kontrola logu

Zpráva

Mataa90 · #1 Příspěvek od **Mataa90** » 16 říj 2015 17:11

Zdravím, prosím o kontrolu logu..naskakují mi všude ruské stránky, které se mi nedaří odstranit. Také mi naskakuje (jen zabliká) podivné černé okno na hlavním panelu, když otevírám prohlížeče. Díky moc

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:15-10-2015 01
Ran by Martina (administrator) on IDEA-PC (16-10-2015 18:05:13)
Running from C:\Users\Martina\Downloads
Loaded Profiles: Martina (Available Profiles: Martina)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
() C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.5_41203\utorrentie.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.5_41203\utorrentie.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-15] (Conexant Systems, Inc.)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-09-30] ()
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2013-02-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2013-02-08] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2012-05-02] (Vimicro)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [Philips Device Listener] => C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [380416 2012-02-15] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [36710768 2015-10-02] (Dropbox, Inc.)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [Google Update] => C:\Users\Martina\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-02-04] (Google Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7694392 2015-09-29] (GOG.com)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent] => C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [1977192 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [C] => C:\windows\system32\GroupPolicy\Machine\Registry.pol [1152 2015-10-16] ()
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {1c3be7a9-71dc-11e2-be6b-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {6a843982-84fe-11e3-bec9-2cd05a349e8e} - "F:\Autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {8341029c-197f-11e3-be96-2cd05a349e8e} - "I:\Setup.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\scrnsave.scr [11264 2012-07-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.10.1 192.168.10.1
Tcpip\..\Interfaces\{D58DC935-FA05-437B-BA74-886A24E255C4}: [DhcpNameServer] 10.0.10.1 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://smartsputnik.ru/?ri=1&uid=8a798f5420526963ef8b7c2436826d95&q={searchTerms}
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://smartsputnik.ru/?ri=1&uid=8a798f5420526963ef8b7c2436826d95&q={searchTerms}
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
URLSearchHook: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 - (No Name) - {0633EE93-D776-472f-A0FF-E1416B8B2E3D} - No File
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3C} URL = hxxp://smartsputnik.ru/?ri=1&uid=8a798f5420526963ef8b7c2436826d95&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3C} URL = hxxp://smartsputnik.ru/?ri=1&uid=8a798f5420526963ef8b7c2436826d95&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3D} URL = hxxp://smartsputnik.ru/?ri=1&uid=8a798f5420526963ef8b7c2436826d95&q=
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {24AB7B16-6C04-4E62-BADB-A3AF9C7BA5B2} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {28DBDC09-CD74-4291-80D1-789ACD6F9883} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {4E0C853B-1E34-451A-B946-3B8D7C8BCE5D} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&r ... {startPage}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6BC336E0-0860-4AFD-B849-E13CABFBD077} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {764482F2-C192-4032-B5B2-7848E6928461} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {8C35819E-0D88-4E0F-8946-73D1764A9500} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {A82AFC07-BDDB-4D91-91BD-B3D6AB1E5B87} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {CFDE9E19-18B2-4AC6-9F1E-14BD87C69D29} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: TSearch -> {6E727987-C8EA-44DA-8749-310C0FBE3C3E} -> C:\Program Files (x86)\Torrent Search\IEEF\RETgLvERcU.dll [2015-10-09] ()
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: TSearch -> {6E727987-C8EA-44DA-8749-310C0FBE3C3E} -> C:\Program Files (x86)\Torrent Search\IEEF\ojUkrz57aC.dll [2015-10-09] ()
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-26] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-26] (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default
FF Homepage: hxxp://seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_19_0_0_207.dll [2015-10-14] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_207.dll [2015-10-14] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\windows\SysWOW64\npDeployJava1.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1443460809-2058308057-2046692019-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Martina\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-26] (Google Inc.)
FF Plugin HKU\S-1-5-21-1443460809-2058308057-2046692019-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Martina\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-26] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll [2013-03-12] ()
FF Extension: TSearch - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\Extensions\{6E727987-C8EA-44DA-8749-310C0FBE3C3E} [2015-10-16]
FF Extension: Adblock Plus - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-03]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Torrent Search) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg [2015-10-16]
CHR Extension: (Dokumenty Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-23]
CHR Extension: (Disk Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-23]
CHR Extension: (YouTube) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-23]
CHR Extension: (Vyhledávání Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-30]
CHR Extension: (Gmail) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-23]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [220288 2012-09-30] (Qualcomm Atheros Commnucations) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-09] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-09] (Dropbox, Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1738808 2015-09-29] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6951992 2015-09-29] (GOG.com)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2222360 2015-06-02] (IBM Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-30] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-09-30] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-01-24] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
S3 GEARAspiWDM; C:\Windows\SysWOW64\Drivers\GEARAspiWDM.sys [15664 2011-07-15] (GEAR Software Inc.)
R1 RapportCerberus_1412112; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1412112.sys [917112 2015-06-23] (IBM Corp.)
R4 RapportCerberus_80128; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_80128.sys [844440 2015-04-02] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [485368 2015-06-02] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [121432 2015-06-02] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [376184 2015-06-02] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [480440 2015-06-02] (IBM Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [975104 2012-08-24] (Vimicro Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [36288 2013-07-02] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [247216 2013-07-02] (Microsoft Corporation)
R3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
S1 MpKsl2ecb7eb5; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9484A43B-0625-4436-9642-52A1C107AA92}\MpKsl2ecb7eb5.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-16 18:05 - 2015-10-16 18:06 - 00025756 _____ C:\Users\Martina\Downloads\FRST.txt
2015-10-16 18:03 - 2015-10-16 18:03 - 02196480 _____ (Farbar) C:\Users\Martina\Downloads\FRST64.exe
2015-10-16 16:14 - 2015-10-16 16:15 - 00000350 _____ C:\windows\Tasks\Update Service for Torrent Search.job
2015-10-16 16:14 - 2015-10-16 16:14 - 00003108 _____ C:\windows\System32\Tasks\Update Service for Torrent Search2
2015-10-16 16:14 - 2015-10-16 16:14 - 00002650 _____ C:\windows\System32\Tasks\Update Service for Torrent Search
2015-10-16 16:14 - 2015-10-16 16:14 - 00000350 _____ C:\windows\Tasks\Update Service for Torrent Search2.job
2015-10-16 16:13 - 2015-10-16 16:15 - 00000270 __RSH C:\Users\Martina\ntuser.pol
2015-10-16 16:13 - 2015-10-16 16:14 - 00000000 ____D C:\Program Files (x86)\Torrent Search
2015-10-16 16:12 - 2015-10-16 16:12 - 00006942 _____ C:\windows\System32\Tasks\RestoreSearch
2015-10-16 11:48 - 2015-10-16 12:09 - 352145408 _____ C:\Users\Martina\Downloads\Narcos-S01E03-The-Men-of-Always-Cz-titulky-životop.-pablo-escobar.avi
2015-10-16 11:37 - 2015-10-16 11:42 - 93276073 _____ C:\Users\Martina\Downloads\Tagada-Jones---Descente-Aux-Enfers-320-(2011).rar
2015-10-16 11:16 - 2015-10-16 11:25 - 154596327 _____ C:\Users\Martina\Downloads\Tagada-Jones---Dissident-(2014).zip
2015-10-15 22:53 - 2015-10-15 22:53 - 00000359 ____N C:\Users\Martina\Desktop\Počítač.lnk
2015-10-15 22:02 - 2015-10-15 22:02 - 00039983 _____ C:\Users\Martina\Downloads\Narcos-S01E02(0000259406).srt
2015-10-15 21:59 - 2015-10-15 22:25 - 401444367 _____ C:\Users\Martina\Downloads\Narcos.S01E02.WEBRip.x264-TASTETV.mkv
2015-10-15 12:57 - 2015-10-15 13:47 - 839923010 _____ C:\Users\Martina\Downloads\Kurt-Cobain-Soaked-in-Bleach-2015-BRRip-film-o-jeho-smrti-novinka.mkv
2015-10-14 22:55 - 2015-10-14 23:02 - 118213390 _____ C:\Users\Martina\Downloads\Lana-Del-Rey-–-Honeymoon-(2015).rar
2015-10-13 12:54 - 2015-10-13 13:32 - 681944720 _____ C:\Users\Martina\Downloads\Oltre-il-guado---Across-the-River-2013,-CZ-tit.avi
2015-10-12 19:10 - 2015-10-12 19:10 - 00060920 _____ C:\Users\Martina\Downloads\Narcos-S01E01(0000259287).srt
2015-10-12 19:07 - 2015-10-12 19:51 - 757378374 _____ C:\Users\Martina\Downloads\Narcos.S01E01.WEBRip.XviD.MP3-RARBG.avi
2015-10-08 20:45 - 2015-10-08 20:45 - 00019000 _____ C:\Users\Martina\Downloads\homeland.separation.anxiety.(2015).cze.1cd.(6328388).zip
2015-10-08 13:18 - 2015-10-16 16:16 - 00000000 ____D C:\Users\Martina\AppData\LocalLow\BitTorrent
2015-10-03 16:41 - 2015-10-03 16:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-29 07:01 - 2015-09-29 07:01 - 00000000 ____D C:\Users\Martina\AppData\Local\CEF

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-16 18:06 - 2013-11-26 21:58 - 00000000 ____D C:\Users\Martina\AppData\Roaming\BitTorrent
2015-10-16 18:05 - 2015-03-30 14:16 - 00000000 ____D C:\FRST
2015-10-16 17:58 - 2015-08-09 11:53 - 00000926 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-10-16 17:52 - 2015-02-04 20:52 - 00000986 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7.job
2015-10-16 17:36 - 2014-07-08 19:36 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-10-16 17:00 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\sru
2015-10-16 16:39 - 2013-08-13 22:28 - 01358824 _____ C:\windows\WindowsUpdate.log
2015-10-16 16:26 - 2015-04-20 14:23 - 00000000 ____D C:\KMPlayer
2015-10-16 16:26 - 2013-06-19 09:07 - 16842752 ___SH C:\Users\Martina\Desktop\Thumbs.db
2015-10-16 16:20 - 2013-06-18 11:41 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1443460809-2058308057-2046692019-1001
2015-10-16 16:16 - 2015-08-09 16:24 - 00000000 ___RD C:\Users\Martina\Dropbox
2015-10-16 16:16 - 2015-08-09 11:53 - 00000000 ____D C:\Users\Martina\AppData\Local\Dropbox
2015-10-16 16:15 - 2015-08-09 11:53 - 00000922 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-10-16 16:15 - 2013-06-18 11:30 - 00000000 ____D C:\Users\Martina
2015-10-16 16:14 - 2012-07-26 10:12 - 00000000 ___HD C:\windows\system32\GroupPolicy
2015-10-16 16:13 - 2014-07-02 14:04 - 00001974 ____R C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk
2015-10-16 16:13 - 2014-07-01 11:06 - 00000270 __RSH C:\ProgramData\ntuser.pol
2015-10-16 16:13 - 2013-09-23 23:06 - 00002284 ____R C:\Users\Martina\Desktop\Gооglе Сhrоmе.lnk
2015-10-16 16:13 - 2013-09-23 23:06 - 00000000 ____D C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-16 16:13 - 2013-06-18 11:33 - 00002059 ____R C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехplоrеr.lnk
2015-10-16 16:12 - 2015-09-08 21:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-16 16:12 - 2014-07-02 14:04 - 00001962 ____R C:\Users\Public\Desktop\Моzillа Firеfох.lnk
2015-10-16 02:16 - 2013-06-19 22:29 - 00000000 ____D C:\Users\Martina\AppData\Local\CrashDumps
2015-10-15 23:23 - 2013-06-22 19:10 - 00001385 _____ C:\Users\Martina\Desktop\filmy.txt
2015-10-15 23:23 - 2013-06-22 19:03 - 00013357 _____ C:\Users\Martina\Desktop\Nový textový dokument.txt
2015-10-15 22:57 - 2013-09-15 18:31 - 00002441 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-15 22:56 - 2015-06-27 12:15 - 00003886 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-14 21:36 - 2013-06-18 12:03 - 00003802 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-10-11 19:41 - 2013-02-08 13:38 - 02554648 _____ C:\windows\system32\perfh005.dat
2015-10-11 19:41 - 2013-02-08 13:38 - 00735398 _____ C:\windows\system32\perfc005.dat
2015-10-11 19:41 - 2012-07-26 09:28 - 00005430 _____ C:\windows\system32\PerfStringBackup.INI
2015-10-03 16:41 - 2015-08-09 11:53 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-09-30 23:58 - 2012-07-26 10:12 - 00000000 ____D C:\windows\AUInstallAgent
2015-09-30 14:16 - 2013-06-18 22:00 - 01195008 ___SH C:\Users\Martina\Downloads\Thumbs.db
2015-09-29 07:00 - 2015-05-27 13:16 - 00000000 ____D C:\Program Files (x86)\GalaxyClient
2015-09-28 06:52 - 2015-02-04 20:52 - 00000934 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34.job
2015-09-26 06:47 - 2013-10-08 19:43 - 00003936 _____ C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7
2015-09-26 06:47 - 2013-09-23 23:09 - 00003556 _____ C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34

==================== Files in the root of some directories =======

2013-10-03 23:20 - 2013-10-03 23:20 - 0003584 _____ () C:\Users\Martina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-31 21:22 - 2015-03-31 21:23 - 0029696 _____ () C:\Users\Martina\AppData\Local\MSGBOX.EXE
2013-06-18 12:15 - 2013-06-18 12:15 - 0000057 _____ () C:\ProgramData\Ament.ini
2013-02-08 12:58 - 2013-02-08 12:58 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Martina\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdj1c9j.dll
C:\Users\Martina\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdzd_2i.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-07-12 19:26

==================== End of FRST.txt ============================

#2 Příspěvek od **Rudy** » 16 říj 2015 17:14

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Mataa90 · #3 Příspěvek od **Mataa90** » 16 říj 2015 17:58

# AdwCleaner v5.013 - Logfile created 16/10/2015 at 18:51:35
# Updated 09/10/2015 by Xplode
# Database : 2015-10-16.1 [Server]
# Operating system : Windows 8 (x64)
# Username : Martina - IDEA-PC
# Running from : C:\Users\Martina\Desktop\adwcleaner_5.013.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\Torrent Search
[-] Folder Deleted : C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\Extensions\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}

***** [ Files ] *****

[-] File Deleted : C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage-journal

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

[-] Task Deleted : Update Service for Torrent Search
[-] Task Deleted : Update Service for Torrent Search2
[-] Task Deleted : RegCure Pro

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\uus3url-pl
[-] Key Deleted : HKLM\System\CurrentControlSet\Services\Eventlog\Application\Update TowerTilt
[-] Key Deleted : HKLM\System\CurrentControlSet\Services\Eventlog\Application\Util TowerTilt
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [SavePass-bg.exe]
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{357D32FC-F0AE-4B37-B36F-D44AA31496F5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{80B3B43F-7508-4627-BE66-00FB9AE5EE72}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5A83D7C9-4A14-4000-BC05-389268238753}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{FE69C007-C452-4D3E-86D2-1730DF8BC871}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{0633EE93-D776-472F-A0FF-E1416B8B2E3D}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{357D32FC-F0AE-4B37-B36F-D44AA31496F5}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{80B3B43F-7508-4627-BE66-00FB9AE5EE72}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3D}
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\IM
[-] Key Deleted : HKCU\Software\Torrent Search
[-] Key Deleted : HKLM\SOFTWARE\Torrent Search
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Torrent Search
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2AEF02C3-5159-4C81-A688-8D954F0DEE56}_NewSearch
[!] Key Not Deleted : [x64] HKCU\Software\Conduit
[!] Key Not Deleted : [x64] HKCU\Software\IM
[!] Key Not Deleted : [x64] HKCU\Software\Torrent Search
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
[-] Data Restored : HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3C}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3D}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3C}
[-] Data Restored : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3D}
[!] Key Not Deleted : HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3C}
[-] Data Restored : HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3D}

***** [ Web browsers ] *****

[-] [C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : urtekram.cz
[-] [C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : >

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [7562 bytes] ##########

#4 Příspěvek od **Rudy** » 16 říj 2015 18:12

Dejte nový log FRST.

Mataa90 · #5 Příspěvek od **Mataa90** » 16 říj 2015 18:22

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:15-10-2015 01
Ran by Martina (administrator) on IDEA-PC (16-10-2015 19:21:26)
Running from C:\Users\Martina\Desktop\Složky\Programy\na viry
Loaded Profiles: Martina (Available Profiles: Martina)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Update\GoogleUpdate.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
() C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.5_41203\utorrentie.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.5_41203\utorrentie.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-15] (Conexant Systems, Inc.)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-09-30] ()
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2013-02-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2013-02-08] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2012-05-02] (Vimicro)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [Philips Device Listener] => C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [380416 2012-02-15] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [36710768 2015-10-02] (Dropbox, Inc.)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [Google Update] => C:\Users\Martina\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-02-04] (Google Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7694392 2015-09-29] (GOG.com)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent] => C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [1977192 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [C] => C:\windows\system32\GroupPolicy\Machine\Registry.pol [1152 2015-10-16] ()
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {1c3be7a9-71dc-11e2-be6b-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {6a843982-84fe-11e3-bec9-2cd05a349e8e} - "F:\Autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {8341029c-197f-11e3-be96-2cd05a349e8e} - "I:\Setup.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\scrnsave.scr [11264 2012-07-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.10.1 192.168.10.1
Tcpip\..\Interfaces\{D58DC935-FA05-437B-BA74-886A24E255C4}: [DhcpNameServer] 10.0.10.1 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {24AB7B16-6C04-4E62-BADB-A3AF9C7BA5B2} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {28DBDC09-CD74-4291-80D1-789ACD6F9883} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {4E0C853B-1E34-451A-B946-3B8D7C8BCE5D} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&r ... {startPage}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6BC336E0-0860-4AFD-B849-E13CABFBD077} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {764482F2-C192-4032-B5B2-7848E6928461} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {8C35819E-0D88-4E0F-8946-73D1764A9500} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {A82AFC07-BDDB-4D91-91BD-B3D6AB1E5B87} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {CFDE9E19-18B2-4AC6-9F1E-14BD87C69D29} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-26] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-26] (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-07-12] (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default
FF Homepage: hxxp://seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_19_0_0_207.dll [2015-10-14] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_207.dll [2015-10-14] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\windows\SysWOW64\npDeployJava1.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1443460809-2058308057-2046692019-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Martina\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-26] (Google Inc.)
FF Plugin HKU\S-1-5-21-1443460809-2058308057-2046692019-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Martina\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-26] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll [2013-03-12] ()
FF Extension: Adblock Plus - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-03]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-09-08]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Torrent Search) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg [2015-10-16]
CHR Extension: (Dokumenty Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-23]
CHR Extension: (Disk Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-23]
CHR Extension: (YouTube) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-23]
CHR Extension: (Vyhledávání Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-30]
CHR Extension: (Gmail) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-23]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [220288 2012-09-30] (Qualcomm Atheros Commnucations) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-09] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-09] (Dropbox, Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1738808 2015-09-29] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6951992 2015-09-29] (GOG.com)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2255128 2015-09-16] (IBM Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-30] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-09-30] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-01-24] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
S3 GEARAspiWDM; C:\Windows\SysWOW64\Drivers\GEARAspiWDM.sys [15664 2011-07-15] (GEAR Software Inc.)
R4 RapportCerberus_1412112; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1412112.sys [917112 2015-06-23] (IBM Corp.)
R1 RapportCerberus_1507072; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1507072.sys [959416 2015-10-16] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [500184 2015-09-16] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [139896 2015-09-16] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [394584 2015-09-16] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [489240 2015-09-16] (IBM Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [975104 2012-08-24] (Vimicro Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [36288 2013-07-02] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [247216 2013-07-02] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
S1 MpKsl2ecb7eb5; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9484A43B-0625-4436-9642-52A1C107AA92}\MpKsl2ecb7eb5.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-16 19:07 - 2015-10-16 19:07 - 177551707 _____ C:\Users\Martina\Downloads\narcos.s01e03.720p.webrip.hevc.x265.rmteam.mkv.crdownload
2015-10-16 19:05 - 2015-10-16 19:05 - 00047378 _____ C:\Users\Martina\Downloads\Narcos-S01E03(0000259543).srt
2015-10-16 18:54 - 2015-10-16 18:54 - 00002208 _____ C:\windows\PFRO.log
2015-10-16 16:13 - 2015-10-16 19:13 - 00000270 __RSH C:\Users\Martina\ntuser.pol
2015-10-16 16:12 - 2015-10-16 16:12 - 00006942 _____ C:\windows\System32\Tasks\RestoreSearch
2015-10-15 22:53 - 2015-10-15 22:53 - 00000359 ____N C:\Users\Martina\Desktop\Počítač.lnk
2015-10-08 13:18 - 2015-10-16 18:56 - 00000000 ____D C:\Users\Martina\AppData\LocalLow\BitTorrent
2015-10-03 16:41 - 2015-10-03 16:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-29 07:01 - 2015-09-29 07:01 - 00000000 ____D C:\Users\Martina\AppData\Local\CEF

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-16 19:22 - 2013-11-26 21:58 - 00000000 ____D C:\Users\Martina\AppData\Roaming\BitTorrent
2015-10-16 19:21 - 2015-03-30 14:16 - 00000000 ____D C:\FRST
2015-10-16 19:13 - 2013-08-13 22:28 - 01367741 _____ C:\windows\WindowsUpdate.log
2015-10-16 19:13 - 2013-06-18 11:30 - 00000000 ____D C:\Users\Martina
2015-10-16 19:10 - 2013-07-23 23:16 - 00000000 ____D C:\Users\Martina\Desktop\Filmy
2015-10-16 19:01 - 2013-06-18 11:41 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1443460809-2058308057-2046692019-1001
2015-10-16 19:00 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\sru
2015-10-16 18:59 - 2015-04-02 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ochrana koncového bodu Trusteer
2015-10-16 18:58 - 2015-08-09 16:24 - 00000000 ___RD C:\Users\Martina\Dropbox
2015-10-16 18:58 - 2015-08-09 11:53 - 00000926 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-10-16 18:58 - 2015-08-09 11:53 - 00000000 ____D C:\Users\Martina\AppData\Local\Dropbox
2015-10-16 18:55 - 2015-08-09 11:53 - 00000922 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-10-16 18:55 - 2014-07-01 11:06 - 00000270 __RSH C:\ProgramData\ntuser.pol
2015-10-16 18:55 - 2012-07-26 09:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-10-16 18:54 - 2015-09-08 21:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-16 18:54 - 2014-07-02 14:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-16 18:52 - 2015-02-04 20:52 - 00000986 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7.job
2015-10-16 18:52 - 2012-07-26 07:26 - 00262144 ___SH C:\windows\system32\config\BBI
2015-10-16 18:51 - 2015-04-13 13:02 - 00000000 ____D C:\AdwCleaner
2015-10-16 18:36 - 2014-07-08 19:36 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-10-16 16:26 - 2015-04-20 14:23 - 00000000 ____D C:\KMPlayer
2015-10-16 16:26 - 2013-06-19 09:07 - 16842752 ___SH C:\Users\Martina\Desktop\Thumbs.db
2015-10-16 16:14 - 2012-07-26 10:12 - 00000000 ___HD C:\windows\system32\GroupPolicy
2015-10-16 16:13 - 2014-07-02 14:04 - 00001974 ____R C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk
2015-10-16 16:13 - 2013-09-23 23:06 - 00002284 ____R C:\Users\Martina\Desktop\Gооglе Сhrоmе.lnk
2015-10-16 16:13 - 2013-09-23 23:06 - 00000000 ____D C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-16 16:13 - 2013-06-18 11:33 - 00002059 ____R C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехplоrеr.lnk
2015-10-16 16:12 - 2014-07-02 14:04 - 00001962 ____R C:\Users\Public\Desktop\Моzillа Firеfох.lnk
2015-10-16 02:16 - 2013-06-19 22:29 - 00000000 ____D C:\Users\Martina\AppData\Local\CrashDumps
2015-10-15 23:23 - 2013-06-22 19:10 - 00001385 _____ C:\Users\Martina\Desktop\filmy.txt
2015-10-15 23:23 - 2013-06-22 19:03 - 00013357 _____ C:\Users\Martina\Desktop\Nový textový dokument.txt
2015-10-15 22:57 - 2013-09-15 18:31 - 00002441 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-15 22:56 - 2015-06-27 12:15 - 00003886 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-14 21:36 - 2013-06-18 12:03 - 00003802 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-10-11 19:41 - 2013-02-08 13:38 - 02554648 _____ C:\windows\system32\perfh005.dat
2015-10-11 19:41 - 2013-02-08 13:38 - 00735398 _____ C:\windows\system32\perfc005.dat
2015-10-11 19:41 - 2012-07-26 09:28 - 00005430 _____ C:\windows\system32\PerfStringBackup.INI
2015-10-03 16:41 - 2015-08-09 11:53 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-09-30 23:58 - 2012-07-26 10:12 - 00000000 ____D C:\windows\AUInstallAgent
2015-09-30 14:16 - 2013-06-18 22:00 - 01195008 ___SH C:\Users\Martina\Downloads\Thumbs.db
2015-09-29 07:00 - 2015-05-27 13:16 - 00000000 ____D C:\Program Files (x86)\GalaxyClient
2015-09-28 06:52 - 2015-02-04 20:52 - 00000934 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34.job
2015-09-26 06:47 - 2013-10-08 19:43 - 00003936 _____ C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7
2015-09-26 06:47 - 2013-09-23 23:09 - 00003556 _____ C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34
2015-09-16 15:39 - 2015-04-02 17:32 - 00394584 _____ (IBM Corp.) C:\windows\system32\Drivers\RapportKE64.sys
2015-09-16 15:39 - 2015-04-02 17:32 - 00139896 _____ (IBM Corp.) C:\windows\system32\Drivers\RapportHades64.sys

==================== Files in the root of some directories =======

2013-10-03 23:20 - 2013-10-03 23:20 - 0003584 _____ () C:\Users\Martina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-31 21:22 - 2015-03-31 21:23 - 0029696 _____ () C:\Users\Martina\AppData\Local\MSGBOX.EXE
2013-06-18 12:15 - 2013-06-18 12:15 - 0000057 _____ () C:\ProgramData\Ament.ini
2013-02-08 12:58 - 2013-02-08 12:58 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Martina\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvxj8bo.dll
C:\Users\Martina\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-07-12 19:26

==================== End of FRST.txt ============================

#6 Příspěvek od **Rudy** » 16 říj 2015 19:17

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {1c3be7a9-71dc-11e2-be6b-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {6a843982-84fe-11e3-bec9-2cd05a349e8e} - "F:\Autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {8341029c-197f-11e3-be96-2cd05a349e8e} - "I:\Setup.exe"
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CHR dev: Chrome dev build detected! <======= ATTENTION
C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7.job
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34.job
C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7
C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34
C:\Users\Martina\AppData\Local\MSGBOX.EXE
C:\ProgramData\DP45977C.lfl
C:\Users\Martina\AppData\Local\Temp
C:\windows\AutoKMS\AutoKMS.exe
Task: {22ABFEBB-1C5D-4771-8275-1D1303FF86C5} - System32\Tasks\AutoKMS => C:\windows\AutoKMS\AutoKMS.exe
End

Uložte do C:\Users\Martina\Desktop\Složky\Programy\na viry jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Mataa90 · #7 Příspěvek od **Mataa90** » 17 říj 2015 18:31

Fix result of Farbar Recovery Scan Tool (x64) Version:17-10-2015
Ran by Martina (2015-10-17 19:23:38) Run:1
Running from C:\Users\Martina\Desktop\Složky\Programy\na viry
Loaded Profiles: Martina (Available Profiles: Martina)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {1c3be7a9-71dc-11e2-be6b-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {6a843982-84fe-11e3-bec9-2cd05a349e8e} - "F:\Autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {8341029c-197f-11e3-be96-2cd05a349e8e} - "I:\Setup.exe"
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CHR dev: Chrome dev build detected! <======= ATTENTION
C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7.job
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34.job
C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7
C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34
C:\Users\Martina\AppData\Local\MSGBOX.EXE
C:\ProgramData\DP45977C.lfl
C:\Users\Martina\AppData\Local\Temp
C:\windows\AutoKMS\AutoKMS.exe
Task: {22ABFEBB-1C5D-4771-8275-1D1303FF86C5} - System32\Tasks\AutoKMS => C:\windows\AutoKMS\AutoKMS.exe
End
*****************

"HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c3be7a9-71dc-11e2-be6b-806e6f6e6963}" => key removed successfully
HKCR\CLSID\{1c3be7a9-71dc-11e2-be6b-806e6f6e6963} => key not found.
"HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6a843982-84fe-11e3-bec9-2cd05a349e8e}" => key removed successfully
HKCR\CLSID\{6a843982-84fe-11e3-bec9-2cd05a349e8e} => key not found.
"HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8341029c-197f-11e3-be96-2cd05a349e8e}" => key removed successfully
HKCR\CLSID\{8341029c-197f-11e3-be96-2cd05a349e8e} => key not found.
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
Could not restore Default URLSearchHook.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
CHR dev: Chrome dev build detected! <======= ATTENTION => Error: No automatic fix found for this entry.
C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => moved successfully
C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34.job => moved successfully
C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001UA1cec44decc40ac7 => moved successfully
C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1443460809-2058308057-2046692019-1001Core1ceb8a123e7bf34 => moved successfully
C:\Users\Martina\AppData\Local\MSGBOX.EXE => moved successfully
Could not move "C:\ProgramData\DP45977C.lfl" => Scheduled to move on reboot.

"C:\Users\Martina\AppData\Local\Temp" folder move:

Could not move "C:\Users\Martina\AppData\Local\Temp" => Scheduled to move on reboot.

"C:\windows\AutoKMS\AutoKMS.exe" => File/Folder not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{22ABFEBB-1C5D-4771-8275-1D1303FF86C5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{22ABFEBB-1C5D-4771-8275-1D1303FF86C5}" => key removed successfully
C:\windows\System32\Tasks\AutoKMS => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => key removed successfully

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-10-17 19:25:28)

C:\ProgramData\DP45977C.lfl => Is moved successfully
C:\Users\Martina\AppData\Local\Temp => moved successfully

==== End of Fixlog 19:25:32 ====

#8 Příspěvek od **Rudy** » 17 říj 2015 19:13

Smazáno. Nästala nějaká změna?

Mataa90 · #9 Příspěvek od **Mataa90** » 17 říj 2015 19:18

bohužel, je to pořád stejné :/

#10 Příspěvek od **Rudy** » 17 říj 2015 19:21

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Mataa90 · #11 Příspěvek od **Mataa90** » 23 říj 2015 11:42

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 22. 10. 2015
Čas skenování: 20:22
Protokol: malwarebytes.txt
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2015.09.22.05
Databáze rootkitů: v2015.10.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: Martina

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 394166
Uplynulý čas: 19 min, 40 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 3
Trojan.Proxy, HKLM\SOFTWARE\CLASSES\game.5131.CODEX.DynamicNS, , [05e8ad85305bf046724706a517eb8779],
Trojan.Proxy, HKLM\SOFTWARE\WOW6432NODE\CLASSES\game.5131.CODEX.DynamicNS, , [36b754decdbe40f6e1d8911a669cd42c],
Trojan.Proxy, HKLM\SOFTWARE\CLASSES\WOW6432NODE\game.5131.CODEX.DynamicNS, , [36b754decdbe40f6e1d8911a669cd42c],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 64
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files\com.torrent.main, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\icons, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\hi, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\am, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ar, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\be, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\bg, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\bn, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ca, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\cs, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\da, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\de, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\el, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\en, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\en_GB, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\en_US, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\es, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\es_419, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\et, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\fa, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\fi, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\fil, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\fr, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\gu, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\he, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\hr, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\hu, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\id, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\it, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ja, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\kn, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ko, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\lt, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\lv, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\mk, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ml, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\mr, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ms, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\nl, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\no, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\pl, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\pt, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\pt_BR, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\pt_PT, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ro, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ru, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sk, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sl, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sq, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sr, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sv, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sw, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ta, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\te, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\th, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\tr, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\uk, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\vi, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\zh_CN, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\zh_TW, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg, , [b835aa8802894ee827eefcb5996cd729],

Soubory: 79
PUP.Optional.Bundle, C:\Users\Martina\Downloads\daemon-tools-lista-centrumcz.exe, , [d51833ff791200368b881270a75ac43c],
PUP.Optional.Bundle, C:\Users\Martina\Downloads\avast-lista-centrumcz.exe, , [cc21f33f662585b1987b136f31d040c0],
PUP.Optional.Bundle, C:\Users\Martina\Downloads\mozilla-firefox-lista-centrumcz-pro-internet-explorer.exe, , [6f7ef73baedd4ceab45f186a9b668878],
PUP.Optional.BrowserHijack.ShrtCln, C:\Program Files (x86)\Internet Explorer\iexplore.bat, , [00eda0925c2ffe382f90082939ca748c],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\manifest.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\BrowsersFix.js, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\Content.js, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\Kernel.js, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\popup.html, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\popup.js, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files\background.js, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files\foreground.js, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files\popup.css, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files\popup.js, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files\com.torrent.main\reset.png, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files\com.torrent.main\reset_old.png, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files\com.torrent.main\search.png, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\files\com.torrent.main\search_old.png, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\icons\icon128.png, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\icons\icon16.png, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\icons\icon48.png, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\hi\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\am\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ar\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\be\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\bg\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\bn\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ca\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\cs\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\da\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\de\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\el\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\en\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\en_GB\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\en_US\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\es\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\es_419\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\et\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\fa\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\fi\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\fil\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\fr\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\gu\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\he\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\hr\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\hu\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\id\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\it\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ja\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\kn\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ko\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\lt\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\lv\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\mk\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ml\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\mr\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ms\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\nl\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\no\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\pl\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\pt\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\pt_BR\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\pt_PT\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ro\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ru\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sk\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sl\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sq\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sr\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sv\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\sw\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\ta\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\te\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\th\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\tr\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\uk\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\vi\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\zh_CN\messages.json, , [b835aa8802894ee827eefcb5996cd729],
PUP.Optional.NeoBars, C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\adplchojbnceleieilggnpceikjeapjg\361.0.0.64_0\_locales\zh_TW\messages.json, , [b835aa8802894ee827eefcb5996cd729],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#12 Příspěvek od **Rudy** » 23 říj 2015 16:41

Vše, co MBAM nalezl, smažte.

Mataa90 · #13 Příspěvek od **Mataa90** » 24 říj 2015 16:06

nový sken z malwarebytes

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 24. 10. 2015
Čas skenování: 16:30
Protokol: aa.txt
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2015.09.22.05
Databáze rootkitů: v2015.10.23.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: Martina

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 394254
Uplynulý čas: 20 min, 10 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#14 Příspěvek od **Rudy** » 24 říj 2015 17:21

OK. Je teď vše v pořádku?

Mataa90 · #15 Příspěvek od **Mataa90** » 25 říj 2015 15:01

Stále mi bliká černé okno na hlavním panelu, když zapínám prohlížeče. A také když otevřu prohlížeč, tak tam mám stále ruské stránky, ikdyž mám nastavenou jinou domovskou stránku..

VIRY.CZ

kontrola logu

kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu

Re: kontrola logu