Prosim o kontrolu logu (zpomalené pc,padající prohlížeče)

[Yanyc]

RogueKiller V9.2.13.0 (x64) [Sep 25 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Yanycca [Práva správce]
Mód : Odebrat -- Datum : 10/03/2014 20:15:21

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 19 ¤¤¤
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.143.126.9 10.143.128.1 10.143.34.1 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.143.126.9 10.143.128.1 10.143.34.1 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.143.126.9 10.143.128.1 10.143.34.1 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{608C150C-E5A5-448B-BECF-0CF2B57DFD2D} | DhcpNameServer : 172.30.3.254 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{6FAA2A50-F4EE-4F6B-AA49-F82689CCE5F2} | DhcpNameServer : 10.143.126.9 10.143.128.1 10.143.34.1 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{608C150C-E5A5-448B-BECF-0CF2B57DFD2D} | DhcpNameServer : 172.30.3.254 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{6FAA2A50-F4EE-4F6B-AA49-F82689CCE5F2} | DhcpNameServer : 10.143.126.9 10.143.128.1 10.143.34.1 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{608C150C-E5A5-448B-BECF-0CF2B57DFD2D} | DhcpNameServer : 172.30.3.254 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{6FAA2A50-F4EE-4F6B-AA49-F82689CCE5F2} | DhcpNameServer : 10.143.126.9 10.143.128.1 10.143.34.1 -> NAHRAZENO ()
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-699516785-416719656-4019490680-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> VYMAZÁNO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-699516785-416719656-4019490680-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> VYMAZÁNO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-699516785-416719656-4019490680-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> ERROR [2]
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-699516785-416719656-4019490680-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> ERROR [2]
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-699516785-416719656-4019490680-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-699516785-416719656-4019490680-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 1 ¤¤¤
[Suspicious.Path] \\Yahoo! Search Udpater -- C:\Users\Yanycca\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.12.4\dsrsetup.exe -> VYMAZÁNO

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: NAHRÁNO) ¤¤¤

¤¤¤ Webové prohlížeče : 11 ¤¤¤
[IE:Addon] System : avast! WebRep [{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}] -> VYMAZÁNO
[FIREFX:Addon] 6obn6t12.default-1374158166025 : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> VYMAZÁNO
[FIREFX:Addon] 6obn6t12.default-1374158166025 : avast! Online Security [wrc@avast.com] -> VYMAZÁNO
[FIREFX:Addon] 6obn6t12.default-1374158166025 : McAfee Security Scan Plus detection [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] -> VYMAZÁNO
[FIREFX:Addon] 6obn6t12.default-1374158166025 : Symantec Intrusion Prevention [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] -> VYMAZÁNO
[FIREFX:Addon] 6obn6t12.default-1374158166025 : ConstaSurf [{bbb14e79-8bca-4abd-b124-4d30f9a4e2ad}] -> VYMAZÁNO
[FIREFX:Addon] 6obn6t12.default-1374158166025 : Norton Toolbar [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] -> VYMAZÁNO
[PUM.HomePage][FIREFX:Config] 6obn6t12.default-1374158166025 : user_pref("browser.startup.homepage", "https://www.seznam.cz/?clid=22668"); -> NAHRAZENO (about:home)
[CHROME:Addon] Default : AdBlock [gighmmpiobklfepjocnamgkkbiglidom] -> VYMAZÁNO
[CHROME:Addon] Default : Google Wallet [nmmhkkegccagdldgiimedpiccmgmieda] -> ERROR [2]
[CHROME:Addon] Default : Emotee [ollfjiihaphmpjemfhmkngaajbdblbkb] -> ERROR [2]

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST9320325AS +++++
--- User ---
[MBR] e656d4e235510a9b218018c48af5a48b
[BSP] 8e29a665db2b64c730b56937c1a2ca23 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 199 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 409600 | Size: 288904 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 592084992 | Size: 16037 MB
3 - [XXXXXX] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 624928768 | Size: 103 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_10032014_141742.log - RKreport_SCN_10032014_201241.log

[Reklama]

[Yanyc]

Zoek.exe v5.0.0.0 Updated 03-October-2014
Tool run by Yanycca on p  03.10.2014 at 20:16:50,34.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Yanycca\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

3.10.2014 20:19:50 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-699516785-416719656-4019490680-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_USERS\S-1-5-21-699516785-416719656-4019490680-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Yanycca\AppData\Roaming\Mozilla\Firefox\Profiles\6obn6t12.default-1374158166025\prefs.js:
user_pref("browser.startup.homepage", "about:home"about:home);
user_pref("browser.search.defaultengine", "Seznam");
user_pref("browser.search.defaultenginename", "Seznam");
user_pref("browser.search.defaultenginename,S", "");
user_pref("browser.search.selectedEngine", "Seznam");
user_pref("browser.search.selectedEngine,S", "");
user_pref("browser.search.order.1", "Seznam");
user_pref("browser.search.order.1,S", "");
user_pref("extensions.APN_TB.first-previous-keyword-url", "");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\Yanycca\AppData\Roaming\Mozilla\Firefox\Profiles\6obn6t12.default-1374158166025\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("extensions.APN_TB.first-previous-keyword-url", "");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\Yanycca\AppData\Roaming\Mozilla\Firefox\Profiles\6obn6t12.default-1374158166025

user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- Lines extensions.1hB1a2 removed from prefs.js ----
user_pref("extensions.1hB1a2.epoch", "1410510992");
user_pref("extensions.1hB1a2.url", "http://jpiservice.info/sync2/?q=hfZ9ojl4AzgMCyVUojaMg708BNmGWj8deShGheDUojw9rdgFqjw9rdkHqihIC7n0rjnEpjwFrdYHqTn8tN
---- Lines extensions.9O5mkJVzlqDN removed from prefs.js ----
user_pref("extensions.9O5mkJVzlqDN.epoch", "1410510992");
user_pref("extensions.9O5mkJVzlqDN.url", "http://transferbookmy.info/sync2/?q=hfZ9oeFEAHnMCyVUojaMg708BNmGWj8deShGheDUojw9rdkGrHw9rjCHqShIC7n0rjnEpjwF
---- Lines extensions.LRZz4XagsC removed from prefs.js ----
user_pref("extensions.LRZz4XagsC.epoch", "1410510992");
user_pref("extensions.LRZz4XagsC.url", "http://greatwebsetfind.in/sync2/?q=hfZ9oflRCM9HtNbPhd9EtMqLDe49CNU0n8OMCMlNhd9Fqda8rTgFrjrFrHUMBzqUojw9rdUFrja
---- Lines extensions.Og8V removed from prefs.js ----
user_pref("extensions.Og8V.epoch", "1410510992");
user_pref("extensions.Og8V.url", "http://jobursts.net/sync2/?q=hfZ9oemMqchEAen0rchTB6lKDzt4okqAtNtVh7n0rjnErjrFrjrGrTr9tMFHhd9Fqda4rjwEpdr7qdkMDMlGojU
---- Lines extensions.XHpwK removed from prefs.js ----
user_pref("extensions.XHpwK.epoch", "1410510992");
user_pref("extensions.XHpwK.url", "http://discountgetdirect.ru/sync2/?q=hfZ9ofDVCNnMCyVUojaMg708BNmGWj8deShGheDUojw9rdsGpdw6rdYGqchIC7n0rjnEpjwFrdYHqT
---- Lines extensions.jrMjhh4cS6E removed from prefs.js ----
user_pref("extensions.jrMjhh4cS6E.epoch", "1410510992");
user_pref("extensions.jrMjhh4cS6E.url", "http://sunnyspytaxs.us/sync2/?q=hfZ9oehMhy8IrihEAen0rchTB6lKDzt4okqAtNtVh7n0rjnErjaFrjkGqTs4tMFHhd9Fqda4rjwEp
---- FireFox user.js and prefs.js backups ----

prefs_03.10.2014_2043_.backup

==== Deleting Files \ Folders ======================

C:\Users\Yanycca\AppData\LocalLow\{01CC745D-7F0E-7BAE-F085-91BE78862EA7} deleted
C:\Users\Yanycca\AppData\LocalLow\{2DDDE5CB-D593-5BA3-48B4-7574993EE33F} deleted
C:\Users\Yanycca\AppData\LocalLow\{36E64841-DDB7-BE46-22D3-DA2AD558AF80} deleted
C:\Users\Yanycca\AppData\LocalLow\{7E8B169F-519E-617E-070D-5045C05C2E7B} deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\{68298E66-3B17-A50C-BB95-6206C295B65A} deleted
C:\Users\Yanycca\AppData\Local\Packages\windows_ie_ac_001\AC\{01CC745D-7F0E-7BAE-F085-91BE78862EA7} deleted
C:\Users\Yanycca\AppData\Local\Packages\windows_ie_ac_001\AC\{2DDDE5CB-D593-5BA3-48B4-7574993EE33F} deleted
C:\Users\Yanycca\AppData\Local\Packages\windows_ie_ac_001\AC\{7E8B169F-519E-617E-070D-5045C05C2E7B} deleted
C:\Users\Yanycca\AppData\Local\Packages\windows_ie_ac_001\AC\{DF73A6F9-4D5F-7B09-CF4A-618023EDD264} deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{68298E66-3B17-A50C-BB95-6206C295B65A} deleted
C:\PROGRA~3\2f9711c4fbdc6da6 deleted
C:\PROGRA~3\YoTubereAdsRemOv deleted
C:\PROGRA~2\TorrentSearch deleted
C:\torrent.exe deleted
C:\PROGRA~3\InstallMate deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Yanycca\AppData\Roaming\Mozilla\Firefox\Profiles\6obn6t12.default-1374158166025\jetpack deleted
C:\Users\Yanycca\AppData\Roaming\Mozilla\Firefox\Profiles\6obn6t12.default-1374158166025\extensions\staged deleted
C:\Users\Yanycca\100OLYMP.exe deleted
C:\Users\Yanycca\BigCityAdventureParis.exe deleted
"C:\PROGRA~3\cdjfemncnefcbffgbmlojjhmlcghedan\cdjfemncnefcbffgbmlojjhmlcghedan.crx" deleted
"C:\PROGRA~3\cdjfemncnefcbffgbmlojjhmlcghedan\update.xml" deleted
"C:\PROGRA~3\cdjfemncnefcbffgbmlojjhmlcghedan" deleted
"C:\Users\Yanycca\AppData\Roaming\BRT" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [29.05.2014 12:57]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{e4f94d1e-2f53-401e-8885-681602c0ddd8}"="C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi" [04.04.2014 12:36]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Yanycca\AppData\Roaming\Mozilla\Firefox\Profiles\6obn6t12.default-1374158166025
DFC9460CC37E5C414DC4680B10C19E7A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash
3CD19649B2C3023D65E67C056457A2BC - C:\Users\Yanycca\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin
C36444D7301A8C881FC7296B092609C7 - C:\Users\Yanycca\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll - Google Update


==== Chromium Look ======================

General Crawler - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
avast WebRep - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
VideoFileDownload - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kincjchfokkeneeofpeefomkikfkiedl
FT Downloader - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgnbhdnimikkoodkogjlcllngimhlapp

==== Chromium Fix ======================

C:\Users\Yanycca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_lyricstranslate.com_0.localstorage-journal deleted successfully
C:\Users\Yanycca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.lyricsmania.com_0.localstorage-journal deleted successfully
C:\Users\Yanycca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_websearch.pur-esult.info_0.localstorage-journal deleted successfully
C:\Users\Yanycca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adultfriendfinder.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.bing.com?pc=CMNTDF"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{23CD58F5-757E-49C0-BFD0-5EE9507885FD} Google Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={sear"
{ec29edf6-ad3c-4e1c-a087-d6cb81400c43} Bing Url="http://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox"

==== Reset Google Chrome ======================

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Yanycca\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1e2f6536-8b70-4a0e-86de-d6f44da39eb5 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\vfd-ob deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Yanycca\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Yanycca\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=69 folders=27 1962928375 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Yanycca\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Yanycca\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on p  03.10.2014 at 20:57:30,73 ======================

[jaro3]

Co problémy?

[Yanyc]

Prohlížeče snad lepší... Nemám je v "plné zátěži" ale aspoň mi to nepíše každé dvě minuty, že chrom nebo mozilla nereaguje. Jinak ntb stále spomalený...seká se i word, videa, prohlížeče fotek....

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.