Prosím o kontrolu logu - Zpomalený upload Vyřešeno

[ad3san]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:30:40, on 6.9.2014
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\ad3san\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds& ... GGW3JAX&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds& ... GGW3JAX&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: CrossriderApp0060548 - {11111111-1111-1111-1111-110611051148} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office12\GR469A~1.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MIF5BA~1\Office12\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{FEF42942-7200-4C49-B2E9-0BDF332BB359}: NameServer = 192.168.0.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MIF5BA~1\Office12\GRA32A~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9240 bytes

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[ad3san]

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6.9.2014
Scan Time: 18:29:42
Logfile: malware.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.09.06.06
Rootkit Database: v2014.08.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7
CPU: x64
File System: NTFS
User: ad3san

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 339988
Time Elapsed: 20 min, 22 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 23
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0060548.BHO, Quarantined, [b3bb0edcb8c38aacbda202fbdd2545bb],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0060548.BHO.1, Quarantined, [ee80eefc16659c9a93cc04f9e71b6d93],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0060548.Sandbox, Quarantined, [f77704e65f1cd561144b8a73e0227987],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0060548.Sandbox.1, Quarantined, [2549b5351f5c9b9b372858a514eee61a],
PUP.Optional.PlusHD.A, HKLM\SOFTWARE\WOW6432NODE\HD-V1.9, Quarantined, [c1ada9416615f1452f3295724eb5e51b],
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\istartsurfSoftware, Quarantined, [eb83b53539428babccab58a029d950b0],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0060548.BHO, Quarantined, [422cedfda9d23ff778e78578b151e917],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0060548.BHO.1, Quarantined, [5519fbef95e684b2233c5e9f40c2b24e],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0060548.Sandbox, Quarantined, [2c421dcd7308f73fd887b944837f08f8],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0060548.Sandbox.1, Quarantined, [610de505df9cb97d99c618e56f938d73],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE, Quarantined, [3c3214d6700b5cda15fda95607fb5ea2],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, Quarantined, [5618af3bc5b64bebca698ad632d28f71],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, Quarantined, [561800eadf9cf640aa8a83dd17ede020],
PUP.Optional.SystemSpeedup, HKLM\SOFTWARE\WOW6432NODE\SYSTWEAK\ssd, Quarantined, [f37b826849324ee86dcab44d3fc4ba46],
PUP.Optional.OffersWizard.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\nethfdrv, Quarantined, [73fbd317483347efe18712e56b977090],
Malware.Trace, HKU\S-1-5-21-4115119152-2746801420-2512345831-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DC3_FEXEC, Quarantined, [66085b8f8deeaa8cdf90ccfd877ccc34],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-4115119152-2746801420-2512345831-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, Quarantined, [7cf2bf2b27542c0a0589b76f8a798d73],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-4115119152-2746801420-2512345831-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Quarantined, [7ef059910873d95dab444af263a1cb35],
PUP.Optional.SystemSpeedup, HKU\S-1-5-21-4115119152-2746801420-2512345831-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\ssd, Quarantined, [3d31df0b6f0c4fe7ca6c798848bb27d9],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110611051148}, Quarantined, [6c0232b84d2e7fb7f4058a6c5ea6e61a],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110611051148}, Quarantined, [6c0232b84d2e7fb7f4058a6c5ea6e61a],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4115119152-2746801420-2512345831-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{11111111-1111-1111-1111-110611051148}, Quarantined, [6c0232b84d2e7fb7f4058a6c5ea6e61a],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{11111111-1111-1111-1111-110611051148}, Quarantined, [6c0232b84d2e7fb7f4058a6c5ea6e61a],

Registry Values: 2
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE|path, C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe, Quarantined, [3c3214d6700b5cda15fda95607fb5ea2]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-4115119152-2746801420-2512345831-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0X2O1C0R2R1R, Quarantined, [7ef059910873d95dab444af263a1cb35]

Registry Data: 6
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1 ... 0LEGGW3JAX, Good: (iexplore.exe), Bad: (C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1 ... 0LEGGW3JAX),Replaced,[fe70846690eb1c1a646d18cd0004718f]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.istartsurf.com/web/?type=ds& ... GGW3JAX&q={searchTerms}, Good: (www.google.com), Bad: (http://www.istartsurf.com/web/?type=ds& ... GGW3JAX&q={searchTerms}),Replaced,[94da1ecc8deea6909235568faa5a3cc4]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1 ... 0LEGGW3JAX, Good: (iexplore.exe), Bad: (C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1 ... 0LEGGW3JAX),Replaced,[c2ac5e8c9ddee94df9d82eb77b898c74]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.istartsurf.com/web/?type=ds& ... GGW3JAX&q={searchTerms}, Good: (www.google.com), Bad: (http://www.istartsurf.com/web/?type=ds& ... GGW3JAX&q={searchTerms}),Replaced,[65098763ef8c61d574535e8741c325db]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SECURITY CENTER|AntiVirusDisableNotify, 1, Good: (0), Bad: (1),Replaced,[6b032dbda6d54fe7d8cd21ca3dc73fc1]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SECURITY CENTER|UpdatesDisableNotify, 1, Good: (0), Bad: (1),Replaced,[8fdffaf0c4b7f541dacdb9320301ae52]

Folders: 11
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config, Quarantined, [c3ab01e95b20eb4b6310d32c1ee4af51],
Stolen.Data, C:\Users\ad3san\AppData\Roaming\dclogs, Quarantined, [e28cbf2bdba0fe38f138995f3fc49e62],
PUP.Optional.OpenCandy, C:\Users\ad3san\AppData\Roaming\OpenCandy, Quarantined, [3638aa402655290d2b213e8bf21025db],
PUP.Optional.OpenCandy, C:\Users\ad3san\AppData\Roaming\OpenCandy\537E9E29CE484CB097E203DDC563D7DD, Quarantined, [3638aa402655290d2b213e8bf21025db],
PUP.Optional.OpenCandy, C:\Users\ad3san\AppData\Roaming\OpenCandy\9A4EF74A05344E038BC9E7823CA5FB7F, Quarantined, [3638aa402655290d2b213e8bf21025db],
PUP.Optional.AdvancedSystemProtector.A, C:\ProgramData\Systweak\Advanced-System-Protector, Quarantined, [2b432fbb5625c5713c92dc0b54aea15f],
PUP.Optional.AdvancedSystemProtector.A, C:\ProgramData\Systweak\Advanced-System-Protector\2.1.1000.13665, Quarantined, [2b432fbb5625c5713c92dc0b54aea15f],
PUP.Optional.AdvancedSystemProtector.A, C:\ProgramData\Systweak\Advanced-System-Protector\signatures, Quarantined, [2b432fbb5625c5713c92dc0b54aea15f],
PUP.Optional.IStartSurf.A, C:\Users\ad3san\AppData\Roaming\istartsurf, Quarantined, [f6781ccefb802115ce60a743dc2625db],
PUP.Optional.IStartSurf.A, C:\Users\ad3san\AppData\Roaming\istartsurf\log, Quarantined, [f6781ccefb802115ce60a743dc2625db],
PUP.Optional.MultiPlug, C:\ProgramData\Adblocker, Quarantined, [8be39a50cdae66d02aed6c84837f0df3],

Files: 43
PUP.Optional.Opencandy, C:\Users\ad3san\AppData\Roaming\rmi\offer_downloader.exe, Quarantined, [412d26c4f98233039e1cb7be4cb67888],
PUP.Optional.Bitcoin, C:\Windows\SysWOW64\acumnclgjp.exe, Quarantined, [8fdf64860774fd3925de7c47ab5602fe],
PUP.Optional.Bitcoin, C:\Windows\SysWOW64\acumncpyey.exe, Quarantined, [e886a2489cdf76c063a0e0e308f9728e],
Trojan.BitMiner, C:\Windows\SysWOW64\dcgmnclgjp.exe, Quarantined, [b2bcb832304b7db920e1d8fcfd047789],
Trojan.BitMiner, C:\Windows\SysWOW64\dcgmncpyey.exe, Quarantined, [a2cc09e1c4b787af1de4fbd932cf52ae],
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmnclgjp.exe, Quarantined, [e28cbc2edd9e6dc99fb5b468629f9868],
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmncpyey.exe, Quarantined, [f777ac3e4e2d50e6d183f626c43dee12],
PUP.Optional.Somoto, C:\Users\ad3san\AppData\Local\Temp\UpdateCheckerSetup.exe, Quarantined, [b5b97b6fef8cdd5969be54d3798756aa],
PUP.Optional.SearchHijacker.A, C:\Users\ad3san\AppData\Local\Temp\smt_istartsurf.exe, Quarantined, [d29caf3b730801353f8a3d6f16eb4eb2],
PUP.Optional.Somoto, C:\Users\ad3san\Downloads\Binding-of-issac-cheat-inject-exe_downloader-IbQAQJYG0 (1).exe, Quarantined, [6c02ad3d3b403cfa207fdc91c044dc24],
PUP.Optional.Somoto, C:\Users\ad3san\Downloads\Binding-of-issac-cheat-inject-exe_downloader-IbQAQJYG0 (2).exe, Quarantined, [0a6474769eddd363039c66076f95a15f],
PUP.Optional.RegCleanerPro, C:\Windows\System32\Tasks\ASP, Quarantined, [da949c4e6f0c3ff7bbc60cedbf439f61],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-1, Quarantined, [9ed0c5250c6f51e55eaf4bb427db6997],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-11, Quarantined, [9cd240aadd9eb0864bc2619e60a2b749],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-2, Quarantined, [571761895a21d16544c9c53a44be7e82],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-3, Quarantined, [016d09e12556ba7c39d4b24d62a0a45c],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-4, Quarantined, [79f5f7f3dba044f25ab3db24b9491de3],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-6, Quarantined, [2d4120cad1aaac8a2de04bb452b0e41c],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-7, Quarantined, [ea849e4c3e3df44230dd649b4eb409f7],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\ver.xml, Quarantined, [c3ab01e95b20eb4b6310d32c1ee4af51],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\uninstinethnfd.exe, Quarantined, [c3ab01e95b20eb4b6310d32c1ee4af51],
Stolen.Data, C:\Users\ad3san\AppData\Roaming\dclogs\2014-07-22-3.dc, Quarantined, [e28cbf2bdba0fe38f138995f3fc49e62],
Stolen.Data, C:\Users\ad3san\AppData\Roaming\dclogs\2014-07-23-4.dc, Quarantined, [e28cbf2bdba0fe38f138995f3fc49e62],
Stolen.Data, C:\Users\ad3san\AppData\Roaming\dclogs\2014-07-24-5.dc, Quarantined, [e28cbf2bdba0fe38f138995f3fc49e62],
Stolen.Data, C:\Users\ad3san\AppData\Roaming\dclogs\2014-08-11-2.dc, Quarantined, [e28cbf2bdba0fe38f138995f3fc49e62],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-1.job, Quarantined, [323cb931accfd75f208908550400966a],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-11.job, Quarantined, [bfaf09e12e4d092d03a660fd34d0cc34],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-2.job, Quarantined, [2747a842ec8fbe78affa2f2e33d128d8],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-3.job, Quarantined, [a8c66b7f79028baba603c796c83cc937],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-4.job, Quarantined, [aec0a842611a80b6f5b4b3aa25dfba46],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-6.job, Quarantined, [b5b9f5f558239d99d4d5ee6f83819e62],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d945d8ec-a9b4-4460-b63e-3f2822de048d-7.job, Quarantined, [eb83f0fa4338ac8a4465a5b8d52feb15],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job, Quarantined, [620c8b5ff2894cea9d22b9a46d976898],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore, Quarantined, [303e9e4ccbb00432625e24396f95d030],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job, Quarantined, [8de1edfdb6c583b3843d7de021e329d7],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA, Quarantined, [f27c01e9710afc3a8a3866f7a85c04fc],
PUP.Optional.OpenCandy, C:\Users\ad3san\AppData\Roaming\OpenCandy\537E9E29CE484CB097E203DDC563D7DD\AVG-PC-TuneUp2014-cz-CZ-p4v1.exe, Quarantined, [3638aa402655290d2b213e8bf21025db],
PUP.Optional.OpenCandy, C:\Users\ad3san\AppData\Roaming\OpenCandy\9A4EF74A05344E038BC9E7823CA5FB7F\AVG-PC-TuneUp2014-cz-CZ-p4v1.exe, Quarantined, [3638aa402655290d2b213e8bf21025db],
PUP.Optional.OpenCandy, C:\Users\ad3san\AppData\Roaming\OpenCandy\9A4EF74A05344E038BC9E7823CA5FB7F\AVG-PC-TuneUp2014.exe, Quarantined, [3638aa402655290d2b213e8bf21025db],
PUP.Optional.IStartSurf.A, C:\Users\ad3san\AppData\Roaming\istartsurf\UninstallManager.exe, Quarantined, [f6781ccefb802115ce60a743dc2625db],
PUP.Optional.IStartSurf.A, C:\Users\ad3san\AppData\Roaming\istartsurf\log\UninstallManager_2014-09-05[16-56-37-015].log, Quarantined, [f6781ccefb802115ce60a743dc2625db],
PUP.Optional.MultiPlug, C:\ProgramData\Adblocker\9K.dat, Quarantined, [8be39a50cdae66d02aed6c84837f0df3],
PUP.Optional.IStartSurf.A, C:\Users\ad3san\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://www.istartsurf.com/?type=hp&ts=1409488857&from=smt&uid=HitachiXHTS543232L9A300_080814FB0400LEGGW3JAX" ],), Replaced,[9ad4b535205b90a65ba66bb7e81d03fd]

Physical Sectors: 0
(No malicious items detected)


(end)

# AdwCleaner v3.309 - Report created 06/09/2014 at 19:24:45
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Professional (64 bits)
# Username : ad3san - AD3SAN-PC
# Running from : C:\Users\ad3san\Desktop\adwcleaner_3.309.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Windows\System32\roboot64.exe
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\save Ono
Folder Found : C:\ProgramData\Systweak
Folder Found : C:\Users\ad3san\AppData\Local\globalUpdate
Folder Found : C:\Users\ad3san\AppData\Local\Mobogenie
Folder Found : C:\Users\ad3san\AppData\Local\Temp\PodoWeb
Folder Found : C:\Users\ad3san\AppData\Local\torch
Folder Found : C:\Users\ad3san\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Found : C:\Users\ad3san\Documents\Mobogenie
Folder Found : C:\Windows\SysWOW64\hotspot shield

***** [ Scheduled Tasks ] *****

Task Found : ASP
Task Found : LaunchSignup

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\anchorfree
Key Found : HKCU\Software\GlobalUpdate
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKCU\Software\RegisteredApplicationsEx
Key Found : HKCU\Software\systweak
Key Found : [x64] HKCU\Software\anchorfree
Key Found : [x64] HKCU\Software\GlobalUpdate
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : [x64] HKCU\Software\RegisteredApplicationsEx
Key Found : [x64] HKCU\Software\systweak
Key Found : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655055548}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666056648}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\GlobalUpdate
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\systweak
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655055548}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666056648}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.16385

Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.istartsurf.com/web/?type=ds& ... GGW3JAX&q={searchTerms}
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.istartsurf.com/web/?type=ds& ... GGW3JAX&q={searchTerms}

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\ad3san\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R2].txt - [8317 octets] - [06/09/2014 19:24:45]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [8377 octets] ##########

[memphisto]

V adw nech vše smazat a dodej log po smazání

Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

[ad3san]

# AdwCleaner v3.309 - Report created 07/09/2014 at 10:12:48
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Professional (64 bits)
# Username : ad3san - AD3SAN-PC
# Running from : C:\Users\ad3san\Desktop\adwcleaner_3.309.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

[!] Folder Deleted : C:\ProgramData\apn
[!] Folder Deleted : C:\ProgramData\Systweak
[!] Folder Deleted : C:\ProgramData\save Ono
[!] Folder Deleted : C:\Windows\SysWOW64\hotspot shield
[!] Folder Deleted : C:\Users\ad3san\AppData\Local\globalUpdate
[!] Folder Deleted : C:\Users\ad3san\AppData\Local\Mobogenie
[!] Folder Deleted : C:\Users\ad3san\AppData\Local\torch
[!] Folder Deleted : C:\Users\ad3san\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
[!] Folder Deleted : C:\Users\ad3san\Documents\Mobogenie
File Deleted : C:\Windows\System32\roboot64.exe

***** [ Scheduled Tasks ] *****

Task Deleted : ASP
Task Deleted : LaunchSignup

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655055548}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666056648}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655055548}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666056648}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKCU\Software\anchorfree
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\RegisteredApplicationsEx
Key Deleted : HKCU\Software\systweak
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7600.16385

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\ad3san\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R2].txt - [8525 octets] - [06/09/2014 19:24:45]
AdwCleaner[R3].txt - [8526 octets] - [06/09/2014 20:43:06]
AdwCleaner[R4].txt - [8586 octets] - [07/09/2014 10:09:17]
AdwCleaner[S0].txt - [8120 octets] - [07/09/2014 10:12:48]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8180 octets] ##########

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 16 ¤¤¤
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NEVYBRÁNO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NEVYBRÁNO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NEVYBRÁNO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{AE07892C-F3BE-4EF2-8D52-8BC11ED96A5A} | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NEVYBRÁNO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{AE07892C-F3BE-4EF2-8D52-8BC11ED96A5A} | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NEVYBRÁNO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{AE07892C-F3BE-4EF2-8D52-8BC11ED96A5A} | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NEVYBRÁNO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0 -> NEVYBRÁNO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0 -> NEVYBRÁNO
[PUM.SecurityCenter] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Security Center | AntiVirusDisableNotify : 0 -> NEVYBRÁNO
[PUM.SecurityCenter] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Security Center | UpdatesDisableNotify : 0 -> NEVYBRÁNO
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> NEVYBRÁNO
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> NEVYBRÁNO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NEVYBRÁNO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NEVYBRÁNO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NEVYBRÁNO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NEVYBRÁNO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: NENAHRÁNO [0xc000036b]) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 9182fa16053780338cf3d4e90ff24f8c
[BSP] c5774b5e447991626b0b24f79d357a7e : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 63 | Size: 10244 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 20981760 | Size: 147501 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 323063808 | Size: 143872 MB
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 617713664 | Size: 3626 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_09072014_103157.log

[Orcus]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva" a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

====================================================

Stáhni
Zoek.exe

a ulož si ho na plochu.
Zavři všechny ostatní programy, okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor, náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

Klikni na Run Script
Program provede sken, opravu, sken i oprava může trvat i více minut, je třeba posečkat do konce. Do okna neklikej!
rogram nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů, jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

[ad3san]

RogueKiller V9.2.9.0 (x64) [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : https://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : ad3san [Práva správce]
Mód : Odebrat -- Datum : 09/07/2014 12:47:13

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 18 ¤¤¤
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{AE07892C-F3BE-4EF2-8D52-8BC11ED96A5A} | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{AE07892C-F3BE-4EF2-8D52-8BC11ED96A5A} | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NAHRAZENO ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{AE07892C-F3BE-4EF2-8D52-8BC11ED96A5A} | DhcpNameServer : 213.46.172.37 213.46.172.36 -> NAHRAZENO ()
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0 -> NAHRAZENO (1)
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0 -> NAHRAZENO (1)
[PUM.SecurityCenter] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Security Center | AntiVirusDisableNotify : 0 -> NAHRAZENO ()
[PUM.SecurityCenter] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Security Center | UpdatesDisableNotify : 0 -> NAHRAZENO ()
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> NAHRAZENO (1)
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> NAHRAZENO (1)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NAHRAZENO (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NAHRAZENO (0)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Internet Explorer\Main | Start Page : about:blank -> NAHRAZENO (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Internet Explorer\Main | Start Page : about:blank -> NAHRAZENO (http://go.microsoft.com/fwlink/p/?LinkId=255141)

¤¤¤ naplánované úlohy : 2 ¤¤¤
[Suspicious.Path] temp_d945d8ec-a9b4-4460-b63e-3f2822de048d-2.job -- C:\Program Files (x86)\HD-V1.9\d945d8ec-a9b4-4460-b63e-3f2822de048d-2.exe (/kloplv /fxyIntQ='HD-V1.9' /FHAWJDE=60548 /TzguVHE='001859' /CAeXaA='0' /XhwUfsJ='0' /xTSSFMgi=A6C63B240A7345469B317119FD856A41IE /ulcqLL=fcf374977923a52bb5b8f4ab2576bfb9 /fEzXLKkn=1_34_07_01 /gUaDaeN=1406116949 /RNzRlpPKl=http://stats.infodatacloud.com /QMksGtdF=http://errors.infodatacloud.com /LAYmmfrYS=11111111-1111-1111-1111-110611051148 /qVLxVTQE=ch /agijABYa /rpPtSLyxH /YEaTVz='http://update.infodatacloud.com/ie_enable_agent_updates/{CAMP_ID}/update.json' /ElMYU='installer' /sPJbsQAM='C:\Users\ad3san\AppData\Local\Temp\HD-V1.9Installer_1406116949.log') -> VYMAZÁNO
[Suspicious.Path] \\temp_d945d8ec-a9b4-4460-b63e-3f2822de048d-2 -- C:\Program Files (x86)\HD-V1.9\d945d8ec-a9b4-4460-b63e-3f2822de048d-2.exe (/kloplv /fxyIntQ='HD-V1.9' /FHAWJDE=60548 /TzguVHE='001859' /CAeXaA='0' /XhwUfsJ='0' /xTSSFMgi=A6C63B240A7345469B317119FD856A41IE /ulcqLL=fcf374977923a52bb5b8f4ab2576bfb9 /fEzXLKkn=1_34_07_01 /gUaDaeN=1406116949 /RNzRlpPKl=http://stats.infodatacloud.com /QMksGtdF=http://errors.infodatacloud.com /LAYmmfrYS=11111111-1111-1111-1111-110611051148 /qVLxVTQE=ch /agijABYa /rpPtSLyxH /YEaTVz='http://update.infodatacloud.com/ie_enable_agent_updates/{CAMP_ID}/update.json' /ElMYU='installer' /sPJbsQAM='C:\Users\ad3san\AppData\Local\Temp\HD-V1.9Installer_1406116949.log') -> VYMAZÁNO

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 191 (Driver: NAHRÁNO) ¤¤¤
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\System32\Drivers\msrpc.sys)
[EAT:Addr] (explorer.exe) MSIMG32.dll - ADVANCEDSETUPDIALOG : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9730c
[EAT:Addr] (explorer.exe) MSIMG32.dll - AbortPrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9d220
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddFormA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97384
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddFormW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9f2e0
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddJobA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d99648
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddJobW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da4fa0
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddMonitorA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97824
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddMonitorW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da55e4
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPortA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97590
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPortExA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97c50
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPortExW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da0728
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPortW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da7aa8
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrintProcessorA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d96700
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrintProcessorW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da3f98
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrintProvidorA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97a7c
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrintProvidorW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da0300
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d95bf8
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterConnection2A : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d959b8
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterConnection2W : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db80b8
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterConnectionA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d95cf8
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterConnectionW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db77c4
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterDriverA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d963cc
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterDriverExA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d961b4
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterDriverExW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da2d00
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterDriverW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9c840
[EAT:Addr] (explorer.exe) MSIMG32.dll - AddPrinterW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da29a8
[EAT:Addr] (explorer.exe) MSIMG32.dll - AdvancedDocumentPropertiesA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9a828
[EAT:Addr] (explorer.exe) MSIMG32.dll - AdvancedDocumentPropertiesW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9f1a0
[EAT:Addr] (explorer.exe) MSIMG32.dll - AdvancedSetupDialog : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9730c
[EAT:Addr] (explorer.exe) MSIMG32.dll - ClosePrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9daf798
[EAT:Addr] (explorer.exe) MSIMG32.dll - CloseSpoolFileHandle : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e000
[EAT:Addr] (explorer.exe) MSIMG32.dll - CommitSpoolData : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9dee4
[EAT:Addr] (explorer.exe) MSIMG32.dll - ConfigurePortA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9762c
[EAT:Addr] (explorer.exe) MSIMG32.dll - ConfigurePortW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da7d84
[EAT:Addr] (explorer.exe) MSIMG32.dll - ConnectToPrinterDlg : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da157c
[EAT:Addr] (explorer.exe) MSIMG32.dll - ConvertAnsiDevModeToUnicodeDevmode : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d95794
[EAT:Addr] (explorer.exe) MSIMG32.dll - ConvertUnicodeDevModeToAnsiDevmode : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d98748
[EAT:Addr] (explorer.exe) MSIMG32.dll - CorePrinterDriverInstalledA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db8da8
[EAT:Addr] (explorer.exe) MSIMG32.dll - CorePrinterDriverInstalledW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db940c
[EAT:Addr] (explorer.exe) MSIMG32.dll - CreatePrintAsyncNotifyChannel : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db84ac
[EAT:Addr] (explorer.exe) MSIMG32.dll - CreatePrinterIC : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da002c
[EAT:Addr] (explorer.exe) MSIMG32.dll - DEVICECAPABILITIES : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9acf8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DEVICEMODE : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d970e4
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeleteFormA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9743c
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeleteFormW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9f3f0
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeleteMonitorA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d978e8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeleteMonitorW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da56bc
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePortA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d976c8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePortW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da806c
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrintProcessorA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d979a8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrintProcessorW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da5758
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrintProvidorA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97b90
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrintProvidorW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da57f4
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da2c14
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterConnectionA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d95d44
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterConnectionW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db7ef0
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDataA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d968cc
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDataExA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d96938
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDataExW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e59c
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDataW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e4e8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDriverA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d964bc
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDriverExA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d963e0
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDriverExW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da3e48
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDriverPackageA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db90c0
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDriverPackageW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db9670
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterDriverW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da3efc
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterIC : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da01c4
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterKeyA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d969d8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeletePrinterKeyW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e66c
[EAT:Addr] (explorer.exe) MSIMG32.dll - DevQueryPrint : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da07e8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DevQueryPrintEx : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da0888
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeviceCapabilities : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9acf8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeviceCapabilitiesA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9acf8
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeviceCapabilitiesW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da776c
[EAT:Addr] (explorer.exe) MSIMG32.dll - DeviceMode : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d970e4
[EAT:Addr] (explorer.exe) MSIMG32.dll - DevicePropertySheets : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da908c
[EAT:Addr] (explorer.exe) MSIMG32.dll - DocumentEvent : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da8358
[EAT:Addr] (explorer.exe) MSIMG32.dll - DocumentPropertiesA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9a39c
[EAT:Addr] (explorer.exe) MSIMG32.dll - DocumentPropertiesW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da7584
[EAT:Addr] (explorer.exe) MSIMG32.dll - DocumentPropertySheets : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da93c8
[EAT:Addr] (explorer.exe) MSIMG32.dll - EXTDEVICEMODE : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9a4f0
[EAT:Addr] (explorer.exe) MSIMG32.dll - EndDocPrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9d65c
[EAT:Addr] (explorer.exe) MSIMG32.dll - EndPagePrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9d138
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumFormsA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9aa4c
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumFormsW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9f7b4
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumJobsA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d98a58
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumJobsW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da2794
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumMonitorsA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9abfc
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumMonitorsW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9fa98
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPortsA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9ab00
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPortsW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9f980
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrintProcessorDatatypesA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d99540
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrintProcessorDatatypesW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9ca24
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrintProcessorsA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9936c
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrintProcessorsW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da4060
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrinterDataA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d99e94
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrinterDataExA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9a00c
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrinterDataExW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e250
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrinterDataW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e0b4
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrinterDriversA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d98cc0
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrinterDriversW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da3414
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrinterKeyA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9a1bc
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrinterKeyW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e3d0
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrintersA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d98824
[EAT:Addr] (explorer.exe) MSIMG32.dll - EnumPrintersW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9b94c
[EAT:Addr] (explorer.exe) MSIMG32.dll - ExtDeviceMode : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9a4f0
[EAT:Addr] (explorer.exe) MSIMG32.dll - FindClosePrinterChangeNotification : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dade34
[EAT:Addr] (explorer.exe) MSIMG32.dll - FindFirstPrinterChangeNotification : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dad920
[EAT:Addr] (explorer.exe) MSIMG32.dll - FindNextPrinterChangeNotification : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dad950
[EAT:Addr] (explorer.exe) MSIMG32.dll - FlushPrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9d020
[EAT:Addr] (explorer.exe) MSIMG32.dll - FreePrinterNotifyInfo : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dad61c
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetCorePrinterDriversA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db8b40
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetCorePrinterDriversW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db92a4
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetDefaultPrinterA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9b204
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetDefaultPrinterW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dae324
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetFormA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9a97c
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetFormW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9f4d4
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetJobA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d98980
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetJobW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da2594
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrintExecutionData : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da1f1c
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrintProcessorDirectoryA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d99474
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrintProcessorDirectoryW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da4164
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d98b94
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDataA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d996a8
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDataExA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d99a68
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDataExW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9dcac
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDataW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9dadc
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDriver2A : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d959b8
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDriver2W : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da3a64
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDriverA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d98ecc
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDriverDirectoryA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d991d8
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDriverDirectoryW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da3cfc
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDriverPackagePathA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db8e9c
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDriverPackagePathW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db952c
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterDriverW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da3a2c
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetPrinterW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9c3ec
[EAT:Addr] (explorer.exe) MSIMG32.dll - GetSpoolFileHandle : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9de1c
[EAT:Addr] (explorer.exe) MSIMG32.dll - InstallPrinterDriverFromPackageA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db87ec
[EAT:Addr] (explorer.exe) MSIMG32.dll - InstallPrinterDriverFromPackageW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db91a4
[EAT:Addr] (explorer.exe) MSIMG32.dll - IsValidDevmodeA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97f00
[EAT:Addr] (explorer.exe) MSIMG32.dll - IsValidDevmodeW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da1d6c
[EAT:Addr] (explorer.exe) MSIMG32.dll - OpenPrinter2A : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d959b8
[EAT:Addr] (explorer.exe) MSIMG32.dll - OpenPrinter2W : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9daf464
[EAT:Addr] (explorer.exe) MSIMG32.dll - OpenPrinterA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d958b8
[EAT:Addr] (explorer.exe) MSIMG32.dll - OpenPrinterW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9daee1c
[EAT:Addr] (explorer.exe) MSIMG32.dll - PerfClose : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dba3cc
[EAT:Addr] (explorer.exe) MSIMG32.dll - PerfCollect : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dba268
[EAT:Addr] (explorer.exe) MSIMG32.dll - PerfOpen : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dba120
[EAT:Addr] (explorer.exe) MSIMG32.dll - PlayGdiScriptOnPrinterIC : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da0164
[EAT:Addr] (explorer.exe) MSIMG32.dll - PrinterMessageBoxA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97764
[EAT:Addr] (explorer.exe) MSIMG32.dll - PrinterMessageBoxW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da02f4
[EAT:Addr] (explorer.exe) MSIMG32.dll - PrinterProperties : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da7178
[EAT:Addr] (explorer.exe) MSIMG32.dll - QueryColorProfile : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da0f0c
[EAT:Addr] (explorer.exe) MSIMG32.dll - QueryRemoteFonts : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da0238
[EAT:Addr] (explorer.exe) MSIMG32.dll - QuerySpoolMode : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da1030
[EAT:Addr] (explorer.exe) MSIMG32.dll - ReadPrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9d394
[EAT:Addr] (explorer.exe) MSIMG32.dll - RegisterForPrintAsyncNotifications : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db81f4
[EAT:Addr] (explorer.exe) MSIMG32.dll - ReportJobProcessingProgress : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db8754
[EAT:Addr] (explorer.exe) MSIMG32.dll - ResetPrinterA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d959d4
[EAT:Addr] (explorer.exe) MSIMG32.dll - ResetPrinterW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da23d8
[EAT:Addr] (explorer.exe) MSIMG32.dll - ScheduleJob : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da5294
[EAT:Addr] (explorer.exe) MSIMG32.dll - SeekPrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9cf38
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetDefaultPrinterA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97f1c
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetDefaultPrinterW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dae854
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetFormA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9749c
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetFormW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9f694
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetJobA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d95aa8
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetJobW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9bac0
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetPortA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d97e0c
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetPortW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da11ac
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetPrinterA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d95d90
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetPrinterDataA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d96a44
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetPrinterDataExA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d96b20
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetPrinterDataExW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e814
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetPrinterDataW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e720
[EAT:Addr] (explorer.exe) MSIMG32.dll - SetPrinterW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9bd50
[EAT:Addr] (explorer.exe) MSIMG32.dll - SplDriverUnloadComplete : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9e92c
[EAT:Addr] (explorer.exe) MSIMG32.dll - SpoolerDevQueryPrintW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da6b20
[EAT:Addr] (explorer.exe) MSIMG32.dll - SpoolerPrinterEvent : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da6e70
[EAT:Addr] (explorer.exe) MSIMG32.dll - StartDocDlgA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d9b044
[EAT:Addr] (explorer.exe) MSIMG32.dll - StartDocDlgW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da5878
[EAT:Addr] (explorer.exe) MSIMG32.dll - StartDocPrinterA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9d96820
[EAT:Addr] (explorer.exe) MSIMG32.dll - StartDocPrinterW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da426c
[EAT:Addr] (explorer.exe) MSIMG32.dll - StartPagePrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da4910
[EAT:Addr] (explorer.exe) MSIMG32.dll - UnRegisterForPrintAsyncNotifications : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db82e0
[EAT:Addr] (explorer.exe) MSIMG32.dll - UploadPrinterDriverPackageA : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db898c
[EAT:Addr] (explorer.exe) MSIMG32.dll - UploadPrinterDriverPackageW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9db975c
[EAT:Addr] (explorer.exe) MSIMG32.dll - WaitForPrinterChange : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9dadcac
[EAT:Addr] (explorer.exe) MSIMG32.dll - WritePrinter : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da4f84
[EAT:Addr] (explorer.exe) MSIMG32.dll - XcvDataW : C:\Windows\system32\WINSPOOL.DRV @ 0x7fef9da1254

¤¤¤ Webové prohlížeče : 7 ¤¤¤
[IE:Addon] System : Google Toolbar [{2318C2B1-4965-11d4-9B18-009027A5CD4F}] -> VYMAZÁNO
[CHROME:Addon] Default : Google Drive [apdfllckaahabafndbhieahigkjlhalf] -> VYMAZÁNO
[CHROME:Addon] Default : YouTube [blpcfgokakmgnkcojhhkbfbldkacnbeo] -> ERROR [2]
[CHROME:Addon] Default : Adblock Plus [cfhdojbkjhnklbpkdaibdccddilifddb] -> ERROR [2]
[CHROME:Addon] Default : Google Search [coobgpohoikkiipiblmjeljniedjpjpf] -> ERROR [2]
[CHROME:Addon] Default : Google Wallet [nmmhkkegccagdldgiimedpiccmgmieda] -> ERROR [2]
[CHROME:Addon] Default : Gmail [pjkljhegncpnkpknbcohdijeoejaedia] -> ERROR [2]

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS543232L9A300 ATA Device +++++
--- User ---
[MBR] 9182fa16053780338cf3d4e90ff24f8c
[BSP] c5774b5e447991626b0b24f79d357a7e : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 63 | Size: 10244 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 20981760 | Size: 147501 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 323063808 | Size: 143872 MB
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 617713664 | Size: 3626 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_DEL_09072014_111143.log - RKreport_SCN_09072014_103157.log - RKreport_SCN_09072014_124442.log


Zoek.exe v5.0.0.0 Updated 06-September-2014
Tool run by ad3san on ne 07.09.2014 at 12:51:54,68.
Microsoft Windows 7 Professional 6.1.7600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\ad3san\Desktop\zoek (1).exe [Scan all users] [Script inserted]

==== System Restore Info ======================

7.9.2014 12:52:43 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4115119152-2746801420-2512345831-1000\Software\Microsoft\Internet Explorer\SearchScopes\{372304F4-8F6A-4DF1-AB75-D3411BCAEEAB} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\ad3san\AppData\LocalLow\{487432EF-9E17-B23C-DEFD-D32FD98CB144} deleted
C:\Users\ad3san\AppData\LocalLow\{7C89D8C1-1107-47DC-26CD-37A8D181906B} deleted
C:\Users\ad3san\AppData\LocalLow\{D598A2E5-C1CD-9996-CF6E-C13650122701} deleted
C:\Users\ad3san\AppData\Local\Packages\windows_ie_ac_001\AC\{487432EF-9E17-B23C-DEFD-D32FD98CB144} deleted
C:\Users\ad3san\AppData\Local\Packages\windows_ie_ac_001\AC\{D598A2E5-C1CD-9996-CF6E-C13650122701} deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\Package Cache deleted
C:\Windows\SysWow64\AI_RecycleBin deleted
"C:\Users\ad3san\AppData\Local\LumaEmu" deleted
"C:\PROGRA~3\3441db54f4cfec20\{4820778D-AB0D-6D18-C316-52A6A0E1D507}.20140614133254" deleted
"C:\PROGRA~3\3441db54f4cfec20\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140614133230" deleted
"C:\PROGRA~3\3441db54f4cfec20\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140614133244" deleted
"C:\PROGRA~3\3441db54f4cfec20\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140614133307" deleted
"C:\PROGRA~3\3441db54f4cfec20\{993EA8F6-6E55-7E4E-39DE-5796E3226DB9}.20140615173235" deleted
"C:\PROGRA~3\3441db54f4cfec20\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}.20140614133315" deleted
"C:\PROGRA~3\3441db54f4cfec20" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [29.08.2014 09:58]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[24.07.2014 08:13]

save Ono - ad3san\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\fdbmcenncffhkdmlblcbdlggahkccoao
save on - ad3san\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gfponpnijckncoipdjndhpemppcanmjk
Share the Wealth - ad3san\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lijicndbkjoplmhnclmoahmcaffaeapp
Adblocker - ad3san\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\neganpkcmimgjhgekjdeigbenhfchoif

==== Chrome Fix ======================

C:\Users\ad3san\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mcskinsearch.com_0.localstorage deleted successfully
C:\Users\ad3san\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mcskinsearch.com_0.localstorage-journal deleted successfully
C:\Users\ad3san\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\fdbmcenncffhkdmlblcbdlggahkccoao deleted successfully
C:\Users\ad3san\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gfponpnijckncoipdjndhpemppcanmjk deleted successfully
C:\Users\ad3san\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lijicndbkjoplmhnclmoahmcaffaeapp deleted successfully
C:\Users\ad3san\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\neganpkcmimgjhgekjdeigbenhfchoif deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6B7AA5CB-B19C-43FA-BFFB-FFB901FCC84B} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}"

==== Reset Google Chrome ======================

C:\Users\ad3san\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\ad3san\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\ad3san\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\ad3san\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\ad3san\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=68 folders=43 16255553 bytes)

==== Empty Temp Folders ======================

C:\Users\ad3san\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\ad3san\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\ad3san\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on ne 07.09.2014 at 13:24:26,02 ======================

[memphisto]

Jak to vypadá?

[ad3san]

Zrychlil PC atp jen upload pořád stejný, tudíž viry atp jsou zřejmě pryč, ale chyba je někde jinde, zkusím kontaktovat UPC. Díky za pomoc

[memphisto]

Pokud je to vše, tak PC vypadá čistě a můžeš dát zelenou fajku vpravo nahoře na znamení vyřešeno