VIRY.CZ

Dobrý den, poprosil bych o kontrolu logu, dědovi nějak blbne pc a s vámi mám skvělou zkušenosti.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-04-2016
Ran by toshiba1 (administrator) on TOSHIBA (15-04-2016 18:09:42)
Running from C:\Users\toshiba1\Desktop
Loaded Profiles: toshiba1 (Available Profiles: toshiba1)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Users\toshiba1\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\toshiba1\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(AppEx Networks Corporation) C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\core-static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-13] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [179624 2016-02-18] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-701734586-4249835382-1002098473-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\toshiba1\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-701734586-4249835382-1002098473-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\toshiba1\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-701734586-4249835382-1002098473-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31346784 2015-02-26] (Skype Technologies S.A.)
HKU\S-1-5-21-701734586-4249835382-1002098473-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-701734586-4249835382-1002098473-1001\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [429792 2013-02-08] (AppEx Networks Corporation)
HKU\S-1-5-21-701734586-4249835382-1002098473-1001\...\Run: [Samsung Appstore] => C:\Users\toshiba1\AppData\Roaming\Mozila\autoit.exe [934400 2016-04-02] (AutoIt Team)
Startup: C:\Users\toshiba1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 1510 series.lnk [2015-09-02]
ShortcutTarget: Sledovat výstrahy inkoustu - HP Deskjet 1510 series.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.10.10.2
Tcpip\..\Interfaces\{213F8DB8-A231-42E6-A93A-5CD35C8D6F1E}: [DhcpNameServer] 10.10.10.2
Tcpip\..\Interfaces\{C01B4EF9-61A9-46DA-9E39-116FD399AD46}: [DhcpNameServer] 10.10.10.1 10.10.10.2

Internet Explorer:
==================
HKU\S-1-5-21-701734586-4249835382-1002098473-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-701734586-4249835382-1002098473-1001 -> {43421EDA-CDDB-40CD-A048-A5BB8275CBF7} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_13014
SearchScopes: HKU\S-1-5-21-701734586-4249835382-1002098473-1001 -> {69A0F95A-702A-4D31-A23E-8C1B835DB887} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13014
SearchScopes: HKU\S-1-5-21-701734586-4249835382-1002098473-1001 -> {81B67FD4-D060-4908-A2C8-8290460ACED4} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13014
SearchScopes: HKU\S-1-5-21-701734586-4249835382-1002098473-1001 -> {8530BC0D-21FD-4534-BCBE-A5E1EADA5F89} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13014
SearchScopes: HKU\S-1-5-21-701734586-4249835382-1002098473-1001 -> {CC37958D-6C16-494B-93B3-3AF1E6259AAB} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13014
SearchScopes: HKU\S-1-5-21-701734586-4249835382-1002098473-1001 -> {D22D10B3-79D8-45BC-B8EE-F6604132BE53} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13014
SearchScopes: HKU\S-1-5-21-701734586-4249835382-1002098473-1001 -> {D8B86F14-A738-4C02-A1B7-2F2197CDAFBC} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13014
SearchScopes: HKU\S-1-5-21-701734586-4249835382-1002098473-1001 -> {D9FB950E-D840-43EE-9043-4B2DBB7DA55B} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13014
SearchScopes: HKU\S-1-5-21-701734586-4249835382-1002098473-1001 -> {FBCC6746-8E9A-4C2D-AA18-61E81E0C99DA} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13014
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-13] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-02-13] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-13] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-02-13] (Google Inc.)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-13] (Google Inc.)

Chrome:
=======
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-us
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-03]
CHR Extension: (Dokumenty Google) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-03]
CHR Extension: (Disk Google) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Seznam Lištička - Email) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-03-03]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-04-08]
CHR Extension: (YouTube) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Bing) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2015-07-14]
CHR Extension: (Tabulky Google) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-03]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2016-04-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-12]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-11-13]
CHR Extension: (Gmail) - C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR Extension: (i47grE999e) - C:\Users\toshiba1\AppData\Roaming\Mozila [2016-04-12]
CHR HKU\S-1-5-21-701734586-4249835382-1002098473-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [103424 2013-03-13] () [File not signed]
S2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1045928 2016-02-18] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17504 2013-02-07] (Advanced Micro Devices, INC.)
R2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [217824 2013-03-21] (AppEx Networks Corporation)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3858944 2013-10-24] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [130048 2013-05-10] (Advanced Micro Devices)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
S3 Tosrfcom; no ImagePath
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S1 MpKslbf4ab271; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{04AB7C8C-501C-4E45-BF7B-CD91BBDD8562}\MpKslbf4ab271.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-15 18:12 - 2016-04-15 18:12 - 00003230 _____ C:\Windows\System32\Tasks\TVInstallRestore
2016-04-15 18:10 - 2016-04-15 18:12 - 09790120 _____ (TeamViewer GmbH) C:\Users\toshiba1\Downloads\TeamViewer_Setup_cs-iuv.exe
2016-04-15 18:09 - 2016-04-15 18:10 - 00015101 _____ C:\Users\toshiba1\Desktop\FRST.txt
2016-04-15 18:08 - 2016-04-15 18:09 - 00000000 ____D C:\FRST
2016-04-15 18:04 - 2016-04-15 18:04 - 02375168 _____ (Farbar) C:\Users\toshiba1\Desktop\FRST64.exe
2016-04-14 22:18 - 2016-04-14 22:18 - 00005992 _____ C:\Users\toshiba1\Downloads\Photo5052.html
2016-04-14 20:57 - 2016-04-14 20:57 - 00000000 ____D C:\Users\toshiba1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2016-04-14 20:13 - 2016-04-14 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-04-14 20:08 - 2016-04-14 20:13 - 00000000 ____D C:\Program Files (x86)\AVG
2016-04-14 20:06 - 2016-04-14 20:13 - 00000000 ____D C:\Users\toshiba1\AppData\Local\AvgSetupLog
2016-04-14 20:06 - 2016-04-14 20:06 - 00000000 ____D C:\Users\toshiba1\AppData\Local\Avg
2016-04-14 19:21 - 2016-04-14 19:21 - 00023050 _____ C:\Users\toshiba1\Documents\cc_20160414_192045.reg
2016-04-12 21:17 - 2016-04-12 21:17 - 00000000 ____D C:\Users\toshiba1\AppData\Local\Mozilla
2016-04-12 18:17 - 2016-04-12 18:17 - 00122739 _____ C:\Users\toshiba1\Downloads\669393_GP_03852_orig.pdf
2016-04-09 14:35 - 2016-04-09 14:35 - 00027326 _____ C:\Users\toshiba1\Downloads\imgres.htm
2016-04-02 20:01 - 2016-04-02 20:01 - 00004404 _____ C:\Users\toshiba1\Downloads\video.jse
2016-04-02 09:49 - 2016-04-02 09:49 - 00001426 _____ C:\Users\toshiba1\Desktop\Internet Explorer.lnk
2016-03-25 10:27 - 2016-04-12 22:17 - 00000000 ____D C:\Users\toshiba1\AppData\Roaming\Mozila
2016-03-21 10:47 - 2016-03-21 10:47 - 00004931 _____ C:\Users\toshiba1\Downloads\lidové písničky ....krása.eml
2016-03-20 15:45 - 2016-03-20 15:45 - 00252711 _____ C:\Users\toshiba1\Downloads\Fwd FW Fwd Fwd Fwd Rady ke sporáku to je bomba.eml
2016-03-20 15:34 - 2016-04-12 22:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-15 18:06 - 2015-03-03 16:08 - 00000976 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-15 18:01 - 2015-02-23 20:35 - 00000000 ____D C:\Users\toshiba1\AppData\Roaming\Seznam.cz
2016-04-15 18:01 - 2015-02-13 11:29 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-701734586-4249835382-1002098473-1001
2016-04-15 17:56 - 2015-03-03 16:08 - 00000972 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-15 15:08 - 2015-02-13 11:30 - 00003978 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{1BE8F993-69A9-4E48-A1F3-FBC8188E7F6F}
2016-04-14 21:10 - 2015-05-02 09:56 - 00000000 ____D C:\Users\toshiba1\Desktop\Různé přihlašování, řazení progr. uzení atd
2016-04-14 20:13 - 2015-11-12 21:53 - 00000000 ____D C:\ProgramData\AVG
2016-04-14 01:45 - 2015-02-13 12:02 - 00453280 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-04-12 22:32 - 2015-03-03 16:10 - 00002287 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-12 22:28 - 2015-02-24 15:49 - 00000000 ____D C:\Users\toshiba1\AppData\Local\Google
2016-04-12 22:28 - 2014-09-24 18:23 - 01658450 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-12 22:28 - 2014-09-24 17:39 - 00705506 _____ C:\Windows\system32\perfh005.dat
2016-04-12 22:28 - 2014-09-24 17:39 - 00143830 _____ C:\Windows\system32\perfc005.dat
2016-04-12 22:28 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-04-12 22:21 - 2016-02-13 10:16 - 00000000 ____D C:\Program Files (x86)\GUMB32.tmp
2016-04-12 22:21 - 2015-04-15 22:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.4
2016-04-12 22:21 - 2015-02-13 11:24 - 00000000 ____D C:\Users\toshiba1
2016-04-12 22:21 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-12 22:21 - 2013-08-22 16:44 - 00401464 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-12 22:19 - 2014-12-20 10:29 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-04-12 22:18 - 2014-09-24 21:02 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-04-12 22:18 - 2014-09-24 17:59 - 00000000 ____D C:\Windows\ShellNew
2016-04-12 22:18 - 2014-09-24 17:59 - 00000000 ____D C:\Program Files\Windows Journal
2016-04-12 22:18 - 2013-08-22 17:36 - 00000000 __RSD C:\Windows\Media
2016-04-12 22:18 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2016-04-12 22:18 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2016-04-12 22:18 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\WinMetadata
2016-04-12 22:18 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-04-12 22:18 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-04-12 22:17 - 2015-04-15 21:31 - 00000000 ___SD C:\Windows\system32\GWX
2016-04-12 22:17 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Sysprep
2016-04-12 22:17 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\servicing
2016-04-12 22:16 - 2015-03-16 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-04-12 22:16 - 2015-03-16 12:02 - 00000000 ____D C:\Program Files\CCleaner
2016-04-12 22:16 - 2015-02-24 18:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-12 22:13 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-12 22:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\registration
2016-04-12 22:06 - 2015-02-24 16:03 - 00000000 ____D C:\Users\toshiba1\Desktop\Archív
2016-04-12 22:05 - 2015-03-05 21:52 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-04-12 22:05 - 2015-03-03 16:03 - 00000000 ____D C:\Users\toshiba1\AppData\Local\HP
2016-04-12 22:05 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-04-12 22:04 - 2015-04-15 22:26 - 00000000 ____D C:\Program Files (x86)\LibreOffice 4
2016-04-12 21:17 - 2015-02-24 18:22 - 00000000 ____D C:\Users\toshiba1\AppData\Roaming\Mozilla
2016-04-12 20:24 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2016-04-09 15:13 - 2015-08-06 10:52 - 00000000 ____D C:\Users\toshiba1\Downloads\Nová složka
2016-04-09 14:52 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-04-08 10:26 - 2015-04-15 22:30 - 00001484 _____ C:\Users\Public\Desktop\LibreOffice 4.4.lnk
2016-04-03 20:21 - 2015-02-24 16:00 - 00000000 ____D C:\Users\toshiba1\Desktop\Obrázky
2016-04-02 20:38 - 2015-02-24 16:09 - 00000000 ____D C:\Users\toshiba1\Desktop\emaily
2016-04-01 11:23 - 2015-02-24 16:04 - 00000000 ____D C:\Users\toshiba1\Desktop\Zdravotní dokumentace Hrubý Antonín

==================== Files in the root of some directories =======

2016-02-13 10:16 - 2016-02-13 10:16 - 6871040 _____ () C:\Program Files (x86)\GUTB62.tmp
2015-06-17 20:41 - 2015-11-23 15:56 - 0003584 _____ () C:\Users\toshiba1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-14 23:21 - 2015-06-14 23:21 - 0000000 _____ () C:\Users\toshiba1\AppData\Local\{44183096-B7FB-4C1C-9F6F-AC2939E47031}
2015-03-03 16:04 - 2015-03-03 16:04 - 0000057 _____ () C:\ProgramData\Ament.ini

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-03-29 16:08

==================== End of FRST.txt ============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Dobrý den, nevím jistě jestli jsme udělali vše správně, ale postupovali jsme dle vašich pokynů. Log z tohodle programu jsem ještě nikdy neviděl, tak si nejsem jistý, zda je kompletní. Program napsal, že v pc nenašel žádnou havěť.

# AdwCleaner v5.111 - Log soubor vytvoĹ™en 16/04/2016 o 16:36:05
# AktualizovĂˇno 14/04/2016 by Xplode
# DatabĂˇze : 2016-04-15.1 [Server]
# OperaÄŤnĂ systĂ©m : Windows 8.1 (X64)
# JmĂ©no uĹľivatele : toshiba1 - TOSHIBA
# SpuĹˇtÄ›no z : C:\Users\toshiba1\Desktop\adwcleaner_5.111.exe
# Volba : ÄŚiĹˇtÄ›nĂ
# Podpora : http://toolslib.net/forum

***** [ SluĹľby ] *****

***** [ SloĹľky ] *****

[-] SloĹľka smazĂˇno : C:\Program Files (x86)\myfree codec
[-] SloĹľka smazĂˇno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
[-] SloĹľka smazĂˇno : C:\Users\toshiba1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] SloĹľka smazĂˇno : C:\Users\toshiba1\AppData\Roaming\Mozila

***** [ Soubory ] *****

***** [ DLLs ] *****

***** [ ZĂˇstupci ] *****

[-] ZĂˇstupce odvirovĂˇno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Start Now Technology.lnk

***** [ NaplĂˇnovanĂ© Ăşkoly ] *****

***** [ Registr ] *****

[-] KlĂˇvesa smazĂˇno : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] KlĂˇvesa smazĂˇno : HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] KlĂˇvesa smazĂˇno : HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] KlĂˇvesa smazĂˇno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] KlĂˇvesa smazĂˇno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] KlĂˇvesa smazĂˇno : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] KlĂˇvesa smazĂˇno : HKCU\Software\Myfree Codec
[-] KlĂˇvesa smazĂˇno : HKLM\SOFTWARE\Myfree Codec
[-] KlĂˇvesa smazĂˇno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Hodnota smazĂˇno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Samsung Appstore]
[#] Hodnota smazĂˇno : HKU\S-1-5-21-701734586-4249835382-1002098473-1001\Software\Microsoft\Windows\CurrentVersion\Run [Samsung Appstore]
[-] Hodnota smazĂˇno : HKU\S-1-5-21-701734586-4249835382-1002098473-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Samsung Appstore]

***** [ WebovĂ© prohlĂĹľeÄŤe ] *****

*************************

:: "Tracing" odstranÄ›nĂ˝ch klĂˇves
:: NastavenĂ Winsock odstranÄ›no

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [2282 bytes] - [16/04/2016 16:36:05]
C:\AdwCleaner\AdwCleaner[S1].txt - [2503 bytes] - [16/04/2016 08:54:48]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2428 bytes] ##########

Dejte nový log FRST.

VIRY.CZ

Prosím o kontrolu logu

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu