Prosím o pomoc zatížený disk a podezření na viry

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 14 srp 2018 15:21

Zdravím mám velmi pomalý notebook, zatížený disk i na 100 procent. Nedávno jsem odinstaloval antivir a myslím že to může být tím. Už jsem jej ale asi po týdnu zase nainstaloval. Prosím o pomoc.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:06:48, on 14.8.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0371)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe
C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Marek\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SimilarWeb - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\bin\core.4.dll
O3 - Toolbar: SimilarWeb - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [PDFPrint] "C:\Program Files (x86)\PDF24\pdf24.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [GalaxyClient] C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Marek\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Voobly] "C:\Program Files (x86)\Voobly\voobly.exe" --startup
O4 - HKCU\..\Run: [ManyCam] "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\PROGRAM FILES\DAEMON TOOLS LITE\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [com.deezer.deezer-desktop] C:\Users\Marek\AppData\Local\Programs\deezer-desktop\Deezer.exe
O4 - HKCU\..\Run: [Spotify] C:\Users\Marek\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2367062692-840817020-3150738865-501\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'Guest')
O4 - HKUS\S-1-5-21-2367062692-840817020-3150738865-501\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'Guest')
O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'DefaultAppPool')
O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'DefaultAppPool')
O4 - Global Startup: Avast Cleanup Premium.lnk = C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
O4 - Global Startup: Kaspersky Software Updater Beta.lnk = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: SimilarWeb - {5D06ED6E-DA78-4486-A246-B131A2C39807} - C:\Program Files (x86)\SimilarWeb\SimilarWeb.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: www.vizzed.com
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.5\ViProtocol.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvaci.inf_amd64_f658c3ebd2a88192\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Avast Cleanup Premium (CleanupPSvc) - AVAST Software - C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Packed Chess Free Server (PackedChessFreeServer) - PackedBytes - C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 13725 bytes

Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod jaro3 » 14 srp 2018 18:52

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
http://www.geekstogo.com/forum/files/fi ... -oldtimer/
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode
http://www.bleepingcomputer.com/download/adwcleaner/
http://www.adlice.com/downloadprogress/

Ulož si ho na svojí plochu . Klikni na „Souhlasím“ k povrzení podmínek.
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Skenování“
Po skenu se objeví log , který se otevře. ( jinak je uložen systémovem disku jako C:\AdwCleaner [C?].txt ), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware na plochu , nainstaluj a spusť ho
-Pokud není program aktuální , klikni na možnost „Aktualizovat nyní“ či „Opravit nyní“.
- bude nalezena aktualizace a nainstaluje se.
- poté klikni na Spustit skenování
- po proběhnutí skenu se ti objeví hláška vpravo dole, tak klikni na Zobrazit zprávu a vyber Export a vyber Kopírovat do schránky a vlož sem celý log. Nebo klikni na „Textový soubor ( .txt)“ a log si ulož.
-jinak se log nachází v programu po kliknutí na „Zprávy“ , nebo je uložen zde: C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs

- po té klikni na tlačítko Dokončit, a program zavři křížkem vpravo nahoře.
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 15 srp 2018 10:05

# -------------------------------
# Malwarebytes AdwCleaner 7.2.1.0
# -------------------------------
# Build: 06-26-2018
# Database: 2018-08-13.2
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-15-2018
# Duration: 00:01:22
# OS: Windows 10 Home
# Scanned: 41533
# Detected: 288


***** [ Services ] *****

PUP.Optional.Legacy PanService

***** [ Folders ] *****

PUP.Optional.ByteFence C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence
PUP.Optional.Conduit C:\Program Files (x86)\Conduit
PUP.Optional.DownTango C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DownTango
PUP.Optional.IdleCrawler C:\Program Files (x86)\Crawler
PUP.Optional.Legacy C:\ProgramData\IObit\ASCDownloader
PUP.Optional.Legacy C:\Users\Public\Documents\Downloaded Installers
PUP.Optional.Legacy C:\Program Files (x86)\Feed Notifier
PUP.Optional.Legacy C:\Users\Marek\AppData\LocalLow\Toolbar4
PUP.Optional.Legacy C:\Users\Marek\AppData\LocalLow\SimplyTech
PUP.Optional.Legacy C:\Program Files (x86)\Red Sky
PUP.Optional.Legacy C:\Users\Marek\AppData\Roaming\iWin
PUP.Optional.Legacy C:\Users\Marek\AppData\Roaming\HoolappforAndroid
PUP.Optional.Legacy C:\Users\Marek\AppData\Local\genienext
PUP.Optional.Legacy C:\Users\Marek\AppData\Roaming\dvdvideosoftiehelpers
PUP.Optional.Legacy C:\Users\Marek\AppData\Roaming\DriverCure
PUP.Optional.Legacy C:\Users\Marek\AppData\LocalLow\AVG Security Toolbar
PUP.Optional.Legacy C:\ProgramData\AVG Secure Search
PUP.Optional.Legacy C:\Program Files (x86)\Common Files\AVG Secure Search
PUP.Optional.Legacy C:\ProgramData\AVG SafeGuard toolbar
PUP.Optional.Legacy C:\Users\Marek\AppData\Local\AVG SafeGuard toolbar
PUP.Optional.Legacy C:\Users\Marek\AppData\LocalLow\AVG SafeGuard toolbar
PUP.Optional.Legacy C:\Users\Marek\AppData\Roaming\AVG SafeGuard toolbar
PUP.Optional.Legacy C:\Program Files (x86)\SimilarWeb
PUP.Optional.Legacy C:\Program Files (x86)\Mobogenie
PUP.Optional.Legacy C:\Users\Marek\AppData\Local\Mobogenie
PUP.Optional.Legacy C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
PUP.Optional.Legacy C:\Users\Marek\Documents\Mobogenie
PUP.Optional.Legacy C:\Program Files (x86)\PANDORA.TV
PUP.Optional.Legacy C:\Program Files (x86)\globalUpdate
PUP.Optional.Legacy C:\Users\Marek\AppData\Local\globalUpdate
PUP.Optional.RegAce C:\Users\Marek\AppData\Roaming\RegAce
PUP.Optional.RegCurePro C:\ProgramData\PARETOLOGIC
PUP.Optional.RegCurePro C:\Users\Marek\AppData\Roaming\PARETOLOGIC
PUP.Optional.SimilarSites C:\Program Files (x86)\SimilarSites
PUP.Optional.SpeedyPC C:\ProgramData\SpeedyPC Software
PUP.Optional.SpeedyPC C:\Users\Marek\AppData\Roaming\SpeedyPC Software
PUP.Optional.SysTweak C:\Users\Marek\AppData\Local\Systweak
PUP.Optional.SysTweak C:\Users\Marek\AppData\Roaming\Systweak
PUP.Optional.Tuvaro C:\Users\Marek\AppData\LocalLow\tuvaro

***** [ Files ] *****

PUP.Optional.Legacy C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
PUP.Optional.Legacy C:\END
PUP.Optional.Legacy C:\Users\Marek\daemonprocess.txt
PUP.Optional.Legacy C:\Windows\System32\drivers\swdumon.sys
PUP.Optional.Legacy C:\Users\Marek\Downloads\PCRxSetup.exe
PUP.Optional.Legacy C:\Users\Marek\Downloads\ReimageRepair.exe
PUP.Optional.Legacy C:\Windows\launcher.exe
PUP.Optional.Reimage C:\Windows\Reimage.ini
PUP.Optional.SpyHunter C:\Users\Marek\Downloads\SpyHunter-Installer.exe

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

PUP.Optional.Legacy C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta\Nápověda pro lištu.lnk

***** [ Tasks ] *****

PUP.Optional.Legacy C:\Windows\System32\Tasks\updateTask
PUP.Optional.Legacy C:\Windows\System32\Tasks\runTask

***** [ Registry ] *****

Adware.TryMedia HKLM\Software\Wow6432Node\Trymedia Systems
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\fde14152-ef36-4e91-992b-abb2ca12e38b
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\fc72a7c6-e24c-47ce-bc3c-a373034f8a45
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\b59066ba-8bc2-4a71-a167-e013d788f745
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\a7b90909-69c6-46c5-b0e3-de2d47858766
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\7b7f86ca-ccbc-40b5-8822-c67cd544fc89
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\7663d6ff-0c43-4c1b-93f0-733c3d90d2f2
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\5a5dee26-0fe1-4bae-99a2-b5722cc3c72d
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\10e6b820-cd7b-4575-9895-014ba94b4397
PUP.DownloadProtect.Heuristic HKLM\Software\Wow6432Node\POLICIES\GOOGLE\Chrome
PUP.DownloadProtect.Heuristic HKLM\SOFTWARE\POLICIES\GOOGLE\Chrome
PUP.Optional.ByteFence HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
PUP.Optional.CleanMyPC HKCU\Software\Reg\Clean
PUP.Optional.CleanMyPC HKLM\Software\Wow6432Node\Reg\Clean
PUP.Optional.Complitly HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2367062692-840817020-3150738865-1001\Software\Complitly
PUP.Optional.Conduit HKCU\Software\Conduit
PUP.Optional.Conduit HKLM\Software\Wow6432Node\Conduit
PUP.Optional.ErrorFixKit HKLM\Software\ErrorFixKIT
PUP.Optional.Legacy HKCU\Software\AppDataLow\Software\Smartbar
PUP.Optional.Legacy HKCU\Software\INSTALLPATH\STATUS
PUP.Optional.Legacy HKCU\Software\speedypc software
PUP.Optional.Legacy HKLM\Software\Wow6432Node\speedypc software
PUP.Optional.Legacy HKCU\Software\PIP
PUP.Optional.Legacy HKLM\Software\Wow6432Node\PIP
PUP.Optional.Legacy HKCU\Software\ParetoLogic
PUP.Optional.Legacy HKLM\Software\Wow6432Node\ParetoLogic
PUP.Optional.Legacy HKU\S-1-5-18\Software\IGearSettings
PUP.Optional.Legacy HKU\.DEFAULT\Software\IGearSettings
PUP.Optional.Legacy HKCU\Software\GlobalUpdate
PUP.Optional.Legacy HKLM\Software\Wow6432Node\GlobalUpdate
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2367062692-840817020-3150738865-1001\Software\CToolbar
PUP.Optional.Legacy HKU\S-1-5-18\Software\AppDataLow\Software\AVG Security Toolbar
PUP.Optional.Legacy HKU\.DEFAULT\Software\AppDataLow\Software\AVG Security Toolbar
PUP.Optional.Legacy HKLM\Software\Wow6432Node\AVG Security Toolbar
PUP.Optional.Legacy HKU\S-1-5-18\Software\AVG Secure Search
PUP.Optional.Legacy HKU\.DEFAULT\Software\AVG Secure Search
PUP.Optional.Legacy HKCU\Software\APN PIP
PUP.Optional.Legacy HKCU\Software\AppDataLow\Software\SIMPLYTECH
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\ForeceRemove
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Installer\UserData\Crawler
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\protocols\handler\viprotocol
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\ViProtocol.DLL
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\TbHelper.EXE
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\TbCommonUtils.DLL
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\ScriptHelper.EXE
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\MenuExt\Crawler Search
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\REI_AxControl.DLL
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBF1B8D2-9A06-4174-A8B5-E38606DDB92B}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{E79BB61D-7F1A-41DF-8AD0-402795E3B566}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{E79BB61D-7F1A-41DF-8AD0-402795E3B566}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{DBDB6FAA-1F5F-4A18-B60B-7A905C7FF83F}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{CCA8F2AB-BE4E-41F0-A289-4D960CEA58EA}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{CCA8F2AB-BE4E-41F0-A289-4D960CEA58EA}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
PUP.Optional.Legacy HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{A36BCB13-778D-4A40-99C1-D686086D268F}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{A36BCB13-778D-4A40-99C1-D686086D268F}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7459F1D0-9FB6-4D71-AA7B-9DECB34EB704}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
PUP.Optional.Legacy HKLM\Software\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
PUP.Optional.Legacy HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
PUP.Optional.Legacy HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{1DDA201E-5B42-4352-933E-21A92B297E3B}
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{04006843-5199-4CE4-B3CD-8092CC91706E}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{04006843-5199-4CE4-B3CD-8092CC91706E}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
PUP.Optional.Legacy HKLM\Software\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{FE69C007-C452-4D3E-86D2-1730DF8BC871}
PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{FE69C007-C452-4D3E-86D2-1730DF8BC871}
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{7A72FC7D-6E76-4549-8797-3310A0638C37}
PUP.Optional.Legacy HKLM\Software\Classes\Prod.cap
PUP.Optional.Legacy HKCU\Software\Classes\pokki
PUP.Optional.Legacy HKLM\Software\Classes\ctbcommon.Buttons
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF84FF50-3928-4CE7-B53C-3362A3C0F936}
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF84FF50-3928-4CE7-B53C-3362A3C0F936}
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\updateTask
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E835E433-D1D0-4BCF-895A-4DB31CB407DB}
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E835E433-D1D0-4BCF-895A-4DB31CB407DB}
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\runTask
PUP.Optional.Legacy HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.slunecnice.cz
PUP.Optional.Legacy HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\slunecnice.cz
PUP.Optional.Legacy HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.slunecnice.cz
PUP.Optional.Legacy HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\slunecnice.cz
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\SearchURI|(Default)
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\SearchUrl|(Default)
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Search Page
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Search Bar
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Default_Search_URL
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Start Default_Page_URL
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Start Page
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Search Page
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Search Bar
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Start Default_Page_URL
PUP.Optional.Legacy HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
PUP.Optional.ProtectedSearch HKCU\Software\ProtectedSearch
PUP.Optional.RecordPage HKLM\Software\Wow6432Node\Classes\Interface\{D1611ACC-4B10-4B34-8CDE-0AE7B2A270A6}
PUP.Optional.RecordPage HKLM\Software\Classes\Interface\{D1611ACC-4B10-4B34-8CDE-0AE7B2A270A6}
PUP.Optional.RecordPage HKLM\Software\Wow6432Node\Classes\TypeLib\{1FCDF527-B10C-481D-B214-B09EEA106124}
PUP.Optional.RecordPage HKLM\Software\Classes\TypeLib\{1FCDF527-B10C-481D-B214-B09EEA106124}
PUP.Optional.RegAce HKLM\Software\Wow6432Node\RegAce
PUP.Optional.Reimage HKCU\Software\Reimage
PUP.Optional.Reimage HKLM\Software\Reimage
PUP.Optional.Reimage HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
PUP.Optional.SlimCleanerPlus HKLM\Software\Wow6432Node\SlimWare Utilities Inc
PUP.Optional.SofTonicAssistant HKCU\Software\Softonic
PUP.Optional.SofTonicAssistant HKCU\Software\Classes\Softonic
PUP.Optional.SysTweak HKCU\Software\systweak
PUP.Optional.SysTweak HKLM\Software\Wow6432Node\systweak
PUP.Optional.SysTweak HKLM\Software\Classes\CLSID\{00212D92-C5D8-4FF4-AE50-B20F0F85C40A}
PUP.Optional.WebBar HKCU\Software\AppDataLow\Toolbar

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

PUP.Optional.Legacy istartsurf

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 15 srp 2018 11:54

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 15.08.18
Čas skenování: 10:47
Logovací soubor: d20981d8-a067-11e8-b0c1-b870f4e3800e.json
Správce: Ano

-Informace o softwaru-
Verze: 3.5.1.2522
Verze komponentů: 1.0.391
Aktualizovat verzi balíku komponent: 1.0.6351
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 16299.611)
CPU: x64
Systém souborů: NTFS
Uživatel: MAREK-PC\Marek

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 421408
Zjištěné hrozby: 2537
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 50 min, 10 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 45
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\REI_AxControl.DLL, Žádná uživatelská akce, [1369], [327193],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\REI_AxControl.DLL, Žádná uživatelská akce, [1369], [327193],1.0.6351
PUP.Optional.Reimage, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\LOCAL APPWIZARD-GENERATED APPLICATIONS\Reimage - Windows Problem Relief., Žádná uživatelská akce, [1369], [327203],1.0.6351
PUP.Optional.Reimage, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Reimage, Žádná uživatelská akce, [1369], [357494],1.0.6351
PUP.Optional.SpeedyPC, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\SpeedyPC Software, Žádná uživatelská akce, [1460], [396736],1.0.6351
PUP.Optional.SysTweak, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Systweak, Žádná uživatelská akce, [1433], [327156],1.0.6351
PUP.Optional.RegCleanPro, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\REG\Clean, Žádná uživatelská akce, [1665], [347493],1.0.6351
PUP.Optional.Reimage, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\REIMAGE\PC REPAIR, Žádná uživatelská akce, [1369], [327204],1.0.6351
PUP.Optional.AdvancedSystemProtector, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\SYSTWEAK\PARAMS, Žádná uživatelská akce, [698], [326825],1.0.6351
PUP.Optional.Toolbar.Generic, HKLM\SOFTWARE\CLASSES\APPID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}, Žádná uživatelská akce, [6258], [549624],1.0.6351
PUP.Optional.Toolbar.Generic, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}, Žádná uživatelská akce, [6258], [549624],1.0.6351
PUP.Optional.Toolbar.Generic, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}, Žádná uživatelská akce, [6258], [549624],1.0.6351
PUP.Optional.Toolbar.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{628F3201-34D0-49C0-BB9A-82A26AEFB291}, Žádná uživatelská akce, [6258], [549624],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine.1, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{10ECCE17-29B5-4880-A8F5-EAD298611484}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine, Žádná uživatelská akce, [1369], [327197],1.0.6351
PUP.Optional.CleanMyPC, HKLM\SOFTWARE\WOW6432NODE\REG\Clean, Žádná uživatelská akce, [3221], [348488],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\REI_AxControl.DLL, Žádná uživatelská akce, [1369], [327193],1.0.6351
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE, Žádná uživatelská akce, [7099], [239345],1.0.6351
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE, Žádná uživatelská akce, [7099], [239347],1.0.6351
Adware.MoboGenie, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\MobogenieAdd, Žádná uživatelská akce, [3138], [477441],1.0.6351
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE, Žádná uživatelská akce, [7099], [239345],1.0.6351
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE, Žádná uživatelská akce, [7099], [239347],1.0.6351
PUP.Optional.SpeedyPC, HKLM\SOFTWARE\WOW6432NODE\SpeedyPC Software, Žádná uživatelská akce, [1460], [396735],1.0.6351
PUP.Optional.SysTweak, HKLM\SOFTWARE\WOW6432NODE\Systweak, Žádná uživatelská akce, [1433], [327155],1.0.6351
PUP.Optional.MyBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F098EB1D-69DC-4A96-9429-51517FCF12D3}, Žádná uživatelská akce, [1182], [337029],1.0.6351
PUP.Optional.AdvancedSystemProtector, HKLM\SOFTWARE\WOW6432NODE\SYSTWEAK\PARAMS, Žádná uživatelská akce, [698], [326817],1.0.6351
Adware.MoboGenie, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\MobogenieAdd, Žádná uživatelská akce, [3138], [477441],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\REIMAGE\Reimage Repair, Žádná uživatelská akce, [1369], [336077],1.0.6351
PUP.Optional.DriverAgent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\DrvAgent64, Žádná uživatelská akce, [3486], [345587],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, Žádná uživatelská akce, [1369], [332494],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, Žádná uživatelská akce, [1369], [332494],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, Žádná uživatelská akce, [1369], [332494],1.0.6351
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, Žádná uživatelská akce, [1369], [327206],1.0.6351
PUP.Optional.SysTweak, HKLM\SOFTWARE\CLASSES\CLSID\{00212D92-C5D8-4ff4-AE50-B20F0F85C40A}, Žádná uživatelská akce, [1433], [338866],1.0.6351

Hodnota v registru: 12
PUP.Optional.Toolbar.Generic, HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{CA3EB689-8F09-4026-AA10-B9534C691CE0}, Žádná uživatelská akce, [6258], [549625],1.0.6351
PUP.Optional.Reimage, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\REIMAGE\PC REPAIR|QUITMESSAGE, Žádná uživatelská akce, [1369], [327204],1.0.6351
PUP.Optional.AdvancedSystemProtector, HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\SYSTWEAK\PARAMS|ASPINSTALLEDPATH, Žádná uživatelská akce, [698], [326825],1.0.6351
PUP.Optional.Toolbar.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{628F3201-34D0-49C0-BB9A-82A26AEFB291}|APPNAME, Žádná uživatelská akce, [6258], [549624],1.0.6351
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE|DEBUGGER, Žádná uživatelská akce, [7099], [239345],1.0.6351
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE|DEBUGGER, Žádná uživatelská akce, [7099], [239347],1.0.6351
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE|DEBUGGER, Žádná uživatelská akce, [7099], [239345],1.0.6351
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE|DEBUGGER, Žádná uživatelská akce, [7099], [239347],1.0.6351
PUP.Optional.DVDVideoSoft, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{ACAA314B-EEBA-48E4-AD47-84E31C44796C}, Žádná uživatelská akce, [1921], [415959],1.0.6351
PUP.Optional.MyBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F098EB1D-69DC-4A96-9429-51517FCF12D3}|PATH, Žádná uživatelská akce, [1182], [337029],1.0.6351
PUP.Optional.AdvancedSystemProtector, HKLM\SOFTWARE\WOW6432NODE\SYSTWEAK\PARAMS|ASPINSTALLEDPATH, Žádná uživatelská akce, [698], [326817],1.0.6351
PUP.Optional.MyBrowser, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{7A72FC7D-6E76-4549-8797-3310A0638C37}, Žádná uživatelská akce, [1182], [403895],1.0.6351

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 15 srp 2018 11:56

Adresář: 196
PUP.Optional.Toolbar.Generic, C:\Users\Marek\AppData\LocalLow\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}, Žádná uživatelská akce, [6258], [549623],1.0.6351
PUP.Optional.Toolbar.Generic, C:\USERS\MAREK\APPDATA\LOCALLOW\TOOLBAR4, Žádná uživatelská akce, [6258], [549623],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\javascript\doT-master\benchmarks\templating, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\javascript\doT-master\examples\views, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\light_rounded, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\dark_rounded, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\light_square, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\dark_square, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\javascript\doT-master\benchmarks, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\facebook, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_static\iframe\tab_switch, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\javascript\doT-master\examples, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\indonesian, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\portuguese, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\default, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\chinese, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\spanish, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\italian, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\english, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\russian, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_static\info\download, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\javascript\doT-master\test, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\poland, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\arabic, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\vietna, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_static\info\connect, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_static\info\notice, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\javascript\doT-master\bin, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n\thai, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\portuguese, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module\download, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\indonesian, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module\contact, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module\message, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module\subject, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\javascript\doT-master, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module\driver, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module\image, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\javascript\libraries, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\spanish, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module\vedio, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_static\dialog, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\russian, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_static\iframe, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\italian, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\english, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\chinese, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\vietna, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\arabic, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_\i18n, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\poland, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module\app, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\moduletemp, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_static\info, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n\thai, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\interface, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module\ui, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\images, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\debug, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\photo, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\welcome, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\module, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog\js_, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_static, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\util, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\skin, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\tpls, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\i18n, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\skin\default, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\htmlTemp, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\lib, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\javascript, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\dialog, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\skin\skin1, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_\pb, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\iframe, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\css, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\js_, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\skin, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\page, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\phonon_backend, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\css, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\imageformats, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\sqldrivers, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\log, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\CacheVersion, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Version\NewVersion, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Download\Picture, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Download\Music, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Download\Video, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Download\Apk, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Download, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\device, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\backup, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\driver, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.MoboGenie, C:\Users\Marek\AppData\Local\Mobogenie\Data, Žádná uživatelská akce, [2564], [322690],1.0.6351
PUP.Optional.SysTweak, C:\USERS\MAREK\APPDATA\ROAMING\SYSTWEAK, Žádná uživatelská akce, [1433], [327152],1.0.6351
PUP.Optional.RegCurePro, C:\PROGRAMDATA\PARETOLOGIC\REGCURE PRO, Žádná uživatelská akce, [1261], [334940],1.0.6351
PUP.Optional.RegCurePro, C:\USERS\MAREK\APPDATA\ROAMING\PARETOLOGIC\REGCURE PRO, Žádná uživatelská akce, [1261], [334940],1.0.6351
PUP.Optional.SysTweak, C:\USERS\MAREK\APPDATA\LOCAL\SYSTWEAK, Žádná uživatelská akce, [1433], [335041],1.0.6351
PUP.Optional.SpeedyPC, C:\ProgramData\SpeedyPC Software\SpeedyPC Pro, Žádná uživatelská akce, [1460], [340762],1.0.6351
PUP.Optional.SpeedyPC, C:\PROGRAMDATA\SPEEDYPC SOFTWARE, Žádná uživatelská akce, [1460], [340762],1.0.6351
PUP.Optional.SpeedyPC, C:\Users\Marek\AppData\Roaming\SpeedyPC Software\SpeedyPC Pro, Žádná uživatelská akce, [1460], [340762],1.0.6351
PUP.Optional.SpeedyPC, C:\USERS\MAREK\APPDATA\ROAMING\SPEEDYPC SOFTWARE, Žádná uživatelská akce, [1460], [340762],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\javascript\doT-master\benchmarks\templating, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\javascript\doT-master\examples\views, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\light_rounded, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\dark_rounded, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\light_square, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\dark_square, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\javascript\doT-master\benchmarks, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_static\iframe\tab_switch, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\facebook, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\portuguese, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\indonesian, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\javascript\doT-master\examples, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\default, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\italian, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_static\info\download, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\english, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\chinese, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\russian, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\spanish, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\poland, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\arabic, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_static\info\connect, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\vietna, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\javascript\doT-master\test, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_static\info\notice, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\javascript\doT-master\bin, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n\thai, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\indonesian, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module\download, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\portuguese, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module\subject, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module\message, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module\contact, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\javascript\doT-master, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module\driver, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\italian, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\spanish, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module\image, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module\vedio, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\javascript\libraries, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_static\dialog, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_static\iframe, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\russian, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\chinese, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\english, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\vietna, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_\i18n, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\arabic, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\poland, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\moduletemp, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module\app, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_static\info, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\images, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module\ui, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n\thai, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\interface, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images\debug, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images\photo, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\welcome, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\module, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog\js_, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_static, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\i18n, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\htmlTemp, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\skin, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\tpls, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\util, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\skin\default, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\lib, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\javascript, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\iframe, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\dialog, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\images, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_\pb, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\skin\skin1, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\js_, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web\css, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\page, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\skin, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\phonon_backend, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\css, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates\web, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\imageformats, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\sqldrivers, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\templates, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\Program Files (x86)\Mobogenie\log, Žádná uživatelská akce, [3138], [350428],1.0.6351
Adware.MoboGenie, C:\USERS\MAREK\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\MOBOGENIE, Žádná uživatelská akce, [3138], [477436],1.0.6351

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 15 srp 2018 12:16

Omlouvám se ta zpráva má 410 780 znaků. Můžu vám nějak poslat ten poznámkový blok? Ten soubor?

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 15 srp 2018 13:36

Tady to je musel jsem to poslat v pdf, txt mě to nechtělo poslat.
Přílohy
sken malwarebytes 15.8.2018.pdf
(327.34 KiB) Staženo 129 x

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod jaro3 » 15 srp 2018 19:00

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce
klikni na „Skenování“ , po prohledání klikni na „ Čištění

Program provede opravu, po automatickém restartu klikni na „Log soubor“ a pak poklepej na odpovídají log, (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
https://downloads.malwarebytes.com/file/JRT-EOL
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.



. spusť znovu Malwarebytes' Anti-Malware a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/files/details ... _tool.html
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.
Pokud byly nalezeny viry , tak po skenu klikni na „Details…“ a potom na „View log file“. Zkopíruj celý log a vlož ho sem. Potom zavři „threat detail“ a klikni na „Start cleanup“.
Jinak se log nachází zde:
C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.adlice.com/download/roguekil ... HlwZT14ODY
64bit.:
http://www.adlice.com/download/roguekil ... HlwZT14NjQ
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Open Report “ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

další odkazy:
http://www.adlice.com/download/roguekiller/
http://www.bleepingcomputer.com/download/roguekiller/
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 15 srp 2018 22:57

# -------------------------------
# Malwarebytes AdwCleaner 7.2.1.0
# -------------------------------
# Build: 06-26-2018
# Database: 2018-08-13.2
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-15-2018
# Duration: 00:02:07
# OS: Windows 10 Home
# Cleaned: 288
# Failed: 0


***** [ Services ] *****

Deleted PanService

***** [ Folders ] *****

Deleted C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence
Deleted C:\Program Files (x86)\Conduit
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DownTango
Deleted C:\Program Files (x86)\Crawler
Deleted C:\ProgramData\IObit\ASCDownloader
Deleted C:\Users\Public\Documents\Downloaded Installers
Deleted C:\Program Files (x86)\Feed Notifier
Deleted C:\Users\Marek\AppData\LocalLow\Toolbar4
Deleted C:\Users\Marek\AppData\LocalLow\SimplyTech
Deleted C:\Program Files (x86)\Red Sky
Deleted C:\Users\Marek\AppData\Roaming\iWin
Deleted C:\Users\Marek\AppData\Roaming\HoolappforAndroid
Deleted C:\Users\Marek\AppData\Local\genienext
Deleted C:\Users\Marek\AppData\Roaming\dvdvideosoftiehelpers
Deleted C:\Users\Marek\AppData\Roaming\DriverCure
Deleted C:\Users\Marek\AppData\LocalLow\AVG Security Toolbar
Deleted C:\ProgramData\AVG Secure Search
Deleted C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted C:\ProgramData\AVG SafeGuard toolbar
Deleted C:\Users\Marek\AppData\Local\AVG SafeGuard toolbar
Deleted C:\Users\Marek\AppData\LocalLow\AVG SafeGuard toolbar
Deleted C:\Users\Marek\AppData\Roaming\AVG SafeGuard toolbar
Deleted C:\Program Files (x86)\SimilarWeb
Deleted C:\Program Files (x86)\Mobogenie
Deleted C:\Users\Marek\AppData\Local\Mobogenie
Deleted C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Deleted C:\Users\Marek\Documents\Mobogenie
Deleted C:\Program Files (x86)\PANDORA.TV
Deleted C:\Program Files (x86)\globalUpdate
Deleted C:\Users\Marek\AppData\Local\globalUpdate
Deleted C:\Users\Marek\AppData\Roaming\RegAce
Deleted C:\ProgramData\PARETOLOGIC
Deleted C:\Users\Marek\AppData\Roaming\PARETOLOGIC
Deleted C:\Program Files (x86)\SimilarSites
Deleted C:\ProgramData\SpeedyPC Software
Deleted C:\Users\Marek\AppData\Roaming\SpeedyPC Software
Deleted C:\Users\Marek\AppData\Local\Systweak
Deleted C:\Users\Marek\AppData\Roaming\Systweak
Deleted C:\Users\Marek\AppData\LocalLow\tuvaro

***** [ Files ] *****

Deleted C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Deleted C:\END
Deleted C:\Users\Marek\daemonprocess.txt
Deleted C:\Windows\System32\drivers\swdumon.sys
Deleted C:\Users\Marek\Downloads\PCRxSetup.exe
Deleted C:\Users\Marek\Downloads\ReimageRepair.exe
Deleted C:\Windows\launcher.exe
Deleted C:\Windows\Reimage.ini
Deleted C:\Users\Marek\Downloads\SpyHunter-Installer.exe

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta\Nápověda pro lištu.lnk

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\updateTask
Deleted C:\Windows\System32\Tasks\runTask

***** [ Registry ] *****

Deleted HKLM\Software\Wow6432Node\Trymedia Systems
Deleted HKLM\Software\Wow6432Node\fde14152-ef36-4e91-992b-abb2ca12e38b
Deleted HKLM\Software\Wow6432Node\fc72a7c6-e24c-47ce-bc3c-a373034f8a45
Deleted HKLM\Software\Wow6432Node\b59066ba-8bc2-4a71-a167-e013d788f745
Deleted HKLM\Software\Wow6432Node\a7b90909-69c6-46c5-b0e3-de2d47858766
Deleted HKLM\Software\Wow6432Node\7b7f86ca-ccbc-40b5-8822-c67cd544fc89
Deleted HKLM\Software\Wow6432Node\7663d6ff-0c43-4c1b-93f0-733c3d90d2f2
Deleted HKLM\Software\Wow6432Node\5a5dee26-0fe1-4bae-99a2-b5722cc3c72d
Deleted HKLM\Software\Wow6432Node\10e6b820-cd7b-4575-9895-014ba94b4397
Deleted HKLM\Software\Wow6432Node\POLICIES\GOOGLE\Chrome
Deleted HKLM\SOFTWARE\POLICIES\GOOGLE\Chrome
Deleted HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
Deleted HKCU\Software\Reg\Clean
Deleted HKLM\Software\Wow6432Node\Reg\Clean
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2367062692-840817020-3150738865-1001\Software\Complitly
Deleted HKCU\Software\Conduit
Deleted HKLM\Software\Wow6432Node\Conduit
Deleted HKLM\Software\ErrorFixKIT
Deleted HKCU\Software\AppDataLow\Software\Smartbar
Deleted HKCU\Software\INSTALLPATH\STATUS
Deleted HKCU\Software\speedypc software
Deleted HKLM\Software\Wow6432Node\speedypc software
Deleted HKCU\Software\PIP
Deleted HKLM\Software\Wow6432Node\PIP
Deleted HKCU\Software\ParetoLogic
Deleted HKLM\Software\Wow6432Node\ParetoLogic
Deleted HKU\S-1-5-18\Software\IGearSettings
Deleted HKU\.DEFAULT\Software\IGearSettings
Deleted HKCU\Software\GlobalUpdate
Deleted HKLM\Software\Wow6432Node\GlobalUpdate
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2367062692-840817020-3150738865-1001\Software\CToolbar
Deleted HKU\S-1-5-18\Software\AppDataLow\Software\AVG Security Toolbar
Deleted HKU\.DEFAULT\Software\AppDataLow\Software\AVG Security Toolbar
Deleted HKLM\Software\Wow6432Node\AVG Security Toolbar
Deleted HKU\S-1-5-18\Software\AVG Secure Search
Deleted HKU\.DEFAULT\Software\AVG Secure Search
Deleted HKCU\Software\APN PIP
Deleted HKCU\Software\AppDataLow\Software\SIMPLYTECH
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\ForeceRemove
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Installer\UserData\Crawler
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Deleted HKLM\Software\Wow6432Node\Classes\protocols\handler\viprotocol
Deleted HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Deleted HKLM\Software\Wow6432Node\Classes\AppID\ViProtocol.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Deleted HKLM\Software\Wow6432Node\Classes\AppID\TbHelper.EXE
Deleted HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Deleted HKLM\Software\Wow6432Node\Classes\AppID\TbCommonUtils.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Deleted HKLM\Software\Wow6432Node\Classes\AppID\ScriptHelper.EXE
Deleted HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Deleted HKCU\Software\Microsoft\Internet Explorer\MenuExt\Crawler Search
Deleted HKLM\Software\Wow6432Node\Classes\AppID\REI_AxControl.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBF1B8D2-9A06-4174-A8B5-E38606DDB92B}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Deleted HKLM\Software\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Deleted HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{E79BB61D-7F1A-41DF-8AD0-402795E3B566}
Deleted HKLM\Software\Classes\TypeLib\{E79BB61D-7F1A-41DF-8AD0-402795E3B566}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{DBDB6FAA-1F5F-4A18-B60B-7A905C7FF83F}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Deleted HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{CCA8F2AB-BE4E-41F0-A289-4D960CEA58EA}
Deleted HKLM\Software\Classes\TypeLib\{CCA8F2AB-BE4E-41F0-A289-4D960CEA58EA}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Deleted HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Deleted HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Deleted HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Deleted HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Deleted HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Deleted HKLM\Software\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Deleted HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{A36BCB13-778D-4A40-99C1-D686086D268F}
Deleted HKLM\Software\Classes\Interface\{A36BCB13-778D-4A40-99C1-D686086D268F}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Deleted HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Deleted HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Deleted HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Deleted HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7459F1D0-9FB6-4D71-AA7B-9DECB34EB704}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Deleted HKLM\Software\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Deleted HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Deleted HKLM\Software\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Deleted HKLM\Software\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Deleted HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Deleted HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Deleted HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Deleted HKLM\Software\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Deleted HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{1DDA201E-5B42-4352-933E-21A92B297E3B}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Deleted HKLM\Software\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{04006843-5199-4CE4-B3CD-8092CC91706E}
Deleted HKLM\Software\Classes\TypeLib\{04006843-5199-4CE4-B3CD-8092CC91706E}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Deleted HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Deleted HKLM\Software\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Deleted HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted HKLM\Software\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted HKLM\Software\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\Software\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\Software\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted HKLM\Software\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{FE69C007-C452-4D3E-86D2-1730DF8BC871}
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{FE69C007-C452-4D3E-86D2-1730DF8BC871}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{7A72FC7D-6E76-4549-8797-3310A0638C37}
Deleted HKLM\Software\Classes\Prod.cap
Deleted HKCU\Software\Classes\pokki
Deleted HKLM\Software\Classes\ctbcommon.Buttons
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF84FF50-3928-4CE7-B53C-3362A3C0F936}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF84FF50-3928-4CE7-B53C-3362A3C0F936}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\updateTask
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E835E433-D1D0-4BCF-895A-4DB31CB407DB}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E835E433-D1D0-4BCF-895A-4DB31CB407DB}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\runTask
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.slunecnice.cz
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\slunecnice.cz
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.slunecnice.cz
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\slunecnice.cz
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\SearchURI|(Default)
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\SearchUrl|(Default)
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Search Page
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Search Bar
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Default_Search_URL
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Start Default_Page_URL
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Search|Start Page
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Search Page
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Search Bar
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Start Default_Page_URL
Deleted HKLM\Software\Classes\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Deleted HKCU\Software\ProtectedSearch
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{D1611ACC-4B10-4B34-8CDE-0AE7B2A270A6}
Deleted HKLM\Software\Classes\Interface\{D1611ACC-4B10-4B34-8CDE-0AE7B2A270A6}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{1FCDF527-B10C-481D-B214-B09EEA106124}
Deleted HKLM\Software\Classes\TypeLib\{1FCDF527-B10C-481D-B214-B09EEA106124}
Deleted HKLM\Software\Wow6432Node\RegAce
Deleted HKCU\Software\Reimage
Deleted HKLM\Software\Reimage
Deleted HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Deleted HKLM\Software\Wow6432Node\SlimWare Utilities Inc
Deleted HKCU\Software\Softonic
Deleted HKCU\Software\Classes\Softonic
Deleted HKCU\Software\systweak
Deleted HKLM\Software\Wow6432Node\systweak
Deleted HKLM\Software\Classes\CLSID\{00212D92-C5D8-4FF4-AE50-B20F0F85C40A}
Deleted HKCU\Software\AppDataLow\Toolbar

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Deleted istartsurf

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [30141 octets] - [15/08/2018 10:00:28]
AdwCleaner[S01].txt - [30203 octets] - [15/08/2018 22:40:44]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 16 srp 2018 00:06

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Marek (Administrator) on st 15.08.2018 at 23:32:50,64
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 204

Successfully deleted: C:\ProgramData\productdata (Folder)
Successfully deleted: C:\ProgramData\trymedia (Folder)
Successfully deleted: C:\user.js (File)
Successfully deleted: C:\Users\Marek\AppData\Local\{00B5339A-EEE9-4230-B0D0-14FECDAAA56A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{013E65AC-114D-45D0-8531-3382A0DAAB47} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{0191E21F-DE1F-49E4-9D2A-C384B59D5486} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{019B10F9-3FC6-421A-8992-01A4C005A978} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{03EC60DB-4749-4F47-89D9-ED8E17D1AA99} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{052DCD84-D73A-4A5E-BBA4-EF9A521F7684} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{0918E215-9259-4B74-8F43-4C452356795C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{094DEF3A-0BA6-4DA4-B374-1A8D5DC7E0E1} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{0A77558B-2BF9-4F7B-9961-509289493D86} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{0AFAAD40-A192-4CDE-8722-E4FC84DFF204} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{0C42E57E-4CF5-42D4-9CF1-357AC9FBF00C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{0D2AD0C1-FA13-4D51-9BAB-B11A4F6F8927} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{0EC8B5FC-C789-4F25-BEAF-80A9C2B9A065} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{10E61B9D-210D-4E8F-BEA6-B98735B42396} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{152CEC55-D861-4BC6-BB0F-80F2878D97D9} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{156C1782-24D6-47E4-8061-45816D50C50D} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{17733502-D2E9-4633-896C-F9CECA01CF39} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{1785A5F8-7C92-48E7-8B40-04A6B9B18209} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{1D115721-F21B-489D-9F38-F00C1B026040} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{1D402A3A-4E6E-4DCD-84B8-BF86A74807F0} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{1EF78AAE-0BBD-4B8B-8731-AECCEEC7A0BC} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{1F9CE19B-DC25-4E8D-9A6B-D01A9506F437} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{2372A156-DC72-4E2B-B502-FCA020E7C3F8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{2526A622-26A0-4F38-976A-ABE142A5C0C1} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{2D3209D2-2002-466A-A576-C249D4E5F8C3} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{2ECA1E7B-490D-4DC1-AC36-61F363F20C10} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{2F9260A7-1018-4DDC-8632-2260ABABD552} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{307767B4-842D-49B0-8B66-F718B8C99013} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{342740F9-7A9D-4371-AAC0-FA0024FF32E8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{35025650-E62F-4B11-A35C-D602C67673BB} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{35F0D1B9-B5C4-476A-AE3C-8C23122CF00F} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{360920DD-A4CB-47B7-9384-5A7C050181ED} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{37845EB3-16AB-4A9F-9382-ECEDCA6C3CA8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{37F9B41D-91B3-4F3D-B963-33958A8998A3} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{387559D1-8239-4560-BB2F-0128867D4095} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{3930B8DB-CF8A-4BF5-BD2E-0923410BFAB7} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{39D691E7-A5F0-487E-8A8E-9CE551116B03} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{39E16FCC-0377-40FC-935F-0E87F28BF7DC} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{3AD56CD5-5349-4E59-9646-58F6058A4AFC} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{3B669527-9D37-465A-A712-3268F1CB4786} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{3CAB61C2-B19C-4824-8E43-1640421BE3BA} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{3EDD3AD2-109B-40A9-9365-4027FE43C90C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{44DA2EAD-D541-4840-B87E-17D8C0337C4A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{44E24552-FF49-4C5B-A635-5900196D1B31} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{44E572EA-5A6E-492D-A2B2-FE5C0CE40738} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{44F3748B-D34C-4BAA-A03B-E73C9D86C73E} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{45C33F63-E0AD-4710-8AA5-80A2C61AAE25} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{47751F95-8A74-43D6-8C47-5562FDCF9A7A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{49888992-5330-48BE-AFCD-19DDD055A6CE} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{49ACFE5B-EEB1-4BCD-8F00-7EDAE813D9CB} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{49F55AE0-D203-40BF-960F-355E92B4C8FB} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{4A078891-17C6-4B8E-9750-13096BEDB8BF} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{4CC860C7-A188-4602-8C52-1773E61B60AD} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{4E14E3FC-2EA4-4890-91EA-9DECD5B20C3A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{514E947E-CCFD-4E11-823B-7F5996D8BF33} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{51D87039-9501-460F-B763-ECC5C86446DD} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{521B7DE9-C4BD-40C4-AE21-1A9E92CB7F2F} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{52BCAF80-AD43-4188-A4A5-5E4A01A5DB3A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{55C8F983-321C-4993-A84B-ADC09B684F08} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{576788CC-05DF-48EF-B681-9CE82C5827D8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{57BBA20F-406C-4C11-B6C0-1396A561D0BD} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{5861D231-2EB1-41FC-A17B-BEF72901D15B} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{5B03821C-48CD-4079-910B-63826582B13C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{5C6F2904-7BE9-4A3A-A0FE-78A081209E3B} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{5D667C46-0E3B-4384-A2FC-2587EDBB268F} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{5DA79AA5-F13A-4D46-8D94-7BF58E7217CE} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{642D1ED7-862A-4DCC-BF0C-F8DEF751291D} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{659EC6CB-3C3A-4AA1-B1C2-198D4FF29245} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{6A6B0A27-E9CB-472A-AFF3-DF924854A7A8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{6BF2A33F-2A6D-4D4B-A665-5896880A9C72} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{6CEB035C-419C-4054-87E3-5B648D5EF792} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{6D7E901F-7B1C-4397-A33E-3B0DCA3DF8A5} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{70EFC8D8-D503-4EF6-97C1-2982E218394C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{7120F269-2AEA-4512-8943-0AD7AFD7CDFF} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{735C5CC0-9089-4150-B3E3-F9D7F9FB17E9} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{74725F7D-206B-4380-8D15-33739EF74F08} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{7472F8D2-F1CF-45D8-8AA2-29A9B6DD5815} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{748487B9-7532-4FEA-89F5-BBCBC31AE1E8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{74BC74FF-4094-4FBB-89FB-FB873BB7E872} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{75BF8A08-9F89-4F9C-B6B2-2E37B78E679E} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{75DA4F92-D952-4387-B1D8-33ECDBE49D72} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{75FF5C71-B29F-4ACF-897A-21C72C581AD6} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{78C03C5C-01A9-46F3-8FDF-34F3159C8DF7} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{798FEB44-1726-4928-AEB6-6034FB90318D} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{79B3F5FC-A57E-4FAC-B5F2-A9CD11ADA28D} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{7E3004DC-0CDA-4728-AE6F-3EEA7BEB4597} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{7E660EF2-A662-4EC1-A953-47A0F8DAC6BE} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{81487965-F6D7-4E10-AE02-92617FA39476} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{836168DE-BC6A-4A12-9D3E-B8BCF11EBDDE} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{842257F6-6C7C-4F36-9718-7AAA943341ED} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{84C18721-C08E-4F02-A523-8DEA0C600797} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{851CFEA4-8C08-4F2A-9CDC-D2383F5ADE07} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{85548DD2-845E-4200-AF7E-DEA819A7ACE3} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{875D030B-DE83-4CDD-8C99-8856193BC4A2} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{8BA0A83D-B746-4ECE-9D8F-6412D8BFDE55} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{8BFCD7D2-CF7B-43BD-AE73-D44AD61F0981} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{8C29D8CD-BCF7-42F3-BCA2-90F3F6E1045C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{8CC05B4D-8772-4F8F-92C9-9387E030181A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{8CDDFD84-09B4-4DCD-BBB8-8E161F2DC211} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{8E0F6772-0CE9-4CED-8A09-8D6C597985F8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{8FB0BB46-ED5B-4862-ACD2-82FBF4805D7C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{8FE6FC6F-E7D1-494A-AEC6-1F2F2692694A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{90A24A5E-AFE7-4B88-80D9-7D60233850B1} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{91430962-AA2D-46A5-955E-9DA8E5D03A1B} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{93EACF4F-EC1E-44B0-9836-941B9F8E1173} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{9489B89D-3F07-4B6A-8B1F-A56A210C0FA3} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{97462DB9-0267-4BBD-ADF0-4D7FFA0A39A4} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{97BFD33D-F85B-4C33-B45F-F64501BF0691} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{98278B46-F1C4-47A7-AA41-BD13D30F32E1} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{9CE25BB0-C4F3-4626-9478-DD10A975603B} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{9D59C5F2-4E80-4299-B8EC-0705FA6A555A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{9E91BB09-A4B0-4632-83FB-95F8756CB778} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{9F56404C-B452-42A6-BFB4-E0BDA187AE47} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{A1E66654-EF05-4535-9371-571B210B95A7} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{A2E7D81F-28FC-4E03-BC92-D3C39D2733E0} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{A32D1D03-90A9-492E-B55B-5CA67291CEA8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{A53DF5F4-3586-4910-86E2-6BF918250FBC} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{A58135E2-703F-4B62-96EA-C15F54DEBFF2} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{A87A1254-4D81-4405-832B-7861ACA59499} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{A8A2FCD6-6DCA-41D1-99D8-39B2B26E4537} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{A8E08913-EA65-47D7-8F4A-404B6F8968F8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{AD216B6C-2DCA-4A44-8F88-537B9211AE9F} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{AEFF365C-2BD4-4102-A460-71A7B13C0473} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{AF892988-FA8D-41EB-88AB-78B8105A4819} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{AFDB3C0D-979B-47F2-B582-89215570CD28} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{B2E4DB48-C5E1-4F7D-9D9F-884A57A14828} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{B389632C-481C-40AF-9F4F-9B41141FB448} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{B5586C14-2362-47B0-83FA-4559A4CB362B} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{B7889D6F-2F72-4E2C-8175-34A2CE052689} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{B86EDF36-77B7-4AA6-A30A-62C7186D316E} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{BA801032-9E15-4DC3-ADC8-ED9DB247B6F5} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{BACDC12E-26C0-425E-9EE7-A1A4CE2EB99B} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{BC54E54E-E934-4C9A-82B5-750ABA6295F2} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{BC83377B-00B3-4E3F-ABD4-56EE18ED0E33} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{BCE4E4AB-754D-4F0B-95F6-1CE0CA9989D4} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{BD0B9AC3-456D-4B6C-B4F1-BC5F38C3E61C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{BEFC960D-BFFA-41AF-A1D5-034CC028FB15} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{BF49AEEB-4954-4F7B-B995-8253140829DD} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{BFC753CA-4B99-4ADA-A43C-01E85700F348} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{C060BFE4-A0BB-4D16-8658-2BEFB4D17B32} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{C5547202-3E68-4E86-9E05-DC4D2A36ABF3} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{C66F11D8-8E37-4432-9573-221229023867} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{C937DDF3-5364-4452-8FC7-78C10C53F850} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{C9BB4E5B-4CE4-4054-8ABE-28CB7A917E2B} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{D1807542-74AB-4D00-A099-BFD43E476DCD} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{D3E9DB6B-03F0-4CA2-A2AC-718F3753A962} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{D47175BA-924F-408D-ADEA-71C618F3A18F} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{D477D6B3-AA79-4CBD-948B-4C96651EBF34} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{D76BBD5F-7EBD-44C3-9837-01B7EE839288} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{D7DD2A5F-B211-4466-9676-27C8D1611B1C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{D8C6CEBF-00CF-4C52-B0DE-83BABDE823DF} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{DAC59A35-397B-4631-8BBA-370D2A10AC7F} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{DB6D061A-FB35-46C9-BC22-F83F6C7D9F12} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{DB7643E9-BADC-4EF0-831E-AD33AF0D1B39} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{DBC710F4-805E-4D6A-B57B-6B5F8A21AECB} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{DF4C7E73-FC07-428E-98BF-55F67B97D312} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{DFB7BDC3-279F-436A-B696-402BA5BD9649} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{E2C8B592-1E09-40FC-8C14-F448F80D538D} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{E3D164C7-C7E5-41DB-A6BB-EE39BC73F8E8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{E4C35EFF-0CBB-47CF-BB1D-6A964A888993} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{E5427DE1-1264-4CBA-9E9A-D440FA996A49} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{E742EC87-A0B3-4FE9-BE39-185BF47FE810} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{E747B079-C455-4424-A565-70FFBC5C4B49} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{EAE64545-419C-4B9C-8775-B3CEF75D47D3} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{EB5BE480-4B60-4AD9-B760-6CF5EA4BBD68} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{ECBF4414-4E9F-4488-B4AC-4C9A8BD3300F} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F00F67D0-1F05-40DB-8B71-57146EED67C8} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F0DBBD50-4975-47B8-82FC-B1E0A5EEE05A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F1602427-67C2-4F56-80E7-9A49C93C8BEF} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F1641FB7-1B04-4B9E-AF31-FF987E84B370} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F525A91C-C42C-43B7-B513-5A706710F90A} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F66E1DB4-22AE-48B7-A2AE-8A62E7E4339B} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F6ADF68F-2630-4E47-A10B-7A9EB932428F} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F6DB75B7-5E81-44EF-8742-4547FBA08A19} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F8544E6F-FAA9-47E0-9608-0C2BC2134976} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F8EBB581-2003-4BC0-ADEF-56170B29D968} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F9662B10-D804-4D23-9633-7297A32975E6} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{F9A5CB36-1B27-4688-A51C-ECAD28B54664} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{FAFFE37D-84E5-4459-984B-F6B9249321E2} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{FD957C18-2344-4C7A-BC9C-E9A6B8EFE883} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{FEC5F37C-3F89-43D9-93C1-4456CA88CC3C} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{FF1208F2-628B-4F79-9085-8DD16D8E4872} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{FF83DE09-28B8-462F-9AAE-7603E760A5E5} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{FFA7DDD6-97F4-474B-8314-AE1843DEA2CA} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\{FFCFB51A-5CAD-47DD-91C0-DDA7B1794978} (Empty Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\esupport.com (Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gegdfeiahlfolhcfioipjlkombmgbakh (Folder)
Successfully deleted: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndibdjnfmopecpmkdieinmbadjfpblof_0.localstorage-journal (File)
Successfully deleted: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndibdjnfmopecpmkdieinmbadjfpblof_0.localstorage (File)
Successfully deleted: C:\Users\Marek\AppData\Local\packageaware (Folder)
Successfully deleted: C:\Users\Marek\Appdata\LocalLow\winzipbar (Folder)
Successfully deleted: C:\Users\Marek\AppData\Roaming\dg (Folder)
Successfully deleted: C:\WINDOWS\system32\drivers\swdumon.sys (File)
Successfully deleted: C:\WINDOWS\system32\Tasks\Avast Driver Updater Startup (Task)
Successfully deleted: C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Marek) (Task)
Successfully deleted: C:\WINDOWS\Tasks\Avast Driver Updater Startup.job (Task)
Successfully deleted: C:\WINDOWS\wininit.ini (File)
Successfully deleted: C:\Program Files (x86)\esupport.com (Folder)
Successfully deleted: C:\Program Files (x86)\winzipbar (Folder)
Successfully deleted: C:\Program Files\babylon (Folder)
Successfully deleted: C:\Program Files\ophcrack (Folder)



Registry: 7

Successfully deleted: HKCU\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{acaa314b-eeba-48e4-ad47-84e31c44796c} (Registry Value)
Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\sp_rsdrv2 (Registry Key)
Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\SWDUMon (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{b907e2bd-b28d-4bdb-b33e-39079624c855} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page (Registry Value)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 15.08.2018 at 23:53:04,77
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 16 srp 2018 11:14

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 16.08.18
Čas skenování: 10:41
Logovací soubor: 2cbfa95e-a130-11e8-8f54-b870f4e3800e.json
Správce: Ano

-Informace o softwaru-
Verze: 3.5.1.2522
Verze komponentů: 1.0.391
Aktualizovat verzi balíku komponent: 1.0.6367
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 16299.611)
CPU: x64
Systém souborů: NTFS
Uživatel: MAREK-PC\Marek

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 421350
Zjištěné hrozby: 24
Hrozby umístěné do karantény: 24
Uplynulý čas: 24 min, 51 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 8
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine.1, V karanténě, [1371], [327197],1.0.6367
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine, V karanténě, [1371], [327197],1.0.6367
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE, V karanténě, [7100], [239345],1.0.6367
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE, V karanténě, [7100], [239347],1.0.6367
PUP.Optional.MyBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F098EB1D-69DC-4A96-9429-51517FCF12D3}, V karanténě, [1184], [337029],1.0.6367
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE, V karanténě, [7100], [239345],1.0.6367
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE, V karanténě, [7100], [239347],1.0.6367
PUP.Optional.DriverAgent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\DrvAgent64, V karanténě, [3488], [345587],1.0.6367

Hodnota v registru: 6
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE|DEBUGGER, V karanténě, [7100], [239345],1.0.6367
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE|DEBUGGER, V karanténě, [7100], [239347],1.0.6367
PUP.Optional.MyBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F098EB1D-69DC-4A96-9429-51517FCF12D3}|PATH, V karanténě, [1184], [337029],1.0.6367
PUP.Optional.Toolbar.Generic, HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{CA3EB689-8F09-4026-AA10-B9534C691CE0}, V karanténě, [6259], [549625],1.0.6367
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SKYPE.EXE|DEBUGGER, V karanténě, [7100], [239345],1.0.6367
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\STEAM.EXE|DEBUGGER, V karanténě, [7100], [239347],1.0.6367

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 10
PUP.Optional.Reimage, C:\USERS\MAREK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\PREFERENCES, Nahrazen, [1371], [541062],1.0.6367
PUP.Optional.DriverAgent, C:\WINDOWS\SYSWOW64\DRIVERS\DRVAGENT64.SYS, V karanténě, [3488], [345587],1.0.6367
PUP.Optional.InstallCore, C:\USERS\MAREK\APPDATA\ROAMING\Microsoft\Windows\SendTo\Picosmos Shows.lnk, V karanténě, [399], [542255],1.0.6367
PUP.Optional.InstallCore, C:\USERS\MAREK\DESKTOP\zástupci dány v roce 2018\Picosmos Shows.lnk, V karanténě, [399], [542255],1.0.6367
PUP.Optional.InstallCore, C:\PROGRAM FILES (X86)\PICOSMOSTOOLS\PICOSMOSSHOWS.EXE, V karanténě, [399], [542255],1.0.6367
PUP.Optional.AdvancedSystemCare, C:\USERS\MAREK\DOWNLOADS\ADVANCED-SYSTEMCARE-INSTALLER.EXE, V karanténě, [4491], [396386],1.0.6367
PUP.Optional.ErrorFixKit, C:\USERS\MAREK\DOWNLOADS\ERRORKIT-SETUP.EXE, V karanténě, [4522], [473742],1.0.6367
PUP.Optional.DriverAgent, C:\USERS\MAREK\DOWNLOADS\DRIVERAGENT-SETUP-1278.EXE, V karanténě, [3488], [345593],1.0.6367
PUP.Optional.Reimage, C:\USERS\MAREK\DOWNLOADS\NEPOTVRZENO 817650.CRDOWNLOAD, V karanténě, [1371], [331559],1.0.6367
PUP.Optional.RegCurePro, C:\USERS\MAREK\DOWNLOADS\REPAIR-TOOL.EXE, V karanténě, [1263], [336305],1.0.6367

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 16 srp 2018 16:09

2018-08-16 09:26:53.786 Sophos Virus Removal Tool version 2.6.1
2018-08-16 09:26:53.786 Copyright (c) 2009-2017 Sophos Limited. All rights reserved.

2018-08-16 09:26:53.786 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2018-08-16 09:26:53.786 Windows version 6.2 SP 0.0 build 9200 SM=0x300 PT=0x1 WOW64
2018-08-16 09:26:53.802 Checking for updates...
2018-08-16 09:26:53.942 Update progress: proxy server not available
2018-08-16 09:27:10.849 Downloading updates...
2018-08-16 09:27:10.865 Update progress: [I96736] sdds.svrt_v1.5: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2018-08-16 09:27:10.865 Update progress: [I95020] sdds.svrt_v1.5: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2018-08-16 09:27:10.865 Update progress: [I22529] sdds.svrt_v1.5: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2018-08-16 09:27:10.865 Update progress: [I49502] sdds.data0910.xml: found supplement IDE554 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2018-08-16 09:27:10.865 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE554 LATEST path=
2018-08-16 09:27:10.865 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE554 LATEST path=
2018-08-16 09:27:10.865 Update progress: [I49502] sdds.data0910.xml: found supplement IDE555 LATEST path= baseVersion= [included from product IDE554 LATEST path=]
2018-08-16 09:27:10.865 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE555 LATEST path=
2018-08-16 09:27:10.865 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE555 LATEST path=
2018-08-16 09:27:10.865 Update progress: [I49502] sdds.data0910.xml: found supplement IDE556 LATEST path= baseVersion= [included from product IDE555 LATEST path=]
2018-08-16 09:27:10.865 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE556 LATEST path=
2018-08-16 09:27:10.865 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE556 LATEST path=
2018-08-16 09:27:10.865 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2018-08-16 09:27:10.865 Update progress: [I19463] Product download size 197878933 bytes
2018-08-16 09:27:11.959 Option all = no
2018-08-16 09:27:11.959 Option recurse = yes
2018-08-16 09:27:11.959 Option archive = no
2018-08-16 09:27:11.959 Option service = yes
2018-08-16 09:27:11.959 Option confirm = yes
2018-08-16 09:27:11.959 Option sxl = yes
2018-08-16 09:27:11.959 Option max-data-age = 35
2018-08-16 09:27:11.959 Option vdl-logging = yes
2018-08-16 09:27:11.974 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2018-08-16 09:27:11.974 Machine ID: 07b7b3c06e6a4154b5c027e92db1a6bd
2018-08-16 09:27:11.974 Component SVRTcli.exe version 2.6.1
2018-08-16 09:27:11.974 Component control.dll version 2.6.1
2018-08-16 09:27:11.974 Component SVRTservice.exe version 2.6.1
2018-08-16 09:27:11.974 Component engine\osdp.dll version 1.44.1.2286
2018-08-16 09:27:11.974 Component engine\veex.dll version 3.68.6.2286
2018-08-16 09:27:11.974 Component engine\savi.dll version 9.0.7.2286
2018-08-16 09:27:11.974 Component rkdisk.dll version 1.5.31.1
2018-08-16 09:27:11.974 Version info: Product version 2.6.1
2018-08-16 09:27:11.974 Version info: Detection engine 3.68.6
2018-08-16 09:27:11.974 Version info: Detection data 5.46
2018-08-16 09:27:11.974 Version info: Build date 28.11.2017
2018-08-16 09:27:11.974 Version info: Data files added 746
2018-08-16 09:27:11.974 Version info: Last successful update (not yet updated)
2018-08-16 09:27:51.429 Update progress: [I19463] Syncing product IDE554 LATEST path=
2018-08-16 09:27:51.429 Update progress: [I19463] Product download size 2856102 bytes
2018-08-16 09:27:59.488 Update progress: [I19463] Syncing product IDE555 LATEST path=
2018-08-16 09:27:59.504 Update progress: [I19463] Product download size 2790341 bytes
2018-08-16 09:28:07.786 Update progress: [I19463] Syncing product IDE556 LATEST path=
2018-08-16 09:28:07.958 Installing updates...
2018-08-16 09:28:08.973 Error level 1
2018-08-16 09:28:46.725 Update successful
2018-08-16 09:29:02.804 Option all = no
2018-08-16 09:29:02.804 Option recurse = yes
2018-08-16 09:29:02.804 Option archive = no
2018-08-16 09:29:02.804 Option service = yes
2018-08-16 09:29:02.804 Option confirm = yes
2018-08-16 09:29:02.804 Option sxl = yes
2018-08-16 09:29:02.804 Option max-data-age = 35
2018-08-16 09:29:02.804 Option vdl-logging = yes
2018-08-16 09:29:02.804 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2018-08-16 09:29:02.804 Machine ID: 07b7b3c06e6a4154b5c027e92db1a6bd
2018-08-16 09:29:02.804 Component SVRTcli.exe version 2.6.1
2018-08-16 09:29:02.804 Component control.dll version 2.6.1
2018-08-16 09:29:02.804 Component SVRTservice.exe version 2.6.1
2018-08-16 09:29:02.804 Component engine\osdp.dll version 1.44.1.2420
2018-08-16 09:29:02.804 Component engine\veex.dll version 3.73.0.2420
2018-08-16 09:29:02.804 Component engine\savi.dll version 9.0.11.2420
2018-08-16 09:29:02.819 Component rkdisk.dll version 1.5.31.1
2018-08-16 09:29:02.819 Version info: Product version 2.6.1
2018-08-16 09:29:02.819 Version info: Detection engine 3.73.0
2018-08-16 09:29:02.819 Version info: Detection data 5.53
2018-08-16 09:29:02.819 Version info: Build date 17.7.2018
2018-08-16 09:29:02.819 Version info: Data files added 245
2018-08-16 09:29:02.819 Version info: Last successful update 16.8.2018 11:28:46

2018-08-16 10:46:39.816 Could not open C:\hiberfil.sys
2018-08-16 10:59:35.040 Could not open C:\pagefile.sys
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file C:\Program Files (x86)\Microsoft Games\Age of Empires\gamex\language_up_CNs.dll
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoRestartShell
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zuma deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wedding dash-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\virtualvillagers4thetreeoflife-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tunngle.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\slingo deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\racing-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\provider.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\polar-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\plantsvszombies-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\penguins-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pdf24-launcher.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvidia geforce experience.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\manycam.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jewel quest solitaire-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\insaniquarium deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hamachi-2-ui.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gogdosconfig.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\galaxyclient.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fate-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlauncher.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtagent.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drivegreen1-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chuzzle deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cc_kart2-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bejeweled 2 deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe\Debugger
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zuma deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wedding dash-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\virtualvillagers4thetreeoflife-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tunngle.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\slingo deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\racing-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\provider.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\polar-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\plantsvszombies-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\penguins-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pdf24-launcher.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvidia geforce experience.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\manycam.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jewel quest solitaire-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\insaniquarium deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hamachi-2-ui.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gogdosconfig.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\galaxyclient.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fate-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlauncher.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtagent.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drivegreen1-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chuzzle deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cc_kart2-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bejeweled 2 deluxe-wt.exe
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe\Debugger
2018-08-16 11:32:00.257 >>> Virus 'Mal/Behav-327' found in file HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoRestartShell
2018-08-16 12:00:28.320 Could not open C:\swapfile.sys
2018-08-16 12:00:28.805 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2018-08-16 12:00:28.805 Could not open C:\System Volume Information\{4d24e591-9ff1-11e8-a6df-b870f4e3800e}{3808876b-c176-4e48-b7ae-04046e6cc752}
2018-08-16 12:00:28.805 Could not open C:\System Volume Information\{a49f8015-a0db-11e8-a6e7-b870f4e3800e}{3808876b-c176-4e48-b7ae-04046e6cc752}
2018-08-16 12:00:28.805 Could not open C:\System Volume Information\{b0863810-a0d1-11e8-a6e5-b870f4e3800e}{3808876b-c176-4e48-b7ae-04046e6cc752}
2018-08-16 12:00:28.805 Could not open C:\System Volume Information\{c5e34d35-9416-11e8-a6d6-b870f4e3800e}{3808876b-c176-4e48-b7ae-04046e6cc752}
2018-08-16 12:38:40.910 >>> Virus 'Mal/Generic-S' found in file C:\Users\Marek\Documents\stažené knihy\Ikony nemazat!\Nová složka (4)\Oldgames hry\24-GAMES-EXPERT\WIN95\PROGRAM\STACKBLZ.EXE
2018-08-16 12:38:40.910 >>> Virus 'Mal/Generic-S' found in file HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoRestartShell
2018-08-16 12:38:40.910 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zuma deluxe-wt.exe
2018-08-16 12:38:40.910 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wedding dash-wt.exe
2018-08-16 12:38:40.910 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\virtualvillagers4thetreeoflife-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tunngle.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\slingo deluxe-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\racing-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\provider.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\polar-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\plantsvszombies-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\penguins-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pdf24-launcher.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvidia geforce experience.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\manycam.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jewel quest solitaire-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\insaniquarium deluxe-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hamachi-2-ui.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gogdosconfig.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\galaxyclient.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fate-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlauncher.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtagent.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drivegreen1-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chuzzle deluxe-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cc_kart2-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bejeweled 2 deluxe-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe\Debugger
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zuma deluxe-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wedding dash-wt.exe
2018-08-16 12:38:40.942 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\virtualvillagers4thetreeoflife-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tunngle.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\slingo deluxe-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\racing-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\provider.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\polar-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\plantsvszombies-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\penguins-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pdf24-launcher.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvidia geforce experience.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\manycam.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jewel quest solitaire-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\insaniquarium deluxe-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hamachi-2-ui.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gogdosconfig.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\galaxyclient.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fate-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlauncher.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtagent.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drivegreen1-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chuzzle deluxe-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cc_kart2-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bejeweled 2 deluxe-wt.exe
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe\Debugger
2018-08-16 12:38:40.957 >>> Virus 'Mal/Generic-S' found in file HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoRestartShell
2018-08-16 12:39:00.520 >>> Virus 'Mal/Generic-S' found in file C:\Users\Marek\Documents\stažené knihy\Ikony nemazat!\Nová složka (4)\Oldgames hry\24-GAMES-EXPERT\WIN95\PROGRAM\WARI.EXE
2018-08-16 12:39:00.520 >>> Virus 'Mal/Generic-S' found in file HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoRestartShell
2018-08-16 12:39:00.520 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zuma deluxe-wt.exe
2018-08-16 12:39:00.520 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wedding dash-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\virtualvillagers4thetreeoflife-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tunngle.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\slingo deluxe-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\racing-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\provider.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\polar-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\plantsvszombies-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\penguins-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pdf24-launcher.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvidia geforce experience.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\manycam.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jewel quest solitaire-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\insaniquarium deluxe-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hamachi-2-ui.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gogdosconfig.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\galaxyclient.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fate-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlauncher.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtagent.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drivegreen1-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chuzzle deluxe-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cc_kart2-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bejeweled 2 deluxe-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe\Debugger
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zuma deluxe-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wedding dash-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\virtualvillagers4thetreeoflife-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tunngle.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\slingo deluxe-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\racing-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\provider.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\polar-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\plantsvszombies-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\penguins-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pdf24-launcher.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvidia geforce experience.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\manycam.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jewel quest solitaire-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\insaniquarium deluxe-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hamachi-2-ui.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gogdosconfig.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\galaxyclient.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fate-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlauncher.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtagent.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drivegreen1-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chuzzle deluxe-wt.exe
2018-08-16 12:39:00.536 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cc_kart2-wt.exe
2018-08-16 12:39:00.552 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bejeweled 2 deluxe-wt.exe
2018-08-16 12:39:00.552 >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe\Debugger
2018-08-16 12:39:00.552 >>> Virus 'Mal/Generic-S' found in file HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoRestartShell
2018-08-16 13:09:30.687 Could not open C:\Windows\System32\config\BBI
2018-08-16 13:09:31.312 Could not open C:\Windows\System32\config\RegBack\DEFAULT
2018-08-16 13:09:31.328 Could not open C:\Windows\System32\config\RegBack\SAM
2018-08-16 13:09:31.343 Could not open C:\Windows\System32\config\RegBack\SECURITY
2018-08-16 13:09:31.359 Could not open C:\Windows\System32\config\RegBack\SOFTWARE
2018-08-16 13:09:31.359 Could not open C:\Windows\System32\config\RegBack\SYSTEM
2018-08-16 14:00:33.829 Could not open LOGICAL:0003:00000000
2018-08-16 14:00:33.845 Could not open D:\
2018-08-16 14:00:35.502 The following items will be cleaned up:
2018-08-16 14:00:35.502 Mal/Behav-327
2018-08-16 14:00:35.502 Mal/Generic-S


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 12 hostů