Kontrola - Pomalé browsery a všude reklamy Vyřešeno

[Skelller]

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Hanˇsek on 25.08.2015 at 16:19:08,30.
Microsoft Windows 10 Pro 10.0.10240 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\hanis\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

25.08.2015 16:23:40 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\Mirillis deleted successfully
C:\PROGRA~2\COMMON~1\Merge Modules deleted successfully
C:\Program Files\Windows Media Player deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\hanis\AppData\Local\NetworkTiles deleted successfully
C:\Users\hanis\AppData\Local\PeerDistRepub deleted successfully
C:\Users\hanis\AppData\Local\VirtualStore deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\hanis\AppData\Roaming\Mozilla\Firefox\Profiles\n53b9guu.default\prefs.js:

Added to C:\Users\hanis\AppData\Roaming\Mozilla\Firefox\Profiles\n53b9guu.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hanis\AppData\Roaming\Mozilla\Firefox\Profiles\n53b9guu.default

user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- FireFox user.js and prefs.js backups ----

prefs__1632_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Mirillis not found
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\hanis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\worm.vbs deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
"C:\Users\hanis\AppData\Roaming\IObit" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\hanis\AppData\Roaming\Mozilla\Firefox\Profiles\n53b9guu.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\hanis\AppData\Roaming\Mozilla\Firefox\Profiles\n53b9guu.default
- Undetermined - %ProfilePath%\extensions\info@youtube-mp3.org.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\hanis\AppData\Roaming\Mozilla\Firefox\Profiles\n53b9guu.default
EC55112EDB2CE5BC2BFCACDB9C2150F4 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll - Shockwave Flash
A523A2E4302AEB68B53F691A5C0DDE06 - C:\Users\hanis\AppData\Local\MyComGames\npmycomdetector.dll - My.com Games Detector


==== Chromium Look ======================

AdBlock - hanis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

==== Chromium Startpages ======================

C:\Users\hanis\AppData\Local\Google\Chrome\User Data\Default\Preferences
nifest_permissions":[]},"app_launcher_ordinal":"x","commands":{},"content_settings":[],"creation_flags":137,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["notifications"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13084917397630812","lastpingday":"13084873197429744","location":1,"manifest":{"app":{"launch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"cs","default_locale":"en","description":"Rychlý e-mail s možností vyhledávání a menším množstvím spamu.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/update2/crx","version":"8.1"},"page_ordinal":"n","path":"pjkljhegncpnkpknbcohdijeoejaedia\\8.1_0","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":true,"was_installed_by_oem":false}}},"pinned_tabs":[],"protection":{"macs":{"browser":{"show_home_button":"7AB51760EEBFEB821D107AD811ADFE8E882D1A682F539F67B56668583EA5363D"},"default_search_provider":{"keyword":"7418D3A2D740ACDAB4A6C26E40D464C6E0CA24048BC89030E6F40F8C9632A16A","name":"1E63CC35D2E802B0A559FB5D6C5FE430AD2637A8D7509FA19F318C14DF895C4B","search_url":"B2F79DA06EFC69D617CA80D9F522BF5D26905240873F7102CB5436096EA4DEF0"},"default_search_provider_data":{"template_url_data":"0A2FD0B3A212783B3015E209200139B9741B3DA99C7EC8CD4B7A1E786BFB0DBC"},"extensions":{"settings":{"aapocclcgogkmnckokdopfmhonfmgoek":"C7A7F2DCACDF9B52DB0EF98CF435A4D3D62326254BAB0523D45986CA794C5162","ahfgeienlihckogmohjhadlkjgocpleb":"278E459F865F8E1588496645012060862920BE369A1E9534C942AC70D599841C","aohghmighlieiainnegkcijnfilokake":"04A801C3344C8153923B280A97D5EC0908AE0749ED9A179F8411D91DBF268DB1","apdfllckaahabafndbhieahigkjlhalf":"C3B50EC2F000105BC1DE070943432D59FDF2695044C728AC37ED00F0D4652464","bepbmhgboaologfdajaanbcjmnhjmhfn":"E3D3F2FA674A84DB35068B5B8EB077B890EDD7EA87E64257683C238756D4C404","blpcfgokakmgnkcojhhkbfbldkacnbeo":"89555F8D651715AA5D389650D82E1C256E4853FFFCDF8EA34CB3AA8CAC0FA6C2","coobgpohoikkiipiblmjeljniedjpjpf":"A33015B52A48DC8A01DF5D807D1499BBCB076279D0B14E82BCA57282852EA069","eemcgdkfndhakfknompkggombfjjjeno":"F214A2B3872C965207AD4CF90608E293B0E77AD680662CEA3187939586F120D7","ennkphjdgehloodpbhlhldgbnhmacadg":"92A4F175F58165C0FBC5EF31469F65264A44B9CF770894DF482E23EF3EEA9D4C","felcaaldnbdncclmgdcncolpebgiejap":"67E044B56A12E3D93FE69C6BBBF122EDB2FA60F7BA483F3C08001776D231AC51","gfdkimpbcpahaombhbimeihdjnejgicl":"9633AF8AE19B3CE1D84176E144FB45C4962949DAD0112B67218C5855332E3170","gighmmpiobklfepjocnamgkkbiglidom":"E2D2BBF9E8F884850E74BC4ADA0B57A76F3FB201A862D93F50DDB7F48B82B25F","kmendfapggjehodndflmmgagdbamhnfd":"3067A894868EAAE83357AD3F80C8C34C74A8E8774E3EA2A3246D7A1E1F90D863","mfehgcgbbipciphmccgaenjidiccnmng":"6170EFAA9D21058F34631D021D1B5B4B33B3AB99BB9DF92999E34318BA412D23","mgndgikekgjfcpckkfioiadnlibdjbkf":"07B45CA6BD65B0EC66194A0900944C2FC7B0C26338A6CE995F0651BB23C55554","mhjfbmdgcfjbbpaeojofohoefgiehjai":"DB1C35904E80EC175639537C307448481F86FBBE4E755093FFADC5405EFFF198","neajdppkdcdipfabeoofebfddakdcjhd":"7B240668C1462C99D629617EEF1007573D51AFABCE0979F1F51C99F1B99FE176","nkeimhogjdpnpccoofpliimaahmaaome":"12B0BDFD0D7F023652BD59F72E954B3E8F435581B0F769ED8A885E90945B7624","nmmhkkegccagdldgiimedpiccmgmieda":"C05DC457FD075E174D80E1C0C45E9099E495459818A798F26F879F8A36F5CD4D","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"D2B2115E4352CF05E0D4343667182268EE91E1ECB52CE957FFBB6C2D12ACB342","pjkljhegncpnkpknbcohdijeoejaedia":"00C16E81D50B7D35AA3A0F95807638F0BFE40897EBD60D8BC0193302BDC02E56"}},"google":{"services":{"account_id":"1AA431858BB17444B1670E802B63C29DB59394ADA7442DFA8F19E97908C3D1B7","last_username":"3BCF851249C5735AC9D6D3784157D5CC241CEEBD6142BED31F1B9B045A5D286F","username":"F2E1E977F0307312E5815044560D3681951105B85F4BDF743EDD0057F97258AF"}},"homepage":"726E1764E4F4284F038354685587DB72B1865D4A79C60D8FD59668B3E8D0699E","homepage_is_newtabpage":"8462A1121E9470D283F8E2EFE90DFCFAFBBB2078845356FE5730479829B28310","pinned_tabs":"441EDE54B84613CB14BDF32FDA96BA595C5DABBE993D9DFFD16EB7CC12806926","prefs":{"preference_reset_time":"E5BF2E281870C327C816C220076E8A36D012CF2FB792A40C1B1E9AA41E6450A0"},"profile":{"reset_prompt_memento":"0084160ECCEC86B05CED843FB57740BF044099C9F501F85B89240AA0A5472579"},"safebrowsing":{"incidents_sent":"306CA830E3019973B274CEFA0FD5EE9393AA3D4D8B085ACDC93EE8DAC258C686"},"search_provider_overrides":"DDAFD7C356372E7D3D39C06F531F0D3B8B6E6968DDB98D5512745D24790F141B","session":{"restore_on_startup":"E1BE54C8592577C0640DBD334E4C9C2005D5555F421EE82AAAB8130795088279","startup_urls":"F06AA78CA8C3EEDC4B48A174DA50381D0BDE6AFF247719B2ADF0E2513C81AFDA"},"software_reporter":{"prompt_reason":"27613ABABBB1E074A65D0FD57E8A5274AC150733F37948E0EF3F7FF1EBA993F3","prompt_seed":"244FFE3B82544D7D700953339193B91FFD3364E1B4335CDEA0DE23881A5F65F1","prompt_version":"C1D7121BFCAA122CC9109D3E4C4331E178FA1449101D006F8162FAD063E70E43"},"sync":{"remaining_rollback_tries":"BDECFE9C9F693854F6BB44F8FAB32F3032F650146E071182A0E35492C1D7571B"}},"super_mac":"569C5AC61BF7FF5525DF52FCE1DE08A85ECDC1548D41DF610A175D883401822E"},"session":{"restore_on_startup":1}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== Reset Google Chrome ======================

C:\Users\hanis\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\hanis\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\hanis\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\hanis\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\hanis\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\hanis\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\hanis\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\hanis\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\hanis\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=326 folders=581 1150230989 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\hanis\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 25.08.2015 at 16:36:36,29 ======================

[Reklama]

[Skelller]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:37:58, on 25.08.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\hanis\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Users\hanis\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office15\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: KMS Server Service (KMSServerService) - My Digital Life Forums - C:\WINDOWS\KMSServerService\KMS Server Service.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: YAMS (YAMS_Service) - Unknown owner - C:\Program Files (x86)\YAMS\YAMS-Service.exe (file missing)

--
End of file - 8195 bytes

[Skelller]

No.. Zatím vypadá v pořádku.. V Microsoft Edge se tohle vlákno blokuje pořád, ale je to nejspíš chyba prohlížeče.. v Opeře funguje dobře.

[jaro3]

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.

[Skelller]

# DelFix v1.011 - Logfile created 25/08/2015 at 17:51:54
# Updated 18/08/2015 by Xplode
# Username : Hanísek - DESKTOP-UQDKN1J
# Operating System : Windows 10 Pro (64 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\hanis\Downloads\JRT.exe
Deleted : C:\Users\hanis\Downloads\JRT_exe.4pc2t7p.partial
Deleted : C:\Users\hanis\Downloads\HijackThis.exe
Deleted : C:\Users\hanis\Downloads\hijackthis.log
Deleted : C:\Users\hanis\Downloads\RogueKillerX64.exe
Deleted : C:\Users\hanis\Downloads\TFC.exe
Deleted : C:\Users\hanis\Downloads\zoek.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #11 [Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 | 08/17/2015 14:08:16]
Deleted : RP #12 [Instalační služba modulů systému Windows | 08/20/2015 13:32:26]
Deleted : RP #13 [Removed Yet Another Minecraft Server | 08/21/2015 17:03:22]
Deleted : RP #14 [JRT Pre-Junkware Removal | 08/25/2015 09:06:07]

New restore point created !

########## - EOF - ##########

[Skelller]

Díky moc