Stránka 1 z 1
Neviditelne oramovanie okna
Napsal: 10 lis 2015 07:06
od josa
Mohol by prosim niekto mrknut tento log?
S pc su dost velke problemy od pomalosti po to, ze nevidno ram okna.
Pri pokuse o nainstalovanie MBAM mi hadze chybu a nenainstaluje ho komplet.
Dakujem
Kód: Vybrat vše
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:05:48, on 9. 11. 2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\ASF Agent\ASFAgent.exe
C:\Program Files\Intel\AMT\atchksrv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Intel\AMT\LMS.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\AMT\UNS.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Intel\AMT\atchk.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\rdpclip.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HPPQVideo] "C:\Program Files\HP\ScheduledLaunch\HP LaserJet P2050 Series\bin\hppschlnch.exe" -r SOFTWARE\Hewlett-Packard\ScheduledLaunch\LJ_P2050_Series -f PQOptimizerVideo.xml -o RemindLater
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [atchk] "C:\Program Files\Intel\AMT\atchk.exe"
O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [RAM Idle Professional] C:\Program Files\TweakNow PowerPack 2006\RAM2_XP.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [LanTalk.NET] C:\Program Files\CEZEO software\LanTalk NET\LanTalk.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program Files\HP\HP UT\bin\hppusg.exe" "C:\Program Files\HP\HP UT\"
O4 - HKLM\..\Run: [DLPSP] "C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\DLPSP.EXE"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{6B952143-5A89-4911-8784-F1C8BE2E34E7}: NameServer = 195.80.171.4,195.28.64.119
O18 - Protocol: qvp - {4BA78E3D-CA25-4BFF-B8F0-8A3359E4B520} - C:\Program Files\QlikView\QvProtocol\qvp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASF Agent (ASFAgent) - Intel Corporation - C:\Program Files\Intel\ASF Agent\ASFAgent.exe
O23 - Service: Intel(R) Active Management Technology System Status Service (atchksrv) - Intel Corporation - C:\Program Files\Intel\AMT\atchksrv.exe
O23 - Service: Dell Printer Status Watcher (DLPWD) - Dell Inc. - C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\DLPWDNT.EXE
O23 - Service: Dell Printer Status Database (DLSDB) - Dell Inc. - C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\DLSDBNT.EXE
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Intel(R) Active Management Technology Local Management Service (LMS) - Intel - C:\Program Files\Intel\AMT\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: OracleClientCache80 - Unknown owner - C:\orant\BIN\ONRSD80.EXE
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe
O23 - Service: Intel(R) Active Management Technology User Notification Service (UNS) - Intel - C:\Program Files\Intel\AMT\UNS.exe
O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe
--
End of file - 10229 bytes
Re: Neviditelne oramovanie okna
Napsal: 10 lis 2015 18:24
od Rudy
Zdravím!
Spusťte tuto utilitu:
Re: Neviditelne oramovanie okna
Napsal: 11 lis 2015 08:02
od josa
Prve spustenie ADWcleaneru mi po restarte hodilo takyto log
Kód: Vybrat vše
# AdwCleaner v5.019 - Logfile created 11/11/2015 at 07:36:18
# Updated 08/11/2015 by Xplode
# Database : 2015-11-09.1 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : User_N - USER
# Running from : C:\Documents and Settings\user\Plocha\adwcleaner_5.019.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [971 bytes] ##########
Re: Neviditelne oramovanie okna
Napsal: 11 lis 2015 17:24
od Rudy
Re: Neviditelne oramovanie okna
Napsal: 12 lis 2015 12:16
od josa
Cez ten FRST launcher mi to nechcelo pustit, vraj mam stiahnut 32bit verziu ale tu mam stiahnutu. Inu na ploche nemam, tak davam, len cisto z frst.
Kód: Vybrat vše
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:07-11-2015
Ran by UUUser_N (administrator) on UUUser (12-11-2015 12:03:38)
Running from C:\Documents and Settings\UUUser_N\Plocha
Loaded Profiles: UUUser_N (Available Profiles: UUUser_N & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Program Files\Intel\ASF Agent\ASFAgent.exe
(Intel Corporation) C:\Program Files\Intel\AMT\atchksrv.exe
(Dell Inc.) C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlsdbnt.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Intel) C:\Program Files\Intel\AMT\LMS.exe
(Intel) C:\Program Files\Intel\AMT\UNS.exe
(Dell Inc.) C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpwdnt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Intel Corporation) C:\Program Files\Intel\AMT\atchk.exe
(HP) C:\Program Files\HP\ToolboxFX\bin\HPTLBXFX.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(CEZEO software Ltd. (C)) C:\Program Files\CEZEO software\LanTalk NET\LanTalk.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Dell Inc.) C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpsp.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
(Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
(Farbar) C:\Documents and Settings\UUUser_N\Plocha\FRST32.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [HPPQVideo] => C:\Program Files\HP\ScheduledLaunch\HP LaserJet P2050 Series\bin\hppschlnch.exe [106496 2007-05-07] (Hewlett-Packard)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [2054360 2009-11-16] (ESET)
HKLM\...\Run: [atchk] => C:\Program Files\Intel\AMT\atchk.exe [408344 2007-06-12] (Intel Corporation)
HKLM\...\Run: [ToolBoxFX] => C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe [53248 2010-03-09] (HP)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1036288 2007-09-24] (Analog Devices, Inc.)
HKLM\...\Run: [LanTalk.NET] => C:\Program Files\CEZEO software\LanTalk NET\LanTalk.exe [216064 2008-03-17] (CEZEO software Ltd. (C))
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [178712 2007-07-26] (Intel Corporation)
HKLM\...\Run: [DLPSP] => C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\DLPSP.EXE [340888 2006-12-07] (Dell Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKU\S-1-5-21-3277193409-2343283122-1401308690-1006\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53288576 2015-06-16] (Skype Technologies S.A.)
ShellExecuteHooks: Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll [83224 2006-11-03] (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{6B952143-5A89-4911-8784-F1C8BE2E34E7}: [NameServer] 195.80.171.4,195.28.64.119
Internet Explorer:
==================
HKU\S-1-5-21-3277193409-2343283122-1401308690-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.sk/
HKU\S-1-5-21-3277193409-2343283122-1401308690-1006\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-21-3277193409-2343283122-1401308690-1006 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-30] (Adobe Systems Incorporated)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Toolbar: HKU\S-1-5-21-3277193409-2343283122-1401308690-1006 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
FireFox:
========
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=1.6.0_38 -> C:\WINDOWS\system32\npdeployJava1.dll [2015-11-11] (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll [2015-11-11] (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2012-07-30] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-10-05] [not signed]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2015-11-11] [not signed]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010-02-12] [not signed]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP
CHR StartupUrls: Default -> "hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}&language={language}&form=UP97DF&PC=UP97
CHR Profile: C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-10-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-29]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ASFAgent; C:\Program Files\Intel\ASF Agent\ASFAgent.exe [133968 2007-01-23] (Intel Corporation)
R2 atchksrv; C:\Program Files\Intel\AMT\atchksrv.exe [183064 2007-06-12] (Intel Corporation)
S3 EhttpSrv; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [20680 2009-11-16] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [735960 2009-11-16] (ESET)
S4 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [136192 2010-03-03] (HP) [File not signed]
S4 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153584 2015-11-11] (Sun Microsystems, Inc.)
R2 LMS; C:\Program Files\Intel\AMT\LMS.exe [109336 2007-06-12] (Intel)
S4 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-01-18] (Hewlett-Packard) [File not signed]
S4 OracleClientCache80; C:\orant\BIN\ONRSD80.EXE [101136 1999-10-04] () [File not signed]
S4 Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
S4 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [292864 2007-03-26] (Nokia.) [File not signed]
S4 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
R2 UNS; C:\Program Files\Intel\AMT\UNS.exe [2521880 2007-06-12] (Intel)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [13592 2006-11-03] (Microsoft Corporation)
S4 WO_LiveService; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 abp480n5; C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
S3 AsfAlrt; C:\WINDOWS\system32\Drivers\AsfAlrt.sys [42832 2007-01-23] (Intel Corporation)
R2 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [116520 2009-11-16] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [108792 2009-11-16] (ESET)
S3 EL90XBC; C:\WINDOWS\System32\DRIVERS\el90xbc5.sys [66591 2001-08-17] (3Com Corporation)
R2 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [135048 2009-11-16] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [33096 2009-06-19] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [55768 2009-11-16] (ESET)
S3 s0016bus; C:\WINDOWS\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\WINDOWS\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\WINDOWS\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\WINDOWS\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\WINDOWS\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\WINDOWS\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\WINDOWS\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [392960 2007-09-24] (Sensaura)
S3 SONYPVU1; C:\WINDOWS\System32\DRIVERS\SONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
S2 ALIWEHCD; System32\Drivers\mfpec.sys [X]
U3 DfSdkS; no ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U5 Sdbus; C:\Windows\System32\Drivers\Sdbus.sys [79232 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; no ImagePath
S3 WUSBVBus; system32\DRIVERS\mfpvbus.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-12 12:03 - 2015-11-12 12:06 - 00012870 _____ C:\Documents and Settings\UUUser_N\Plocha\FRST.txt
2015-11-12 12:03 - 2015-11-12 12:03 - 00015327 _____ C:\Documents and Settings\UUUser_N\Plocha\LM.bat
2015-11-12 12:03 - 2015-11-12 12:03 - 00000000 ____D C:\FRST
2015-11-12 12:02 - 2015-11-12 12:03 - 00029696 _____ C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\MSGBOX.EXE
2015-11-12 12:02 - 2015-11-11 13:44 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\UUUser_N\Plocha\FRSTLauncher.exe
2015-11-12 12:02 - 2015-11-11 13:40 - 01702400 _____ (Farbar) C:\Documents and Settings\UUUser_N\Plocha\FRST32.exe
2015-11-12 12:00 - 2015-11-12 12:00 - 00000041 _____ C:\WINDOWS\setupact.log
2015-11-12 12:00 - 2015-11-12 12:00 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-11-12 08:40 - 2015-11-12 11:10 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2015-11-11 10:22 - 2015-11-11 10:20 - 00036864 _____ C:\Documents and Settings\UUUser_N\Plocha\mrtve zasoby oktober.xls
2015-11-11 10:22 - 2015-11-11 10:20 - 00030720 _____ C:\Documents and Settings\UUUser_N\Plocha\mrtva zasoby oktober druha cast.xls
2015-11-11 07:34 - 2015-11-11 07:34 - 00000000 ____D C:\Program Files\Common Files\Java
2015-11-11 07:33 - 2015-11-11 07:33 - 00477168 _____ (Sun Microsystems, Inc.) C:\WINDOWS\system32\npdeployJava1.dll
2015-11-11 07:33 - 2015-11-11 07:33 - 00157680 _____ (Sun Microsystems, Inc.) C:\WINDOWS\system32\javaws.exe
2015-11-11 07:33 - 2015-11-11 07:33 - 00149488 _____ (Sun Microsystems, Inc.) C:\WINDOWS\system32\javaw.exe
2015-11-11 07:33 - 2015-11-11 07:33 - 00149488 _____ (Sun Microsystems, Inc.) C:\WINDOWS\system32\java.exe
2015-11-11 07:33 - 2015-11-11 07:33 - 00073728 _____ (Sun Microsystems, Inc.) C:\WINDOWS\system32\javacpl.cpl
2015-11-11 07:22 - 2015-11-11 07:22 - 00000000 ____D C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\Apple
2015-11-11 07:16 - 2015-11-11 07:43 - 00000000 ____D C:\AdwCleaner
2015-11-09 10:05 - 2015-11-09 10:05 - 00000000 ____D C:\Program Files\Trend Micro
2015-11-09 10:05 - 2015-11-09 10:05 - 00000000 ____D C:\Documents and Settings\UUUser_N\Nabídka Start\Programy\HiJackThis
2015-11-09 10:04 - 2013-04-23 15:09 - 01402880 _____ C:\Documents and Settings\All Users\Dokumenty\HiJackThis.msi
2015-11-09 08:32 - 2015-11-12 12:00 - 00024819 _____ C:\WINDOWS\setupapi.log
2015-11-06 08:58 - 2015-11-11 12:58 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-11-06 08:58 - 2015-11-06 08:58 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes Anti-Malware
2015-11-06 08:58 - 2015-11-06 08:58 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2015-11-06 08:58 - 2015-10-05 09:50 - 00121560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-11-06 08:58 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-11-06 08:54 - 2015-11-06 08:54 - 00000000 ____D C:\Documents and Settings\NetworkService\Data aplikací\ESET
2015-11-06 08:43 - 2015-11-06 08:15 - 22908888 _____ (Malwarebytes ) C:\mbam-setup-2.2.0.1024.exe
2015-11-04 07:08 - 2015-11-04 07:08 - 00000079 _____ C:\WINDOWS\wininit.ini
2015-11-03 14:01 - 2015-11-04 07:08 - 00000000 ____D C:\Program Files\TeamViewer
2015-11-03 13:59 - 2015-11-03 13:59 - 00000000 ____D C:\Program Files\Common Files\AV
2015-11-03 12:59 - 2015-11-04 06:58 - 00000000 ____D C:\WINDOWS\pss
2015-11-03 12:59 - 2015-11-03 12:59 - 00000000 ____D C:\Documents and Settings\LocalService\Nabídka Start\Programy
2015-11-03 12:59 - 2015-11-03 12:59 - 00000000 ____D C:\Documents and Settings\LocalService\Nabídka Start
2015-11-03 12:53 - 2015-11-03 14:04 - 00065536 _____ C:\WINDOWS\system32\config\SpybotSD.evt
2015-11-03 12:52 - 2015-11-06 07:31 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2015-11-03 12:52 - 2015-11-04 07:08 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2015-11-03 12:33 - 2015-11-03 12:33 - 00000000 ___RD C:\Documents and Settings\UUUser_N\Nabídka Start\Programy\Nástroje pro správu
2015-10-21 06:59 - 2015-10-21 06:59 - 00238592 _____ C:\Documents and Settings\UUUser_N\Dokumenty\EkUzap_2015-10-21_07-59.xls
2015-10-21 06:57 - 2015-10-21 06:57 - 00284672 _____ C:\Documents and Settings\UUUser_N\Dokumenty\EkUzap_2015-10-21_07-57.xls
2015-10-21 06:55 - 2015-10-21 06:55 - 00317440 _____ C:\Documents and Settings\UUUser_N\Dokumenty\EkUzap_2015-10-21_07-55.xls
2015-10-21 06:54 - 2015-10-21 06:54 - 00131072 _____ C:\Documents and Settings\UUUser_N\Dokumenty\EkUzap_2015-10-21_07-54.xls
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-12 12:06 - 2012-10-02 09:12 - 00000000 ____D C:\Documents and Settings\UUUser_N\Local Settings\Temp
2015-11-12 12:04 - 2012-10-02 13:42 - 00000476 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{E7BDB49B-6B72-48A6-8B23-B8EA4A8C1410}.job
2015-11-12 12:03 - 2012-10-02 09:12 - 00000000 ___HD C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací
2015-11-12 12:03 - 2012-10-02 09:12 - 00000000 ____D C:\Documents and Settings\UUUser_N\Plocha
2015-11-12 12:03 - 2008-01-31 12:04 - 00000330 ____H C:\WINDOWS\Tasks\MP Scheduled Scan.job
2015-11-12 12:02 - 2012-11-23 10:44 - 00000000 ____D C:\Documents and Settings\UUUser_N\Data aplikací\Skype
2015-11-12 12:01 - 2012-09-18 07:14 - 01962680 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-12 12:01 - 2010-02-03 08:52 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-12 12:01 - 2004-09-13 17:20 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-11-12 12:00 - 2014-03-28 07:03 - 00000232 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-11-12 12:00 - 2012-09-18 07:15 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-11-12 12:00 - 2012-09-18 07:15 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-11-12 12:00 - 2004-09-13 17:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-12 07:38 - 2012-10-02 09:12 - 00000178 ___SH C:\Documents and Settings\UUUser_N\ntuser.ini
2015-11-12 07:38 - 2008-01-06 13:17 - 00065536 _____ C:\WINDOWS\system32\config\ODiag.evt
2015-11-12 07:38 - 2004-09-13 17:46 - 00032586 _____ C:\WINDOWS\SchedLgU.Txt
2015-11-12 07:37 - 2014-01-13 07:19 - 00001825 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2015-11-12 07:37 - 2010-02-03 08:52 - 00000924 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-12 07:31 - 2008-01-31 13:57 - 00007666 _____ C:\WINDOWS\WINCMD.INI
2015-11-11 15:46 - 2012-10-02 14:35 - 00918645 _____ C:\Documents and Settings\UUUser_N\obis_jnzprod_10_log4j.log
2015-11-11 14:30 - 2008-01-31 13:58 - 00000384 _____ C:\WINDOWS\wcx_ftp.ini
2015-11-11 14:18 - 2012-10-02 14:35 - 00000000 _____ C:\Documents and Settings\UUUser_N\obis__log4j.log
2015-11-11 13:57 - 2012-10-02 14:25 - 00002565 _____ C:\Documents and Settings\UUUser_N\Plocha\Microsoft Office Word 2007.lnk
2015-11-11 12:59 - 2004-09-13 17:21 - 00000211 __RSH C:\boot.ini
2015-11-11 12:59 - 2004-09-13 17:20 - 00000582 _____ C:\WINDOWS\win.ini
2015-11-11 12:59 - 2004-09-13 17:20 - 00000227 _____ C:\WINDOWS\system.ini
2015-11-11 12:16 - 2004-09-13 17:46 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Temp
2015-11-11 11:21 - 2012-10-02 09:12 - 00000692 __RSH C:\Documents and Settings\UUUser_N\ntuser.pol
2015-11-11 11:21 - 2012-10-02 09:12 - 00000000 ____D C:\Documents and Settings\UUUser_N
2015-11-11 11:11 - 2013-08-28 08:22 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-11 11:02 - 2008-01-31 13:32 - 143250520 _____ C:\WINDOWS\system32\MRT.exe
2015-11-11 11:02 - 2008-01-06 13:15 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2015-11-11 09:29 - 2012-10-03 07:34 - 00000550 _____ C:\Documents and Settings\UUUser_N\Plocha\Zaaaaa - Dokumenty.lnk
2015-11-11 08:24 - 2013-11-28 10:31 - 00000000 ____D C:\Documents and Settings\UUUser_N\Plocha\Tabulky
2015-11-11 07:44 - 2004-09-13 17:29 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2015-11-11 07:42 - 2012-06-14 21:40 - 00001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2015-11-11 07:42 - 2004-09-13 17:34 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-11-11 07:39 - 2012-10-02 11:08 - 00004596 _____ C:\WINDOWS\wmsetup.log
2015-11-11 07:33 - 2012-01-13 11:17 - 00473072 _____ (Sun Microsystems, Inc.) C:\WINDOWS\system32\deployJava1.dll
2015-11-11 07:22 - 2004-09-13 17:29 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-11-11 07:21 - 2011-10-13 08:03 - 00000000 ____D C:\Program Files\HP
2015-11-11 07:21 - 2008-08-05 12:05 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\HP
2015-11-11 07:20 - 2008-01-06 13:10 - 00000000 ____D C:\Program Files\Java
2015-11-11 07:18 - 2012-10-02 13:41 - 00000000 ____D C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\Google
2015-11-11 07:18 - 2012-10-02 09:12 - 00000000 __RHD C:\Documents and Settings\UUUser_N\Data aplikací
2015-11-11 07:18 - 2008-02-08 09:13 - 00000000 ____D C:\Program Files\Google
2015-11-11 07:18 - 2008-02-08 09:13 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Google
2015-11-09 10:05 - 2012-10-02 09:12 - 00000000 ___RD C:\Documents and Settings\UUUser_N\Nabídka Start\Programy
2015-11-09 08:29 - 2004-09-13 17:35 - 00000000 ____D C:\WINDOWS\system32\Restore
2015-11-09 08:14 - 2014-03-28 07:03 - 00000226 _____ C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-11-06 14:44 - 2015-10-08 08:37 - 00000000 ____D C:\Documents and Settings\UUUser_N\Plocha\sťažnosti
2015-11-06 14:44 - 2014-08-26 07:46 - 00000000 ____D C:\Documents and Settings\UUUser_N\Plocha\Oremus tabuľky
2015-11-06 09:58 - 2012-10-02 09:12 - 00000000 ___HD C:\Documents and Settings\UUUser_N\Okolní síť
2015-11-06 09:01 - 2004-09-13 17:29 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2015-11-06 07:31 - 2004-09-13 17:28 - 00206512 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-05 12:10 - 2012-10-02 13:41 - 00000274 _____ C:\WINDOWS\Tasks\ServiceMBR.job
2015-11-04 09:49 - 2013-11-28 10:32 - 00206848 _____ C:\Documents and Settings\UUUser_N\Plocha\LVS_precenenie.xls
2015-11-04 07:20 - 2012-10-02 09:12 - 00038968 _____ C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2015-11-03 12:59 - 2004-09-13 17:46 - 00000000 __SHD C:\Documents and Settings\LocalService
2015-11-03 12:52 - 2004-09-13 17:29 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2015-11-02 14:09 - 2014-02-07 07:56 - 00000000 ____D C:\Documents and Settings\UUUser_N\Plocha\pmmmm
2015-10-26 08:01 - 2013-11-28 10:31 - 00000000 ____D C:\Documents and Settings\UUUser_N\Plocha\Texty
2015-10-26 07:05 - 2004-09-13 17:29 - 01219856 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-21 09:09 - 2014-02-26 08:24 - 00000000 ____D C:\Documents and Settings\All Users\Dokumenty\Dru-H
2015-10-21 06:59 - 2012-10-02 09:12 - 00000000 ___RD C:\Documents and Settings\UUUser_N\Dokumenty
==================== Files in the root of some directories =======
2013-07-25 12:08 - 2014-04-10 10:24 - 0006656 _____ () C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-10-02 09:12 - 2004-09-13 17:49 - 0000133 _____ () C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\fusioncache.dat
2015-11-12 12:02 - 2015-11-12 12:03 - 0029696 _____ () C:\Documents and Settings\UUUser_N\Local Settings\Data aplikací\MSGBOX.EXE
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
Re: Neviditelne oramovanie okna
Napsal: 12 lis 2015 18:08
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
CHR DefaultSearchURL: Default -> hxxp://
www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}&language={language}&form=UP97DF&PC=UP97
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
C:\Program Files\Skype\Toolbars
S4 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars
U3 DfSdkS; no ImagePath
U1 WS2IFSL; no ImagePath
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Re: Neviditelne oramovanie okna
Napsal: 13 lis 2015 07:33
od josa
Kód: Vybrat vše
Fix result of Farbar Recovery Scan Tool (x86) Version:07-11-2015
Ran by UUUser_N (2015-11-13 07:18:37) Run:1
Running from C:\Documents and Settings\UUUser_N\Plocha
Loaded Profiles: UUUser_N (Available Profiles: UUUser_N & Administrator)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms}&language={language}&form=UP97DF&PC=UP97
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
C:\Program Files\Skype\Toolbars
S4 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars
U3 DfSdkS; no ImagePath
U1 WS2IFSL; no ImagePath
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
End
*****************
Chrome DefaultSearchURL => removed successfully.
Chrome DefaultSearchKeyword => removed successfully.
Chrome DefaultSuggestURL => removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => key removed successfully.
C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx => moved successfully
C:\Program Files\Skype\Toolbars => moved successfully
Skype C2C Service => service removed successfully.
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars => moved successfully
DfSdkS => service removed successfully.
WS2IFSL => service removed successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
==== End of Fixlog 07:18:38 ====
Re: Neviditelne oramovanie okna
Napsal: 13 lis 2015 18:15
od Rudy
Smazáno. Nastala nějaká změna?