scvhost

Příspěvekod **jaro3** » 09 pro 2016 19:06

špatně , ještě jednou:
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“,
po jeho skončení - vše zatrhni (dej zatržítka vlevo od nálezů , do bílých políček)
- pak klikni na "Remove Selected"
- Počkej, dokud Status box nezobrazí " Removal finished, please review result "
- Klikni na "Open report " a pak na " Open TXT“ a zkopíruj ten log a vlož obsah té zprávy prosím sem. Log je možno nalézt v C:\ProgramData\RogueKiller\Logs - Zavři RogueKiller.

Reklama

kostidrom · Příspěvekod **kostidrom** » 09 pro 2016 19:16

ja vim no pak sem si taky všiml sem mel zaplej antivir tady je oprava

kostidrom · Příspěvekod **kostidrom** » 09 pro 2016 19:16

RogueKiller V12.8.4.0 (x64) [Dec 5 2016] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : hall [Práva správce]
Started from : C:\Users\hall\Desktop\RogueKillerX64.exe
Mód : Prohledat -- Datum : 12/09/2016 17:55:46 (Duration : 00:27:32)

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 0 ¤¤¤

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD154UI ATA Device +++++
--- User ---
[MBR] b611f2117524ac8d662fbfb44ed75a77
[BSP] eb158fbb1be0e99c2f4853140c59b45f : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 153600 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 314779648 | Size: 1277096 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

Příspěvekod **jaro3** » 09 pro 2016 21:56

Tak ještě to další.

kostidrom · Příspěvekod **kostidrom** » 09 pro 2016 22:26

jj zejtra se dotoho pustim a kolik toho jeste bude nak to moc nepomaha

Příspěvekod **jaro3** » 10 pro 2016 09:30

Musíme to dělat postupně..

kostidrom · Příspěvekod **kostidrom** » 10 pro 2016 12:18

jak poznam ze skončil zoek porad tam neni nic k restartu posledni čas je 11 38

kostidrom · Příspěvekod **kostidrom** » 10 pro 2016 12:50

Zoek.exe v5.0.0.1 Updated 19-September-2016
Tool run by hall on so 10.12.2016 at 10:51:16,39.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\hall\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\COMMON~1\BioWare deleted successfully
C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted successfully
C:\PROGRA~3\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98} deleted successfully
C:\Users\hall\AppData\Roaming\ImperiaOnline deleted successfully
C:\Users\hall\AppData\Roaming\Media Player Classic deleted successfully
C:\Users\hall\AppData\Roaming\Pointstone deleted successfully
C:\Users\hall\AppData\Roaming\PunkBuster deleted successfully
C:\Users\hall\AppData\Roaming\rIMPG deleted successfully
C:\Users\hall\AppData\Local\Canon Easy-PhotoPrint EX deleted successfully
C:\Users\hall\AppData\Local\CAPCOM deleted successfully
C:\Users\hall\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\hall\AppData\Local\EmieSiteList deleted successfully
C:\Users\hall\AppData\Local\EmieUserList deleted successfully
C:\Users\hall\AppData\Local\Lenovo deleted successfully
C:\Users\hall\AppData\Local\Opera Software deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11C1806D-F2FF-401C-A5B9-A4F73B4D3B39} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{120C8B0-3CCE-4613-AAE4-54409B63111} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1374982F-39F5-49F0-9DCA-72FCD1E6BCF} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15DF4BF5-8033-441F-8ED5-9789BECD84D3} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15ECC376-42AC-49AA-9CFD-9D17B465DBD} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{17FA4F9E-E1C1-45E0-B420-6085AED4ADE} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{18393A4C-9D2A-468A-97A-29F0113E20CC} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{193AB08C-2CF9-444D-B830-7B8D4E75E6} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1942BB03-A57B-44D2-BE7A-68781D63CFD7} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B58EDA3-B99F-4485-93DC-FF71757DAD57} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1E86650C-8E63-43D9-82EB-D3781FAAF64B} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25BEA34-DF6A-49FB-8968-DF65D91521D5} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2A4174C5-5857-438D-93CA-A8653F933FA} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2ADA4CDC-F93C-4A83-9CD2-6C7CA822CD1A} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2FD26015-B811-41F4-B144-E4C6CC967EFB} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{317B5917-20AC-4FF2-9A56-3EA5763D323} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{351B3185-9EF5-4959-B824-3CC41C68AC5} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{35577807-DA7-40BD-9C91-254233146767} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{35A3E507-650F-4D77-91F2-B9EF928FD2F} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{36639F52-32E6-4094-B644-61C5EA29B87C} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{369F87ED-72F-4346-BD6-D06F35A56B8A} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{37D994BC-7ACF-4742-9ED6-C02BAC86DFB} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{389D8BB8-A024-4B5D-8932-59F1E8FEAA6} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{39E8E3BC-C6AC-4374-8675-51B63FE24AF} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3DCD95CA-4B07-48F7-BEE-AECD10CDA53F} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3EE20797-5CE1-4016-AE7C-492D9E10FB1F} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4020700F-A425-42BE-A024-71F1069398} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{406969FC-12B6-4D0D-B914-6D636B1D35} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{40EA4EA3-45DD-4A5E-9928-35E48478BC4C} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{41E3E3A5-6536-4A6F-BE56-60152ECA47C3} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{427B2596-A1C9-4164-BDAA-61B883FA8FB6} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47D618A3-89DD-4810-BA15-7D5304A627D} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{48E9D986-E130-4BDA-9B53-A8FB5411BDD} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4972F884-EFC0-4D07-A3DE-73E1931BB8EA} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4973E729-B699-43BF-8BB-F9EEFDADBE5} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4D169AAB-2679-4AA0-AE3A-5739D82A977F} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E5BFB80-6EC1-4B60-B090-1FF9FB6E578C} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{503F0D19-2C9C-4108-B293-9296AFFB85DD} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{522931D3-E69A-4A43-9AE9-F5F545AEC3} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{54E1279C-8686-4023-AC43-72509B84A89B} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{551DB5DC-D407-4893-A6BB-9746536BDFA3} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{574D94FE-627F-4DA6-9DA3-43689DBFD6C6} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57BA53C9-E6BF-4EB0-96F9-3D5BFEFD22D} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{58741AF4-474C-468E-8A10-D5D6B77EB23F} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5B2B34CB-527C-4462-8A78-40148199BA44} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5B788BAE-12C3-44E8-95FD-4C5EB2ECDA6} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5B8409CA-4E6-4FAF-939D-A7AEFAA57C6} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5DF407FA-20C-4A53-A218-E21F98640F2} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E60DA64-6284-4DF9-825B-E73F1FAF78B0} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5F18D254-25E6-4B6A-B53D-6CD5FEFE4ABE} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5F70E4EA-8BAB-47E7-8794-9763DE609} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{64A325DB-4A5E-4D30-9252-67D688AB3A9} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65F93A34-DE7B-4A8F-B6B0-C8EBC3AE9FB0} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{69450FFA-31CC-4106-A053-2B5BFFDE111} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6B2757E1-FD93-49A3-8A1E-1DAC4A7C9D13} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6b59591d-a756-4b88-92d1-5d8fce61bed9} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6CE828F1-F74D-4E00-B5E3-DC6272E1C2B} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6D29C2DB-71D-4049-B06C-55E2BF604EAE} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6DC2D52E-1FD3-4113-8F5B-4B968C19C5F7} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F932999-A4AC-4293-BBA2-6A7E326D3ADE} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{72028DB9-5023-4A91-8732-E841F510B58F} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{73EFAFC6-7C8F-4289-AA5A-9A2B3913AF4} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7607792A-45BE-4E1F-A6F-4C3B549167D} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{772BFF0-CCE6-416B-96D5-7EB023782136} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A77DC26-21A5-4EBF-9048-A56E912AA73D} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7B286E6D-CDFB-4282-A36B-2825E022FF4} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7CA6AE29-5D35-4F71-B058-872964229AF} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7D2CD3DD-EE5C-4CF7-AEF-4246BD329780} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81DC1880-D202-49F4-9C38-C4A4AEEB619} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83A403A5-7ED5-4E60-8D6B-9331C398F1D} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87AC2572-3772-4D4B-A8B1-321368697D67} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87B0F76D-A6C1-4F85-88D8-926D8DFB17DC} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8B99F90A-BE33-42C5-822F-BFC4E5D16AC} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8C09A718-E3B4-4739-B094-9DD4515918B} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8CD006E8-50F1-489A-8F69-5678B2243A3} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8D490D39-E17C-44C8-893A-F9F8D276EC8} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9286964C-A6DB-4C6A-B290-50B3137A9E51} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{94B055CD-7BEF-47D2-90E1-0CE1E70D26A} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95E40A2E-31A-4809-A7AF-688ADFD7A70} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C1AD287-BE32-45E8-8475-87A5FB607D} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A0FD7F18-10E0-4678-9941-E3A0F4881E9} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A3C21A53-693A-426A-ACD6-66F4A5A8C6AE} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A6A7000C-4AF1-4F9C-AE4F-F52BFFF3893C} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A956613C-4911-44BB-8A50-ECE3C43B2440} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A9A17074-4B81-4548-8C83-175CC2F9BEA} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A9CE4F89-50BC-4689-A1AB-C15680DF6DB6} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AD78FD77-8D99-41AF-8697-1B5CBB2190EE} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ADD6CE53-C9CC-4EEC-86B3-894CFBCCB1BF} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AE8C3886-4AF6-4C26-99EA-A75A98D37EC7} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B47A130E-1A6C-4217-9A9F-B68D7A45D1B} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B5FE5C84-21AF-4B82-AAED-D9DD1D8C7526} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B6FF8F03-4728-4B79-BEC3-7F8304BF6D8} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BAD77B54-DF50-4551-997-2D9B3FE0AE18} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BE1B1F14-54ED-49B0-854D-324BE8A84CCB} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BF110ED5-EE42-499F-8A76-DA7B6B8399B} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C0EADA36-1CF3-4500-92F1-279294E681} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2021E8F-70A1-46DC-8626-2553886335E} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2C81AE0-899E-411C-8B31-E11797628CE} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3AB2BC3-D55-4945-B925-CA93DDD463FC} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8EA8AFA-5817-44B2-8C8B-FCA6BD79B64} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C9E995CA-9A6-4961-BA1E-1EA9A66F5B3} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CA845D67-B019-481D-9466-78962FAB655} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CE3D0936-A5C0-4918-ACB1-168D4E51F06D} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D3B37551-934D-4016-B7F1-3BBDC6CA3B2} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D5E16B44-260B-4C4B-93D-E29A63EBC625} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D70EDC99-8E4B-4CEA-884-21B26890189D} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D74CE752-1B27-4530-B27-612DB9E57B61} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7AD9A78-1817-4D65-919-A8D587E294BC} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D8D09B6A-5ACC-4CF8-894A-3C7DF57FFFB8} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DA076848-27AE-44EA-97BF-EB3C1F81D3} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DB530BE4-2325-44D6-85B2-1CAF56E0CC4C} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDE72138-FE90-4328-A526-DC16DEB67B3} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DF65114-776D-4AD1-BB4C-1C70549D271B} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DFE74595-9B8F-4DB6-96B1-DC80BAEF10} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E01B0258-92A4-4FB9-97F0-9D7CD5C6E354} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0239119-19ED-46B8-A118-7D9DCA76242} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E2BB1E59-CCCA-49E9-90EB-E8826A06C22} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E3457ECD-7E6E-4513-A82F-127C439279F} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E88340BF-6FDD-4776-BD10-11AD2662C06B} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB83A61A-AE46-4275-A353-9954D7E51924} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EF536A70-E6F3-4798-BFD4-4B23F9AB9BCC} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F18BE90-1108-4D19-A435-EBC77B9BE5E0} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F1C4D525-868-48C7-8F4E-9C9B996EA1D} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F3730528-ADAC-4795-98FA-1DC6CFB3FAD} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F7098D62-D8BD-46C4-A3C4-9836AE18C4F8} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F72392E-FAC-48DD-B56B-1EBECE594F3} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F94306C3-B83E-4B22-AA86-D2DEA9C8D1B} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9553139-2704-42AF-9FB9-48B8B9724678} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FA1FC88E-CF7B-46BE-9BB4-2F78254331BE} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC678A2B-2FCD-4A0D-A520-30D0C7DA7245} deleted successfully
HKEY_USERS\S-1-5-21-3633478581-3110627933-1294825731-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FD878D8E-7463-4D25-ABCE-5739E0DE8E53} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6b59591d-a756-4b88-92d1-5d8fce61bed9} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\43mv6qhq.default-1390852538789\prefs.js:

Added to C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\43mv6qhq.default-1390852538789\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\fq1m5hoa.default-1427026225799\prefs.js:
user_pref("browser.startup.homepage", "about:home"about:home);
user_pref("browser.search.selectedEngine", "Google");

Added to C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\fq1m5hoa.default-1427026225799\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\qqfe1697.default-1476900301052\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/");

Added to C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\qqfe1697.default-1476900301052\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\0bm8iz0g.default-1407788690242\prefs.js:

Added to C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\0bm8iz0g.default-1407788690242\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\77rnikg9.default-1404569433844\prefs.js:

Added to C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\77rnikg9.default-1404569433844\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\g63tpjqe.default-1431534545162\prefs.js:

Added to C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\g63tpjqe.default-1431534545162\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\oqo1ms2e.default-1407783502152\prefs.js:

Added to C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\oqo1ms2e.default-1407783502152\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\upb9zij7.default-1407776402230\prefs.js:

Added to C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\upb9zij7.default-1407776402230\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\43mv6qhq.default-1390852538789

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_10.12.2016_1137_.backup

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\fq1m5hoa.default-1427026225799

user.js not found
---- Lines Search removed from prefs.js ----
user_pref("extensions.vb@yandex.ru.description", "Keep all your favorite sites in one place with Visual Bookmarks. Simply click on the one of the mini
---- FireFox user.js and prefs.js backups ----

prefs_10.12.2016_1137_.backup

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\qqfe1697.default-1476900301052

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_10.12.2016_1137_.backup

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\0bm8iz0g.default-1407788690242

user.js not found
---- FireFox user.js and prefs.js backups ----

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\77rnikg9.default-1404569433844

user.js not found
---- FireFox user.js and prefs.js backups ----

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\g63tpjqe.default-1431534545162

user.js not found
---- FireFox user.js and prefs.js backups ----

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\oqo1ms2e.default-1407783502152

user.js not found
---- FireFox user.js and prefs.js backups ----

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\upb9zij7.default-1407776402230

user.js not found
---- FireFox user.js and prefs.js backups ----

==== Deleting Files \ Folders ======================

C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} not found
C:\PROGRA~3\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98} not found
C:\PROGRA~2\Total PDF Converter deleted
C:\Users\hall\AppData\Roaming\ProtectDISC deleted
C:\Users\hall\AppData\LocalLow\{1E00674D-951A-57D6-A3AE-6282E3D4336A} deleted
C:\Users\hall\AppData\LocalLow\{222799B9-0BF5-E169-E325-EAE60947F97C} deleted
C:\Users\hall\AppData\LocalLow\{9A05D4D3-E174-3E29-8ACA-51915335F34F} deleted
C:\Users\hall\AppData\Local\Packages\windows_ie_ac_001\AC\{1E00674D-951A-57D6-A3AE-6282E3D4336A} deleted
C:\Users\hall\AppData\Local\Packages\windows_ie_ac_001\AC\{222799B9-0BF5-E169-E325-EAE60947F97C} deleted
C:\Users\hall\AppData\Local\Packages\windows_ie_ac_001\AC\{9A05D4D3-E174-3E29-8ACA-51915335F34F} deleted
C:\Users\hall\.android deleted
C:\PROGRA~2\Genie Soft deleted
C:\Users\hall\AppData\Roaming\ProductData deleted
C:\Users\hall\AppData\Roaming\kingsoft deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Kingsoft deleted
C:\PROGRA~3\kingsoft deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705} deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\hall\AppData\Local\Unity deleted
C:\Users\hall\AppData\Local\cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReviverSoft deleted
C:\Users\Public\Documents\GenieSoft deleted
C:\Users\hall\AppData\LocalLow\Unity deleted
C:\Users\hall\AppData\LocalLow\{71DC2732-5AC9-3DA5-CCC5-EA3A3D391F3A} deleted
C:\Users\hall\AppData\LocalLow\{DD0B4981-80FE-D4E4-02FE-8E6689F3D4DE} deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Users\hall\Documents\Genie Soft deleted
C:\Windows\sysWoW64\config\systemprofile\Documents\Genie Soft deleted
"C:\Users\hall\AppData\Roaming\BYAIAMUF" deleted
"C:\Users\hall\AppData\Roaming\GNOK" deleted
"C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\fq1m5hoa.default-1427026225799\yandex-vb" deleted

==== Orphaned Tasks deleted from Registry ======================

ASC9_PerformanceMonitor deleted
ASC9_SkipUac_hall deleted
Driver Booster SkipUAC (hall) deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\43mv6qhq.default-1390852538789
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\fq1m5hoa.default-1427026225799
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\qqfe1697.default-1476900301052
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\0bm8iz0g.default-1407788690242
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\77rnikg9.default-1404569433844
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\g63tpjqe.default-1431534545162
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\oqo1ms2e.default-1407783502152
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hall\AppData\Roaming\Mozilla\Firefox\Profiles\upb9zij7.default-1407776402230
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

kostidrom · Příspěvekod **kostidrom** » 10 pro 2016 14:30

Zemana AntiMalware 2.70.2.25 (nainstalovaný)

-------------------------------------------------------
Scan Result : Dokončeno
Scan Date : 2016.12.10
Operating System : Windows 7 64-bit
Processor : 2X Pentium(R) Dual-Core CPUE5700 @ 3.00GHz
BIOS Mode : Legacy
CUID : 127DA59BAD6CA7B90754C2
Scan Type : System Scan
Duration : 13m 59s
Scanned Objects : 79881
Detected Objects : 2
Excluded Objects : 0
Read Level : SCSI
Auto Upload : Vypnuto
Detect All Extensions : Vypnuto
Scan Documents : Vypnuto
Domain Info : WORKGROUP,0,2

Detected Objects
-------------------------------------------------------

Soubor hosts
Status : Skenováno
Object : %systemroot%\system32\drivers\etc\hosts
MD5 : 138AA29868C16ED60D4890BF4197A709
Publisher : -
Size : 841
Version : -
Detection : Změna v hosts souboru
Cleaning Action : Opravit
Related Objects :
Soubor hosts - 127.0.0.1 - ca
Soubor - %systemroot%\system32\drivers\etc\hosts

main.dat
Status : Skenováno
Object : NE->c:\users\hall\appdata\roaming\main.dat
MD5 : -
Publisher : -
Size : -
Version : -
Detection : Adware:Win32/Linkury.G!Neng
Cleaning Action : Karanténa
Related Objects :
(null) - (null)

Cleaning Result
-------------------------------------------------------
Cleaned : 2
Reported as safe : 0
Failed : 0

kostidrom · Příspěvekod **kostidrom** » 10 pro 2016 14:40

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:35:50, on 10.12.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)

FIREFOX: 50.0.2 (x86 cs)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\hall\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1me10IE11ENUS/MSE_WCP
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [reset] regedit /s reset.reg
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXBannerAdPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXBannerAdPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXPlayerPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXPlayerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDevicePanePlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDevicePanePlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDFXAudioPlugin.dll] "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\DivX\DivX Player\DPXPlugins\DPXDFXAudioPlugin.dll",DllRegisterServer
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAM Controller Service (ZAMSvc) - Zemana Ltd. - C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe

--
End of file - 11437 bytes
je to lepsi tet svchost ma 30-40% procesor celkem kolem 50% s internetem asi to bude jeste v tom wu pořad se mi to nepodařilo s aktualizovat dam foto s toho

kostidrom · Příspěvekod **kostidrom** » 10 pro 2016 14:43

tak tady asi nejde vložit print screen bych ti poslal na email

a mam ty anitiviry od tebe smazat ??

Příspěvekod **jaro3** » 11 pro 2016 09:24

nic zatím nemaž!

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

scvhost Vyřešeno

Re: scvhost

Re: scvhost

Re: scvhost

Re: scvhost

Re: scvhost

Re: scvhost

Re: scvhost

Re: scvhost

Re: scvhost

Re: scvhost

Re: scvhost

Re: scvhost

Kdo je online