VIRY.CZ

Dobrý večer,

poslední dobou se mi nechtějí načítat internetové stránky a prohlížeče (Mozilla, Chrome) dělají následující: Po zadání adresy stránky se zobrazí chybové hlášení "Server neexistuje" a stránka se načte vždy až po aktualizaci. V mozille se ještě občas místo hlášení objeví pouze žlutá stránka s rámečkem (viz příloha). Toto se děje jen občas avšak často u českých i zahraničních webů. Bohužel už je to nějaký čas kdy se to objevilo, takže už nevím jaké akce na mém pc předcházeli tomuto problému. Na ostatních pc připojených na domácí wi-fi problém není.

Předem děkuji za radu a pomoc

Zdravím! Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

Snažím se, ale po spuštění FRSTLauncher mi to pořád píše, že FRST64.exe není umístěn na ploše i když je přímo vedle. Spouštím jako správce, mám 64bit systém, stáhnul jsem FRST64.exe i FRSTLauncher přesně podle návodu.

Dejte tedy alespoň samotný FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-11-2015
Ran by Daniel (administrator) on DANIEL-PCP (25-11-2015 19:39:28)
Running from D:\Desktop
Loaded Profiles: Daniel (Available Profiles: Daniel)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Wireless) C:\Program Files (x86)\TP-LINK\QSS\jswpbapi.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(Prolific Technology Inc.) C:\Windows\SysWOW64\IoctlSvc.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
() C:\Windows\mHotkey.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Chicony) C:\Windows\ChiFuncExt.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Akamai Technologies, Inc.) C:\Users\Daniel\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Daniel\AppData\Local\Akamai\netsession_win.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Windows\tsnpstd3.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
() C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1120.13270.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1510.13020.0_x64__8wekyb3d8bbwe\Calculator.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7940128 2009-07-06] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-07-06] (Realtek Semiconductor Corp.)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [3832064 2009-09-11] (O&O Software GmbH)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-06-03] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-10-16] (Apple Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [LchDrvKey] => LchDrvKey.exe
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [tsnpstd3] => C:\Windows\tsnpstd3.exe
HKLM-x32\...\Run: [IJNetworkScanUtility] => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [124256 2010-01-18] (CANON INC.)
HKLM-x32\...\Run: [SafeQ Client] => C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe [259584 2013-02-20] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [3826600 2015-10-30] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2688177673-2956664120-4266065641-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [465920 2015-09-10] (Microsoft Corporation)
HKU\S-1-5-21-2688177673-2956664120-4266065641-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Daniel\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2688177673-2956664120-4266065641-1000\...\Policies\Explorer: []
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-06-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-06-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-06-11] ()
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2014-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2014-02-07] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2015-11-17]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG)
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2011-04-13] ()
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{5b2815c1-8692-4ac7-a564-fb476e43d29b}: [DhcpNameServer] 10.88.1.2 10.89.1.2
Tcpip\..\Interfaces\{f80c348c-0e38-4e96-9108-c6ee7f4d43f2}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-2688177673-2956664120-4266065641-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2688177673-2956664120-4266065641-1000 -> DefaultScope {1073FCB9-F265-47B4-9EA4-ADC7B297C7BB} URL = hxxp://search.seznam.cz/searchScreen?w={searchTerms}&mod=f
SearchScopes: HKU\S-1-5-21-2688177673-2956664120-4266065641-1000 -> {1073FCB9-F265-47B4-9EA4-ADC7B297C7BB} URL = hxxp://search.seznam.cz/searchScreen?w={searchTerms}&mod=f
SearchScopes: HKU\S-1-5-21-2688177673-2956664120-4266065641-1000 -> {AF69DB74-541F-45D3-BBAD-120B8A724EB6} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... {startPage}
BHO-x32: WebTransBHO Class -> {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} -> C:\ProgramData\LangSoft\WebIE.dll [2012-03-15] ()
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-12] (Oracle Corporation)
Toolbar: HKLM-x32 - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll [2012-03-15] ()
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08] (Skype Technologies S.A.)

FireFox:
========
FF ProfilePath: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906
FF Homepage: www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-14] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @Musicnotes.com/Musicnotes Viewer -> C:\Program Files\Musicnotes\npmusicn64.dll [2011-03-19] (Musicnotes, Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2013-06-13] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-14] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Picasa3\npPicasa3.dll [2011-04-14] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-12-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-12-12] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @Musicnotes.com/Musicnotes Viewer -> C:\Program Files (x86)\Musicnotes\npmusicn.dll [2011-03-19] (Musicnotes, Inc.)
FF Plugin-x32: @Sibelius.com/Scorch Plugin -> C:\Program Files (x86)\Musicnotes\npsibelius.dll [2010-04-08] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=1.1.4 -> C:\Program Files (x86)\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2013-06-13] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2688177673-2956664120-4266065641-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Daniel\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2688177673-2956664120-4266065641-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Daniel\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-16] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2014-02-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2014-02-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2014-02-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2014-02-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2014-02-15] (Apple Inc.)
FF Extension: FireGestures - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906\extensions\firegestures@xuldev.org.xpi [2015-11-01]
FF Extension: AVG PrivacyFix - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906\Extensions\{7CA9CF31-1C73-46CD-8377-85AB71EA771F}.xpi [2015-10-16] [not signed]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Plugin: (Shockwave Flash) - C:\Users\Daniel\AppData\Local\Google\Chrome\Application\40.0.2214.93\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll => No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.200.2) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U20) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll => No File
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll => No File
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\nprpjplug.dll => No File
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll => No File
CHR Plugin: (Native Client) - C:\Users\Daniel\AppData\Local\Google\Chrome\Application\40.0.2214.93\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Daniel\AppData\Local\Google\Chrome\Application\40.0.2214.93\pdf.dll ()
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\nprjplug.dll => No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll => No File
CHR Plugin: (Musicnotes) - C:\Program Files (x86)\Musicnotes\npmusicn.dll (Musicnotes, Inc.)
CHR Plugin: (ScorchPlugin) - C:\Program Files (x86)\Musicnotes\npsibelius.dll ()
CHR Plugin: (Picasa) - C:\Program Files (x86)\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (VLC Multimedia Plug-in) - C:\Program Files (x86)\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll => No File
CHR Profile: C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Mouse Stroke) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeaoofnhgocdbnbeljkmbjdmhbcokfdb [2014-05-01]
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-21]
CHR Extension: (Vyhledávání Google) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-21]
CHR Extension: (Gmail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-21]
StartMenuInternet: Google Chrome - C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-11-26] (Autodesk Inc.)
S4 AirPrint; C:\Program Files (x86)\AirPrint\airprint.exe [234784 2010-10-07] (Apple Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-21] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [595376 2015-10-30] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [3815648 2015-10-30] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1046952 2015-11-12] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [579776 2015-10-30] (AVG Technologies CZ, s.r.o.)
S4 CTDevice_Srv; C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe [61440 2007-04-02] (Creative Technology Ltd) [File not signed]
S4 CTUPnPSv; C:\Program Files (x86)\Creative\Creative Centrale\CTUPnPSv.exe [64000 2008-05-21] (Creative Technology Ltd) [File not signed]
R2 jswpbapi; C:\Program Files (x86)\TP-LINK\QSS\jswpbapi.exe [265216 2009-09-21] (Wireless) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\TP-LINK\QSS\jswpsapi.exe [954368 2009-09-21] (Wireless) [File not signed]
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S4 mi-raysat_3dsmax2013_64; C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe [86016 2011-09-15] () [File not signed]
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-10-02] (Microsoft Corporation)
S4 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [877864 2008-06-08] (Nero AG)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [537896 2008-06-24] (Nero AG)
R2 O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2287360 2009-09-11] (O&O Software GmbH)
R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-10-02] (Microsoft Corporation)
S3 w3logsvc; C:\WINDOWS\SysWOW64\inetsrv\w3logsvc.dll [72192 2015-10-02] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-10-02] (Microsoft Corporation)
R2 W3SVC; C:\WINDOWS\SysWOW64\inetsrv\iisw3adm.dll [504832 2015-10-02] (Microsoft Corporation)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-04-22] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-05-23] (Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
S3 AutoBoot; C:\Program Files (x86)\MSI\AutoBoot\NTGLM7X64.sys [44344 2009-02-19] (MICRO-STAR INT'L CO., LTD.)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [23152 2015-09-09] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [197040 2015-08-10] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [313776 2015-10-19] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [298416 2015-08-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [284080 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [398256 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [255408 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [42416 2015-08-10] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [306608 2015-10-08] (AVG Technologies CZ, s.r.o.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-10-02] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-06-18] (Realtek )
R0 speedfan; C:\Windows\SysWow64\speedfan.sys [14104 2007-02-07] (Windows (R) Server 2003 DDK provider)
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-04-08] (Duplex Secure Ltd.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-25 19:38 - 2015-11-25 19:39 - 00000000 ____D C:\FRST
2015-11-25 19:37 - 2015-11-25 19:37 - 00016148 _____ C:\WINDOWS\system32\DANIEL-PCP_Daniel_HistoryPrediction.bin
2015-11-25 16:52 - 2015-11-25 16:53 - 00000004 ____H C:\ProgramData\cm-lock
2015-11-24 23:31 - 2015-11-25 16:56 - 00029696 _____ C:\Users\Daniel\AppData\Local\MSGBOX.EXE
2015-11-17 13:49 - 2015-11-17 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter
2015-11-17 13:49 - 2015-11-17 13:49 - 00000000 ____D C:\ProgramData\CodeMeter
2015-11-17 13:49 - 2015-11-17 13:49 - 00000000 ____D C:\Program Files\WIBU-SYSTEMS
2015-11-17 13:49 - 2015-11-17 13:49 - 00000000 ____D C:\Program Files\CodeMeter
2015-11-17 13:49 - 2015-11-17 13:49 - 00000000 ____D C:\Program Files (x86)\CodeMeter
2015-11-17 12:38 - 2015-11-17 12:38 - 00000000 ____D C:\Users\Daniel\AppData\Local\CEF
2015-11-17 12:12 - 2015-11-17 12:13 - 00000000 ____D C:\Users\Daniel\AppData\Local\Akamai
2015-11-15 21:06 - 2015-11-15 21:06 - 00000000 ___HD C:\$AVG
2015-11-15 21:06 - 2015-11-15 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-11-15 20:57 - 2015-11-15 20:57 - 00000000 ____D C:\Users\Daniel\AppData\Local\Avg2015
2015-11-14 23:46 - 2015-11-25 17:05 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-14 17:02 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-14 17:02 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-14 17:02 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-14 17:02 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-14 17:02 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-14 17:02 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-14 17:02 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-14 17:02 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-14 17:02 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-14 17:02 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-14 17:02 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-14 17:02 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-14 17:02 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-14 17:02 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-14 17:02 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-14 17:02 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-14 17:02 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-14 17:02 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-14 17:02 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-14 17:02 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-14 17:02 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-14 17:02 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-14 17:02 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-14 17:02 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-14 17:02 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-14 17:02 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-14 17:02 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-14 17:02 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-14 17:02 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-14 17:02 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-14 17:02 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-14 17:02 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-14 17:02 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-14 17:02 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-14 17:02 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-14 17:02 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-14 17:02 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-14 17:02 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-14 17:02 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-14 17:02 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-14 17:02 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-14 17:02 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-14 17:02 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-14 17:02 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-14 17:02 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-14 17:02 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-14 17:02 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-14 17:02 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-14 17:02 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-14 17:02 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-14 17:02 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-14 17:02 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-14 17:02 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-11-14 13:36 - 2015-11-14 13:36 - 00004890 _____ C:\ProgramData\gobbrddk.rdb
2015-11-14 13:36 - 2015-11-14 13:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Formfinder 3.5
2015-11-14 13:36 - 2015-11-14 13:36 - 00000000 ____D C:\Program Files (x86)\Formfinder
2015-11-08 16:28 - 2015-11-15 15:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-04 19:50 - 2015-11-04 19:50 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2015-11-04 19:50 - 2015-11-04 19:50 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-10-30 12:56 - 2015-10-30 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-10-30 12:55 - 2015-10-30 12:56 - 00000000 ____D C:\Program Files\iTunes
2015-10-30 12:55 - 2015-10-30 12:55 - 00000000 ____D C:\Program Files\iPod
2015-10-30 12:55 - 2015-10-30 12:55 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-10-30 12:53 - 2015-10-30 12:53 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2015-10-30 12:53 - 2015-10-30 12:53 - 00000000 ____D C:\Program Files\Bonjour
2015-10-30 12:53 - 2015-10-30 12:53 - 00000000 ____D C:\Program Files (x86)\Bonjour
2015-10-30 12:53 - 2015-10-30 12:53 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-10-30 12:48 - 2015-10-30 12:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-25 19:38 - 2015-07-10 10:47 - 00000000 ____D C:\Windows
2015-11-25 19:32 - 2012-06-13 08:10 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-25 19:00 - 2010-04-08 16:31 - 00000500 _____ C:\WINDOWS\Tasks\1-Click Maintenance.job
2015-11-25 17:53 - 2010-11-04 18:20 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\vlc
2015-11-25 17:49 - 2010-04-11 22:33 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Azureus
2015-11-25 16:56 - 2014-06-26 21:48 - 00000000 ____D C:\Users\Daniel\AppData\Local\Adobe
2015-11-25 16:53 - 2014-10-29 13:10 - 00008192 _____ C:\WINDOWS\SysWOW64\WDPABKP.dat
2015-11-25 16:52 - 2015-07-30 22:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-25 16:52 - 2010-04-13 19:26 - 02240656 _____ C:\WINDOWS\system32\oodbs.lor
2015-11-25 00:28 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-11-24 20:53 - 2015-07-30 23:42 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-24 20:53 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-24 20:50 - 2015-10-16 14:31 - 00000000 ____D C:\ProgramData\MFAData
2015-11-24 01:43 - 2012-02-21 22:44 - 00000000 ____D C:\Users\Daniel\Graphisoft
2015-11-22 15:13 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-11-18 22:03 - 2014-12-25 15:17 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-11-17 21:41 - 2010-05-09 20:14 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-11-17 13:58 - 2010-04-08 17:23 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\MAXON
2015-11-17 13:57 - 2012-02-21 22:44 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Graphisoft
2015-11-17 13:54 - 2015-07-30 22:49 - 05141752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-17 13:39 - 2012-02-21 22:42 - 00021960 _____ C:\WINDOWS\vpd.properties
2015-11-17 13:31 - 2014-04-15 10:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRAPHISOFT
2015-11-17 13:29 - 2014-04-15 10:59 - 00000000 ____D C:\Program Files\GRAPHISOFT
2015-11-17 13:28 - 2014-04-15 10:57 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Install.GS
2015-11-17 12:31 - 2011-11-06 18:58 - 00000000 ____D C:\Users\Daniel\AppData\Local\Autodesk
2015-11-17 12:31 - 2011-11-06 18:58 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2015-11-17 12:31 - 2011-11-06 18:52 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Autodesk
2015-11-17 12:31 - 2011-11-06 18:52 - 00000000 ____D C:\ProgramData\Autodesk
2015-11-17 12:31 - 2011-11-06 18:47 - 00000000 ____D C:\Program Files\Autodesk
2015-11-17 12:19 - 2011-11-06 18:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2015-11-17 12:12 - 2012-10-23 13:05 - 00000000 ____D C:\Autodesk
2015-11-16 20:04 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\rescache
2015-11-16 00:56 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-15 21:25 - 2015-07-30 23:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-15 21:25 - 2009-07-20 17:45 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-15 21:21 - 2013-08-14 16:27 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-15 21:13 - 2010-06-02 22:25 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-15 21:06 - 2015-10-16 14:24 - 00000000 ____D C:\ProgramData\Avg
2015-11-15 21:06 - 2015-10-16 14:23 - 00000000 ____D C:\Users\Daniel\AppData\Local\Avg
2015-11-15 21:06 - 2015-07-30 23:42 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-11-15 21:05 - 2015-10-16 14:24 - 00000000 ____D C:\Program Files (x86)\AVG
2015-11-15 21:03 - 2015-10-16 14:23 - 00000000 ____D C:\Users\Daniel\AppData\Local\AvgSetupLog
2015-11-15 15:11 - 2015-07-30 23:40 - 00000000 ____D C:\WINDOWS\INF
2015-11-14 23:46 - 2009-07-20 17:38 - 00000000 ____D C:\ProgramData\Adobe
2015-11-14 23:46 - 2009-07-20 17:38 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-11-09 23:35 - 2015-10-01 23:18 - 02039120 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-09 23:35 - 2015-09-10 06:05 - 00842288 _____ C:\WINDOWS\system32\perfh005.dat
2015-11-09 23:35 - 2015-09-10 06:05 - 00192552 _____ C:\WINDOWS\system32\perfc005.dat
2015-11-09 22:03 - 2012-04-25 22:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-08 15:38 - 2009-07-20 17:13 - 00138968 _____ C:\Users\Daniel\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-06 00:36 - 2015-10-01 23:18 - 00000000 ____D C:\Users\Daniel
2015-11-03 19:20 - 2015-07-30 23:43 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-03 19:20 - 2015-07-30 23:43 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-02 23:08 - 2010-04-09 18:12 - 00007596 _____ C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2015-10-30 13:35 - 2010-07-29 17:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Apple Computer
2015-10-30 12:55 - 2015-01-09 17:26 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-10-30 12:55 - 2011-08-15 16:52 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-10-30 12:53 - 2010-04-25 21:05 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-10-28 23:23 - 2015-10-16 14:13 - 00000000 ____D C:\WINDOWS\Minidump
2015-10-28 23:23 - 2015-10-02 00:12 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-28 23:23 - 2010-04-08 16:34 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\DAEMON Tools Lite
2015-10-28 23:17 - 2010-04-08 15:48 - 00000000 ____D C:\Program Files (x86)\CCleaner

==================== Files in the root of some directories =======

2015-02-26 20:59 - 2015-02-26 20:59 - 0000132 _____ () C:\Users\Daniel\AppData\Roaming\Adobe AIFF Format CS5 Prefs
2015-09-12 20:37 - 2015-09-28 15:28 - 0000132 _____ () C:\Users\Daniel\AppData\Roaming\Adobe GIF Format CC Prefs
2010-10-26 13:24 - 2015-02-09 23:37 - 0000132 _____ () C:\Users\Daniel\AppData\Roaming\Adobe GIF Format CS5 Prefs
2012-01-30 21:49 - 2012-01-30 21:49 - 0000132 _____ () C:\Users\Daniel\AppData\Roaming\Adobe IllExport Filter CS5 Prefs
2010-04-10 20:40 - 2010-04-10 20:40 - 0000000 _____ () C:\Users\Daniel\AppData\Roaming\chrtmp
2010-04-19 14:39 - 2010-04-19 14:39 - 0099384 _____ () C:\Users\Daniel\AppData\Roaming\inst.exe
2010-09-29 16:12 - 2010-10-02 21:49 - 0000565 _____ () C:\Users\Daniel\AppData\Roaming\myMPQ.ini
2010-04-19 14:39 - 2010-04-19 14:39 - 0007859 _____ () C:\Users\Daniel\AppData\Roaming\pcouffin.cat
2010-04-19 14:39 - 2010-04-19 14:39 - 0001167 _____ () C:\Users\Daniel\AppData\Roaming\pcouffin.inf
2010-04-19 14:39 - 2010-04-19 14:39 - 0000034 _____ () C:\Users\Daniel\AppData\Roaming\pcouffin.log
2010-04-19 14:39 - 2010-04-19 14:39 - 0082816 _____ (VSO Software) C:\Users\Daniel\AppData\Roaming\pcouffin.sys
2011-02-12 22:50 - 2011-02-12 22:50 - 0000170 _____ () C:\Users\Daniel\AppData\Roaming\playlist_temp.lst
2010-04-19 14:40 - 2015-01-27 22:23 - 0001189 _____ () C:\Users\Daniel\AppData\Roaming\vso_ts_preview.xml
2010-07-31 20:11 - 2012-09-13 15:13 - 0001456 _____ () C:\Users\Daniel\AppData\Local\Adobe Save for Web 12.0 Prefs
2015-09-12 20:36 - 2015-09-29 17:07 - 0001456 _____ () C:\Users\Daniel\AppData\Local\Adobe Save for Web 13.0 Prefs
2010-07-29 17:09 - 2011-06-16 23:39 - 0039936 _____ () C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-24 23:31 - 2015-11-25 16:56 - 0029696 _____ () C:\Users\Daniel\AppData\Local\MSGBOX.EXE
2010-04-09 18:12 - 2015-11-02 23:08 - 0007596 _____ () C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2011-11-17 01:26 - 2011-11-17 01:26 - 0000000 _____ () C:\Users\Daniel\AppData\Local\{13E6A1AE-FC93-4F78-ABCD-00DEB1F09D6A}
2015-11-25 16:52 - 2015-11-25 16:53 - 0000004 ____H () C:\ProgramData\cm-lock
2015-11-14 13:36 - 2015-11-14 13:36 - 0004890 _____ () C:\ProgramData\gobbrddk.rdb
2014-12-10 11:32 - 2014-12-10 11:32 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\AcDeltree.exe
C:\Users\Daniel\AppData\Local\Temp\avg-87944c66-e673-4f0d-a144-8e7e08d8fc3a.exe
C:\Users\Daniel\AppData\Local\Temp\avguirn_081082957274.exe
C:\Users\Daniel\AppData\Local\Temp\avguirn_08110133520.exe
C:\Users\Daniel\AppData\Local\Temp\avguirn_081174382375.exe
C:\Users\Daniel\AppData\Local\Temp\i4jdel0.exe
C:\Users\Daniel\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Daniel\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Daniel\AppData\Local\Temp\sfamcc00003.dll
C:\Users\Daniel\AppData\Local\Temp\sfareca00002.dll
C:\Users\Daniel\AppData\Local\Temp\UNINSTALL.EXE


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-16 18:47

==================== End of FRST.txt ============================

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Spustil jsem AdwCleaner, nicméně před tím než jsem stačil zkopírovat log mi to AVG zablokoval a log mi zmizel. Po druhém spuštění už to samozřejmě nic nenašlo:/ :

# AdwCleaner v5.022 - Logfile created 27/11/2015 at 18:32:19
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 10 Home (x64)
# Username : Daniel - DANIEL-PCP
# Running from : D:\Desktop\adwcleaner_5.022.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [650 bytes] ##########

Nicméně počáteční problém stále přetrvává. Jednou se mi ve firefoxu obejvila tato hláška (viz příloha):

Deniel177 píše:Nicméně počáteční problém stále přetrvává. Jednou se mi ve firefoxu obejvila tato hláška (viz příloha):

Toto je věc programování webu. ADW je OK. Otevřte poznámkový blok a zkopírujte do něj:

:files
HKU\S-1-5-21-2688177673-2956664120-4266065641-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Daniel\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
c:\Users\Daniel\AppData\Local\Akamai
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08] (Skype Technologies S.A.)
C:\Program Files (x86)\Skype\Toolbars
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
C:\Users\Daniel\AppData\Local\Temp
End

Uložte do D:\Desktop jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version:25-11-2015
Ran by Daniel (2015-11-27 19:24:46) Run:1
Running from D:\Desktop
Loaded Profiles: Daniel (Available Profiles: Daniel)
Boot Mode: Normal
==============================================

fixlist content:
*****************
:files
HKU\S-1-5-21-2688177673-2956664120-4266065641-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Daniel\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
c:\Users\Daniel\AppData\Local\Akamai
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08] (Skype Technologies S.A.)
C:\Program Files (x86)\Skype\Toolbars
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
C:\Users\Daniel\AppData\Local\Temp
End
*****************

:files => Error: No automatic fix found for this entry.
HKU\S-1-5-21-2688177673-2956664120-4266065641-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface => value removed successfully

"c:\Users\Daniel\AppData\Local\Akamai" folder move:

Could not move "c:\Users\Daniel\AppData\Local\Akamai" => Scheduled to move on reboot.

"HKCR\PROTOCOLS\Handler\gopher" => key removed successfully
HKCR\CLSID\{79eac9e4-baf9-11ce-8c82-00aa004ba90b} => key not found.
"HKCR\Wow6432Node\PROTOCOLS\Handler\skype-ie-addon-data" => key removed successfully
"HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => key removed successfully
C:\Program Files (x86)\Skype\Toolbars => moved successfully
idsvc => service removed successfully
wpcsvc => service removed successfully

"C:\Users\Daniel\AppData\Local\Temp" folder move:

Could not move "C:\Users\Daniel\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-11-27 19:27:42)

c:\Users\Daniel\AppData\Local\Akamai => Is moved successfully
C:\Users\Daniel\AppData\Local\Temp => moved successfully

==== End of Fixlog 19:27:44 ====

Smazáno. Nastala nějaká změna?

Bohužel ne, webové stránky se stále načítají až napodruhé.

Proveďte ještě tyto skeny:

1. Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

1) zoek


Zoek.exe v5.0.0.1 Updated 26-November-2015
Tool run by Daniel on p  27.11.2015 at 22:45:58,94.
Microsoft Windows 10 Home 10.0.10240 x64
Running in: Normal Mode Internet Access Detected
Launched: D:\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

27.11.2015 22:47:44 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Program Files\Common Files\logishrd deleted successfully
C:\PROGRA~3\ALM deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\Musicnotes deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\Daniel\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Daniel\AppData\Local\EmieSiteList deleted successfully
C:\Users\Daniel\AppData\Local\EmieUserList deleted successfully
C:\Users\Daniel\AppData\Local\GHISLER deleted successfully
C:\Users\Daniel\AppData\Local\pangu deleted successfully
C:\Users\Daniel\AppData\Local\Wings of Prey deleted successfully
C:\Users\Daniel\AppData\Local\WOP deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2688177673-2956664120-4266065641-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906\prefs.js:
user_pref("browser.startup.homepage", "www.seznam.cz");

Added to C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906

user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- FireFox user.js and prefs.js backups ----

prefs_27.11.2015_2301_.backup

==== Deleting Files \ Folders ======================

C:\Users\Daniel\.android deleted
C:\LOGFILE.TXT deleted
C:\PROGRA~3\{26D901A1-2540-4430-81DC-0317F01BD7BE} deleted
C:\PROGRA~3\{93E26451-CD9A-43A5-A2FA-C42392EA4001} deleted
C:\PROGRA~3\{A16967D8-8459-420A-8C25-9C9A247D348E} deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Daniel\AppData\Local\cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScreenSavers deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906\jetpack deleted
C:\Users\Daniel\AppData\Local\MSGBOX.EXE deleted
"C:\Users\Daniel\AppData\Local\{13E6A1AE-FC93-4F78-ABCD-00DEB1F09D6A}" deleted
"C:\Users\Daniel\AppData\Roaming\chrtmp" deleted
"C:\ProgramData\cm-lock" not deleted
"C:\Users\Daniel\AppData\Roaming\Vso" deleted
"C:\Users\Daniel\AppData\Roaming\TaiG" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906
- FireGestures - %ProfilePath%\extensions\firegestures@xuldev.org.xpi
- AVG PrivacyFix - %ProfilePath%\extensions\{7CA9CF31-1C73-46CD-8377-85AB71EA771F}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906
F114FBA6246530B89DD1E04351E0EAC5 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll - Shockwave Flash
D2377C9458EFEB094E38B8C874AA214C - C:\Users\Daniel\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll - Google Update


==== Chromium Look ======================


Mouse Stroke - Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeaoofnhgocdbnbeljkmbjdmhbcokfdb

==== Chromium Startpages ======================

C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.seznam.cz/",
"startup_urls": [ "http://www.seznam.cz/" ]


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{1073FCB9-F265-47B4-9EA4-ADC7B297C7BB}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
HKCU\SearchScopes\{1073FCB9-F265-47B4-9EA4-ADC7B297C7BB} - http://search.seznam.cz/searchScreen?w= ... rms}&mod=f
HKCU\SearchScopes\{AF69DB74-541F-45D3-BBAD-120B8A724EB6} - http://www.google.cz/search?q={searchTe ... {startPage}

==== Reset Google Chrome ======================

C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Daniel\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Daniel\AppData\Local\Mozilla\Firefox\Profiles\edn781zx.default-1443447887906\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=354 folders=188 82433081 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Daniel\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\ProgramData\cm-lock" not deleted

==== EOF on p  27.11.2015 at 23:07:24,10 ======================



2) JRT

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 10 Home x64
Ran by Daniel (Administrator) on p  27.11.2015 at 23:08:52,79
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2

Successfully deleted: C:\Program Files (x86)\dg (Folder)
Successfully deleted: C:\Program Files (x86)\w3i, llc (Folder)



Registry: 1

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1073FCB9-F265-47B4-9EA4-ADC7B297C7BB} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p  27.11.2015 at 23:12:15,25
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Jak to vypadá nyní?