Hrozně pomaly notebook Vyřešeno

[hack01]

Prosím o kontrolu logu a pomoc při nalezení příčiny zpomalení notebooku.
Děkuji
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:32:23, on 24.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18231)


Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\GWX\GWX.exe
C:\Users\Miloslav Štěpánek\Desktop\1\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: SaveSense - {0f21b1e5-5afc-43c9-9c66-515046e92ec2} - C:\Program Files\SaveSense\SaveSenseIE.dll
O2 - BHO: CrossriderApp0045960 - {11111111-1111-1111-1111-110411591160} - C:\Program Files\Torntv V6.0\Torntv V6.0-bho.dll (file missing)
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE -startup
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [CDAServer] C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: RT-Updater-SVO.lnk = C:\Auto-diagnostika\VCDS.exe
O4 - Global Startup: ADnews.lnk = C:\Auto-diagnostika\ADnews.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Lenovo. - C:\Windows\system32\ibmpmsvc.exe
O23 - Service: SaveSenseLive Service (savesenselive) (savesenselive) - SaveSense - C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe
O23 - Service: SaveSenseLive Service (savesenselivem) (savesenselivem) - SaveSense - C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe

--
End of file - 4565 bytes

[Reklama]

[jaro3]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
http://www.geekstogo.com/forum/files/fi ... -oldtimer/
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu klikni na „Logfile“ ,objeví log ( jinak je uložen systémovem disku jako AdwCleaner[C?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

[hack01]

# AdwCleaner v5.112 - Logfile created 24/04/2016 at 12:13:12
# Updated 17/04/2016 by Xplode
# Database : 2016-04-24.2 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (X86)
# Username : Miloslav Štěpánek - LENOVO
# Running from : C:\Users\Miloslav Štěpánek\Desktop\AdwCleaner.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : savesenselive
Service Found : savesenselivem

***** [ Folders ] *****

Folder Found : C:\Program Files\FileViewPro
Folder Found : C:\Program Files\SaveSense
Folder Found : C:\Program Files\SaveSenseLive
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\SaveSenseLive
Folder Found : C:\ProgramData\Application Data\Babylon
Folder Found : C:\ProgramData\Application Data\SaveSenseLive
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileViewPro
Folder Found : C:\Users\Miloslav Štěpánek\AppData\Local\FileViewPro
Folder Found : C:\Users\Miloslav Štěpánek\AppData\Local\SaveSenseLive
Folder Found : C:\Users\Miloslav Štěpánek\AppData\Roaming\Babylon
Folder Found : C:\Users\Miloslav Štěpánek\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense
Folder Found : C:\Users\Miloslav Štěpánek\AppData\Roaming\Solvusoft
Folder Found : C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense
Folder Found : C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com

***** [ Files ] *****

File Found : C:\Windows\system32\roboot.exe

***** [ DLL ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

Task Found : SaveSense
Task Found : SaveSenseLiveUpdateTaskMachineCore
Task Found : SaveSenseLiveUpdateTaskMachineUA
Task Found : Torntv V6.0-codedownloader
Task Found : Torntv V6.0-enabler
Task Found : Torntv V6.0-updater
Task Found : Torntv V6.0-codedownloader
Task Found : Torntv V6.0-enabler
Task Found : Torntv V6.0-updater

***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\AppID\SaveSenseLive.exe
Key Found : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.ssliveupdate.oneclickctrl.9
Key Found : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.ssliveupdate.update3webcontrol.3
Key Found : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3
Key Found : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\savesenselive.exe
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0045960.BHO
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0045960.BHO.1
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0045960.Sandbox
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0045960.Sandbox.1
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickCtrl.9
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickProcessLauncherMachine
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickProcessLauncherMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLive.Update3WebControl.3
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoCreateAsync
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoCreateAsync.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreClass
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreClass.1
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreMachineClass
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreMachineClass.1
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CredentialDialogMachine
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CredentialDialogMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachine
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassSvc
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.ProcessLauncher
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.ProcessLauncher.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3COMClassService
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3COMClassService.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachine
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachineFallback
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebSvc
Key Found : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\AppID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
Key Found : HKLM\SOFTWARE\Classes\AppID\{A2D3FB7A-6873-45E8-AF96-57092D721828}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1070C156-160B-47A0-B7D9-1860396BAB57}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{27CE191D-733B-4450-AFCD-096D105288C3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{39A29266-D3E4-462D-AB05-F93B1053F6CF}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{44FC7A33-2E5C-48DC-B6F5-B81E8005D122}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{73192D81-6D24-4C40-BF7B-2507C6FA0B1A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{88C606E7-BA26-41CB-8CC3-D1E313E34E75}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{93D3100A-BBB6-456C-96FC-82CAC5F383AC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{998745A3-2AE4-488D-8092-B98FB20A00C2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9E0546FF-D44F-4FE4-A324-995FCACB8D33}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A2D3FB7A-6873-45E8-AF96-57092D721828}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C1424421-D274-491E-9D47-11C8D8CB5F9A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CDDAB3A4-E64D-4AE0-9E1D-F3132F5F913F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E66A759D-367F-433E-85C6-ED7F040BCC32}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F4B8D46C-4EEE-401B-8607-DC03025F34B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{99DCF141-03F9-4363-8D79-640FA646DEED}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3AF4400F-CDC5-4F2D-B3F1-74348E5D5CCC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{422E1393-7A4C-44FF-A7E1-8B9D146E0666}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4807D6D8-ADC8-41AF-AB9D-AE1086D1E62F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6E1CD171-29C1-4D56-A223-E31C57A0A25A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{70E96298-17FC-4020-A7CF-6F81ED8CF3AB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{84A81B7E-B8CD-4891-BEA0-548D65E9610A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{867DF9A9-D013-4A1A-B685-DFF65D225ED4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{889074FC-1456-4CE8-88F7-154264DC275F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91F4CF02-F675-4E6A-B4E8-C13DF09B9B1B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A902A36E-0C79-4BD7-B561-9C058BD60210}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AB778974-218E-4734-90F0-731BE7E50E77}
Key Found : HKLM\SOFTWARE\Classes\Interface\{ADE6A9C0-12B3-457D-9A86-548FA87E04DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B7C67027-15EB-489F-A9EA-286076CF7540}
Key Found : HKLM\SOFTWARE\Classes\Interface\{CDB98856-BEA3-4073-AF57-23A3583AE9E4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{CDED8922-BB3D-4E3A-9C2C-89B1C927F48B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D79CBD8E-D857-4D05-B3AD-26F722CF5B6E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E7EA7058-B19B-4A27-B50A-87A1B8FC5F30}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0EE6D408-6ED5-40C6-8C42-A041D5DE9AB0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{13A42355-1F94-4459-B19E-F60B2C607C77}
Key Found : HKLM\SOFTWARE\Classes\Interface\{293DD661-C540-4AC4-9B4C-42E68369CE1B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2EC58BDB-0694-4D54-80DD-A8F2AA0427A1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{313B508D-596D-4BDF-B0B5-E41F224E184A}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\InstalledBrowserExtensions
Key Found : HKCU\Software\SaveSense
Key Found : HKCU\Software\SaveSenseLive
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKLM\SOFTWARE\DealPlyLive
Key Found : HKLM\SOFTWARE\SaveSense
Key Found : HKLM\SOFTWARE\SaveSenseLive
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SaveSense
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FileViewPro_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SaveSense
Key Found : HKU\S-1-5-21-1813616799-3502315826-874749141-1001\Software\1ClickDownload
Key Found : HKU\S-1-5-21-1813616799-3502315826-874749141-1001\Software\InstalledBrowserExtensions
Key Found : HKU\S-1-5-21-1813616799-3502315826-874749141-1001\Software\SaveSense
Key Found : HKU\S-1-5-21-1813616799-3502315826-874749141-1001\Software\SaveSenseLive
Key Found : HKU\S-1-5-21-1813616799-3502315826-874749141-1001\Software\AppDataLow\Software\Crossrider
Key Found : HKU\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SaveSense
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [TCP Query User{82E80B54-85B6-4320-8921-E4F8EABBFC8F}C:\program files\torntv.com\torntv downloader.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [UDP Query User{28BE6F13-13FF-4CD4-9012-361173470C4F}C:\program files\torntv.com\torntv downloader.exe]
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Key Found : HKU\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\akamaihd.net
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\bestialitycrawler.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\hdapp1008-a.akamaihd.net
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\veoh.com

***** [ Web browsers ] *****


*************************

C:\AdwCleaner\AdwCleaner[S1].txt - [12554 bytes] - [24/04/2016 12:13:12]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [12628 bytes] ##########




Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 24.4.2016
Čas skenování: 12:21
Protokol: Malware scan.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.04.24.02
Databáze rootkitů: v2016.04.17.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Miloslav Štěpánek

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 285628
Uplynulý čas: 16 min, 57 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 94
PUP.Optional.SaveSense, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\savesenselive, , [70322a88afeaa1957379de7445bc7987],
PUP.Optional.SaveSense, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\savesenselivem, , [70322a88afeaa1957379de7445bc7987],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SAVESENSELIVE.EXE, , [70322a88afeaa1957379de7445bc7987],
PUP.Optional.BrowseFox, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{345422e3-72fa-447a-9550-97803edfacf3}w, , [2280ffb35c3d84b2670f0560cb3a7789],
PUP.Optional.SaveSence, HKLM\SOFTWARE\CLASSES\CLSID\{0f21b1e5-5afc-43c9-9c66-515046e92ec2}, , [346edbd74e4bfa3ce57c5809bd4860a0],
PUP.Optional.SaveSence, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}, , [346edbd74e4bfa3ce57c5809bd4860a0],
PUP.Optional.SaveSence, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}, , [346edbd74e4bfa3ce57c5809bd4860a0],
PUP.Optional.SaveSence, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}, , [346edbd74e4bfa3ce57c5809bd4860a0],
PUP.Optional.SaveSence, HKLM\SOFTWARE\CLASSES\CLSID\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}\INPROCSERVER32, , [346edbd74e4bfa3ce57c5809bd4860a0],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\APPID\{A2D3FB7A-6873-45E8-AF96-57092D721828}, , [d8ca149e2b6ec67029b039b3e121cb35],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\CLSID\{A2D3FB7A-6873-45E8-AF96-57092D721828}, , [d8ca149e2b6ec67029b039b3e121cb35],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.OnDemandCOMClassSvc.1.0, , [d8ca149e2b6ec67029b039b3e121cb35],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.OnDemandCOMClassSvc, , [d8ca149e2b6ec67029b039b3e121cb35],
Adware.1ClickDownload, HKLM\SOFTWARE\CLASSES\APPID\{C007DADD-132A-624C-088E-59EE6CF0711F}, , [69398a282376a78fde5e09f0a06232ce],
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, , [b2f0bbf7e7b277bf8bba9450a55d06fa],
PUP.Optional.Babylon, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, , [2b77fbb70d8c3afc6861875fd92918e8],
PUP.Optional.DealPly, HKLM\SOFTWARE\DealPlyLive, , [584aa012811840f6f95aae7a7a8a37c9],
PUP.Optional.SaveSense, HKLM\SOFTWARE\SaveSense, , [544e0aa8ddbc49edb8c7b097b35153ad],
PUP.Optional.SaveSense, HKLM\SOFTWARE\SaveSenseLive, , [d0d2ddd58e0ba690dea2df68749058a8],
PUP.Optional.TornTV, HKLM\SOFTWARE\Torntv V6.0, , [a8fad7db099063d32c16272b9f656799],
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\CrossriderApp0045960.BHO, , [386a674b93060f27037e9294eb194db3],
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\CrossriderApp0045960.BHO.1, , [148ee8ca6d2cfb3b1d64180e1fe517e9],
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\CrossriderApp0045960.Sandbox, , [d6cc0aa88316b48280011f07f212a759],
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\CrossriderApp0045960.Sandbox.1, , [8a188e240792c76faad773b30ef6c040],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLive.OneClickCtrl.9, , [aff3436f673235012457321526de5fa1],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLive.OneClickProcessLauncherMachine, , [0a98aa082475cd6934475ee99c6807f9],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLive.OneClickProcessLauncherMachine.1.0, , [dbc7ebc78910e74f2b509aaddc2833cd],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLive.Update3WebControl.3, , [d7cb3d75d0c9ce68dba069de9b69c040],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.CoCreateAsync, , [9c061a9849502b0b304b52f532d214ec],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.CoCreateAsync.1.0, , [346e51617524f73fcab1192e3bc9f40c],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.CoreClass, , [643ecee4bedbff37afcc7dcaad574ab6],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.CoreClass.1, , [81215e54bbde93a32c4fe66110f4c937],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.CoreMachineClass, , [188a0da5bddc64d2a6d54106af55ec14],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.CoreMachineClass.1, , [ffa3d7db8d0c280eb1cad27510f4dc24],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.CredentialDialogMachine, , [445e8c2699003df94f2c8fb8b64e629e],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.CredentialDialogMachine.1.0, , [dfc3931f1f7a63d37803fd4ab64e5fa1],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.OnDemandCOMClassMachine, , [22808b277b1e8baba0db95b264a0f20e],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.OnDemandCOMClassMachine.1.0, , [c3df6250653440f66615c285e91bbb45],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback, , [e0c2e9c9fd9cf93d6d0e0542af55d927],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback.1.0, , [e5bd7f337c1da591b3c878cf34d0d729],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.ProcessLauncher, , [e2c00ca6fc9d7cba1d5e58ef679d12ee],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.ProcessLauncher.1.0, , [ddc5961c2c6d6bcb98e36add0ef62fd1],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.Update3COMClassService, , [4e54f6bcedac4fe77cff8bbcdf25ea16],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.Update3COMClassService.1.0, , [6042a60ccacffd397605d86f3dc7dd23],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.Update3WebMachine, , [f7ab32806c2d94a27efdfd4af50f3cc4],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.Update3WebMachine.1.0, , [e8ba6e44cccd58deb3c8e95eec189f61],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.Update3WebMachineFallback, , [346ee9c90099ba7c81fa3f0837cd57a9],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.Update3WebMachineFallback.1.0, , [4260d0e2d2c7c4729be047008480ee12],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.Update3WebSvc, , [6a388d25ddbc3006532803444cb8c23e],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\SaveSenseLiveUpdate.Update3WebSvc.1.0, , [e4bea210e9b05dd94635054250b4649c],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\APPID\SaveSenseLive.exe, , [921004ae8613bc7ae7936cdb20e420e0],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{274553B0-53CB-4AFA-8F31-67461407FFE2}, , [a7fb9b171881d75f68394add7c8846ba],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{539A4591-E873-40D6-961F-56DBD99FC5CF}, , [9a08565caaef55e12d75091e63a1cf31],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5E0D3C63-8FE8-49AA-A448-A2501D09F497}, , [6b37eec4f6a347ef8917d5527a8abf41],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{04B8C8D6-9F19-4637-B491-1F508481500A}, , [277b5161f0a966d06e4035042fd4e61a],
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0DED11C5-F08B-4D71-9920-DD3EE3D909D8}, , [4b57664c96035cdad5cd208b9d678a76],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{39D2784A-6DC8-4C47-AA2A-1A5CEC9E097A}, , [f7ab3f73d3c6a78f9f0f4aefbe457c84],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{53867AF2-C79A-495B-999F-0A3DE2D1DE62}, , [980abaf8cbce8caa78362a0ff60dcb35],
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F429D3F8-F080-4D6F-BE1E-91B91FAAA998}, , [376b575b217811256ed2901e5fa5f50b],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SaveSense, , [f7abfab8b1e8ae8896ae66e039ca2bd5],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SaveSenseLiveUpdateTaskMachineCore, , [c5dd733f1386f541360e0e38ee158080],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SaveSenseLiveUpdateTaskMachineUA, , [d3cf2a886831c2744df7e462c0437888],
PUP.Optional.TornTV, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Torntv V6.0-codedownloader, , [c8dab6fc92079c9aea54440e24e0bc44],
PUP.Optional.TornTV, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Torntv V6.0-enabler, , [1092efc37b1e1b1b54ea9eb4e51f23dd],
PUP.Optional.TornTV, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Torntv V6.0-updater, , [881ac9e9e0b9e25450eeb99951b3dc24],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MOZILLAPLUGINS\@tools.updaterss.com/SaveSenseLive Update;version=3, , [534f8131b6e3b680641a2423cb39847c],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MOZILLAPLUGINS\@tools.updaterss.com/SaveSenseLive Update;version=9, , [3e64e4ce0099280e6a1467e02dd7a957],
PUP.Optional.1ClickDownload, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\1ClickDownload, , [c6dcd1e12b6e3105622ec05884807b85],
PUP.Optional.SaveSense, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\SaveSense, , [70329e143861c86e225a79ce30d424dc],
PUP.Optional.SaveSense, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\SaveSenseLive, , [01a1e2d0e0b95cda8fee0d3a2ed65da3],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [d5cd882a297078be2f6c1b0bf014bd43],
PUP.Optional.TornTV, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V6.0, , [c8da565cdcbd1f170a273c16fa0a3ec2],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\installdaddy, , [4d55f9b978219a9c6b9dde49c53f3ec2],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{274553B0-53CB-4AFA-8F31-67461407FFE2}, , [d3cfe7cb3f5a71c5fc8850d78e7618e8],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{539A4591-E873-40D6-961F-56DBD99FC5CF}, , [b8ea61514f4a8bab91f4df4816ee2fd1],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5E0D3C63-8FE8-49AA-A448-A2501D09F497}, , [a7fb4a68405985b1c1c2fd2a23e17b85],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SaveSense, , [7b273d75dcbd42f40a65dc2ae320f10f],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\CLSID\{A18D16ED-27B2-4B83-B70C-15E73F099546}, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A18D16ED-27B2-4B83-B70C-15E73F099546}, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{A18D16ED-27B2-4B83-B70C-15E73F099546}, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\CLSID\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\CLSID\{998745A3-2AE4-488D-8092-B98FB20A00C2}, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, HKLM\SOFTWARE\CLASSES\CLSID\{C1424421-D274-491E-9D47-11C8D8CB5F9A}, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SaveSense, , [f2b05959adec4beb7cf6e5214ab9e51b],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110411591160}, , [a2004a68c0d94ee881c2dc6d52b3926e],
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110411591160}, , [a2004a68c0d94ee881c2dc6d52b3926e],
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440444594460}, , [a2004a68c0d94ee881c2dc6d52b3926e],
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550455595560}, , [a2004a68c0d94ee881c2dc6d52b3926e],
PUP.Optional.CrossRider, HKLM\SOFTWARE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660466596660}, , [a2004a68c0d94ee881c2dc6d52b3926e],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{11111111-1111-1111-1111-110411591160}, , [a2004a68c0d94ee881c2dc6d52b3926e],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{11111111-1111-1111-1111-110411591160}, , [a2004a68c0d94ee881c2dc6d52b3926e],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{11111111-1111-1111-1111-110411591160}, , [a2004a68c0d94ee881c2dc6d52b3926e],

Hodnoty registru: 13
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{274553b0-53cb-4afa-8f31-67461407ffe2}|AppName, Torntv V6.0-buttonutil.exe, , [a7fb9b171881d75f68394add7c8846ba]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{539a4591-e873-40d6-961f-56dbd99fc5cf}|AppName, Torntv V6.0-codedownloader.exe, , [9a08565caaef55e12d75091e63a1cf31]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5e0d3c63-8fe8-49aa-a448-a2501d09f497}|AppName, Torntv V6.0-bg.exe, , [6b37eec4f6a347ef8917d5527a8abf41]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|Torntv V6.0-bg.exe, 8000, , [9111634f653446f02e109618f4106c94]
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{04B8C8D6-9F19-4637-B491-1F508481500A}|Path, \SaveSense, , [277b5161f0a966d06e4035042fd4e61a]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0DED11C5-F08B-4D71-9920-DD3EE3D909D8}|Path, \Torntv V6.0-codedownloader, , [4b57664c96035cdad5cd208b9d678a76]
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{39D2784A-6DC8-4C47-AA2A-1A5CEC9E097A}|Path, \SaveSenseLiveUpdateTaskMachineUA, , [f7ab3f73d3c6a78f9f0f4aefbe457c84]
PUP.Optional.SaveSense, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{53867AF2-C79A-495B-999F-0A3DE2D1DE62}|Path, \SaveSenseLiveUpdateTaskMachineCore, , [980abaf8cbce8caa78362a0ff60dcb35]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F429D3F8-F080-4D6F-BE1E-91B91FAAA998}|Path, \Torntv V6.0-enabler, , [376b575b217811256ed2901e5fa5f50b]
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{274553b0-53cb-4afa-8f31-67461407ffe2}|AppName, Torntv V6.0-buttonutil.exe, , [d3cfe7cb3f5a71c5fc8850d78e7618e8]
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{539a4591-e873-40d6-961f-56dbd99fc5cf}|AppName, Torntv V6.0-codedownloader.exe, , [b8ea61514f4a8bab91f4df4816ee2fd1]
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5e0d3c63-8fe8-49aa-a448-a2501d09f497}|AppName, Torntv V6.0-bg.exe, , [a7fb4a68405985b1c1c2fd2a23e17b85]
PUP.Optional.Delta.ShrtCln, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}|URL, http://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=C062001F3C91D482&affID=121563&tsp=4937, , [683a8e2404953bfb4fee53bc05ff738d]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 22
PUP.Optional.OptimizerPro, C:\Users\Miloslav Štěpánek\Documents\Optimizer Pro, , [b1f1f0c27b1e2313e77ffe4246be53ad],
PUP.Optional.OpenCandy, C:\Users\Miloslav Štěpánek\AppData\Roaming\OpenCandy, , [e4beb7fb3d5c73c301ec64a157ac57a9],
PUP.Optional.OpenCandy, C:\Users\Miloslav Štěpánek\AppData\Roaming\OpenCandy\6DAF79EFFA9E4240BC59F79A6D363CB8, , [e4beb7fb3d5c73c301ec64a157ac57a9],
PUP.Optional.SaveSense, C:\Program Files\SaveSense, , [7b273d75dcbd42f40a65dc2ae320f10f],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\CrashReports, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\Download, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\Install, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\Offline, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\Offline\{B9205C64-E1C0-4738-B193-54862C0FDEB2}, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\ProgramData\SaveSenseLive, , [efb34e64efaa76c084ed778f44bfab55],
PUP.Optional.SaveSense, C:\ProgramData\SaveSenseLive\Update, , [efb34e64efaa76c084ed778f44bfab55],
PUP.Optional.SaveSense, C:\ProgramData\SaveSenseLive\Update\Log, , [efb34e64efaa76c084ed778f44bfab55],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense, , [f2b05959adec4beb7cf6e5214ab9e51b],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense\UpdateProc, , [f2b05959adec4beb7cf6e5214ab9e51b],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense, , [841e3082d6c3360099da927411f2b749],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Local\SaveSenseLive, , [8220872b891086b07212d651ac571ce4],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Local\SaveSenseLive\CrashReports, , [8220872b891086b07212d651ac571ce4],
PUP.Optional.TornTV, C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com, , [d1d12290a6f388aeb51cd05c8083f60a],
PUP.Optional.TornTV, C:\Users\Miloslav Štěpánek\AppData\LocalLow\Torntv V6.0, , [f0b2a11195041d19daf858d4bb486d93],

Soubory: 99
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe, , [70322a88afeaa1957379de7445bc7987],
PUP.Optional.BrowseFox, C:\Windows\System32\drivers\{345422e3-72fa-447a-9550-97803edfacf3}w.sys, , [2280ffb35c3d84b2670f0560cb3a7789],
PUP.Optional.SaveSence, C:\Program Files\SaveSense\SaveSenseIE.dll, , [346edbd74e4bfa3ce57c5809bd4860a0],
PUP.Optional.Babylon, C:\Users\Miloslav Štěpánek\AppData\Roaming\OpenCandy\6DAF79EFFA9E4240BC59F79A6D363CB8\DeltaTB.exe, , [802270426633db5b306f81cc649d9a66],
PUP.Optional.SaveSense, C:\Program Files\SaveSense\SaveSenseUpdateVer.exe, , [1290981a1188e1556054c667ba46fb05],
PUP.Optional.SysTweak, C:\Windows\System32\roboot.exe, , [8f13654df5a4231316e72207f80ad32d],
PUP.Optional.SaveSense, C:\Windows\System32\Tasks\SaveSense, , [485a7240871238fe8c522d2929da56aa],
PUP.Optional.SaveSense, C:\Windows\System32\Tasks\SaveSenseLiveUpdateTaskMachineCore, , [3b67733f425742f421bdfd59986bdf21],
PUP.Optional.SaveSense, C:\Windows\System32\Tasks\SaveSenseLiveUpdateTaskMachineUA, , [c1e1872b7b1e60d63ea0371f12f1867a],
PUP.Optional.OptimizerPro, C:\Users\Miloslav Štěpánek\Documents\Optimizer Pro\CookiesException.txt, , [b1f1f0c27b1e2313e77ffe4246be53ad],
PUP.Optional.SaveSense, C:\Windows\Tasks\SaveSense.job, , [dbc77939a2f7bd79f188eb5c7b89f907],
PUP.Optional.SaveSense, C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job, , [3270585ad4c5f442d9a0c681d92b24dc],
PUP.Optional.SaveSense, C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job, , [fba7337f6f2a072f7306301725dfd62a],
PUP.Optional.TornTV, C:\Windows\System32\Tasks\Torntv V6.0-codedownloader, , [dac8baf8bddc0036dc508ac8c341eb15],
PUP.Optional.TornTV, C:\Windows\System32\Tasks\Torntv V6.0-enabler, , [cbd700b22e6b5adc9894d87ab94bef11],
PUP.Optional.TornTV, C:\Windows\System32\Tasks\Torntv V6.0-updater, , [148e5959ecadb77f63c9470b6b993ac6],
PUP.Optional.TornTV, C:\Windows\Tasks\Torntv V6.0-codedownloader.job, , [9012e7cb237672c4fa331e344fb5f50b],
PUP.Optional.TornTV, C:\Windows\Tasks\Torntv V6.0-enabler.job, , [039f8c262277082e54d9430f5fa57b85],
PUP.Optional.TornTV, C:\Windows\Tasks\Torntv V6.0-updater.job, , [1f83565c6a2fa88e1f0e87cb8a7a12ee],
PUP.Optional.SaveSense, C:\Program Files\SaveSense\icon.ico, , [7b273d75dcbd42f40a65dc2ae320f10f],
PUP.Optional.SaveSense, C:\Program Files\SaveSense\SaveSense.crx, , [7b273d75dcbd42f40a65dc2ae320f10f],
PUP.Optional.SaveSense, C:\Program Files\SaveSense\SaveSense.xpi, , [7b273d75dcbd42f40a65dc2ae320f10f],
PUP.Optional.SaveSense, C:\Program Files\SaveSense\SaveSenseIE64.dll, , [7b273d75dcbd42f40a65dc2ae320f10f],
PUP.Optional.SaveSense, C:\Program Files\SaveSense\uninst.exe, , [7b273d75dcbd42f40a65dc2ae320f10f],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_de.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_el.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_en-GB.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_en.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_es-419.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_es.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_et.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_fa.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_fi.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_fil.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_fr.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_gu.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_hi.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_hr.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_hu.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_id.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_it.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_iw.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ja.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_kn.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ko.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_lt.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_lv.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ml.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_mr.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ms.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_nl.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_no.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_pl.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-BR.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_pt-PT.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ro.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdate.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_am.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ar.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_bg.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_bn.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ca.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_cs.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_sk.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_sl.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_sr.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_sv.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_sw.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ta.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_te.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_th.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_tr.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_uk.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ur.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_vi.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-CN.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_zh-TW.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\psmachine.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\psuser.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\SaveSenseLive.exe, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveBroker.exe, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveHandler.exe, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveHelper.msi, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\SaveSenseLiveOnDemand.exe, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_da.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_is.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\1.3.23.0\goopdateres_ru.dll, , [c6dca9098b0ed75f046c14f2da29d927],
PUP.Optional.SaveSense, C:\ProgramData\SaveSenseLive\Update\Log\SaveSenseLive.log, , [efb34e64efaa76c084ed778f44bfab55],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense\UpdateProc\config.dat, , [f2b05959adec4beb7cf6e5214ab9e51b],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense\UpdateProc\info.dat, , [f2b05959adec4beb7cf6e5214ab9e51b],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense\UpdateProc\STTL.DAT, , [f2b05959adec4beb7cf6e5214ab9e51b],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense\UpdateProc\TTL.DAT, , [f2b05959adec4beb7cf6e5214ab9e51b],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense\UpdateProc\UpdateTask.exe, , [f2b05959adec4beb7cf6e5214ab9e51b],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\SaveSense Help.url, , [841e3082d6c3360099da927411f2b749],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\SaveSense.url, , [841e3082d6c3360099da927411f2b749],
PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\Uninstall SaveSense.lnk, , [841e3082d6c3360099da927411f2b749],
PUP.Optional.TornTV, C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com\TornTV.lnk, , [d1d12290a6f388aeb51cd05c8083f60a],
PUP.Optional.TornTV, C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com\Uninstall.lnk, , [d1d12290a6f388aeb51cd05c8083f60a],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

Malwarebytes Anti-Malware
www.malwarebytes.org


Protection, 24.4.2016 12:19, SYSTEM, LENOVO, Protection, Malware Protection, Starting,
Protection, 24.4.2016 12:19, SYSTEM, LENOVO, Protection, Malware Protection, Started,
Protection, 24.4.2016 12:19, SYSTEM, LENOVO, Protection, Malicious Website Protection, Starting,
Protection, 24.4.2016 12:19, SYSTEM, LENOVO, Protection, Malicious Website Protection, Started,
Update, 24.4.2016 12:20, SYSTEM, LENOVO, Manual, Remediation Database, 2016.2.12.1, 2016.4.19.1,
Update, 24.4.2016 12:20, SYSTEM, LENOVO, Manual, Rootkit Database, 2016.2.8.1, 2016.4.17.1,
Update, 24.4.2016 12:20, SYSTEM, LENOVO, Manual, Domain Database, 2016.2.16.8, 2016.4.22.6,
Update, 24.4.2016 12:20, SYSTEM, LENOVO, Manual, IP Database, 2016.2.8.1, 2016.4.7.1,
Update, 24.4.2016 12:20, SYSTEM, LENOVO, Manual, Malware Database, 2016.2.16.6, 2016.4.24.2,
Protection, 24.4.2016 12:20, SYSTEM, LENOVO, Protection, Refresh, Starting,
Protection, 24.4.2016 12:20, SYSTEM, LENOVO, Protection, Malicious Website Protection, Stopping,
Protection, 24.4.2016 12:20, SYSTEM, LENOVO, Protection, Malicious Website Protection, Stopped,
Protection, 24.4.2016 12:21, SYSTEM, LENOVO, Protection, Refresh, Success,
Protection, 24.4.2016 12:21, SYSTEM, LENOVO, Protection, Malicious Website Protection, Starting,
Protection, 24.4.2016 12:21, SYSTEM, LENOVO, Protection, Malicious Website Protection, Started,
Update, 24.4.2016 13:09, SYSTEM, LENOVO, Scheduler, Failed, No Internet connection detected,
Detection, 24.4.2016 13:09, Miloslav Štěpánek, LENOVO, Protection, Ochrana proti malwaru, Soubor, PUP.Optional.SaveSense, C:\Windows\System32\Tasks\SaveSense, Karanténa, [7f2339792970d2646b73272f45be29d7]
Detection, 24.4.2016 13:09, SYSTEM, LENOVO, Protection, Ochrana proti malwaru, Soubor, PUP.Optional.SaveSense, C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense\UpdateProc\UpdateTask.exe, Karanténa, [bbe7dcd65f3a1c1a2e44af5709fa22de]
Detection, 24.4.2016 13:09, Miloslav Štěpánek, LENOVO, Protection, Ochrana proti malwaru, Soubor, PUP.Optional.SaveSense, c:\windows\system32\tasks\savesense, Quarantine Failed, 6, The handle is invalid. , [7f2339792970d2646b73272f45be29d7]
Detection, 24.4.2016 13:09, SYSTEM, LENOVO, Protection, Ochrana proti malwaru, Soubor, PUP.Optional.SaveSense, c:\users\miloslav štěpánek\appdata\roaming\savesense\updateproc\updatetask.exe, Quarantine Failed, 6, The handle is invalid. , [bbe7dcd65f3a1c1a2e44af5709fa22de]
Detection, 24.4.2016 13:09, SYSTEM, LENOVO, Protection, Ochrana proti malwaru, Soubor, PUP.Optional.SaveSense, C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe, Karanténa, [2a78d2e00a8fd36309e32a28c63b3ac6]
Update, 24.4.2016 13:12, SYSTEM, LENOVO, Scheduler, Malware Database, 2016.4.24.2, 2016.4.24.3,
Protection, 24.4.2016 13:12, SYSTEM, LENOVO, Protection, Refresh, Starting,
Protection, 24.4.2016 13:12, SYSTEM, LENOVO, Protection, Malicious Website Protection, Stopping,
Protection, 24.4.2016 13:12, SYSTEM, LENOVO, Protection, Malicious Website Protection, Stopped,
Protection, 24.4.2016 13:13, SYSTEM, LENOVO, Protection, Refresh, Success,
Protection, 24.4.2016 13:13, SYSTEM, LENOVO, Protection, Malicious Website Protection, Starting,
Protection, 24.4.2016 13:13, SYSTEM, LENOVO, Protection, Malicious Website Protection, Started,

(end)

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Cleaning (Vymazat)“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu Malwarebytes' Anti-Malware a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[hack01]

# AdwCleaner v5.112 - Logfile created 24/04/2016 at 18:23:32
# Updated 17/04/2016 by Xplode
# Database : 2016-04-24.2 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (X86)
# Username : Miloslav Štěpánek - LENOVO
# Running from : C:\Users\Miloslav Štěpánek\Desktop\AdwCleaner.exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : savesenselive
[-] Service Deleted : savesenselivem

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\FileViewPro
[-] Folder Deleted : C:\Program Files\SaveSense
[-] Folder Deleted : C:\Program Files\SaveSenseLive
[-] Folder Deleted : C:\ProgramData\Babylon
[-] Folder Deleted : C:\ProgramData\SaveSenseLive
[#] Folder Deleted : C:\ProgramData\Application Data\Babylon
[#] Folder Deleted : C:\ProgramData\Application Data\SaveSenseLive
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileViewPro
[-] Folder Deleted : C:\Users\Miloslav Štěpánek\AppData\Local\FileViewPro
[-] Folder Deleted : C:\Users\Miloslav Štěpánek\AppData\Local\SaveSenseLive
[-] Folder Deleted : C:\Users\Miloslav Štěpánek\AppData\Roaming\Babylon
[-] Folder Deleted : C:\Users\Miloslav Štěpánek\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\Miloslav Štěpánek\AppData\Roaming\SaveSense
[-] Folder Deleted : C:\Users\Miloslav Štěpánek\AppData\Roaming\Solvusoft
[-] Folder Deleted : C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense
[-] Folder Deleted : C:\Users\Miloslav Štěpánek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com

***** [ Files ] *****

[-] File Deleted : C:\Windows\system32\roboot.exe

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : SaveSense
[-] Task Deleted : SaveSenseLiveUpdateTaskMachineCore
[-] Task Deleted : SaveSenseLiveUpdateTaskMachineUA
[-] Task Deleted : Torntv V6.0-codedownloader
[-] Task Deleted : Torntv V6.0-enabler
[-] Task Deleted : Torntv V6.0-updater
[-] Task Deleted : Torntv V6.0-codedownloader
[-] Task Deleted : Torntv V6.0-enabler
[-] Task Deleted : Torntv V6.0-updater

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\SaveSenseLive.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.ssliveupdate.oneclickctrl.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.ssliveupdate.update3webcontrol.3
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\savesenselive.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0045960.BHO
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0045960.BHO.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0045960.Sandbox
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0045960.Sandbox.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickCtrl.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickProcessLauncherMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickProcessLauncherMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.Update3WebControl.3
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoCreateAsync
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoCreateAsync.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreMachineClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreMachineClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CredentialDialogMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CredentialDialogMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.ProcessLauncher
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.ProcessLauncher.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3COMClassService
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3COMClassService.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A2D3FB7A-6873-45E8-AF96-57092D721828}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1070C156-160B-47A0-B7D9-1860396BAB57}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27CE191D-733B-4450-AFCD-096D105288C3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{39A29266-D3E4-462D-AB05-F93B1053F6CF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44FC7A33-2E5C-48DC-B6F5-B81E8005D122}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{73192D81-6D24-4C40-BF7B-2507C6FA0B1A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{88C606E7-BA26-41CB-8CC3-D1E313E34E75}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{93D3100A-BBB6-456C-96FC-82CAC5F383AC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{998745A3-2AE4-488D-8092-B98FB20A00C2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9E0546FF-D44F-4FE4-A324-995FCACB8D33}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A18D16ED-27B2-4B83-B70C-15E73F099546}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A2D3FB7A-6873-45E8-AF96-57092D721828}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C1424421-D274-491E-9D47-11C8D8CB5F9A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CDDAB3A4-E64D-4AE0-9E1D-F3132F5F913F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E66A759D-367F-433E-85C6-ED7F040BCC32}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F4B8D46C-4EEE-401B-8607-DC03025F34B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99DCF141-03F9-4363-8D79-640FA646DEED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3AF4400F-CDC5-4F2D-B3F1-74348E5D5CCC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{422E1393-7A4C-44FF-A7E1-8B9D146E0666}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4807D6D8-ADC8-41AF-AB9D-AE1086D1E62F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6E1CD171-29C1-4D56-A223-E31C57A0A25A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{70E96298-17FC-4020-A7CF-6F81ED8CF3AB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{84A81B7E-B8CD-4891-BEA0-548D65E9610A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{867DF9A9-D013-4A1A-B685-DFF65D225ED4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{889074FC-1456-4CE8-88F7-154264DC275F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91F4CF02-F675-4E6A-B4E8-C13DF09B9B1B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A902A36E-0C79-4BD7-B561-9C058BD60210}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AB778974-218E-4734-90F0-731BE7E50E77}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADE6A9C0-12B3-457D-9A86-548FA87E04DB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B7C67027-15EB-489F-A9EA-286076CF7540}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CDB98856-BEA3-4073-AF57-23A3583AE9E4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CDED8922-BB3D-4E3A-9C2C-89B1C927F48B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D79CBD8E-D857-4D05-B3AD-26F722CF5B6E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7EA7058-B19B-4A27-B50A-87A1B8FC5F30}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0EE6D408-6ED5-40C6-8C42-A041D5DE9AB0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{13A42355-1F94-4459-B19E-F60B2C607C77}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{293DD661-C540-4AC4-9B4C-42E68369CE1B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2EC58BDB-0694-4D54-80DD-A8F2AA0427A1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{313B508D-596D-4BDF-B0B5-E41F224E184A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A18D16ED-27B2-4B83-B70C-15E73F099546}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A18D16ED-27B2-4B83-B70C-15E73F099546}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
[-] Key Deleted : HKCU\Software\1ClickDownload
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\SaveSense
[-] Key Deleted : HKCU\Software\SaveSenseLive
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\DealPlyLive
[-] Key Deleted : HKLM\SOFTWARE\SaveSense
[-] Key Deleted : HKLM\SOFTWARE\SaveSenseLive
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SaveSense
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FileViewPro_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SaveSense
[-] Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [TCP Query User{82E80B54-85B6-4320-8921-E4F8EABBFC8F}C:\program files\torntv.com\torntv downloader.exe]
[-] Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [UDP Query User{28BE6F13-13FF-4CD4-9012-361173470C4F}C:\program files\torntv.com\torntv downloader.exe]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\akamaihd.net
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\bestialitycrawler.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\hdapp1008-a.akamaihd.net
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\veoh.com

***** [ Web browsers ] *****


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [12779 bytes] - [24/04/2016 18:23:32]
C:\AdwCleaner\AdwCleaner[S1].txt - [12708 bytes] - [24/04/2016 12:13:12]
C:\AdwCleaner\AdwCleaner[S2].txt - [12782 bytes] - [24/04/2016 18:20:53]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [13001 bytes] ##########



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.5 (04.20.2016)
Operating System: Windows 7 Ultimate x86
Ran by Miloslav ćtŘp nek (Administrator) on ne 24.04.2016 at 18:29:29,66
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 12

Failed to delete: C:\Users\Miloslav ćtŘp nek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1ZHTEO75 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Miloslav ćtŘp nek\AppData\Roaming\wyupdate au (Folder)
Successfully deleted: C:\Users\Miloslav ćtŘp nek\Documents\optimizer pro (Folder)
Successfully deleted: C:\Windows\wininit.ini (File)
Successfully deleted: C:\Users\Miloslav ćtŘp nek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2GDQP53H (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Miloslav ćtŘp nek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LO0ZHZED (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Miloslav ćtŘp nek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZM6V66NB (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1ZHTEO75 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2GDQP53H (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LO0ZHZED (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZM6V66NB (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\Drivers\{345422e3-72fa-447a-9550-97803edfacf3}w.sys (File)



Registry: 2

Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\{345422e3-72fa-447a-9550-97803edfacf3}w (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411591160} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 24.04.2016 at 18:53:21,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 24.4.2016
Čas skenování: 21:37
Protokol: Malwarebytes 3.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.04.24.05
Databáze rootkitů: v2016.04.17.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Miloslav Štěpánek

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 285473
Uplynulý čas: 16 min, 32 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 8
PUP.Optional.TornTV, HKLM\SOFTWARE\Torntv V6.0, Do karantény, [ced7278b8613f3439f13aea49c68e61a],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{274553B0-53CB-4AFA-8F31-67461407FFE2}, Do karantény, [495c268ce1b83303a17059cfb252f30d],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{539A4591-E873-40D6-961F-56DBD99FC5CF}, Do karantény, [5e4706acd4c5e15567ab3bedf01454ac],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5E0D3C63-8FE8-49AA-A448-A2501D09F497}, Do karantény, [5c49b7fbf2a76acce62a161283814eb2],
PUP.Optional.TornTV, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V6.0, Do karantény, [a2036e44811891a520815af8ba4a1de3],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{274553B0-53CB-4AFA-8F31-67461407FFE2}, Do karantény, [cdd860520f8a0e28ea0a1b0c0ff57789],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{539A4591-E873-40D6-961F-56DBD99FC5CF}, Do karantény, [fca96151aced16200aeb63c4976daf51],
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5E0D3C63-8FE8-49AA-A448-A2501D09F497}, Do karantény, [188decc6f8a13ef82ec541e639cbdb25],

Hodnoty registru: 7
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{274553b0-53cb-4afa-8f31-67461407ffe2}|AppName, Torntv V6.0-buttonutil.exe, Do karantény, [495c268ce1b83303a17059cfb252f30d]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{539a4591-e873-40d6-961f-56dbd99fc5cf}|AppName, Torntv V6.0-codedownloader.exe, Do karantény, [5e4706acd4c5e15567ab3bedf01454ac]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5e0d3c63-8fe8-49aa-a448-a2501d09f497}|AppName, Torntv V6.0-bg.exe, Do karantény, [5c49b7fbf2a76acce62a161283814eb2]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|Torntv V6.0-bg.exe, 8000, Do karantény, [d9cc8f23d4c5c67006a8dfcfd62e10f0]
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{274553b0-53cb-4afa-8f31-67461407ffe2}|AppName, Torntv V6.0-buttonutil.exe, Do karantény, [cdd860520f8a0e28ea0a1b0c0ff57789]
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{539a4591-e873-40d6-961f-56dbd99fc5cf}|AppName, Torntv V6.0-codedownloader.exe, Do karantény, [fca96151aced16200aeb63c4976daf51]
PUP.Optional.CrossRider, HKU\S-1-5-21-1813616799-3502315826-874749141-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5e0d3c63-8fe8-49aa-a448-a2501d09f497}|AppName, Torntv V6.0-bg.exe, Do karantény, [188decc6f8a13ef82ec541e639cbdb25]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 1
PUP.Optional.TornTV, C:\Users\Miloslav Štěpánek\AppData\LocalLow\Torntv V6.0, Do karantény, [bfe6dfd332675bdb44ffde4fc83b32ce],

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)


RogueKiller V12.1.3.0 [Apr 18 2016] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno : Normální režim
Uživatel : Miloslav ?t?pánek [Práva správce]
Started from : C:\Users\Miloslav ?t?pánek\Desktop\RogueKiller.exe
Mód : Prohledat -- Datum : 04/24/2016 22:49:24

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 17 ¤¤¤
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\tsusbhub (system32\drivers\tsusbhub.sys) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.1 ([]) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.1 ([]) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.1 ([]) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{A94CDE25-E4DC-4555-9E28-9B87DAB1A95B} | DhcpNameServer : 10.0.0.1 ([]) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{D974DC21-20FA-452A-AB74-2122922A0C04} | DhcpNameServer : 10.0.0.138 ([]) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{A94CDE25-E4DC-4555-9E28-9B87DAB1A95B} | DhcpNameServer : 10.0.0.1 ([]) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{D974DC21-20FA-452A-AB74-2122922A0C04} | DhcpNameServer : 10.0.0.138 ([]) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{A94CDE25-E4DC-4555-9E28-9B87DAB1A95B} | DhcpNameServer : 10.0.0.1 ([]) -> Nalezeno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{D974DC21-20FA-452A-AB74-2122922A0C04} | DhcpNameServer : 10.0.0.138 ([]) -> Nalezeno
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowSetProgramAccessAndDefaults : 0 -> Nalezeno
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyDocs : 0 -> Nalezeno
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Nalezeno
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Nalezeno
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyMusic : 0 -> Nalezeno
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowUser : 0 -> Nalezeno
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyPics : 0 -> Nalezeno

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS545025B9SA02 ATA Device +++++
--- User ---
[MBR] 46334bb724813877a2cccdc33e37f8f2
[BSP] 4a3f3313702c418548bce33eae426775 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 238373 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)

- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Vypni antivir i firewall.
Stáhni
Zoek.exe

a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

Vlož nový log z HJT + informuj o problémech

[hack01]

RogueKiller V12.1.3.0 [Apr 18 2016] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno : Normální režim
Uživatel : Miloslav ?t?pánek [Práva správce]
Started from : C:\Users\Miloslav ?t?pánek\Desktop\RogueKiller.exe
Mód : Smazat -- Datum : 04/25/2016 20:50:15

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 17 ¤¤¤
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\tsusbhub (system32\drivers\tsusbhub.sys) -> Smazáno
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.1 ([]) -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.1 ([]) -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.1 ([]) -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{A94CDE25-E4DC-4555-9E28-9B87DAB1A95B} | DhcpNameServer : 10.0.0.1 ([]) -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{D974DC21-20FA-452A-AB74-2122922A0C04} | DhcpNameServer : 10.0.0.138 ([]) -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{A94CDE25-E4DC-4555-9E28-9B87DAB1A95B} | DhcpNameServer : 10.0.0.1 ([]) -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{D974DC21-20FA-452A-AB74-2122922A0C04} | DhcpNameServer : 10.0.0.138 ([]) -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{A94CDE25-E4DC-4555-9E28-9B87DAB1A95B} | DhcpNameServer : 10.0.0.1 ([]) -> Nahrazeno ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{D974DC21-20FA-452A-AB74-2122922A0C04} | DhcpNameServer : 10.0.0.138 ([]) -> Nahrazeno ()
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowSetProgramAccessAndDefaults : 0 -> Nahrazeno (1)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyDocs : 0 -> Nahrazeno (1)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Nahrazeno (1)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Nahrazeno (1)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyMusic : 0 -> Nahrazeno (1)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowUser : 0 -> Nahrazeno (1)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyPics : 0 -> Nahrazeno (1)

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 46334bb724813877a2cccdc33e37f8f2
[BSP] 4a3f3313702c418548bce33eae426775 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 238373 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Miloslav ćtŘp nek on po 25.04.2016 at 21:10:11,17.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\MILOSL~1\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

25.4.2016 21:25:32 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Program Files\Nike deleted successfully
C:\Program Files\stinger deleted successfully
C:\Users\MILOSL~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\59F-MTUNING deleted successfully
C:\Users\MILOSL~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\DVD Decrypter deleted successfully
C:\Users\MILOSL~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Motordiag Komfort Manager Lite 1.20 deleted successfully
C:\Users\MILOSL~1\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\MILOSL~1\AppData\Local\EmieSiteList deleted successfully
C:\Users\MILOSL~1\AppData\Local\EmieUserList deleted successfully
C:\Users\MILOSL~1\AppData\Local\GHISLER deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110411591160} deleted successfully
HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110411591160} deleted successfully
HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3796ad25-2dd7-4604-9b28-095dae7182d0} deleted successfully
HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6A1B4BB1-9632-457B-B16D-E7A6E735F4F} deleted successfully
HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A4A0A702-B27B-4729-971F-3D48838C49E} deleted successfully
HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D5668DFD-FB1E-4178-86EB-E852306B169D} deleted successfully
HKEY_USERS\S-1-5-21-1813616799-3502315826-874749141-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7F60C1C-A75-459D-9B7E-D4511BC73CEF} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110411591160} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110411591160} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110411591160} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3796ad25-2dd7-4604-9b28-095dae7182d0} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Program Files\Nike not found
C:\Program Files\stinger not found
C:\Program Files\SamsungPrinterLiveUpdateInstaller deleted
C:\Program Files\Bonjour Print Services deleted
C:\Users\MILOSL~1\AppData\Local\BIT624F.tmp deleted
C:\Users\MILOSL~1\AppData\Local\{76613F6E-6771-45F7-B9DE-6AE6950457FC} deleted
C:\Users\MILOSL~1\Desktop\Continue installation - DownloadSetup Installation.lnk deleted
"C:\Users\MILOSL~1\AppData\Local\{284CAE49-752D-423C-BB35-6F1EE1CC4FCC}" deleted
"C:\Users\MILOSL~1\AppData\Local\{468BD805-DFE1-4A3D-9DFE-91D77164C3D4}" deleted
"C:\Users\MILOSL~1\AppData\Local\{8C16FCE0-E790-4956-BCD2-F46F5AE96D76}" deleted
"C:\Users\MILOSL~1\AppData\Local\{9A7B533A-1173-41F6-8BFD-661D7C5881C4}" deleted
"C:\Users\MILOSL~1\AppData\Local\{B69EBB25-C0AD-41EC-95A5-9D188F67C9B8}" deleted

==== Orphaned Tasks deleted from Registry ======================

{172D96A8-4F43-4A9E-85FF-A4175A4DBBF8} deleted

==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86



==== Chromium Fix ======================

C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad-emea.doubleclick.net_0.localstorage deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad-emea.doubleclick.net_0.localstorage-journal deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.doubleclick.net_0.localstorage deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.doubleclick.net_0.localstorage-journal deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_advert.uloz.to_0.localstorage deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_advert.uloz.to_0.localstorage-journal deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.ad.libimseti.cz_0.localstorage deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.ad.libimseti.cz_0.localstorage-journal deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{929D74D7-A535-43AA-AFAB-15D30AD24439}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
HKCU\SearchScopes\{929D74D7-A535-43AA-AFAB-15D30AD24439} - http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}&rlz=

==== Reset Google Chrome ======================

C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TVWiz deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Torntv V6.0 deleted successfully

==== Empty IE Cache ======================

C:\Users\MILOSL~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\MILOSL~1\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=69 folders=23 6393239 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\MILOSL~1\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:41:05, on 26.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18231)


Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\GWX\GWX.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\taskeng.exe
U:\1\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE -startup
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [CDAServer] C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - S-1-5-21-1813616799-3502315826-874749141-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 Startup: RT-Updater-SVO.lnk = C:\Auto-diagnostika\VCDS.exe (User '?')
O4 - Startup: RT-Updater-SVO.lnk = C:\Auto-diagnostika\VCDS.exe
O4 - Global Startup: ADnews.lnk = C:\Auto-diagnostika\ADnews.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Lenovo. - C:\Windows\system32\ibmpmsvc.exe
O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe

--
End of file - 4045 bytes

[jaro3]

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE -startup
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy?

[hack01]

# DelFix v1.013 - Logfile created 26/04/2016 at 21:50:40
# Updated 17/04/2016 by Xplode
# Username : Miloslav Štěpánek - LENOVO
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\Miloslav Štěpánek\Desktop\AdwCleaner.exe
Deleted : C:\Users\Miloslav Štěpánek\Desktop\JRT.exe
Deleted : C:\Users\Miloslav Štěpánek\Desktop\JRT.txt
Deleted : C:\Users\Miloslav Štěpánek\Desktop\HijackThis.exe
Deleted : C:\Users\Miloslav Štěpánek\Desktop\hijackthis.log
Deleted : C:\Users\Miloslav Štěpánek\Desktop\RogueKiller.exe
Deleted : C:\Users\Miloslav Štěpánek\Desktop\zoek.com
Deleted : C:\Users\Miloslav Štěpánek\Desktop\zoek.exe
Deleted : C:\Users\Miloslav Štěpánek\Desktop\zoek.scr
Deleted : C:\Users\Miloslav Štěpánek\Downloads\HijackThis.exe
Deleted : C:\Users\Miloslav Štěpánek\Downloads\RogueKiller.exe
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #309 [Windows Update | 03/24/2016 13:11:28]
Deleted : RP #310 [Windows Update | 03/29/2016 00:52:09]
Deleted : RP #311 [Windows Update | 04/01/2016 18:47:31]
Deleted : RP #312 [Windows Update | 04/04/2016 19:07:51]
Deleted : RP #313 [Windows Update | 04/09/2016 04:02:46]
Deleted : RP #314 [Windows Update | 04/12/2016 18:58:47]
Deleted : RP #316 [Installed PL-2303 USB-to-Serial | 04/16/2016 17:42:04]
Deleted : RP #318 [Installed PL-2303 USB-to-Serial | 04/16/2016 17:54:32]
Deleted : RP #320 [Installed uPD78 Dashboard Programmer | 04/16/2016 18:13:02]
Deleted : RP #322 [Configured uPD78 Dashboard Programmer | 04/16/2016 18:28:31]
Deleted : RP #324 [Configured uPD78 Dashboard Programmer | 04/16/2016 18:30:39]
Deleted : RP #325 [Windows Update | 04/23/2016 20:36:33]
Deleted : RP #326 [JRT Pre-Junkware Removal | 04/24/2016 16:29:41]
Deleted : RP #327 [zoek.exe restore point | 04/25/2016 19:22:30]
Deleted : RP #328 [Windows Update | 04/26/2016 01:56:06]

New restore point created !

########## - EOF - ##########



Diky moc,zda se ze o moc lepsi.

[jaro3]

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.