM\...\Run: [HotKeyMon] => C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe [100328 2009-09-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [ApnTBMon] => C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2004360 2015-04-23] (APN)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\Run: [Eee Docking] => C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [402608 2009-08-26] ()
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\Run: [OE] => C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe [492808 2009-08-05] (Trend Micro Inc.)
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {1988b924-d3a8-11e4-9871-90e6ba542a6d} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {2577639b-dd3c-11e4-9805-90e6ba542a6d} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {3383b2dc-5781-11e4-86ad-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {5f479f06-2680-11e4-80b8-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {cb5ddf48-264f-11e4-8e15-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\windows\System32\SPReview\SPReview.exe [280576 2014-08-13] (Microsoft Corporation)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2014-05-01]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2014-04-26]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HotKeyMon.lnk [2009-09-16]
ShortcutTarget: HotKeyMon.lnk -> C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe (ASUSTeK Computer Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk [2009-08-29]
ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{D42F84B6-3709-4A50-8502-6719D16AE6C8}\NewShortcut4_E9C83B3EDF9141A39DA5EC05C79BBB91.exe (Acresso Software Inc.)
Startup: C:\Users\Lukasek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2014-12-15]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
HKLM\...\AppCertDlls: [x64] -> c:\program files\browser tab search by ask\safetynut\x64\safetycrt.dll
HKLM\...\AppCertDlls: [x86] -> C:\Program Files\Browser Tab Search by Ask\SafetyNut\safetycrt.dll
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {CC5FC992-B0AA-47CD-9DC2-83445083CBB8} => C:\Program Files\ASUS\Asus WebStorage\3.0.108.222\AsusWSShellExt.dll [2010-09-02] ()
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {618A47A2-528B-4D9A-AFC8-97D3233511E2} => C:\Program Files\ASUS\Asus WebStorage\3.0.108.222\AsusWSShellExt.dll [2010-09-02] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2706494457-2031264958-781609475-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?tpid=KMPV7c& ... psv=&pt=tb
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://eeepc.asus.com
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
URLSearchHook: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 - SearchHook Class - {D8278076-BC68-4484-9233-6E7F1628B56C} - C:\Program Files\AskPartnerNetwork\Toolbar\searchhook.dll (APN LLC.)
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2488} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 -> {965D3B7D-A44E-41FD-966F-A0BC63641DFF} URL = http://www.search.ask.com/web?tpid=KMPV ... erms}&psv=
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
BHO: Ask Toolbar -> {41545534-2D56-3700-76A7-7A786E7484D7} -> C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll [2015-04-23] (APN LLC.)
BHO: KMP Media Toolbar -> {4B4D5056-3763-006A-76A7-7A786E7484D7} -> C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll [2015-04-23] (APN LLC.)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)
Toolbar: HKLM - Ask Toolbar - {41545534-2D56-3700-76A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll [2015-04-23] (APN LLC.)
Toolbar: HKLM - KMP Media Toolbar - {4B4D5056-3763-006A-76A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll [2015-04-23] (APN LLC.)
Toolbar: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 -> Ask Toolbar - {41545534-2D56-3700-76A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll [2015-04-23] (APN LLC.)
Toolbar: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 -> KMP Media Toolbar - {4B4D5056-3763-006A-76A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll [2015-04-23] (APN LLC.)
DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll [2009-02-06] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll [2009-02-06] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2013-03-02] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2013-03-02] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{26D0B17A-566C-430C-A696-76AEA0CACAEF}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{73D65B59-704D-4314-BBD0-9F41B7136AF1}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{8BB63DEF-74F3-4A3F-A70F-2ED7FF6333E0}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{921B3AC2-4236-4800-AB4E-B2F9659A7E46}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{E7E0A98E-4DD1-4C3F-B1D8-DA68BCEB2889}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{EB38B270-B06E-4528-AC16-8ABBA7B8C039}: [NameServer] 93.153.117.1 93.153.117.33

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-23] ()
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll No File
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2008-11-13] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8064.0206 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-02-06] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin HKU\S-1-5-21-2706494457-2031264958-781609475-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Lukasek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)

Chrome:
=======
CHR DefaultSearchKeyword: Profile 1 -> seznam.cz
CHR DefaultSearchURL: Profile 1 -> http://search.seznam.cz/?q={searchTerms}
CHR DefaultSuggestURL: Profile 1 -> http://suggest.fulltext.seznam.cz/fullt ... earchTerms}
CHR Profile: C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-07]
CHR Extension: (Google Docs) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-07]
CHR Extension: (Google Drive) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-07]
CHR Extension: (YouTube) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-07]
CHR Extension: (Google Search) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-07]
CHR Extension: (Google Sheets) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-07]
CHR Extension: (Bookmark Manager) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Google Wallet) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-07]
CHR Extension: (Gmail) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-07]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [178568 2015-04-23] (APN LLC.)
R2 AsusService; C:\Windows\System32\AsusService.exe [219136 2009-08-19] () [File not signed]
R2 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 SfCtlCom; C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe [736040 2010-10-09] () [File not signed]
R2 ssinstall; C:\windows\System32\ssins.exe [2324216 2015-03-26] (PS Media s.r.o.)
R3 TMBMServer; C:\Program Files\Trend Micro\BM\TMBMSRV.exe [345352 2009-08-04] () [File not signed]
R3 TmPfw; C:\Program Files\Trend Micro\Internet Security\TmPfw.exe [497008 2009-08-04] () [File not signed]
R3 TmProxy; C:\Program Files\Trend Micro\Internet Security\TmProxy.exe [689416 2009-08-04] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)
S2 SafetyNutManager; C:\Program Files\Browser Tab Search by Ask\SafetyNut\SafetyNutManager.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 hwusb_cdcacm; C:\windows\System32\DRIVERS\ew_cdcacm.sys [108032 2013-10-23] (Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\windows\System32\DRIVERS\ew_wwanecm.sys [316544 2013-11-01] (Huawei Technologies Co., Ltd.)
R3 igd; C:\windows\System32\DRIVERS\igdkmd32.sys [635552 2009-10-10] (Intel Corporation)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R3 tmactmon; C:\windows\System32\DRIVERS\tmactmon.sys [59472 2010-07-19] () [File not signed]
R2 tmcomm; C:\windows\System32\DRIVERS\tmcomm.sys [163408 2010-07-19] () [File not signed]
R3 tmevtmgr; C:\windows\System32\DRIVERS\tmevtmgr.sys [51792 2010-07-19] () [File not signed]
R3 tmlwf; C:\windows\System32\DRIVERS\tmlwf.sys [146448 2009-08-04] (Trend Micro Inc.)
R2 tmpreflt; C:\windows\System32\DRIVERS\tmpreflt.sys [36624 2011-07-12] (Trend Micro Inc.)
R1 tmtdi; C:\windows\System32\DRIVERS\tmtdi.sys [89872 2009-08-04] (Trend Micro Inc.)
R3 tmwfp; C:\windows\System32\DRIVERS\tmwfp.sys [283152 2009-08-04] (Trend Micro Inc.)
R2 tmxpflt; C:\windows\System32\DRIVERS\tmxpflt.sys [262416 2011-07-12] (Trend Micro Inc.)
R2 vsapint; C:\windows\System32\DRIVERS\vsapint.sys [1405720 2011-07-12] (Trend Micro Inc.)
S1 F06DEFF2-5B9C-490D-910F-35D3A9119622; \??\C:\Program Files\Browser Tab Search by Ask\SafetyNut\configmgrc2.cfg [X]
S0 MpFilter; system32\DRIVERS\MpFilter.sys [X]
S2 NisDrv; system32\DRIVERS\NisDrvWFP.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-11 19:57 - 2015-05-11 19:58 - 00020115 _____ () C:\Users\Lukasek\Desktop\FRST.txt
2015-05-11 19:53 - 2015-05-11 19:56 - 00020274 _____ () C:\Users\Lukasek\Downloads\FRST.txt
2015-05-11 19:52 - 2015-05-11 19:52 - 01141248 _____ (Farbar) C:\Users\Lukasek\Desktop\FRST (2).exe
2015-05-11 19:43 - 2015-05-11 19:57 - 00000000 ____D () C:\FRST
2015-05-10 21:01 - 2015-05-10 21:01 - 01141248 _____ (Farbar) C:\Users\Lukasek\Desktop\FRST.exe
2015-05-10 19:21 - 2015-05-10 19:21 - 00000302 _____ () C:\windows\PFRO.log
2015-05-10 18:46 - 2015-05-10 18:46 - 00000000 ____D () C:\Users\Lukasek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2015-05-02 21:16 - 2015-05-02 21:16 - 00000000 ____D () C:\Users\Lukasek\AppData\Roaming\Windows Live Writer
2015-05-02 21:16 - 2015-05-02 21:16 - 00000000 ____D () C:\Users\Lukasek\AppData\Local\Windows Live Writer
2015-05-02 15:40 - 2015-05-02 15:40 - 00000000 ____D () C:\Users\Lukasek\Tracing
2015-05-02 13:49 - 2015-05-03 09:32 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-04-25 13:38 - 2015-04-25 13:38 - 01081000 _____ (Unity Technologies ApS) C:\Users\Lukasek\Downloads\UnityWebPlayer (2).exe
2015-04-18 06:47 - 2015-05-10 14:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-04-18 06:47 - 2015-04-18 06:47 - 00000000 ___RD () C:\Program Files\Skype
2015-04-18 06:47 - 2015-04-18 06:47 - 00000000 ____D () C:\Program Files\Common Files\Skype
2015-04-16 22:22 - 2015-04-16 22:22 - 00000108 _____ () C:\windows\TMFilter.log
2015-04-15 19:10 - 2015-03-23 03:36 - 00860160 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-04-15 19:10 - 2015-03-23 03:36 - 00630784 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-04-15 19:10 - 2015-03-23 03:36 - 00576000 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-04-15 19:10 - 2015-03-23 03:36 - 00331264 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-04-15 19:10 - 2015-03-23 03:35 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2015-04-15 19:10 - 2015-03-23 03:30 - 00896000 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-04-15 19:09 - 2015-03-23 03:35 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-04-15 08:34 - 2015-05-11 11:06 - 00001736 _____ () C:\windows\setupact.log
2015-04-15 08:34 - 2015-04-15 08:34 - 00000000 _____ () C:\windows\setuperr.log
2015-04-13 18:01 - 2015-04-13 18:02 - 00018520 _____ () C:\Users\Lukasek\Downloads\downhilljam (1).dcr
2015-04-13 18:00 - 2015-04-13 18:00 - 00018519 _____ () C:\Users\Lukasek\Downloads\downhilljam.dcr

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-11 19:59 - 2014-04-26 15:16 - 00000940 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-11 19:55 - 2015-03-26 19:17 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-05-11 19:45 - 2014-04-26 15:16 - 00000936 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-11 19:44 - 2014-04-26 23:06 - 01717171 _____ () C:\windows\WindowsUpdate.log
2015-05-11 19:42 - 2009-07-14 06:34 - 00015792 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-11 19:42 - 2009-07-14 06:34 - 00015792 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-11 19:41 - 2009-08-28 10:15 - 01519502 _____ () C:\windows\system32\PerfStringBackup.INI
2015-05-11 19:34 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\tracing
2015-05-11 11:06 - 2015-03-26 20:17 - 00000000 _____ () C:\windows\system32\sinstall.log
2015-05-11 11:06 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-05-10 19:08 - 2014-04-26 15:19 - 00002089 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-10 14:48 - 2014-08-18 11:12 - 00000000 ____D () C:\Users\Lukasek
2015-05-10 14:48 - 2014-04-26 14:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-05-10 14:48 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\wfp
2015-05-10 14:47 - 2015-03-23 18:20 - 00000000 ____D () C:\Users\Lukasek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hry.cz
2015-05-10 14:47 - 2014-11-14 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zimní Hrátky
2015-05-10 14:47 - 2014-07-11 04:03 - 00000000 ____D () C:\Users\Administrator
2015-05-10 14:47 - 2014-04-26 14:25 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework
2015-05-10 14:47 - 2014-04-26 14:22 - 00000000 ____D () C:\Program Files\Windows Live SkyDrive
2015-05-10 14:47 - 2014-04-26 14:22 - 00000000 ____D () C:\Program Files\Windows Live
2015-05-10 14:47 - 2014-04-26 14:14 - 00000000 ____D () C:\Users\Kristina
2015-05-10 14:47 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\NDF
2015-05-10 14:47 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\registration
2015-05-10 14:46 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-05-02 21:16 - 2014-11-15 12:00 - 00000000 ____D () C:\Users\Lukasek\AppData\Local\Windows Live
2015-05-02 12:52 - 2009-07-14 09:48 - 00000000 ___RD () C:\Users\Public\Recorded TV
2015-04-28 20:32 - 2014-05-04 10:15 - 00000000 ____D () C:\windows\system32\Service
2015-04-23 16:55 - 2015-03-26 19:17 - 00778416 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-04-23 16:55 - 2015-03-26 19:17 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-04-21 16:49 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\AppCompat
2015-04-20 05:32 - 2014-09-30 05:58 - 125832184 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-04-20 05:32 - 2014-09-30 05:58 - 00000000 ____D () C:\windows\system32\MRT
2015-04-18 07:08 - 2009-08-28 10:15 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-18 06:49 - 2014-12-11 07:22 - 00000000 ____D () C:\windows\system32\appraiser
2015-04-18 06:49 - 2014-07-11 04:05 - 00000000 ___SD () C:\windows\system32\CompatTel
2015-04-18 06:48 - 2009-08-28 10:34 - 00000000 ____D () C:\ProgramData\Skype
2015-04-14 20:23 - 2015-03-23 18:19 - 00000000 ____D () C:\ProgramData\AlawarWrapper

==================== Files in the root of some directories =======

2014-08-30 05:14 - 2010-04-22 08:52 - 0020480 _____ () C:\Users\Lukasek\AppData\Roaming\client.db
2015-04-09 09:03 - 2015-04-09 09:04 - 0061848 _____ () C:\Users\Lukasek\AppData\Roaming\win122.exe
2015-04-09 09:05 - 2015-04-09 09:05 - 0060795 _____ () C:\Users\Lukasek\AppData\Roaming\win26.exe
2015-02-20 19:34 - 2015-02-20 19:34 - 0000000 _____ () C:\Users\Lukasek\AppData\Local\{385FA78D-B5C8-4B3D-9294-A18189DEE428}

Some content of TEMP:
====================
C:\Users\Kristina\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp0prl5h.dll
C:\Users\Kristina\AppData\Local\Temp\nsfE967.exe
C:\Users\Kristina\AppData\Local\Temp\nsp2665.exe
C:\Users\Kristina\AppData\Local\Temp\sp-downloader.exe
C:\Users\Kristina\AppData\Local\Temp\SPSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-02 14:29

==================== End Of Log ============================

Spusťte nyní tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

tady :

# AdwCleaner v4.203 - Log vytvořen 11/05/2015 v 22:04:56
# Aktualizováno 30/04/2015 by Xplode
# Databáze : 2015-05-09.1 [Server]
# Operační system : Windows 7 Home Premium (x86)
# Uživatelské jméno : Lukasek - KRISTINA-PC
# Spuštěno z : C:\Users\Lukasek\Desktop\adwcleaner_4.203.exe
# Nastavení : Čištění

***** [ Služby ] *****

Služba Smazáno : APNMCP
[#] Služba Smazáno : SafetyNutManager

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\apn
Složka Smazáno : C:\ProgramData\AskPartnerNetwork
Složka Smazáno : C:\ProgramData\SafetyNut
Složka Smazáno : C:\Program Files\AskPartnerNetwork
Složka Smazáno : C:\Program Files\Browser Tab Search by Ask
Složka Smazáno : C:\Program Files\SearchProtect
Složka Smazáno : C:\Users\Lukasek\AppData\Local\Temp\apn
Složka Smazáno : C:\Users\Kristina\AppData\Local\AskPartnerNetwork
Složka Smazáno : C:\Users\Kristina\AppData\Local\SearchProtect
Složka Smazáno : C:\Users\Kristina\AppData\Roaming\OpenCandy
Složka Smazáno : C:\Users\Lukasek\AppData\Local\AskPartnerNetwork
Složka Smazáno : C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
Složka Smazáno : C:\Users\Lukasek\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
Složka Smazáno : C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaaalipaokhkccgmgkdglfinfnfhflko
Složka Smazáno : C:\Users\Lukasek\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaaalipaokhkccgmgkdglfinfnfhflko
Soubor Smazáno : C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage
Soubor Smazáno : C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage-journal
Soubor Smazáno : C:\Users\Lukasek\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage
Soubor Smazáno : C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_aaaalipaokhkccgmgkdglfinfnfhflko_0.localstorage
Soubor Smazáno : C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_aaaalipaokhkccgmgkdglfinfnfhflko_0.localstorage-journal
Soubor Smazáno : C:\Users\Lukasek\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_aaaalipaokhkccgmgkdglfinfnfhflko_0.localstorage
Soubor Smazáno : C:\windows\AppPatch\Custom\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb
Soubor Smazáno : C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
Soubor Smazáno : C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Klíč Smazáno : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.EasyHideBtn
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.EasyHideBtn.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.Localizer
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.Localizer.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighter
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighter.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighterStatistics
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.NameHighlighterStatistics.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.SkypeIEHelper
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.SkypeIEHelper.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.SNameProxy
Klíč Smazáno : HKLM\SOFTWARE\Classes\ToolBand.SNameProxy.1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Hodnota Smazáno : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{937936AF-28CA-4973-B8AE-F250406149A2}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{D8278076-BC68-4484-9233-6E7F1628B56C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{937936AF-28CA-4973-B8AE-F250406149A2}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{EEA63863-87BC-4DCA-A5B5-EB97E3B04806}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{D8278076-BC68-4484-9233-6E7F1628B56C}]
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{965D3B7D-A44E-41FD-966F-A0BC63641DFF}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2488}
Klíč Smazáno : HKCU\Software\AskPartnerNetwork
Klíč Smazáno : HKLM\SOFTWARE\AskPartnerNetwork
Klíč Smazáno : HKLM\SOFTWARE\SafetyNut
Klíč Smazáno : HKU\.DEFAULT\Software\AskPartnerNetwork
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\90C64EA18BA25EE488BF80DCF07F2FFD
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

***** [ Prohlížeče ] *****

-\\ Internet Explorer v8.0.7600.17267

Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v42.0.2311.135

[C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://dts.search.ask.com/sr?src=crb&gct=ds&appid=101&systemid=488&v=a13277-330&apn_uid=8013849470944251&apn_dtid=TCH001&o=APN11459&apn_ptnrs=AG1&q={searchTerms}
[C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
[C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Extension] : flpcjncodpafbgdpnkljologafpionhb
[C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Homepage] : hxxp://www.search.ask.com/?o=APN11459&gct=hp&d ... 77-330&t=4
[C:\Users\Kristina\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Startup_URLs] : hxxp://www.search.ask.com/?o=APN11459&gct=hp&d ... 77-330&t=4

-\\ Comodo Dragon v33.1.0.1

[C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://dts.search.ask.com/sr?src=crb&gct=ds&appid=101&systemid=488&v=a13277-330&apn_uid=8013849470944251&apn_dtid=TCH001&o=APN11459&apn_ptnrs=AG1&q={searchTerms}
[C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://search.ask.com/web?o=APN10257&doi=2014-06-11&apn_dtid=%5ECMD161%5EYY%5EUS&apn_ptnrs=%5EAGO&q={searchTerms}
[C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : cmaiofennmphjldldcpphcechfnnohja
[C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : aaaalipaokhkccgmgkdglfinfnfhflko
[C:\Users\Kristina\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Startup_URLs] : hxxp://www.search.ask.com/?o=APN11459&gct=hp&d ... 77-330&t=4
[C:\Users\Lukasek\AppData\Local\Comodo\Dragon\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://search.ask.com/web?o=APN10257&doi=2014-06-11&apn_dtid=%5ECMD161%5EYY%5EUS&apn_ptnrs=%5EAGO&q={searchTerms}
[C:\Users\Lukasek\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : cmaiofennmphjldldcpphcechfnnohja
[C:\Users\Lukasek\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : aaaalipaokhkccgmgkdglfinfnfhflko

*************************

AdwCleaner[R0].txt - [12395 bytů] - [11/05/2015 21:34:30]
AdwCleaner[R1].txt - [12454 bytů] - [11/05/2015 21:54:14]
AdwCleaner[S0].txt - [11492 bytů] - [11/05/2015 22:04:56]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11551 bytů] ##########

A teď poprosím ještě o jeden log FRST.

Tady je :

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-05-2015
Ran by Lukasek (administrator) on KRISTINA-PC on 12-05-2015 13:46:24
Running from C:\Users\Lukasek\Desktop
Loaded Profiles: Lukasek (Available profiles: Lukasek)
Platform: Microsoft Windows 7 Home Premium (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser path: "C:\Program Files\Comodo\Dragon\dragon.exe" -- "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Windows\System32\AsusService.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Comodo Security Solutions, Inc.) C:\Program Files\Comodo\Dragon\dragon_updater.exe
() C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
(PS Media s.r.o.) C:\Windows\System32\ssins.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ECAREME) C:\Program Files\ASUS\Asus WebStorage\BackupService.exe
() C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Program Files\ASUS\Eee Docking\Eee Docking.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
() C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
() C:\Program Files\Trend Micro\Internet Security\TmPfw.exe
() C:\Program Files\Trend Micro\BM\TMBMSRV.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Farbar) C:\Users\Lukasek\Desktop\FRST (2).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-28] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-20] (Synaptics Incorporated)
HKLM\...\Run: [HotkeyService] => C:\Program Files\EeePC\HotkeyService\HotkeyService.exe [750008 2009-09-11] (ASUSTeK Computer Inc.)
HKLM\...\Run: [SuperHybridEngine] => C:\Program Files\EeePC\SHE\SuperHybridEngine.exe [407552 2009-08-21] (ASUSTeK Computer Inc.)
HKLM\...\Run: [EeeStorageBackup] => C:\Program Files\ASUS\Asus WebStorage\BackupService.exe [947472 2009-07-31] (ECAREME)
HKLM\...\Run: [UfSeAgnt.exe] => C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe [1024368 2010-02-23] ()
HKLM\...\Run: [LiveUpdate] => C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe [803304 2009-08-28] ()
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [83240 2009-07-20] (Synaptics Incorporated)
HKLM\...\Run: [IgfxExt] => C:\Windows\system32\IgfxExt.exe [174616 2009-10-15] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7625248 2009-07-20] (Realtek Semiconductor)
HKLM\...\Run: [ASUSWebStorage] => C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [737104 2011-07-29] (ecareme)
HKLM\...\Run: [HotKeyMon] => C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe [100328 2009-09-11] (ASUSTeK Computer Inc.)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\Run: [Eee Docking] => C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [402608 2009-08-26] ()
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\Run: [OE] => C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe [492808 2009-08-05] (Trend Micro Inc.)
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {1988b924-d3a8-11e4-9871-90e6ba542a6d} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {2577639b-dd3c-11e4-9805-90e6ba542a6d} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {3383b2dc-5781-11e4-86ad-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {5f479f06-2680-11e4-80b8-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {cb5ddf48-264f-11e4-8e15-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\windows\System32\SPReview\SPReview.exe [280576 2014-08-13] (Microsoft Corporation)
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2014-05-01]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2014-04-26]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HotKeyMon.lnk [2009-09-16]
ShortcutTarget: HotKeyMon.lnk -> C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe (ASUSTeK Computer Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk [2009-08-29]
ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{D42F84B6-3709-4A50-8502-6719D16AE6C8}\NewShortcut4_E9C83B3EDF9141A39DA5EC05C79BBB91.exe (Acresso Software Inc.)
Startup: C:\Users\Lukasek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2014-12-15]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {CC5FC992-B0AA-47CD-9DC2-83445083CBB8} => C:\Program Files\ASUS\Asus WebStorage\3.0.108.222\AsusWSShellExt.dll [2010-09-02] ()
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {618A47A2-528B-4D9A-AFC8-97D3233511E2} => C:\Program Files\ASUS\Asus WebStorage\3.0.108.222\AsusWSShellExt.dll [2010-09-02] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2706494457-2031264958-781609475-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://eeepc.asus.com
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
BHO: Ask Toolbar -> {41545534-2D56-3700-76A7-7A786E7484D7} -> "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll" No File
BHO: KMP Media Toolbar -> {4B4D5056-3763-006A-76A7-7A786E7484D7} -> "C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll" No File
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)
Toolbar: HKLM - Ask Toolbar - {41545534-2D56-3700-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll" No File
Toolbar: HKLM - KMP Media Toolbar - {4B4D5056-3763-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll" No File
Toolbar: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 -> Ask Toolbar - {41545534-2D56-3700-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll" No File
Toolbar: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 -> KMP Media Toolbar - {4B4D5056-3763-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll" No File
DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll [2009-02-06] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll [2009-02-06] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2013-03-02] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2013-03-02] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{26D0B17A-566C-430C-A696-76AEA0CACAEF}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{73D65B59-704D-4314-BBD0-9F41B7136AF1}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{8BB63DEF-74F3-4A3F-A70F-2ED7FF6333E0}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{921B3AC2-4236-4800-AB4E-B2F9659A7E46}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{E7E0A98E-4DD1-4C3F-B1D8-DA68BCEB2889}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{EB38B270-B06E-4528-AC16-8ABBA7B8C039}: [NameServer] 93.153.117.1 93.153.117.33

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-23] ()
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll No File
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2008-11-13] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8064.0206 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-02-06] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin HKU\S-1-5-21-2706494457-2031264958-781609475-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Lukasek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)

Chrome:
=======
CHR DefaultSearchKeyword: Profile 1 -> seznam.cz
CHR DefaultSearchURL: Profile 1 -> http://search.seznam.cz/?q={searchTerms}
CHR DefaultSuggestURL: Profile 1 -> http://suggest.fulltext.seznam.cz/fullt ... earchTerms}
CHR Profile: C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-07]
CHR Extension: (Google Docs) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-07]
CHR Extension: (Google Drive) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-07]
CHR Extension: (YouTube) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-07]
CHR Extension: (Google Search) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-07]
CHR Extension: (Google Sheets) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-07]
CHR Extension: (Bookmark Manager) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Google Wallet) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-07]
CHR Extension: (Gmail) - C:\Users\Lukasek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-07]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsusService; C:\Windows\System32\AsusService.exe [219136 2009-08-19] () [File not signed]
R2 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 SfCtlCom; C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe [736040 2010-10-09] () [File not signed]
R2 ssinstall; C:\windows\System32\ssins.exe [2324216 2015-03-26] (PS Media s.r.o.)
R3 TMBMServer; C:\Program Files\Trend Micro\BM\TMBMSRV.exe [345352 2009-08-04] () [File not signed]
R3 TmPfw; C:\Program Files\Trend Micro\Internet Security\TmPfw.exe [497008 2009-08-04] () [File not signed]
R3 TmProxy; C:\Program Files\Trend Micro\Internet Security\TmProxy.exe [689416 2009-08-04] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 hwusb_cdcacm; C:\windows\System32\DRIVERS\ew_cdcacm.sys [108032 2013-10-23] (Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\windows\System32\DRIVERS\ew_wwanecm.sys [316544 2013-11-01] (Huawei Technologies Co., Ltd.)
R3 igd; C:\windows\System32\DRIVERS\igdkmd32.sys [635552 2009-10-10] (Intel Corporation)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R3 tmactmon; C:\windows\System32\DRIVERS\tmactmon.sys [59472 2010-07-19] () [File not signed]
R2 tmcomm; C:\windows\System32\DRIVERS\tmcomm.sys [163408 2010-07-19] () [File not signed]
R3 tmevtmgr; C:\windows\System32\DRIVERS\tmevtmgr.sys [51792 2010-07-19] () [File not signed]
R3 tmlwf; C:\windows\System32\DRIVERS\tmlwf.sys [146448 2009-08-04] (Trend Micro Inc.)
R2 tmpreflt; C:\windows\System32\DRIVERS\tmpreflt.sys [36624 2011-07-12] (Trend Micro Inc.)
R1 tmtdi; C:\windows\System32\DRIVERS\tmtdi.sys [89872 2009-08-04] (Trend Micro Inc.)
R3 tmwfp; C:\windows\System32\DRIVERS\tmwfp.sys [283152 2009-08-04] (Trend Micro Inc.)
R2 tmxpflt; C:\windows\System32\DRIVERS\tmxpflt.sys [262416 2011-07-12] (Trend Micro Inc.)
R2 vsapint; C:\windows\System32\DRIVERS\vsapint.sys [1405720 2011-07-12] (Trend Micro Inc.)
S1 F06DEFF2-5B9C-490D-910F-35D3A9119622; \??\C:\Program Files\Browser Tab Search by Ask\SafetyNut\configmgrc2.cfg [X]
S0 MpFilter; system32\DRIVERS\MpFilter.sys [X]
S2 NisDrv; system32\DRIVERS\NisDrvWFP.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-11 21:34 - 2015-05-11 22:12 - 00000000 ____D () C:\AdwCleaner
2015-05-11 21:32 - 2015-05-11 21:33 - 02204160 _____ () C:\Users\Lukasek\Desktop\adwcleaner_4.203.exe
2015-05-11 20:01 - 2015-05-11 20:07 - 00027461 _____ () C:\Users\Lukasek\Desktop\Addition.txt
2015-05-11 19:57 - 2015-05-12 13:51 - 00017178 _____ () C:\Users\Lukasek\Desktop\FRST.txt
2015-05-11 19:53 - 2015-05-11 19:56 - 00020274 _____ () C:\Users\Lukasek\Downloads\FRST.txt
2015-05-11 19:52 - 2015-05-11 19:52 - 01141248 _____ (Farbar) C:\Users\Lukasek\Desktop\FRST (2).exe
2015-05-11 19:43 - 2015-05-12 13:47 - 00000000 ____D () C:\FRST
2015-05-10 21:01 - 2015-05-10 21:01 - 01141248 _____ (Farbar) C:\Users\Lukasek\Desktop\FRST.exe
2015-05-10 19:21 - 2015-05-10 19:21 - 00000302 _____ () C:\windows\PFRO.log
2015-05-10 18:46 - 2015-05-10 18:46 - 00000000 ____D () C:\Users\Lukasek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2015-05-02 21:16 - 2015-05-02 21:16 - 00000000 ____D () C:\Users\Lukasek\AppData\Roaming\Windows Live Writer
2015-05-02 21:16 - 2015-05-02 21:16 - 00000000 ____D () C:\Users\Lukasek\AppData\Local\Windows Live Writer
2015-05-02 15:40 - 2015-05-02 15:40 - 00000000 ____D () C:\Users\Lukasek\Tracing
2015-05-02 13:49 - 2015-05-03 09:32 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-04-25 13:38 - 2015-04-25 13:38 - 01081000 _____ (Unity Technologies ApS) C:\Users\Lukasek\Downloads\UnityWebPlayer (2).exe
2015-04-18 06:47 - 2015-05-10 14:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-04-18 06:47 - 2015-04-18 06:47 - 00000000 ___RD () C:\Program Files\Skype
2015-04-18 06:47 - 2015-04-18 06:47 - 00000000 ____D () C:\Program Files\Common Files\Skype
2015-04-16 22:22 - 2015-04-16 22:22 - 00000108 _____ () C:\windows\TMFilter.log
2015-04-15 19:10 - 2015-03-23 03:36 - 00860160 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-04-15 19:10 - 2015-03-23 03:36 - 00630784 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-04-15 19:10 - 2015-03-23 03:36 - 00576000 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-04-15 19:10 - 2015-03-23 03:36 - 00331264 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-04-15 19:10 - 2015-03-23 03:35 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2015-04-15 19:10 - 2015-03-23 03:30 - 00896000 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-04-15 19:09 - 2015-03-23 03:35 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-04-15 08:34 - 2015-05-12 13:41 - 00001848 _____ () C:\windows\setupact.log
2015-04-15 08:34 - 2015-04-15 08:34 - 00000000 _____ () C:\windows\setuperr.log
2015-04-13 18:01 - 2015-04-13 18:02 - 00018520 _____ () C:\Users\Lukasek\Downloads\downhilljam (1).dcr
2015-04-13 18:00 - 2015-04-13 18:00 - 00018519 _____ () C:\Users\Lukasek\Downloads\downhilljam.dcr

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-12 13:49 - 2009-07-14 06:34 - 00015792 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-12 13:49 - 2009-07-14 06:34 - 00015792 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-12 13:47 - 2014-04-26 23:06 - 01743701 _____ () C:\windows\WindowsUpdate.log
2015-05-12 13:41 - 2015-03-26 20:17 - 00000000 _____ () C:\windows\system32\sinstall.log
2015-05-12 13:41 - 2014-04-26 15:16 - 00000936 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-12 13:41 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-05-11 21:59 - 2014-04-26 15:16 - 00000940 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-11 21:55 - 2015-03-26 19:17 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-05-11 21:21 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\tracing
2015-05-11 20:51 - 2015-03-23 18:19 - 00000000 ____D () C:\ProgramData\AlawarWrapper
2015-05-11 19:41 - 2009-08-28 10:15 - 01519502 _____ () C:\windows\system32\PerfStringBackup.INI
2015-05-10 19:08 - 2014-04-26 15:19 - 00002089 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-10 14:48 - 2014-08-18 11:12 - 00000000 ____D () C:\Users\Lukasek
2015-05-10 14:48 - 2014-04-26 14:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-05-10 14:48 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\wfp
2015-05-10 14:47 - 2015-03-23 18:20 - 00000000 ____D () C:\Users\Lukasek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hry.cz
2015-05-10 14:47 - 2014-11-14 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zimní Hrátky
2015-05-10 14:47 - 2014-07-11 04:03 - 00000000 ____D () C:\Users\Administrator
2015-05-10 14:47 - 2014-04-26 14:25 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework
2015-05-10 14:47 - 2014-04-26 14:22 - 00000000 ____D () C:\Program Files\Windows Live SkyDrive
2015-05-10 14:47 - 2014-04-26 14:22 - 00000000 ____D () C:\Program Files\Windows Live
2015-05-10 14:47 - 2014-04-26 14:14 - 00000000 ____D () C:\Users\Kristina
2015-05-10 14:47 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\NDF
2015-05-10 14:47 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\registration
2015-05-10 14:46 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-05-02 21:16 - 2014-11-15 12:00 - 00000000 ____D () C:\Users\Lukasek\AppData\Local\Windows Live
2015-05-02 12:52 - 2009-07-14 09:48 - 00000000 ___RD () C:\Users\Public\Recorded TV
2015-04-28 20:32 - 2014-05-04 10:15 - 00000000 ____D () C:\windows\system32\Service
2015-04-23 16:55 - 2015-03-26 19:17 - 00778416 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-04-23 16:55 - 2015-03-26 19:17 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-04-21 16:49 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\AppCompat
2015-04-20 05:32 - 2014-09-30 05:58 - 125832184 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-04-20 05:32 - 2014-09-30 05:58 - 00000000 ____D () C:\windows\system32\MRT
2015-04-18 07:08 - 2009-08-28 10:15 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-18 06:49 - 2014-12-11 07:22 - 00000000 ____D () C:\windows\system32\appraiser
2015-04-18 06:49 - 2014-07-11 04:05 - 00000000 ___SD () C:\windows\system32\CompatTel
2015-04-18 06:48 - 2009-08-28 10:34 - 00000000 ____D () C:\ProgramData\Skype

==================== Files in the root of some directories =======

2014-08-30 05:14 - 2010-04-22 08:52 - 0020480 _____ () C:\Users\Lukasek\AppData\Roaming\client.db
2015-04-09 09:03 - 2015-04-09 09:04 - 0061848 _____ () C:\Users\Lukasek\AppData\Roaming\win122.exe
2015-04-09 09:05 - 2015-04-09 09:05 - 0060795 _____ () C:\Users\Lukasek\AppData\Roaming\win26.exe
2015-02-20 19:34 - 2015-02-20 19:34 - 0000000 _____ () C:\Users\Lukasek\AppData\Local\{385FA78D-B5C8-4B3D-9294-A18189DEE428}

Some content of TEMP:
====================
C:\Users\Kristina\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp0prl5h.dll
C:\Users\Kristina\AppData\Local\Temp\nsfE967.exe
C:\Users\Kristina\AppData\Local\Temp\nsp2665.exe
C:\Users\Kristina\AppData\Local\Temp\sp-downloader.exe
C:\Users\Kristina\AppData\Local\Temp\SPSetup.exe
C:\Users\Lukasek\AppData\Local\Temp\Quarantine.exe
C:\Users\Lukasek\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-02 14:29

==================== End Of Log ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {1988b924-d3a8-11e4-9871-90e6ba542a6d} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {2577639b-dd3c-11e4-9805-90e6ba542a6d} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {3383b2dc-5781-11e4-86ad-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {5f479f06-2680-11e4-80b8-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {cb5ddf48-264f-11e4-8e15-002243ffc212} - E:\Autorun.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Ask Toolbar -> {41545534-2D56-3700-76A7-7A786E7484D7} -> "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll" No File
BHO: KMP Media Toolbar -> {4B4D5056-3763-006A-76A7-7A786E7484D7} -> "C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll" No File
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)
Toolbar: HKLM - Ask Toolbar - {41545534-2D56-3700-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll" No File
Toolbar: HKLM - KMP Media Toolbar - {4B4D5056-3763-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll" No File
Toolbar: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 -> Ask Toolbar - {41545534-2D56-3700-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll" No File
Toolbar: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 -> KMP Media Toolbar - {4B4D5056-3763-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll" No File
C:\Program Files\Microsoft\BingBar
C:\Program Files\AskPartnerNetwork
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
S1 F06DEFF2-5B9C-490D-910F-35D3A9119622; \??\C:\Program Files\Browser Tab Search by Ask\SafetyNut\configmgrc2.cfg [X]
C:\Users\Lukasek\Downloads\downhilljam (1).dcr
C:\Users\Lukasek\Downloads\downhilljam.dcr
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Kristina\AppData\Local\Temp
C:\Users\Lukasek\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 09-05-2015
Ran by Lukasek at 2015-05-12 18:00:46 Run:2
Running from C:\Users\Lukasek\Desktop
Loaded Profiles: Lukasek (Available profiles: Lukasek)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {1988b924-d3a8-11e4-9871-90e6ba542a6d} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {2577639b-dd3c-11e4-9805-90e6ba542a6d} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {3383b2dc-5781-11e4-86ad-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {5f479f06-2680-11e4-80b8-002243ffc212} - E:\Autorun.exe
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\...\MountPoints2: {cb5ddf48-264f-11e4-8e15-002243ffc212} - E:\Autorun.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Ask Toolbar -> {41545534-2D56-3700-76A7-7A786E7484D7} -> "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll" No File
BHO: KMP Media Toolbar -> {4B4D5056-3763-006A-76A7-7A786E7484D7} -> "C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll" No File
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll [2012-06-11] (Microsoft Corporation.)
Toolbar: HKLM - Ask Toolbar - {41545534-2D56-3700-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll" No File
Toolbar: HKLM - KMP Media Toolbar - {4B4D5056-3763-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll" No File
Toolbar: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 -> Ask Toolbar - {41545534-2D56-3700-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4-V7\Passport.dll" No File
Toolbar: HKU\S-1-5-21-2706494457-2031264958-781609475-1001 -> KMP Media Toolbar - {4B4D5056-3763-006A-76A7-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\KMPV7c\Passport.dll" No File
C:\Program Files\Microsoft\BingBar
C:\Program Files\AskPartnerNetwork
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
S1 F06DEFF2-5B9C-490D-910F-35D3A9119622; \??\C:\Program Files\Browser Tab Search by Ask\SafetyNut\configmgrc2.cfg [X]
C:\Users\Lukasek\Downloads\downhilljam (1).dcr
C:\Users\Lukasek\Downloads\downhilljam.dcr
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Kristina\AppData\Local\Temp
C:\Users\Lukasek\AppData\Local\Temp
End
*****************

HKU\S-1-5-21-2706494457-2031264958-781609475-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1988b924-d3a8-11e4-9871-90e6ba542a6d} => Key not found.
HKCR\CLSID\{1988b924-d3a8-11e4-9871-90e6ba542a6d} => Key not found.
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2577639b-dd3c-11e4-9805-90e6ba542a6d} => Key not found.
HKCR\CLSID\{2577639b-dd3c-11e4-9805-90e6ba542a6d} => Key not found.
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3383b2dc-5781-11e4-86ad-002243ffc212} => Key not found.
HKCR\CLSID\{3383b2dc-5781-11e4-86ad-002243ffc212} => Key not found.
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5f479f06-2680-11e4-80b8-002243ffc212} => Key not found.
HKCR\CLSID\{5f479f06-2680-11e4-80b8-002243ffc212} => Key not found.
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cb5ddf48-264f-11e4-8e15-002243ffc212} => Key not found.
HKCR\CLSID\{cb5ddf48-264f-11e4-8e15-002243ffc212} => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\jumpflip => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\volaro => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\vonteera => Key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41545534-2D56-3700-76A7-7A786E7484D7} => Key not found.
HKCR\CLSID\{41545534-2D56-3700-76A7-7A786E7484D7} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4B4D5056-3763-006A-76A7-7A786E7484D7} => Key not found.
HKCR\CLSID\{4B4D5056-3763-006A-76A7-7A786E7484D7} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => Key not found.
HKCR\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} => Value not found.
HKCR\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{41545534-2D56-3700-76A7-7A786E7484D7} => Value not found.
HKCR\CLSID\{41545534-2D56-3700-76A7-7A786E7484D7} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{4B4D5056-3763-006A-76A7-7A786E7484D7} => Value not found.
HKCR\CLSID\{4B4D5056-3763-006A-76A7-7A786E7484D7} => Key not found.
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{41545534-2D56-3700-76A7-7A786E7484D7} => Value not found.
HKCR\CLSID\{41545534-2D56-3700-76A7-7A786E7484D7} => Key not found.
HKU\S-1-5-21-2706494457-2031264958-781609475-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B4D5056-3763-006A-76A7-7A786E7484D7} => Value not found.
HKCR\CLSID\{4B4D5056-3763-006A-76A7-7A786E7484D7} => Key not found.
"C:\Program Files\Microsoft\BingBar" => File/Directory not found.
"C:\Program Files\AskPartnerNetwork" => File/Directory not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3" => Key deleted successfully.
F06DEFF2-5B9C-490D-910F-35D3A9119622 => Service deleted successfully.
C:\Users\Lukasek\Downloads\downhilljam (1).dcr => Moved successfully.
C:\Users\Lukasek\Downloads\downhilljam.dcr => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Users\Kristina\AppData\Local\Temp => Moved successfully.

"C:\Users\Lukasek\AppData\Local\Temp" directory move:

Could not move "C:\Users\Lukasek\AppData\Local\Temp" directory. => Scheduled to move on reboot.


=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-05-12 18:04:01)<=

C:\Users\Lukasek\AppData\Local\Temp => Moved successfully.

==== End of Fixlog 18:04:01 ====

Smazáno. Nastala nějaká změna?

No ja nevim ja sem prave myslela , ze se zbavim vsech tech her atd co tam nastahovali mozna by byla lepsi ta obnova systemu ja uz to zkousela ale nic se nejak nedelo