Prosím o kontrolu logu

Příspěvekod **jaro3** » 29 srp 2014 09:28

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:

- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)

- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni
Zoek.exe

a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

Reklama

DrWostep · Příspěvekod **DrWostep** » 29 srp 2014 10:01

RogueKiller V9.2.8.0 [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : MIREK [Práva správce]
Mód : Odebrat -- Datum : 08/30/2010 17:38:12

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 25 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.autoupdate : "C:\Users\MIREK\AppData\Roaming\Seznam.cz\szninstall.exe" -c [x] -> VYMAZÁNO
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.szndesktop : "C:\Users\MIREK\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [x] -> VYMAZÁNO
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.autoupdate : "C:\Users\MIREK\AppData\Roaming\Seznam.cz\szninstall.exe" -c -> ERROR [2]
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Run | cz.seznam.software.szndesktop : "C:\Users\MIREK\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q -> ERROR [2]
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{0A089443-52C5-45CD-A3BC-3009197DFEE6} | DhcpNameServer : 13.5.0.10 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{EE41DDCE-DBA2-4EF7-82F4-377C8C9FB05D} | DhcpNameServer : 10.0.0.138 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{0A089443-52C5-45CD-A3BC-3009197DFEE6} | DhcpNameServer : 13.5.0.10 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{EE41DDCE-DBA2-4EF7-82F4-377C8C9FB05D} | DhcpNameServer : 10.0.0.138 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{0A089443-52C5-45CD-A3BC-3009197DFEE6} | DhcpNameServer : 13.5.0.10 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{EE41DDCE-DBA2-4EF7-82F4-377C8C9FB05D} | DhcpNameServer : 10.0.0.138 -> NAHRAZENO ()
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> VYMAZÁNO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> VYMAZÁNO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> ERROR [2]
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> ERROR [2]
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: NENAHRÁNO [0xc000036b]) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST9500420AS +++++
--- User ---
[MBR] 328bf4d8002e4f6aed0fd901bf919bb3
[BSP] a4719cb804316e9a732427c2f2ed5a59 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x1c) [HIDDEN!] Offset (sectors): 64 | Size: 20000 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 40960064 | Size: 119235 MB
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 285154408 | Size: 337704 MB
User = LL1 ... OK
User = LL2 ... OK

============================================
RKreport_SCN_08282014_213101.log - RKreport_SCN_08302010_173418.log

DrWostep · Příspěvekod **DrWostep** » 29 srp 2014 10:42

Zoek.exe v5.0.0.0 Updated 28-08-2014
Tool run by MIREK on po 30.08.2010 at 17:40:31,07.
Microsoft Windows 7 Home Premium 6.1.7600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\MIREK\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

30.8.2010 17:42:23 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully
HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\MIREK\AppData\Roaming\Mozilla\Firefox\Profiles\xoxr6ipy.default\prefs.js:

Added to C:\Users\MIREK\AppData\Roaming\Mozilla\Firefox\Profiles\xoxr6ipy.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\MIREK\AppData\Roaming\Mozilla\Firefox\Profiles\xoxr6ipy.default

user.js not found
---- Lines aPLEWM61628944WIIQRX30104349com63319 removed from prefs.js ----
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.active", true);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.addressbar", "NA");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.addressbarenhanced", "");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.asyncdb.was_copied", "true");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.asyncinternaldb.was_copied", "true");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.backgroundver", 2);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.certdomaininstaller", "");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.au.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.au.value", "%222014-8-28%22");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.cnt.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.cnt.value", "%22CZ%22");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.first_run.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.first_run.value", "%221%22");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.install.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.install.value", "%222014-8-23%22");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.InstallationTime.value", "%221408804151%22");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.InstallerParams.value", "%7B%22source_id%22%3A%22001822%22%2C%22sub_id%22%3A%2
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.cookie.testingGaq.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.description", "Turn your pc into a TV Enjoy endless variety of worldwide sports, movi
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.domain", "");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.enablesearch", false);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.homepage", "");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.changeprevious", false);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.iframe", false);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.InstallationThankYouPage", true);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.InstallationTime", 1408804151);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.__defualt_browser__.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.__defualt_browser__.value", "%22ff%22");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb._installer_additional_info.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb._installer_additional_info.value", "%7B%22asw%22%3A%5B32768%2C5%2C0%5D%2C%
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.installer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.installer.value", "%7B%22InstallerIdentifiers%22%3A%7B%22installer_bic%22%
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.InstallerIdentifiers.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.InstallerIdentifiers.value", "%7B%22installer_bic%22%3A%22C0EE09D81D21405C
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.InstallerParams.value", "%7B%22source_id%22%3A%22001822%22%2C%22sub_id%22%
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.InstallerParamsCache.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.InstallerParamsCache.value", "%7B%22source_id%22%3A%22001822%22%2C%22sub_i
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.InstallerUserIdentifiersCache.expiration", "Fri Feb 01 2030 00:00:00 GMT+0
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.InstallerUserIdentifiersCache.value", "%7B%22installer_bic%22%3A%22C0EE09D
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.monetization_plugin_bundledUrls.expiration", "Fri Feb 01 2030 00:00:00 GMT
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.monetization_plugin_bundledWithHash.expiration", "Fri Feb 01 2030 00:00:00
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.monetization_plugin_bundledWithHash.value", "null");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.monetization_plugin_last_executable_request.expiration", "Fri Aug 29 2014
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.monetization_plugin_last_executable_request.value", "%22http%3A//data-cdn.
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.monetization_plugin_notBundledArr_.expiration", "Fri Feb 01 2030 00:00:00
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.monetization_plugin_notBundledArr_.value", "%5B%5D");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.monetization_plugin_regBundledWithSoftware.expiration", "Fri Feb 01 2030 0
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.monetization_plugin_regBundledWithSoftware.value", "%7B%7D");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_appVer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_appVer.value", "9");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_lastVersion.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_lastVersion.value", "1");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_meta.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_meta.value", "%7B%7D");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_nextCheck.expiration", "Thu Aug 28 2014 16:26:53 GMT+0200");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_nextCheck.value", "true");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_queue.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_queue.value", "%7B%7D");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_remote_resources.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.internaldb.Resources_remote_resources.value", "%7B%22remoteId%22%3A0%7D");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.lastDailyReport", "1409214353052");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.lastUpdate", "1409214353050");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.manifesturl", "");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.name", "TheFreeHD-Sport TV V10");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.newtab", "");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.opensearch", "");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.PLEWM61628944@WIIQRX30104349.comaPLEWM61628944WIIQRX30104349com63319_dbWasSet", true)
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.PLEWM61628944@WIIQRX30104349.comaPLEWM61628944WIIQRX30104349com63319_dbWasSet_FF25_FI
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.PLEWM61628944@WIIQRX30104349.comasyncdb_dbWasSet", true);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.PLEWM61628944@WIIQRX30104349.comasyncdb_dbWasSet_FF25_FIX", true);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.PLEWM61628944@WIIQRX30104349.comasyncinternaldb_dbWasSet", true);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.PLEWM61628944@WIIQRX30104349.comasyncinternaldb_dbWasSet_FF25_FIX", true);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.pluginsurl", "http://js.inputgenserv.com/plugin/apps/63319/plugins/na/ff/plugins.json
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.pluginsversion", 4);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.publisher", "tab");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.searchstatus", 0);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.setnewtab", false);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.thankyou", "");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.updateinterval", 360);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.63319.ver", 9);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.apps", "63319");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.bic", "148034c00d26e674ff89640500f86ebb");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.cid", 63319);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.firstrun", false);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.hadappinstalled", true);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.installationdate", 1408804586);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.installerAdditionalInfo", "{\"asw\":[32768, 5, 0],\"browser_name\":\"ff\"}");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.modetype", "production");
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.reportInstall", true);
user_pref("extensions.aPLEWM61628944WIIQRX30104349com63319.statsDailyCounter", 5);
---- FireFox user.js and prefs.js backups ----

prefs_30.08.2010_1806_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\VipBoxSportsApp.com deleted
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~2\Alawarhry.cz deleted
C:\Users\MIREK\AppData\Roaming\Alawar deleted
C:\Users\MIREK\AppData\Roaming\AlawarEntertainment deleted
C:\Users\MIREK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VipBoxSportsApp.com deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\MIREK\Desktop\VipBoxSportsApp.lnk deleted
"C:\Users\MIREK\AppData\Roaming\Mozilla\Firefox\Profiles\xoxr6ipy.default\extensions\{6d0f26ba-45b8-4871-9c07-43ab341d5b73}" deleted

==== Firefox Extensions ======================

ProfilePath: C:\Users\MIREK\AppData\Roaming\Mozilla\Firefox\Profiles\xoxr6ipy.default
- imageblockererikvoldcom - %ProfilePath%\extensions\image-blocker@erikvold.com
- Seznam litika - %ProfilePath%\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\MIREK\AppData\Roaming\Mozilla\Firefox\Profiles\xoxr6ipy.default
D775FA6F1E88B3B99E69E8A0D6C3A819 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll - Shockwave Flash

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaajpkhjdkhhnkmgfjodbkfpbmibkkk - C:\ProgramData\AskPartnerNetwork\Toolbar\ORJ-V7\CRX\ToolbarCR.crx[]

Ask Toolbar - MIREK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajpkhjdkhhnkmgfjodbkfpbmibkkk
Seznam Li\u0161ti\u010Dka - Email - MIREK\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
Seznam Li\u0161ti\u010Dka - Slovn\u00EDk - MIREK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Seznam LiĹˇtiÄŤka - RychlĂˇ volba - MIREK\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak

==== Chromium Startpages ======================

C:\Users\MIREK\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.com/"

==== Chrome Fix ======================

C:\Users\MIREK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajpkhjdkhhnkmgfjodbkfpbmibkkk deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{0F813F2E-DFD9-45D8-A86A-10796DF732FA} Slovnˇk CZ/EN Url="http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454"
{17ED1152-FC11-41A2-8640-D8339F5DD3B0} Novinky.cz Url="http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454"
{2F07DC29-D31F-4237-997B-84AF07BAA676} Encyklopedie Seznam Url="http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454"
{4606EA3F-2197-4529-A52B-8354091608F5} Mapy.cz Url="http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_12454"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Unknown Url="Not_Found"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Unknown Url="Not_Found"
{89E21DD4-90BD-4963-905C-D79DB7E464EA} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454"
{E0459371-7069-41DC-B8A7-C8F2477293A3} Slovnˇk EN/CZ Url="http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454"
{ED8FF093-07D8-44DA-968C-F740B06AA45D} Zbo§ˇ.cz Url="http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_12454"
{F896BFDC-BE14-43E6-94B9-58E960EB5A81} Firmy.cz Url="http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_12454"

==== Reset Google Chrome ======================

C:\Users\MIREK\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\MIREK\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} deleted successfully
HKEY_USERS\S-1-5-21-1211814493-348804485-3069845358-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaajpkhjdkhhnkmgfjodbkfpbmibkkk deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\MIREK\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\MIREK\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\MIREK\AppData\Local\Mozilla\Firefox\Profiles\xoxr6ipy.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\MIREK\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1831 folders=188 1878187851 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\MIREK\AppData\Local\Temp will be emptied at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\MIREK\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\MIREK\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Users\MIREK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajpkhjdkhhnkmgfjodbkfpbmibkkk" not found

==== EOF on po 30.08.2010 at 18:19:29,85 ======================

DrWostep · Příspěvekod **DrWostep** » 29 srp 2014 10:48

Jen pro info, na noťasu dělal jeden strejda přeinstalaci z Vista na "7", od té doby se pořád ukazuje rok 2010 i když to opravím zase se to po nějakém čase vrátí, jako zrovna dnes. Jinak zatím moc děkuji.

Příspěvekod **Orcus** » 29 srp 2014 10:49

To může být CMOS baterii případně nastavením v BIOSu/UEFI. Doporučuju vyměnit baterii + projít nastavení.

Prosím o kontrolu logu Vyřešeno

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Kdo je online