Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 18:29:04, on 19.8.2015
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v11.0 (11.00.9600.17280)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\SmartClock\SmartClock.exe
C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
C:\Program Files (x86)\Adobe Arkalis\Adobe_Arkalis.exe
C:\Program Files (x86)\Arc\Arc.exe
C:\Program Files (x86)\Arc\ArcOSBrowser.exe
C:\Program Files (x86)\Arc\ArcOSBrowser.exe
C:\Program Files (x86)\Arc\ArcOSBrowser.exe
C:\Program Files (x86)\Opera\31.0.1889.99\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.99\opera_crashreporter.exe
C:\Program Files (x86)\Opera\31.0.1889.99\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.99\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.99\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.99\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.99\opera.exe
C:\Program Files (x86)\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
C:\Program Files (x86)\Opera\31.0.1889.99\opera.exe
C:\Program Files (x86)\Hearthstone\Hearthstone.exe
C:\Program Files (x86)\Opera\31.0.1889.99\opera.exe
C:\Program Files (x86)\TrendMicro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: DigiCoUpon - {0385D834-29DA-49A2-992C-904C4C673C47} - C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.dll
O2 - BHO: DigiCoupoN - {7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1} - C:\Program Files (x86)\DigiCoupoN\fEdUyDfzQtgLpp.dll
O2 - BHO: ArcPluginIEBHO - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - C:\Program Files (x86)\Arc\Plugins\ArcPluginIE.dll
O2 - BHO: RRandomPRice - {961A92DC-CFB1-463B-BE31-EDB3B06C24FD} - C:\Program Files (x86)\RRandomPRice\a832BCnMyftTzA.dll
O2 - BHO: RegulArDeaLS - {9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62} - C:\Program Files (x86)\RegulArDeaLS\rrr4BSMr9I5TVV.dll
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [tvncontrol] "C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave
O4 - HKLM\..\Run: [WindowsDriverScan86] C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk
O4 - HKLM\..\Run: [WindowsDriverScan64] C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [Arc] C:\Program Files (x86)\Arc\ArcLauncher.exe /autorun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [SmartClock] C:\Program Files (x86)\SmartClock\SmartClock.exe /boot
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2229232713-360834936-347754365-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{CCCB6769-7BB8-4166-BF5F-3D25B255F9A9}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Arc Service (ArcService) - Perfect World Entertainment Inc - C:\Program Files (x86)\Arc\ArcService.exe
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GeekBuddyRSP Server (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Outrageous Priest - Unknown owner - C:\Program Files (x86)\Outrageous Priest\Outrageous Priest.exe
O23 - Service: Outrageous Tool - Unknown owner - C:\Program Files (x86)\Outrageous Tool\Outrageous Tool.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10458 bytes
prevence prosím kontrolu logu. Vyřešeno
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: prevence prosím kontrolu logu.
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a a vlož sem celý log.
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a a vlož sem celý log.
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Re: prevence prosím kontrolu logu.
# AdwCleaner v5.002 - Logfile created 19/08/2015 at 20:01:00
# Updated 18/08/2015 by Xplode
# Database : 2015-08-18.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : pidlo - PIDLO-PC
# Running from : C:\Users\pidlo\Desktop\adwcleaner_5.002.exe
# Option : Scan
***** [ Services ] *****
Service Found : f7930dcb
***** [ Folders ] *****
Folder Found : C:\Program Files (x86)\Musixmatch
Folder Found : C:\Program Files (x86)\ALLlSaaver
Folder Found : C:\Program Files (x86)\DiagiCoUUpoon
Folder Found : C:\Program Files (x86)\DigiCoUpon
Folder Found : C:\Program Files (x86)\DiigiCoupoN
Folder Found : C:\Program Files (x86)\FinduBeStDeal
Folder Found : C:\Program Files (x86)\GrEaatSavoe4U
Folder Found : C:\Program Files (x86)\GreuattSAveE4U
Folder Found : C:\Program Files (x86)\Hapapy2Save
Folder Found : C:\Program Files (x86)\Hapapy2Savue
Folder Found : C:\Program Files (x86)\Happy2Saevae
Folder Found : C:\Program Files (x86)\NetouCouPon
Folder Found : C:\Program Files (x86)\RegulArDeaLS
Folder Found : C:\Program Files (x86)\RRandomPRice
Folder Found : C:\Program Files (x86)\SalePlus
Folder Found : C:\Program Files (x86)\SaolePluus
Folder Found : C:\Program Files (x86)\youtubeadblocker
Folder Found : C:\ProgramData\5128087412686442237
Folder Found : C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}
Folder Found : C:\ProgramData\{da198e58-107a-771a-da19-98e581073960}
Folder Found : C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih
Folder Found : C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp
Folder Found : C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\9@mGWf5Wx.org
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\D7POgr@aW.edu
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\i7yfr@VbS.net
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\kb@usC.com
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\sMHZO@qAo.net
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\U@Hw.edu
***** [ Files ] *****
File Found : C:\Program Files (x86)\mozilla firefox\dbghelp.dll
File Found : C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
File Found : C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
File Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\searchplugins\mystartsearch.xml
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
Task Found : Superclean
***** [ Registry ] *****
Key Found : HKCU\Software\Mozilla\Extends
Key Found : HKLM\SOFTWARE\Classes\pc-mechanic
Key Found : HKLM\SOFTWARE\Classes\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_
Key Found : HKLM\SOFTWARE\Classes\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9
Key Found : HKLM\SOFTWARE\Classes\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_
Key Found : HKLM\SOFTWARE\Classes\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9
Key Found : HKLM\SOFTWARE\Classes\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_
Key Found : HKLM\SOFTWARE\Classes\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9
Key Found : HKLM\SOFTWARE\Classes\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_
Key Found : HKLM\SOFTWARE\Classes\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9
Key Found : HKLM\SOFTWARE\Classes\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_
Key Found : HKLM\SOFTWARE\Classes\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9
Key Found : HKLM\SOFTWARE\Classes\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_
Key Found : HKLM\SOFTWARE\Classes\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9
Key Found : HKLM\SOFTWARE\Classes\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_
Key Found : HKLM\SOFTWARE\Classes\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9
Key Found : HKLM\SOFTWARE\Classes\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_
Key Found : HKLM\SOFTWARE\Classes\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9
Key Found : HKLM\SOFTWARE\7adbd985-9b58-368e-4f57-638471c717df
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f7930dcb}
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchengine@gmail.com]
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{330ED369-73D2-49BC-AC43-1E21602F742D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{5518881B-BB38-46C7-A27C-024DA02AD167}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{917A80E3-C425-4F5F-B8D3-4804A0CCA924}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A6918429-4197-42E6-A4AC-742073A9BCBB}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{BDAF5CA1-4082-4F20-B44D-0238A9183DCA}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EB559340-3A8F-4456-B24D-160098054EF0}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{0385D834-29DA-49A2-992C-904C4C673C47}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{8c622b89-a072-4605-89e8-9a37723f6b16}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{a1df716a-0b86-4b1f-b3ac-8ef22347b618}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}]
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
Key Found : HKCU\Software\simplytech
Key Found : HKCU\Software\TNT2
Key Found : HKCU\Software\Super Optimizer
Key Found : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\mystartsearchSoftware
Key Found : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Key Found : HKLM\SOFTWARE\GeekBuddyRSP
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E957849A-94AC-6F46-4623-C31474E3C170}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B5DB572D-EA87-D3B0-08F6-4D153EA6A783}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{76DEE3DC-2B8B-E212-2126-D31D9E73DFE4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B696F285-F54E-2524-58B1-E06A70ABE6BE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CE94DD89-7404-B4B9-E713-E55CC0AB6C3B}
Key Found : [x64] HKCU\Software\simplytech
Key Found : [x64] HKCU\Software\TNT2
Key Found : [x64] HKCU\Software\Super Optimizer
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
Data Found : HKU\S-1-5-21-2229232713-360834936-347754365-1000\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Data Found : HKU\S-1-5-21-2229232713-360834936-347754365-1000\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
***** [ Web browsers ] *****
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.defaultenginename", "mystartsearch");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.alias", "mystartsearch");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.iconURL", "hxxp://www.mystartsearch.com/favicon.ico");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.name", "mystartsearch");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.url", "hxxp://www.mystartsearch.com/web/?type=ds&ts=1428155417&from=wpc&uid=ST1000DM003-1CH162_Z1D530ZGXXXXZ1D530ZG&q={searchTerms}");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.selectedEngine", "mystartsearch");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.startup.homepage", "hxxp://search.gboxapp.com/");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.4jBjfulFlP5s3sja.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.Oys543FdQgWKiWdd.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.W6jiegmc8oIjT9At.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.ZaUL7ZjOuq1MZz9i.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.lvCnkvyEPXncMd93.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.xLzXKeWgDgMHKZ7o.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Found : C0EB984343813F005012A482B2EBDEEB1094BEA51F2BC83DD128D7C378B64042","homepage_is_newtabpage":"5B7DDAA2A56BDE97967B702B58E4FE86E1FA1B6D019C49BA94B45B6BB1EB29FB","pinned_tabs":"C2811537BBD755E1353985D4EE2DBC1584231CFD8A9BD92450399A0FE248442D","prefs":{"preference_reset_time":"2EE878F801F2055B651448A053CB7BD0A434E01CC11A9062CBDFBC7EBFC33CB5"},"profile":{"reset_prompt_memento":"FF7EE120C3382F3C2828C2712348920636C0B1F9D6A11D7BB6401720F8827324"},"safebrowsing":{"incidents_sent":"565E67E7E210EE2A0E5CA6F88B0D0052E39FDE8F32D2AB4A863AC124B2E84DCB"},"search_provider_overrides":"3C77322CE0B6CF8C1964C894314921A62EF17FBA88FE87AC30A4F44443831A8F","session":{"restore_on_startup":"015F09977CF64C95E4676E87887D79EA874454D4047AAE28CA401F710B0B63EB","startup_urls":"24A29D9E3059B5A6154525B2ABAA41371EDC541960577FA2F631EBA0BC4C68A7"},"software_reporter":{"prompt_reason":"B81DCE8203BB416E6D13EDC7EFA2DF5421BB5B1221555A3306EECE1B0D08E59D","prompt_seed":"C1BA42DBF5D217716D71284ED4256FA6091D8F9C287A620A25A47EA0D6DA7577","prompt_version":"D0E856B301F209384B5D43CC1034589A491DF6AFD0D093974236066FEB8455AA"},"sync":{"remaining_rollback_tries":"82BAF81938A8C45E8FB9C229E5B90331EC5001C741FCD734E5B6862CCEEABC9A"}},"super_mac":"10A9B551E6F22673E48C903A6D6299D422E57FACB645CCDAFBC151153E9186CE"},"session":{"startup_urls":["hxxp://search.gboxapp.com/"]},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601
[C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://search.gboxapp.com/
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [21230 bytes] ##########
# Updated 18/08/2015 by Xplode
# Database : 2015-08-18.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : pidlo - PIDLO-PC
# Running from : C:\Users\pidlo\Desktop\adwcleaner_5.002.exe
# Option : Scan
***** [ Services ] *****
Service Found : f7930dcb
***** [ Folders ] *****
Folder Found : C:\Program Files (x86)\Musixmatch
Folder Found : C:\Program Files (x86)\ALLlSaaver
Folder Found : C:\Program Files (x86)\DiagiCoUUpoon
Folder Found : C:\Program Files (x86)\DigiCoUpon
Folder Found : C:\Program Files (x86)\DiigiCoupoN
Folder Found : C:\Program Files (x86)\FinduBeStDeal
Folder Found : C:\Program Files (x86)\GrEaatSavoe4U
Folder Found : C:\Program Files (x86)\GreuattSAveE4U
Folder Found : C:\Program Files (x86)\Hapapy2Save
Folder Found : C:\Program Files (x86)\Hapapy2Savue
Folder Found : C:\Program Files (x86)\Happy2Saevae
Folder Found : C:\Program Files (x86)\NetouCouPon
Folder Found : C:\Program Files (x86)\RegulArDeaLS
Folder Found : C:\Program Files (x86)\RRandomPRice
Folder Found : C:\Program Files (x86)\SalePlus
Folder Found : C:\Program Files (x86)\SaolePluus
Folder Found : C:\Program Files (x86)\youtubeadblocker
Folder Found : C:\ProgramData\5128087412686442237
Folder Found : C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}
Folder Found : C:\ProgramData\{da198e58-107a-771a-da19-98e581073960}
Folder Found : C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih
Folder Found : C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp
Folder Found : C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\9@mGWf5Wx.org
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\D7POgr@aW.edu
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\i7yfr@VbS.net
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\kb@usC.com
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\sMHZO@qAo.net
Folder Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\U@Hw.edu
***** [ Files ] *****
File Found : C:\Program Files (x86)\mozilla firefox\dbghelp.dll
File Found : C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
File Found : C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
File Found : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\searchplugins\mystartsearch.xml
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
Task Found : Superclean
***** [ Registry ] *****
Key Found : HKCU\Software\Mozilla\Extends
Key Found : HKLM\SOFTWARE\Classes\pc-mechanic
Key Found : HKLM\SOFTWARE\Classes\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_
Key Found : HKLM\SOFTWARE\Classes\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9
Key Found : HKLM\SOFTWARE\Classes\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_
Key Found : HKLM\SOFTWARE\Classes\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9
Key Found : HKLM\SOFTWARE\Classes\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_
Key Found : HKLM\SOFTWARE\Classes\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9
Key Found : HKLM\SOFTWARE\Classes\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_
Key Found : HKLM\SOFTWARE\Classes\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9
Key Found : HKLM\SOFTWARE\Classes\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_
Key Found : HKLM\SOFTWARE\Classes\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9
Key Found : HKLM\SOFTWARE\Classes\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_
Key Found : HKLM\SOFTWARE\Classes\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9
Key Found : HKLM\SOFTWARE\Classes\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_
Key Found : HKLM\SOFTWARE\Classes\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9
Key Found : HKLM\SOFTWARE\Classes\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_
Key Found : HKLM\SOFTWARE\Classes\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9
Key Found : HKLM\SOFTWARE\7adbd985-9b58-368e-4f57-638471c717df
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f7930dcb}
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchengine@gmail.com]
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{330ED369-73D2-49BC-AC43-1E21602F742D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{5518881B-BB38-46C7-A27C-024DA02AD167}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{917A80E3-C425-4F5F-B8D3-4804A0CCA924}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A6918429-4197-42E6-A4AC-742073A9BCBB}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{BDAF5CA1-4082-4F20-B44D-0238A9183DCA}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EB559340-3A8F-4456-B24D-160098054EF0}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{0385D834-29DA-49A2-992C-904C4C673C47}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{8c622b89-a072-4605-89e8-9a37723f6b16}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{a1df716a-0b86-4b1f-b3ac-8ef22347b618}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}]
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0385D834-29DA-49A2-992C-904C4C673C47}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
Key Found : HKCU\Software\simplytech
Key Found : HKCU\Software\TNT2
Key Found : HKCU\Software\Super Optimizer
Key Found : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\mystartsearchSoftware
Key Found : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Key Found : HKLM\SOFTWARE\GeekBuddyRSP
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E957849A-94AC-6F46-4623-C31474E3C170}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B5DB572D-EA87-D3B0-08F6-4D153EA6A783}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{76DEE3DC-2B8B-E212-2126-D31D9E73DFE4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B696F285-F54E-2524-58B1-E06A70ABE6BE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CE94DD89-7404-B4B9-E713-E55CC0AB6C3B}
Key Found : [x64] HKCU\Software\simplytech
Key Found : [x64] HKCU\Software\TNT2
Key Found : [x64] HKCU\Software\Super Optimizer
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}
Data Found : HKU\S-1-5-21-2229232713-360834936-347754365-1000\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Data Found : HKU\S-1-5-21-2229232713-360834936-347754365-1000\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG
***** [ Web browsers ] *****
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.defaultenginename", "mystartsearch");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.alias", "mystartsearch");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.iconURL", "hxxp://www.mystartsearch.com/favicon.ico");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.name", "mystartsearch");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.url", "hxxp://www.mystartsearch.com/web/?type=ds&ts=1428155417&from=wpc&uid=ST1000DM003-1CH162_Z1D530ZGXXXXZ1D530ZG&q={searchTerms}");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.search.selectedEngine", "mystartsearch");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("browser.startup.homepage", "hxxp://search.gboxapp.com/");
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.4jBjfulFlP5s3sja.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.Oys543FdQgWKiWdd.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.W6jiegmc8oIjT9At.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.ZaUL7ZjOuq1MZz9i.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.lvCnkvyEPXncMd93.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Found : user_pref("extensions.xLzXKeWgDgMHKZ7o.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Found : C0EB984343813F005012A482B2EBDEEB1094BEA51F2BC83DD128D7C378B64042","homepage_is_newtabpage":"5B7DDAA2A56BDE97967B702B58E4FE86E1FA1B6D019C49BA94B45B6BB1EB29FB","pinned_tabs":"C2811537BBD755E1353985D4EE2DBC1584231CFD8A9BD92450399A0FE248442D","prefs":{"preference_reset_time":"2EE878F801F2055B651448A053CB7BD0A434E01CC11A9062CBDFBC7EBFC33CB5"},"profile":{"reset_prompt_memento":"FF7EE120C3382F3C2828C2712348920636C0B1F9D6A11D7BB6401720F8827324"},"safebrowsing":{"incidents_sent":"565E67E7E210EE2A0E5CA6F88B0D0052E39FDE8F32D2AB4A863AC124B2E84DCB"},"search_provider_overrides":"3C77322CE0B6CF8C1964C894314921A62EF17FBA88FE87AC30A4F44443831A8F","session":{"restore_on_startup":"015F09977CF64C95E4676E87887D79EA874454D4047AAE28CA401F710B0B63EB","startup_urls":"24A29D9E3059B5A6154525B2ABAA41371EDC541960577FA2F631EBA0BC4C68A7"},"software_reporter":{"prompt_reason":"B81DCE8203BB416E6D13EDC7EFA2DF5421BB5B1221555A3306EECE1B0D08E59D","prompt_seed":"C1BA42DBF5D217716D71284ED4256FA6091D8F9C287A620A25A47EA0D6DA7577","prompt_version":"D0E856B301F209384B5D43CC1034589A491DF6AFD0D093974236066FEB8455AA"},"sync":{"remaining_rollback_tries":"82BAF81938A8C45E8FB9C229E5B90331EC5001C741FCD734E5B6862CCEEABC9A"}},"super_mac":"10A9B551E6F22673E48C903A6D6299D422E57FACB645CCDAFBC151153E9186CE"},"session":{"startup_urls":["hxxp://search.gboxapp.com/"]},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601
[C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://search.gboxapp.com/
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [21230 bytes] ##########
Re: prevence prosím kontrolu logu.
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 19.8.2015
Čas skenování: 20:06
Protokol: mbam.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.19.05
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: pidlo
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 433447
Uplynulý čas: 12 min, 46 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 2
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Priest\Outrageous Priest.exe, 3060, , [eec361a9d5b61a1cccd4be0747ba9967]
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Tool\Outrageous Tool.exe, 2884, , [f2bf4ebc43481521e9b74c798978936d]
Moduly: 1
PUP.Optional.Multiplug, C:\Program Files (x86)\SystemRaise\SystemRaise.dll, , [b10040cab0dbcd69750266140cf548b8],
Klíče registru: 250
PUP.Optional.ServiceRNDM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Outrageous Priest, , [eec361a9d5b61a1cccd4be0747ba9967],
PUP.Optional.ServiceRNDM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Outrageous Tool, , [f2bf4ebc43481521e9b74c798978936d],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}\INPROCSERVER32, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}\INPROCSERVER32, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{76DEE3DC-2B8B-E212-2126-D31D9E73DFE4}, , [0ea306041b70dc5a8f94dba0ae537e82],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}, , [674ae8223b504de9948f0f6c55ac1be5],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{B696F285-F54E-2524-58B1-E06A70ABE6BE}, , [f6bbd238e6a5bc7aa57e413a946d8b75],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{6933C2BA-C67D-42C7-8C77-1FF4B364AF54}, , [6849dd2d6328b38349da5427bf42d52b],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}, , [466b1dedaae1f44233f09cdf010037c9],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{CE94DD89-7404-B4B9-E713-E55CC0AB6C3B}, , [cbe64ac04843bb7b1d06a9d2ad54fa06],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4820778D-AB0D-6D18-C316-52A6A0E1D507}, , [c0f1bd4d6c1f320462c1a4d7b34e768a],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C637A71C-A4B2-4B47-1B2A-1042A8D525A3}, , [6b467892c2c9a492ca59d8a32ad714ec],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{330ED369-73D2-49BC-AC43-1E21602F742D}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0B079ECD-60E4-40B9-9FAC-4ECC98AB8786}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{3967CDA8-3EAB-4115-84F1-C29A9C5FB484}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{9F5974D4-08A9-4422-9F36-76103BEE67A1}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B0030E0C-349C-4EB5-AD5E-847B43C0D844}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0B079ECD-60E4-40B9-9FAC-4ECC98AB8786}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3967CDA8-3EAB-4115-84F1-C29A9C5FB484}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9F5974D4-08A9-4422-9F36-76103BEE67A1}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B0030E0C-349C-4EB5-AD5E-847B43C0D844}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0B079ECD-60E4-40B9-9FAC-4ECC98AB8786}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{3967CDA8-3EAB-4115-84F1-C29A9C5FB484}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9F5974D4-08A9-4422-9F36-76103BEE67A1}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B0030E0C-349C-4EB5-AD5E-847B43C0D844}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{330ED369-73D2-49BC-AC43-1E21602F742D}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{330ED369-73D2-49BC-AC43-1E21602F742D}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{5518881B-BB38-46C7-A27C-024DA02AD167}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{05B20ABD-7CCD-4DB9-B2C8-C24ACC46B35D}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{16E72304-CFE9-4962-88DE-F6A4F93071C3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C918CFA8-873F-497E-99F7-61C62933E188}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DA30F2A4-2AA5-4355-98CD-3B9F9305D8D3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{05B20ABD-7CCD-4DB9-B2C8-C24ACC46B35D}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{16E72304-CFE9-4962-88DE-F6A4F93071C3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C918CFA8-873F-497E-99F7-61C62933E188}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DA30F2A4-2AA5-4355-98CD-3B9F9305D8D3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{05B20ABD-7CCD-4DB9-B2C8-C24ACC46B35D}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{16E72304-CFE9-4962-88DE-F6A4F93071C3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C918CFA8-873F-497E-99F7-61C62933E188}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DA30F2A4-2AA5-4355-98CD-3B9F9305D8D3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{5518881B-BB38-46C7-A27C-024DA02AD167}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{5518881B-BB38-46C7-A27C-024DA02AD167}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{A6918429-4197-42E6-A4AC-742073A9BCBB}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{016CD3A8-EE64-46DC-92BF-77D714E5BF12}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{1F445155-F9BC-4F5C-A65F-551D3A2BC38D}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B6A5E3C8-1C9F-4F57-A3DC-2F64D7B1E2E3}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DF2FB4FF-115F-4A88-9757-9CFBA45C4BC4}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{016CD3A8-EE64-46DC-92BF-77D714E5BF12}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{1F445155-F9BC-4F5C-A65F-551D3A2BC38D}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B6A5E3C8-1C9F-4F57-A3DC-2F64D7B1E2E3}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DF2FB4FF-115F-4A88-9757-9CFBA45C4BC4}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{016CD3A8-EE64-46DC-92BF-77D714E5BF12}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{1F445155-F9BC-4F5C-A65F-551D3A2BC38D}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B6A5E3C8-1C9F-4F57-A3DC-2F64D7B1E2E3}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DF2FB4FF-115F-4A88-9757-9CFBA45C4BC4}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A6918429-4197-42E6-A4AC-742073A9BCBB}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{A6918429-4197-42E6-A4AC-742073A9BCBB}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{1EA56CF8-1B08-4B8B-BAD9-77D0A2F55837}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{AFE44F7D-9EB4-426B-AB34-4DAB85ECDF91}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{D75E8573-4E73-4642-8517-A6348042151C}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DC00432C-FF74-41C6-BE9E-7F2224FDB437}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{1EA56CF8-1B08-4B8B-BAD9-77D0A2F55837}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{AFE44F7D-9EB4-426B-AB34-4DAB85ECDF91}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D75E8573-4E73-4642-8517-A6348042151C}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DC00432C-FF74-41C6-BE9E-7F2224FDB437}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{1EA56CF8-1B08-4B8B-BAD9-77D0A2F55837}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{AFE44F7D-9EB4-426B-AB34-4DAB85ECDF91}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D75E8573-4E73-4642-8517-A6348042151C}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DC00432C-FF74-41C6-BE9E-7F2224FDB437}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B08006D8-1D22-458E-9370-F459542E5AF2}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DB559C6A-03B9-4961-9BC3-80D769710C2D}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B08006D8-1D22-458E-9370-F459542E5AF2}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DB559C6A-03B9-4961-9BC3-80D769710C2D}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B08006D8-1D22-458E-9370-F459542E5AF2}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DB559C6A-03B9-4961-9BC3-80D769710C2D}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{76C5E0A3-B072-4ED0-AAB1-E8B6F063155A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A7D7CEFD-AEAC-4C31-B0C5-7F44A722CD71}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DC8583CD-B5DB-4C6F-859B-A878C3214770}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FDAD10B2-FDBC-4870-BA93-D9E9373C350A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{76C5E0A3-B072-4ED0-AAB1-E8B6F063155A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A7D7CEFD-AEAC-4C31-B0C5-7F44A722CD71}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DC8583CD-B5DB-4C6F-859B-A878C3214770}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FDAD10B2-FDBC-4870-BA93-D9E9373C350A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{76C5E0A3-B072-4ED0-AAB1-E8B6F063155A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A7D7CEFD-AEAC-4C31-B0C5-7F44A722CD71}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DC8583CD-B5DB-4C6F-859B-A878C3214770}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{FDAD10B2-FDBC-4870-BA93-D9E9373C350A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{EB559340-3A8F-4456-B24D-160098054EF0}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{311AACFA-3DB4-4EEC-B430-E9FFF3C3F4EB}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{5C4ECEE2-D00F-4844-92B9-F2699746572C}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{8069EEE8-90E1-42E5-82B5-BE7D9D04E78B}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{981C4037-A6DF-4B09-BEB9-2B6AFA9E8044}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{311AACFA-3DB4-4EEC-B430-E9FFF3C3F4EB}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{5C4ECEE2-D00F-4844-92B9-F2699746572C}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{8069EEE8-90E1-42E5-82B5-BE7D9D04E78B}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{981C4037-A6DF-4B09-BEB9-2B6AFA9E8044}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{311AACFA-3DB4-4EEC-B430-E9FFF3C3F4EB}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{5C4ECEE2-D00F-4844-92B9-F2699746572C}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{8069EEE8-90E1-42E5-82B5-BE7D9D04E78B}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{981C4037-A6DF-4B09-BEB9-2B6AFA9E8044}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{EB559340-3A8F-4456-B24D-160098054EF0}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{EB559340-3A8F-4456-B24D-160098054EF0}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.Superclean.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Superclean, , [d2dfd3378dfe7fb7769a31eac43f36ca],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, , [00b13ad0b7d475c1058209a057ad27d9],
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\mystartsearchSoftware, , [1e9391792467db5b198847f0778ccf31],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, , [fdb499715d2e2e08f1fb48d8cb38f907],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, , [5d54f713f69537ff1f8875b543c05ea2],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, , [10a11cee6e1d3105386e280231d2b54b],
PUP.Optional.Vosteran, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, , [ad0442c877143bfbb6559f99778cb24e],
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, , [228fa06a177456e0495c96948083857b],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f7930dcb}, , [06ab9a70e5a64de9f62bc5e30004c13f],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, , [8c25d53591fa7fb783048623ef1540c0],
PUP.Optional.SystemRaise.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\f7930dcb, , [813002081972d4629c2c4bd750b36e92],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, , [a20f719956352610dbc68a1a6b99fd03],
PUP.Optional.TNT.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\TNT2, , [9e1373976724082e6fdca9832bd85ba5],
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [951cca409af156e07e999a094db77e82],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, , [4071c545ed9eaf873d17081feb18817f],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, , [327fb6542a613ef8f1644fd8d92a14ec],
PUP.Optional.Linkey.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Linkey, , [961bac5e90fbe35361f5a384fa0941bf],
PUP.Optional.SearchProtect.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchProtect, , [565b93773d4e280ef73d960e14f06c94],
PUP.Optional.Vosteran.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, , [941dc149b5d6082ebe991d0ad42f5fa1],
PUP.Optional.Wajam.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, , [bbf69c6ec0cb280ea7b174b311f2f30d],
PUP.Optional.SearchEngine.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MOZILLA\EXTENDS, , [159c3dcd602ba5914cebd24fc63d20e0],
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB, , [19985cae4546d4623bebcaeb7094ed13],
PUP.Optional.SuperOptimizer.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\SUPER OPTIMIZER, , [ac051eec0685989e24e6ddcde91b2cd4],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1000_Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, , [f6bbb753830849ed7d289e17f21243bd],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1000_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, , [e9c8f7132863ac8a9e078e2720e422de],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1001_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, , [d6db6c9ec7c4b77f8520d3e234d0867a],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-501_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, , [921fc149aae148ee0e97c8ede81c7c84],
www.malwarebytes.org
Datum skenování: 19.8.2015
Čas skenování: 20:06
Protokol: mbam.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.19.05
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: pidlo
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 433447
Uplynulý čas: 12 min, 46 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 2
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Priest\Outrageous Priest.exe, 3060, , [eec361a9d5b61a1cccd4be0747ba9967]
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Tool\Outrageous Tool.exe, 2884, , [f2bf4ebc43481521e9b74c798978936d]
Moduly: 1
PUP.Optional.Multiplug, C:\Program Files (x86)\SystemRaise\SystemRaise.dll, , [b10040cab0dbcd69750266140cf548b8],
Klíče registru: 250
PUP.Optional.ServiceRNDM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Outrageous Priest, , [eec361a9d5b61a1cccd4be0747ba9967],
PUP.Optional.ServiceRNDM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Outrageous Tool, , [f2bf4ebc43481521e9b74c798978936d],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{0385D834-29DA-49A2-992C-904C4C673C47}, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}\INPROCSERVER32, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}\INPROCSERVER32, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{76DEE3DC-2B8B-E212-2126-D31D9E73DFE4}, , [0ea306041b70dc5a8f94dba0ae537e82],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}, , [674ae8223b504de9948f0f6c55ac1be5],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{8C622B89-A072-4605-89E8-9A37723F6B16}, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{B696F285-F54E-2524-58B1-E06A70ABE6BE}, , [f6bbd238e6a5bc7aa57e413a946d8b75],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{6933C2BA-C67D-42C7-8C77-1FF4B364AF54}, , [6849dd2d6328b38349da5427bf42d52b],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}, , [466b1dedaae1f44233f09cdf010037c9],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{CE94DD89-7404-B4B9-E713-E55CC0AB6C3B}, , [cbe64ac04843bb7b1d06a9d2ad54fa06],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{A1DF716A-0B86-4B1F-B3AC-8EF22347B618}, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4820778D-AB0D-6D18-C316-52A6A0E1D507}, , [c0f1bd4d6c1f320462c1a4d7b34e768a],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C637A71C-A4B2-4B47-1B2A-1042A8D525A3}, , [6b467892c2c9a492ca59d8a32ad714ec],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{330ED369-73D2-49BC-AC43-1E21602F742D}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0B079ECD-60E4-40B9-9FAC-4ECC98AB8786}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{3967CDA8-3EAB-4115-84F1-C29A9C5FB484}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{9F5974D4-08A9-4422-9F36-76103BEE67A1}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B0030E0C-349C-4EB5-AD5E-847B43C0D844}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0B079ECD-60E4-40B9-9FAC-4ECC98AB8786}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3967CDA8-3EAB-4115-84F1-C29A9C5FB484}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9F5974D4-08A9-4422-9F36-76103BEE67A1}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B0030E0C-349C-4EB5-AD5E-847B43C0D844}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0B079ECD-60E4-40B9-9FAC-4ECC98AB8786}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{3967CDA8-3EAB-4115-84F1-C29A9C5FB484}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9F5974D4-08A9-4422-9F36-76103BEE67A1}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B0030E0C-349C-4EB5-AD5E-847B43C0D844}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{330ED369-73D2-49BC-AC43-1E21602F742D}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{330ED369-73D2-49BC-AC43-1E21602F742D}, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{5518881B-BB38-46C7-A27C-024DA02AD167}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{05B20ABD-7CCD-4DB9-B2C8-C24ACC46B35D}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{16E72304-CFE9-4962-88DE-F6A4F93071C3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C918CFA8-873F-497E-99F7-61C62933E188}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DA30F2A4-2AA5-4355-98CD-3B9F9305D8D3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{05B20ABD-7CCD-4DB9-B2C8-C24ACC46B35D}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{16E72304-CFE9-4962-88DE-F6A4F93071C3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C918CFA8-873F-497E-99F7-61C62933E188}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DA30F2A4-2AA5-4355-98CD-3B9F9305D8D3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{05B20ABD-7CCD-4DB9-B2C8-C24ACC46B35D}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{16E72304-CFE9-4962-88DE-F6A4F93071C3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C918CFA8-873F-497E-99F7-61C62933E188}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DA30F2A4-2AA5-4355-98CD-3B9F9305D8D3}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{5518881B-BB38-46C7-A27C-024DA02AD167}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{5518881B-BB38-46C7-A27C-024DA02AD167}, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{A6918429-4197-42E6-A4AC-742073A9BCBB}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{016CD3A8-EE64-46DC-92BF-77D714E5BF12}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{1F445155-F9BC-4F5C-A65F-551D3A2BC38D}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B6A5E3C8-1C9F-4F57-A3DC-2F64D7B1E2E3}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DF2FB4FF-115F-4A88-9757-9CFBA45C4BC4}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{016CD3A8-EE64-46DC-92BF-77D714E5BF12}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{1F445155-F9BC-4F5C-A65F-551D3A2BC38D}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B6A5E3C8-1C9F-4F57-A3DC-2F64D7B1E2E3}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DF2FB4FF-115F-4A88-9757-9CFBA45C4BC4}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{016CD3A8-EE64-46DC-92BF-77D714E5BF12}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{1F445155-F9BC-4F5C-A65F-551D3A2BC38D}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B6A5E3C8-1C9F-4F57-A3DC-2F64D7B1E2E3}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DF2FB4FF-115F-4A88-9757-9CFBA45C4BC4}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A6918429-4197-42E6-A4AC-742073A9BCBB}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{A6918429-4197-42E6-A4AC-742073A9BCBB}, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{1EA56CF8-1B08-4B8B-BAD9-77D0A2F55837}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{AFE44F7D-9EB4-426B-AB34-4DAB85ECDF91}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{D75E8573-4E73-4642-8517-A6348042151C}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DC00432C-FF74-41C6-BE9E-7F2224FDB437}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{1EA56CF8-1B08-4B8B-BAD9-77D0A2F55837}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{AFE44F7D-9EB4-426B-AB34-4DAB85ECDF91}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D75E8573-4E73-4642-8517-A6348042151C}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DC00432C-FF74-41C6-BE9E-7F2224FDB437}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{1EA56CF8-1B08-4B8B-BAD9-77D0A2F55837}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{AFE44F7D-9EB4-426B-AB34-4DAB85ECDF91}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D75E8573-4E73-4642-8517-A6348042151C}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DC00432C-FF74-41C6-BE9E-7F2224FDB437}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B08006D8-1D22-458E-9370-F459542E5AF2}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DB559C6A-03B9-4961-9BC3-80D769710C2D}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B08006D8-1D22-458E-9370-F459542E5AF2}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DB559C6A-03B9-4961-9BC3-80D769710C2D}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B08006D8-1D22-458E-9370-F459542E5AF2}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B7298E57-3046-4F2A-B8C6-78CC8A60020C}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{CB747D69-2EE7-40C0-BE35-BA6ED3EEA8A3}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DB559C6A-03B9-4961-9BC3-80D769710C2D}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{76C5E0A3-B072-4ED0-AAB1-E8B6F063155A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A7D7CEFD-AEAC-4C31-B0C5-7F44A722CD71}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DC8583CD-B5DB-4C6F-859B-A878C3214770}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FDAD10B2-FDBC-4870-BA93-D9E9373C350A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{76C5E0A3-B072-4ED0-AAB1-E8B6F063155A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A7D7CEFD-AEAC-4C31-B0C5-7F44A722CD71}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{DC8583CD-B5DB-4C6F-859B-A878C3214770}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FDAD10B2-FDBC-4870-BA93-D9E9373C350A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{76C5E0A3-B072-4ED0-AAB1-E8B6F063155A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A7D7CEFD-AEAC-4C31-B0C5-7F44A722CD71}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{DC8583CD-B5DB-4C6F-859B-A878C3214770}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{FDAD10B2-FDBC-4870-BA93-D9E9373C350A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{EB559340-3A8F-4456-B24D-160098054EF0}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{311AACFA-3DB4-4EEC-B430-E9FFF3C3F4EB}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{5C4ECEE2-D00F-4844-92B9-F2699746572C}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{8069EEE8-90E1-42E5-82B5-BE7D9D04E78B}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{981C4037-A6DF-4B09-BEB9-2B6AFA9E8044}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{311AACFA-3DB4-4EEC-B430-E9FFF3C3F4EB}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{5C4ECEE2-D00F-4844-92B9-F2699746572C}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{8069EEE8-90E1-42E5-82B5-BE7D9D04E78B}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{981C4037-A6DF-4B09-BEB9-2B6AFA9E8044}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{311AACFA-3DB4-4EEC-B430-E9FFF3C3F4EB}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{5C4ECEE2-D00F-4844-92B9-F2699746572C}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{8069EEE8-90E1-42E5-82B5-BE7D9D04E78B}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{981C4037-A6DF-4B09-BEB9-2B6AFA9E8044}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{EB559340-3A8F-4456-B24D-160098054EF0}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{EB559340-3A8F-4456-B24D-160098054EF0}, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.Superclean.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Superclean, , [d2dfd3378dfe7fb7769a31eac43f36ca],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, , [00b13ad0b7d475c1058209a057ad27d9],
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\mystartsearchSoftware, , [1e9391792467db5b198847f0778ccf31],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, , [fdb499715d2e2e08f1fb48d8cb38f907],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, , [5d54f713f69537ff1f8875b543c05ea2],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, , [10a11cee6e1d3105386e280231d2b54b],
PUP.Optional.Vosteran, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, , [ad0442c877143bfbb6559f99778cb24e],
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, , [228fa06a177456e0495c96948083857b],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f7930dcb}, , [06ab9a70e5a64de9f62bc5e30004c13f],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, , [8c25d53591fa7fb783048623ef1540c0],
PUP.Optional.SystemRaise.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\f7930dcb, , [813002081972d4629c2c4bd750b36e92],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, , [a20f719956352610dbc68a1a6b99fd03],
PUP.Optional.TNT.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\TNT2, , [9e1373976724082e6fdca9832bd85ba5],
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [951cca409af156e07e999a094db77e82],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, , [4071c545ed9eaf873d17081feb18817f],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, , [327fb6542a613ef8f1644fd8d92a14ec],
PUP.Optional.Linkey.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Linkey, , [961bac5e90fbe35361f5a384fa0941bf],
PUP.Optional.SearchProtect.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchProtect, , [565b93773d4e280ef73d960e14f06c94],
PUP.Optional.Vosteran.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, , [941dc149b5d6082ebe991d0ad42f5fa1],
PUP.Optional.Wajam.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, , [bbf69c6ec0cb280ea7b174b311f2f30d],
PUP.Optional.SearchEngine.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MOZILLA\EXTENDS, , [159c3dcd602ba5914cebd24fc63d20e0],
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB, , [19985cae4546d4623bebcaeb7094ed13],
PUP.Optional.SuperOptimizer.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\SUPER OPTIMIZER, , [ac051eec0685989e24e6ddcde91b2cd4],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1000_Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, , [f6bbb753830849ed7d289e17f21243bd],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1000_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, , [e9c8f7132863ac8a9e078e2720e422de],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1001_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, , [d6db6c9ec7c4b77f8520d3e234d0867a],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-501_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, , [921fc149aae148ee0e97c8ede81c7c84],
Re: prevence prosím kontrolu logu.
Hodnoty registru: 16
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [00b13ad0b7d475c1058209a057ad27d9]
PUP.Optional.SearchEngine.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|searchengine@gmail.com, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\searchengine@gmail.com, , [941d5ab03457d2642781623b9074a858]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [8c25d53591fa7fb783048623ef1540c0]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, mystartsearch, , [951cca409af156e07e999a094db77e82]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, , [0aa708025833c1753d15c45955ae9070]
PUP.Optional.SearchEngine.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MOZILLA\EXTENDS|appid, searchengine@gmail.com, , [159c3dcd602ba5914cebd24fc63d20e0]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype1, 3/15/15 7:29:48, , [19985cae4546d4623bebcaeb7094ed13]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype9, 3/15/15 7:29:48, , [8e23f2182863af87bb6b169f669e18e8]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype39, 3/15/15 7:29:48, , [cee308023655ec4ac264516450b441bf]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype6, 3/15/15 7:30:58, , [7839e822d4b7be780323704545bfeb15]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype40, 3/15/15 7:33:27, , [238e907a4f3c082e59cd0ca90400a060]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype19, 3/15/15 7:34:2, , [2f828189a0eb3303b076f5c0699b6898]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype20, 3/15/15 7:34:2, , [1e9363a7286376c01313882d8f754eb2]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype38, 3/15/15 7:34:2, , [ac059f6b513a979fa6809c1951b3758b]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype15, 3/15/15 7:34:43, , [872a1ceeacdf6acc67bf2f86907448b8]
PUP.Optional.SuperOptimizer.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\SUPER OPTIMIZER|SetupName, C:\Users\pidlo\AppData\Local\Temp\3d5a18e5\194255.ftf, , [ac051eec0685989e24e6ddcde91b2cd4]
Data registru: 10
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}),,[971abe4cd0bb5fd76b1dc98030d5d62a]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG),,[e2cfbe4c008b999d691f68e1729325db]
PUP.Optional.GboxApp.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.gboxapp.com/, Dobré: (www.google.com), Špatné: (http://search.gboxapp.com/),,[882968a2286350e67ffe4109f015a15f]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}),,[bbf63cce8efdbc7aed9b4306a46123dd]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}),,[3b769674672477bfc5c30f3a5da89e62]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG),,[a11025e58407221492f6ea5f996c0bf5]
PUP.Optional.GboxApp.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.gboxapp.com/, Dobré: (www.google.com), Špatné: (http://search.gboxapp.com/),,[535ef2182566ab8b720bb892d233827e]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}),,[11a0a2685b30c472afd9f257bb4aae52]
PUP.Optional.GboxApp.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.gboxapp.com/, Dobré: (www.google.com), Špatné: (http://search.gboxapp.com/),,[a20f5fab37545ed8ceb0ba90788d817f]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG),,[753c20ea8b00fd3915742e1b8f767987]
Složky: 35
PUP.Optional.SalePlus.A, C:\Program Files (x86)\SalePlus, , [18994ebcb9d285b1ee80c45dd82b9070],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\content, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\content, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\content, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\content, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\content, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\content, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Save, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Savue, , [b6fb66a495f6fc3ab94d61411be9847c],
PUP.Optional.NetCoupon.A, C:\Program Files (x86)\NetouCouPon, , [0da4a5652b6060d67997336f53b151af],
PUP.Optional.RegularDeals.A, C:\Program Files (x86)\RegulArDeaLS, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.YouTubeAdBlocker.A, C:\Program Files (x86)\youtubeadblocker, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.AllSaver.A, C:\Program Files (x86)\ALLlSaaver, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.RandomPrice.A, C:\Program Files (x86)\RRandomPRice, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GrEaatSavoe4U, , [4e63c3471f6c3ff7c0f6cdd7e81c0cf4],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GreuattSAveE4U, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MiniAdblocker.A, C:\ProgramData\Mini - Adblocker, , [c4ed52b85f2c8aac041220e205fec13f],
Soubory: 154
PUP.Optional.Multiplug, C:\Program Files (x86)\SystemRaise\SystemRaise.dll, , [b10040cab0dbcd69750266140cf548b8],
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Priest\Outrageous Priest.exe, , [eec361a9d5b61a1cccd4be0747ba9967],
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Tool\Outrageous Tool.exe, , [f2bf4ebc43481521e9b74c798978936d],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.x64.dll, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.dll, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.x64.dll, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.dll, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{7EF893B9-B959-41C1-A85A-B7EBB769A343}, , [3e7358b27a11d462c9132c783dc430d0],
PUP.Optional.MultiPlug.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{80F80F67-0D52-45D1-8DB5-C9999E7F16BC}, , [e3ce0dfd1d6eac8aa5954b7226db31cf],
PUP.Optional.MultiPlug.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{84FB2AC2-0A52-4455-AEB2-D76774FE727F}, , [d9d81bef315a4beb300a8934b44d5da3],
PUP.Optional.MultiPlug.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{9D50B3F2-B275-4D62-BF87-E3608394B202}, , [486956b4583370c65edc0db0f70a1de3],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{C4683E83-3EBB-45F3-983B-517364DF6DAB}, , [6d445fab6724a3933f9de9bb2ed38878],
PUP.Optional.MultiPlug.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{DB01BCDB-3A2E-4D65-8AD9-04F36C44BCA5}, , [2e8349c1bad1eb4b8cae8f2ed1302bd5],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\RegulArDeaLS\rrr4BSMr9I5TVV.dll, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\RegulArDeaLS\rrr4BSMr9I5TVV.exe, , [0ea306041b70dc5a8f94dba0ae537e82],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\RRandomPRice\a832BCnMyftTzA.dll, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\RRandomPRice\a832BCnMyftTzA.exe, , [674ae8223b504de9948f0f6c55ac1be5],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.dll, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.x64.dll, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.exe, , [f6bbd238e6a5bc7aa57e413a946d8b75],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\SaolePluus\SaolePluus.exe, , [3b765eac1d6eb77f40e35a21c43d26da],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Leo Dictionary Widget\Leo Dictionary Widget.exe, , [6849dd2d6328b38349da5427bf42d52b],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Liam Payne News\Liam Payne News.exe, , [466b1dedaae1f44233f09cdf010037c9],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\DiagiCoUUpoon\DiagiCoUUpoon.exe, , [f5bce723fd8eab8bbc6780fb10f11fe1],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.exe, , [e5ccba50f49723139b8887f4fe030af6],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.exe, , [cbe64ac04843bb7b1d06a9d2ad54fa06],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\DiigiCoupoN\DiigiCoupoN.exe, , [3180808ad6b5f244879c502bcc3506fa],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Undeaddies\Undeaddies.exe, , [6f4202089eed191d1f041f5cae5342be],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.dll, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.x64.dll, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.exe, , [c0f1bd4d6c1f320462c1a4d7b34e768a],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\FinduBeStDeal\FinduBeStDeal.exe, , [327fe8221e6d94a227fcde9d59a8926e],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Mozilla Firefox\dbghelp.dll, , [ecc5b7538a0171c5cb58824f71905da3],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Musixmatch\Musixmatch.exe, , [476ad832dfac5ed8a77c94e7c63b4db3],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Redmine Issues Checker\Redmine Issues Checker.exe, , [6b467892c2c9a492ca59d8a32ad714ec],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.dll, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.x64.dll, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.exe, , [2a87dc2e8cff39fd2af935462bd6b24e],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.dll, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.x64.dll, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.exe, , [ac05c941642775c19a898af179889769],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Happy2Saevae\Happy2Saevae.exe, , [a50c60aa1c6f78be66bdc3b8da274bb5],
PUP.Optional.SalePlus.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.tlb, , [18994ebcb9d285b1ee80c45dd82b9070],
PUP.Optional.SalePlus.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.dat, , [18994ebcb9d285b1ee80c45dd82b9070],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\searchplugins\mystartsearch.xml, , [e8c97e8c1a71ab8b465aaa8d3fc47c84],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\lsdb.js, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\background.html, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\content.js, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\h.js, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\manifest.json, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\lsdb.js, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\background.html, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\content.js, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\manifest.json, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\r.js, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\lsdb.js, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\background.html, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\content.js, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\manifest.json, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\VGaerXPAb.js, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\content\bg.js, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\bootstrap.js, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\chrome.manifest, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\install.rdf, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\content\bg.js, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\bootstrap.js, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\chrome.manifest, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\install.rdf, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\content\bg.js, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\bootstrap.js, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\chrome.manifest, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\install.rdf, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\content\bg.js, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\bootstrap.js, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\chrome.manifest, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\install.rdf, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\content\bg.js, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\bootstrap.js, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\chrome.manifest, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\install.rdf, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\content\bg.js, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\bootstrap.js, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\chrome.manifest, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\install.rdf, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.tlb, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.dat, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.dat, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.tlb, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.tlb, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.dat, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.tlb, , [b6fb66a495f6fc3ab94d61411be9847c],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.dat, , [b6fb66a495f6fc3ab94d61411be9847c],
PUP.Optional.NetCoupon.A, C:\Program Files (x86)\NetouCouPon\CRIbhukoP72tfF.tlb, , [0da4a5652b6060d67997336f53b151af],
PUP.Optional.NetCoupon.A, C:\Program Files (x86)\NetouCouPon\CRIbhukoP72tfF.dat, , [0da4a5652b6060d67997336f53b151af],
PUP.Optional.RegularDeals.A, C:\Program Files (x86)\RegulArDeaLS\rrr4BSMr9I5TVV.tlb, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, C:\Program Files (x86)\RegulArDeaLS\rrr4BSMr9I5TVV.dat, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.YouTubeAdBlocker.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.tlb, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.dat, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\lsdb.js, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\background.html, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\content.js, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\e.js, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\manifest.json, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\lsdb.js, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\background.html, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\content.js, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\cvq.js, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\manifest.json, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\lsdb.js, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\background.html, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\content.js, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\G4Bvf2Y.js, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\manifest.json, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.AllSaver.A, C:\Program Files (x86)\ALLlSaaver\2xBSRGGpkKZIqt.tlb, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, C:\Program Files (x86)\ALLlSaaver\2xBSRGGpkKZIqt.dat, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.RandomPrice.A, C:\Program Files (x86)\RRandomPRice\a832BCnMyftTzA.tlb, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, C:\Program Files (x86)\RRandomPRice\a832BCnMyftTzA.dat, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GrEaatSavoe4U\6YNrZw05vekyU3.tlb, , [4e63c3471f6c3ff7c0f6cdd7e81c0cf4],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GrEaatSavoe4U\6YNrZw05vekyU3.dat, , [4e63c3471f6c3ff7c0f6cdd7e81c0cf4],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GreuattSAveE4U\jEL3JvI9kiPunj.tlb, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GreuattSAveE4U\jEL3JvI9kiPunj.dat, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}\hqghumeaylnlf.dat, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}\2518ca5908a8bee, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}\2518ca5908a8bee.lock, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}\35f15a5c69fa80be, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.Superclean.A, C:\Windows\System32\Tasks\Superclean, , [60510208e4a7a6904d56b3fc4fb5b54b],
PUP.Optional.Superclean.A, C:\Windows\Tasks\Superclean.job, , [199830da4b4040f65a4a03acdf2522de],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\2708f9ff3884b3dd6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\37775abd6f6704a26e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\4775d99c57b1799e6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\4b432ab495a899336e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\4cc9484e5308b1bc6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\800d0e2f346d2d496e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\954accd1ef18255b6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\9cf017f4b62ec1166e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\a4311af4acf03b3e6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\a923305d1f1aa43e6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\ab04ecb30c557b376e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\ad5e6328e91d5a256e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\b064fcb2318aa95b6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\bb54bdc50384f4da6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\c5dda881163646776e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\cab7ed1b673b5e5e6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\cd5b15e575e1c3d06e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d10de703829fe2d86e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d1b1b8b13a2262026e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d1b823d8a4cc41496e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d38e8734560118a96e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d6ae24e4beaa0e726e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d7f7ceff8d57bf9a6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d88e11b2264d07486e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MyStartSearch, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.search.defaultenginename", "mystartsearch");), ,[f5bcb357b0db74c21838f39d976e7789]
PUP.Optional.MyStartSearch, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.search.selectedEngine", "mystartsearch");), ,[eec386845a3139fdea672f61ca3b34cc]
PUP.Optional.GboxApp.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js, Dobré: (browser.startup.homepage", "https://www.malwarebytes.org/restorebrowser/), Špatné: (browser.startup.homepage", "http://search.gboxapp.com), ,[ecc5fa10464558de5b9c9cf54bba837d]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [00b13ad0b7d475c1058209a057ad27d9]
PUP.Optional.SearchEngine.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|searchengine@gmail.com, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\searchengine@gmail.com, , [941d5ab03457d2642781623b9074a858]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [8c25d53591fa7fb783048623ef1540c0]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, mystartsearch, , [951cca409af156e07e999a094db77e82]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, , [0aa708025833c1753d15c45955ae9070]
PUP.Optional.SearchEngine.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MOZILLA\EXTENDS|appid, searchengine@gmail.com, , [159c3dcd602ba5914cebd24fc63d20e0]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype1, 3/15/15 7:29:48, , [19985cae4546d4623bebcaeb7094ed13]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype9, 3/15/15 7:29:48, , [8e23f2182863af87bb6b169f669e18e8]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype39, 3/15/15 7:29:48, , [cee308023655ec4ac264516450b441bf]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype6, 3/15/15 7:30:58, , [7839e822d4b7be780323704545bfeb15]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype40, 3/15/15 7:33:27, , [238e907a4f3c082e59cd0ca90400a060]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype19, 3/15/15 7:34:2, , [2f828189a0eb3303b076f5c0699b6898]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype20, 3/15/15 7:34:2, , [1e9363a7286376c01313882d8f754eb2]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype38, 3/15/15 7:34:2, , [ac059f6b513a979fa6809c1951b3758b]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype15, 3/15/15 7:34:43, , [872a1ceeacdf6acc67bf2f86907448b8]
PUP.Optional.SuperOptimizer.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\SUPER OPTIMIZER|SetupName, C:\Users\pidlo\AppData\Local\Temp\3d5a18e5\194255.ftf, , [ac051eec0685989e24e6ddcde91b2cd4]
Data registru: 10
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}),,[971abe4cd0bb5fd76b1dc98030d5d62a]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG),,[e2cfbe4c008b999d691f68e1729325db]
PUP.Optional.GboxApp.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.gboxapp.com/, Dobré: (www.google.com), Špatné: (http://search.gboxapp.com/),,[882968a2286350e67ffe4109f015a15f]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}),,[bbf63cce8efdbc7aed9b4306a46123dd]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}),,[3b769674672477bfc5c30f3a5da89e62]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG),,[a11025e58407221492f6ea5f996c0bf5]
PUP.Optional.GboxApp.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.gboxapp.com/, Dobré: (www.google.com), Špatné: (http://search.gboxapp.com/),,[535ef2182566ab8b720bb892d233827e]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... 1D530ZG&q={searchTerms}),,[11a0a2685b30c472afd9f257bb4aae52]
PUP.Optional.GboxApp.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://search.gboxapp.com/, Dobré: (www.google.com), Špatné: (http://search.gboxapp.com/),,[a20f5fab37545ed8ceb0ba90788d817f]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... XXZ1D530ZG),,[753c20ea8b00fd3915742e1b8f767987]
Složky: 35
PUP.Optional.SalePlus.A, C:\Program Files (x86)\SalePlus, , [18994ebcb9d285b1ee80c45dd82b9070],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\content, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\content, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\content, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\content, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\content, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\content, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Save, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Savue, , [b6fb66a495f6fc3ab94d61411be9847c],
PUP.Optional.NetCoupon.A, C:\Program Files (x86)\NetouCouPon, , [0da4a5652b6060d67997336f53b151af],
PUP.Optional.RegularDeals.A, C:\Program Files (x86)\RegulArDeaLS, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.YouTubeAdBlocker.A, C:\Program Files (x86)\youtubeadblocker, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.AllSaver.A, C:\Program Files (x86)\ALLlSaaver, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.RandomPrice.A, C:\Program Files (x86)\RRandomPRice, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GrEaatSavoe4U, , [4e63c3471f6c3ff7c0f6cdd7e81c0cf4],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GreuattSAveE4U, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MiniAdblocker.A, C:\ProgramData\Mini - Adblocker, , [c4ed52b85f2c8aac041220e205fec13f],
Soubory: 154
PUP.Optional.Multiplug, C:\Program Files (x86)\SystemRaise\SystemRaise.dll, , [b10040cab0dbcd69750266140cf548b8],
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Priest\Outrageous Priest.exe, , [eec361a9d5b61a1cccd4be0747ba9967],
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Tool\Outrageous Tool.exe, , [f2bf4ebc43481521e9b74c798978936d],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.x64.dll, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.dll, , [2988e624206b4de967d3a518a160dd23],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.x64.dll, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.dll, , [f0c1b35712798ea853e7902d2dd438c8],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{7EF893B9-B959-41C1-A85A-B7EBB769A343}, , [3e7358b27a11d462c9132c783dc430d0],
PUP.Optional.MultiPlug.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{80F80F67-0D52-45D1-8DB5-C9999E7F16BC}, , [e3ce0dfd1d6eac8aa5954b7226db31cf],
PUP.Optional.MultiPlug.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{84FB2AC2-0A52-4455-AEB2-D76774FE727F}, , [d9d81bef315a4beb300a8934b44d5da3],
PUP.Optional.MultiPlug.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{9D50B3F2-B275-4D62-BF87-E3608394B202}, , [486956b4583370c65edc0db0f70a1de3],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{C4683E83-3EBB-45F3-983B-517364DF6DAB}, , [6d445fab6724a3933f9de9bb2ed38878],
PUP.Optional.MultiPlug.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{DB01BCDB-3A2E-4D65-8AD9-04F36C44BCA5}, , [2e8349c1bad1eb4b8cae8f2ed1302bd5],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\RegulArDeaLS\rrr4BSMr9I5TVV.dll, , [1c95898124672a0ca892d2eb29d8d030],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\RegulArDeaLS\rrr4BSMr9I5TVV.exe, , [0ea306041b70dc5a8f94dba0ae537e82],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\RRandomPRice\a832BCnMyftTzA.dll, , [dad7e129fb900f2769d1e7d6a25fe719],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\RRandomPRice\a832BCnMyftTzA.exe, , [674ae8223b504de9948f0f6c55ac1be5],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.dll, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.x64.dll, , [446d0dfd840740f6a402a2e9ca378a76],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.exe, , [f6bbd238e6a5bc7aa57e413a946d8b75],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\SaolePluus\SaolePluus.exe, , [3b765eac1d6eb77f40e35a21c43d26da],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Leo Dictionary Widget\Leo Dictionary Widget.exe, , [6849dd2d6328b38349da5427bf42d52b],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Liam Payne News\Liam Payne News.exe, , [466b1dedaae1f44233f09cdf010037c9],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\DiagiCoUUpoon\DiagiCoUUpoon.exe, , [f5bce723fd8eab8bbc6780fb10f11fe1],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.exe, , [e5ccba50f49723139b8887f4fe030af6],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.exe, , [cbe64ac04843bb7b1d06a9d2ad54fa06],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\DiigiCoupoN\DiigiCoupoN.exe, , [3180808ad6b5f244879c502bcc3506fa],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Undeaddies\Undeaddies.exe, , [6f4202089eed191d1f041f5cae5342be],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.dll, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.x64.dll, , [c3ee3fcb0a81c5716442f19acb36b24e],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.exe, , [c0f1bd4d6c1f320462c1a4d7b34e768a],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\FinduBeStDeal\FinduBeStDeal.exe, , [327fe8221e6d94a227fcde9d59a8926e],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Mozilla Firefox\dbghelp.dll, , [ecc5b7538a0171c5cb58824f71905da3],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Musixmatch\Musixmatch.exe, , [476ad832dfac5ed8a77c94e7c63b4db3],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Redmine Issues Checker\Redmine Issues Checker.exe, , [6b467892c2c9a492ca59d8a32ad714ec],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.dll, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.x64.dll, , [b3fe0dfd197239fd3ffbc1fcdb26ed13],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.exe, , [2a87dc2e8cff39fd2af935462bd6b24e],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.dll, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.x64.dll, , [ecc52ae03a5193a34eeca518c53c827e],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.exe, , [ac05c941642775c19a898af179889769],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Happy2Saevae\Happy2Saevae.exe, , [a50c60aa1c6f78be66bdc3b8da274bb5],
PUP.Optional.SalePlus.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.tlb, , [18994ebcb9d285b1ee80c45dd82b9070],
PUP.Optional.SalePlus.A, C:\Program Files (x86)\SalePlus\rGNbvNB2AZf7lq.dat, , [18994ebcb9d285b1ee80c45dd82b9070],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\searchplugins\mystartsearch.xml, , [e8c97e8c1a71ab8b465aaa8d3fc47c84],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\lsdb.js, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\background.html, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\content.js, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\h.js, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd\104\manifest.json, , [c5ec1feb92f968ce92d7148d2dd702fe],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\lsdb.js, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\background.html, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\content.js, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\manifest.json, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia\223\r.js, , [5e53a565d0bb22145f0af4ade61e0af6],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\lsdb.js, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\background.html, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\content.js, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\manifest.json, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\118\VGaerXPAb.js, , [f0c114f61e6d38fe5118623fc4408977],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\content\bg.js, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\bootstrap.js, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\chrome.manifest, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\9@mGWf5Wx.org\install.rdf, , [05acb654cbc02f07babdc3dede26659b],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\content\bg.js, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\bootstrap.js, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\chrome.manifest, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\D7POgr@aW.edu\install.rdf, , [c0f17991cfbc64d24b2cc9d8c93b7987],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\content\bg.js, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\bootstrap.js, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\chrome.manifest, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\i7yfr@VbS.net\install.rdf, , [e8c933d7ff8c78be73049110877d41bf],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\content\bg.js, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\bootstrap.js, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\chrome.manifest, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\kb@usC.com\install.rdf, , [6a4716f40d7e75c14a2dfea34bb9ed13],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\content\bg.js, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\bootstrap.js, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\chrome.manifest, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\sMHZO@qAo.net\install.rdf, , [a30e808acdbeef47d1a6a4fd56ae4cb4],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\content\bg.js, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\bootstrap.js, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\chrome.manifest, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.MultiPlug.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\extensions\U@Hw.edu\install.rdf, , [a011b8526e1db4825e197829a163ac54],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.tlb, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon\Bzpaq2CkQoW9J0.dat, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.dat, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.DigiCoupon.A, C:\Program Files (x86)\DigiCoUpon\fEdUyDfzQtgLpp.tlb, , [d4dd05057417fe38b3405849f70d49b7],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.tlb, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Save\2Q8ulgSMy9F0Bz.dat, , [dfd20efc018a241243c3cdd5fc08f20e],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.tlb, , [b6fb66a495f6fc3ab94d61411be9847c],
PUP.Optional.Happy2Save.A, C:\Program Files (x86)\Hapapy2Savue\84dDwimFIE4A0Z.dat, , [b6fb66a495f6fc3ab94d61411be9847c],
PUP.Optional.NetCoupon.A, C:\Program Files (x86)\NetouCouPon\CRIbhukoP72tfF.tlb, , [0da4a5652b6060d67997336f53b151af],
PUP.Optional.NetCoupon.A, C:\Program Files (x86)\NetouCouPon\CRIbhukoP72tfF.dat, , [0da4a5652b6060d67997336f53b151af],
PUP.Optional.RegularDeals.A, C:\Program Files (x86)\RegulArDeaLS\rrr4BSMr9I5TVV.tlb, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.RegularDeals.A, C:\Program Files (x86)\RegulArDeaLS\rrr4BSMr9I5TVV.dat, , [00b1fe0c6625ce68899eacf645bf619f],
PUP.Optional.YouTubeAdBlocker.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.tlb, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.YouTubeAdBlocker.A, C:\Program Files (x86)\youtubeadblocker\XYtB2uUfiVnoXy.dat, , [aa07d634216a57dfb596257d11f3f907],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\lsdb.js, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\background.html, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\content.js, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\e.js, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih\manifest.json, , [11a081897813a59113a1d2d031d3926e],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\lsdb.js, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\background.html, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\content.js, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\cvq.js, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp\manifest.json, , [9918d3373655d561595b9b07d232dd23],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\lsdb.js, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\background.html, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\content.js, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\G4Bvf2Y.js, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.MultiPlug, C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk\manifest.json, , [d4dda367e8a35bdbac08bde562a225db],
PUP.Optional.AllSaver.A, C:\Program Files (x86)\ALLlSaaver\2xBSRGGpkKZIqt.tlb, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.AllSaver.A, C:\Program Files (x86)\ALLlSaaver\2xBSRGGpkKZIqt.dat, , [a70a56b43e4d2a0c9cc3465d45bf9d63],
PUP.Optional.RandomPrice.A, C:\Program Files (x86)\RRandomPRice\a832BCnMyftTzA.tlb, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.RandomPrice.A, C:\Program Files (x86)\RRandomPRice\a832BCnMyftTzA.dat, , [29882dddb5d6f442f880b4efb05449b7],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GrEaatSavoe4U\6YNrZw05vekyU3.tlb, , [4e63c3471f6c3ff7c0f6cdd7e81c0cf4],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GrEaatSavoe4U\6YNrZw05vekyU3.dat, , [4e63c3471f6c3ff7c0f6cdd7e81c0cf4],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GreuattSAveE4U\jEL3JvI9kiPunj.tlb, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.GreatSave4U.A, C:\Program Files (x86)\GreuattSAveE4U\jEL3JvI9kiPunj.dat, , [9d1487833b5075c14d697b29d331f30d],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}\hqghumeaylnlf.dat, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}\2518ca5908a8bee, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}\2518ca5908a8bee.lock, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}\35f15a5c69fa80be, , [c9e8aa601b70c07635c84a5ce024827e],
PUP.Optional.Superclean.A, C:\Windows\System32\Tasks\Superclean, , [60510208e4a7a6904d56b3fc4fb5b54b],
PUP.Optional.Superclean.A, C:\Windows\Tasks\Superclean.job, , [199830da4b4040f65a4a03acdf2522de],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\2708f9ff3884b3dd6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\37775abd6f6704a26e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\4775d99c57b1799e6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\4b432ab495a899336e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\4cc9484e5308b1bc6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\800d0e2f346d2d496e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\954accd1ef18255b6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\9cf017f4b62ec1166e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\a4311af4acf03b3e6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\a923305d1f1aa43e6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\ab04ecb30c557b376e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\ad5e6328e91d5a256e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\b064fcb2318aa95b6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\bb54bdc50384f4da6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\c5dda881163646776e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\cab7ed1b673b5e5e6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\cd5b15e575e1c3d06e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d10de703829fe2d86e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d1b1b8b13a2262026e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d1b823d8a4cc41496e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d38e8734560118a96e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d6ae24e4beaa0e726e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d7f7ceff8d57bf9a6e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MultiPlug.Gen, C:\ProgramData\5128087412686442237\d88e11b2264d07486e1a8cf759f3e917.ini, , [e3ceaa60117a2115ae19f0c051b31ae6],
PUP.Optional.MyStartSearch, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.search.defaultenginename", "mystartsearch");), ,[f5bcb357b0db74c21838f39d976e7789]
PUP.Optional.MyStartSearch, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.search.selectedEngine", "mystartsearch");), ,[eec386845a3139fdea672f61ca3b34cc]
PUP.Optional.GboxApp.A, C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js, Dobré: (browser.startup.homepage", "https://www.malwarebytes.org/restorebrowser/), Špatné: (browser.startup.homepage", "http://search.gboxapp.com), ,[ecc5fa10464558de5b9c9cf54bba837d]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43072
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: prevence prosím kontrolu logu.
Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“ , v okně na pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“ , v okně na pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: prevence prosím kontrolu logu.
# AdwCleaner v5.002 - Logfile created 20/08/2015 at 19:11:59
# Updated 18/08/2015 by Xplode
# Database : 2015-08-20.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : pidlo - PIDLO-PC
# Running from : C:\Users\pidlo\Desktop\adwcleaner_5.002.exe
# Option : Cleaning
***** [ Services ] *****
[-] Service Deleted : f7930dcb
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\Musixmatch
[-] Folder Deleted : C:\Program Files (x86)\ALLlSaaver
[-] Folder Deleted : C:\Program Files (x86)\DiagiCoUUpoon
[-] Folder Deleted : C:\Program Files (x86)\DigiCoUpon
[-] Folder Deleted : C:\Program Files (x86)\DiigiCoupoN
[-] Folder Deleted : C:\Program Files (x86)\FinduBeStDeal
[-] Folder Deleted : C:\Program Files (x86)\GrEaatSavoe4U
[-] Folder Deleted : C:\Program Files (x86)\GreuattSAveE4U
[-] Folder Deleted : C:\Program Files (x86)\Hapapy2Save
[-] Folder Deleted : C:\Program Files (x86)\Hapapy2Savue
[-] Folder Deleted : C:\Program Files (x86)\Happy2Saevae
[-] Folder Deleted : C:\Program Files (x86)\NetouCouPon
[-] Folder Deleted : C:\Program Files (x86)\RegulArDeaLS
[-] Folder Deleted : C:\Program Files (x86)\RRandomPRice
[-] Folder Deleted : C:\Program Files (x86)\SalePlus
[-] Folder Deleted : C:\Program Files (x86)\SaolePluus
[-] Folder Deleted : C:\Program Files (x86)\youtubeadblocker
[-] Folder Deleted : C:\ProgramData\5128087412686442237
[-] Folder Deleted : C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}
[-] Folder Deleted : C:\ProgramData\{da198e58-107a-771a-da19-98e581073960}
[-] Folder Deleted : C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih
[-] Folder Deleted : C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp
[-] Folder Deleted : C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk
[-] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd
[-] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia
[-] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\9@mGWf5Wx.org
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\D7POgr@aW.edu
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\i7yfr@VbS.net
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\kb@usC.com
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\sMHZO@qAo.net
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\U@Hw.edu
***** [ Files ] *****
[-] File Deleted : C:\Program Files (x86)\mozilla firefox\dbghelp.dll
[-] File Deleted : C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\searchplugins\mystartsearch.xml
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : Superclean
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Mozilla\Extends
[-] Key Deleted : HKLM\SOFTWARE\Classes\pc-mechanic
[-] Key Deleted : HKLM\SOFTWARE\Classes\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_
[-] Key Deleted : HKLM\SOFTWARE\Classes\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_
[-] Key Deleted : HKLM\SOFTWARE\Classes\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9
[-] Key Deleted : HKLM\SOFTWARE\7adbd985-9b58-368e-4f57-638471c717df
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f7930dcb}
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchengine@gmail.com]
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{330ED369-73D2-49BC-AC43-1E21602F742D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5518881B-BB38-46C7-A27C-024DA02AD167}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{917A80E3-C425-4F5F-B8D3-4804A0CCA924}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A6918429-4197-42E6-A4AC-742073A9BCBB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BDAF5CA1-4082-4F20-B44D-0238A9183DCA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EB559340-3A8F-4456-B24D-160098054EF0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{0385D834-29DA-49A2-992C-904C4C673C47}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{8c622b89-a072-4605-89e8-9a37723f6b16}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{a1df716a-0b86-4b1f-b3ac-8ef22347b618}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKCU\Software\simplytech
[-] Key Deleted : HKCU\Software\TNT2
[-] Key Deleted : HKCU\Software\Super Optimizer
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
[-] Key Deleted : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
[-] Key Deleted : HKLM\SOFTWARE\GeekBuddyRSP
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E957849A-94AC-6F46-4623-C31474E3C170}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B5DB572D-EA87-D3B0-08F6-4D153EA6A783}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{76DEE3DC-2B8B-E212-2126-D31D9E73DFE4}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B696F285-F54E-2524-58B1-E06A70ABE6BE}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CE94DD89-7404-B4B9-E713-E55CC0AB6C3B}
[!] Key Not Deleted : [x64] HKCU\Software\simplytech
[!] Key Not Deleted : [x64] HKCU\Software\TNT2
[!] Key Not Deleted : [x64] HKCU\Software\Super Optimizer
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-2229232713-360834936-347754365-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-2229232713-360834936-347754365-1000\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
***** [ Web browsers ] *****
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultenginename", "mystartsearch");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.alias", "mystartsearch");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.iconURL", "hxxp://www.mystartsearch.com/favicon.ico");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.name", "mystartsearch");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.url", "hxxp://www.mystartsearch.com/web/?type=ds&ts=1428155417&from=wpc&uid=ST1000DM003-1CH162_Z1D530ZGXXXXZ1D530ZG&q={searchTerms}");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "mystartsearch");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxp://search.gboxapp.com/");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.4jBjfulFlP5s3sja.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.Oys543FdQgWKiWdd.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.W6jiegmc8oIjT9At.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.ZaUL7ZjOuq1MZz9i.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.lvCnkvyEPXncMd93.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.xLzXKeWgDgMHKZ7o.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : C0EB984343813F005012A482B2EBDEEB1094BEA51F2BC83DD128D7C378B64042","homepage_is_newtabpage":"5B7DDAA2A56BDE97967B702B58E4FE86E1FA1B6D019C49BA94B45B6BB1EB29FB","pinned_tabs":"C2811537BBD755E1353985D4EE2DBC1584231CFD8A9BD92450399A0FE248442D","prefs":{"preference_reset_time":"2EE878F801F2055B651448A053CB7BD0A434E01CC11A9062CBDFBC7EBFC33CB5"},"profile":{"reset_prompt_memento":"FF7EE120C3382F3C2828C2712348920636C0B1F9D6A11D7BB6401720F8827324"},"safebrowsing":{"incidents_sent":"565E67E7E210EE2A0E5CA6F88B0D0052E39FDE8F32D2AB4A863AC124B2E84DCB"},"search_provider_overrides":"3C77322CE0B6CF8C1964C894314921A62EF17FBA88FE87AC30A4F44443831A8F","session":{"restore_on_startup":"015F09977CF64C95E4676E87887D79EA874454D4047AAE28CA401F710B0B63EB","startup_urls":"24A29D9E3059B5A6154525B2ABAA41371EDC541960577FA2F631EBA0BC4C68A7"},"software_reporter":{"prompt_reason":"B81DCE8203BB416E6D13EDC7EFA2DF5421BB5B1221555A3306EECE1B0D08E59D","prompt_seed":"C1BA42DBF5D217716D71284ED4256FA6091D8F9C287A620A25A47EA0D6DA7577","prompt_version":"D0E856B301F209384B5D43CC1034589A491DF6AFD0D093974236066FEB8455AA"},"sync":{"remaining_rollback_tries":"82BAF81938A8C45E8FB9C229E5B90331EC5001C741FCD734E5B6862CCEEABC9A"}},"super_mac":"971AF9BA1A66334380BA184F5A7A03242B562EA8EA0F1088052033BE2CD53F99"},"session":{"startup_urls":["hxxp://search.gboxapp.com/"]},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601
[-] [C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://search.gboxapp.com/
*************************
:: Proxy settings cleared
:: Winsock settings cleared
:: Chrome policies deleted
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [21399 bytes] ##########
# Updated 18/08/2015 by Xplode
# Database : 2015-08-20.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : pidlo - PIDLO-PC
# Running from : C:\Users\pidlo\Desktop\adwcleaner_5.002.exe
# Option : Cleaning
***** [ Services ] *****
[-] Service Deleted : f7930dcb
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\Musixmatch
[-] Folder Deleted : C:\Program Files (x86)\ALLlSaaver
[-] Folder Deleted : C:\Program Files (x86)\DiagiCoUUpoon
[-] Folder Deleted : C:\Program Files (x86)\DigiCoUpon
[-] Folder Deleted : C:\Program Files (x86)\DiigiCoupoN
[-] Folder Deleted : C:\Program Files (x86)\FinduBeStDeal
[-] Folder Deleted : C:\Program Files (x86)\GrEaatSavoe4U
[-] Folder Deleted : C:\Program Files (x86)\GreuattSAveE4U
[-] Folder Deleted : C:\Program Files (x86)\Hapapy2Save
[-] Folder Deleted : C:\Program Files (x86)\Hapapy2Savue
[-] Folder Deleted : C:\Program Files (x86)\Happy2Saevae
[-] Folder Deleted : C:\Program Files (x86)\NetouCouPon
[-] Folder Deleted : C:\Program Files (x86)\RegulArDeaLS
[-] Folder Deleted : C:\Program Files (x86)\RRandomPRice
[-] Folder Deleted : C:\Program Files (x86)\SalePlus
[-] Folder Deleted : C:\Program Files (x86)\SaolePluus
[-] Folder Deleted : C:\Program Files (x86)\youtubeadblocker
[-] Folder Deleted : C:\ProgramData\5128087412686442237
[-] Folder Deleted : C:\ProgramData\{8ba16db3-6d52-17d4-8ba1-16db36d5b6cd}
[-] Folder Deleted : C:\ProgramData\{da198e58-107a-771a-da19-98e581073960}
[-] Folder Deleted : C:\ProgramData\dchlbnhonoplccceepkanlfcppgpgeih
[-] Folder Deleted : C:\ProgramData\ikadkcbdmnnmemjalooplkakijhibjhp
[-] Folder Deleted : C:\ProgramData\onmjekjmfjmkdknkkhfgeoikdnilpmgk
[-] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd
[-] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfnnjkppogeoedffjkkkfeoifdkdijia
[-] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\9@mGWf5Wx.org
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\D7POgr@aW.edu
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\i7yfr@VbS.net
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\kb@usC.com
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\sMHZO@qAo.net
[-] Folder Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\Extensions\U@Hw.edu
***** [ Files ] *****
[-] File Deleted : C:\Program Files (x86)\mozilla firefox\dbghelp.dll
[-] File Deleted : C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\searchplugins\mystartsearch.xml
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : Superclean
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Mozilla\Extends
[-] Key Deleted : HKLM\SOFTWARE\Classes\pc-mechanic
[-] Key Deleted : HKLM\SOFTWARE\Classes\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P0385D834_29DA_49A2_992C_904C4C673C47_.P0385D834_29DA_49A2_992C_904C4C673C47_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.P5DF7BDE8_8B0E_4AE9_AFB0_135C97CD8B49_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.P7CAF40DC_ED5C_4097_A5B5_74E177E2F0E1_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P8c622b89_a072_4605_89e8_9a37723f6b16_.P8c622b89_a072_4605_89e8_9a37723f6b16_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.P961A92DC_CFB1_463B_BE31_EDB3B06C24FD_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_
[-] Key Deleted : HKLM\SOFTWARE\Classes\P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.P9DCC7A8F_674E_4A70_93F3_AE3EC0ADCC62_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_
[-] Key Deleted : HKLM\SOFTWARE\Classes\Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.Pa1df716a_0b86_4b1f_b3ac_8ef22347b618_.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_
[-] Key Deleted : HKLM\SOFTWARE\Classes\PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.PED51C0C4_1065_4DFE_9693_36CE4C6C2A2A_.9
[-] Key Deleted : HKLM\SOFTWARE\7adbd985-9b58-368e-4f57-638471c717df
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f7930dcb}
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchengine@gmail.com]
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{330ED369-73D2-49BC-AC43-1E21602F742D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5518881B-BB38-46C7-A27C-024DA02AD167}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6137A08F-29B1-4E48-B6A1-70CC3ABF50F7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{917A80E3-C425-4F5F-B8D3-4804A0CCA924}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A6918429-4197-42E6-A4AC-742073A9BCBB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BDAF5CA1-4082-4F20-B44D-0238A9183DCA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DC4101EC-F2D3-4648-A1F6-B4EECC52443A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EB559340-3A8F-4456-B24D-160098054EF0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{0385D834-29DA-49A2-992C-904C4C673C47}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{8c622b89-a072-4605-89e8-9a37723f6b16}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{a1df716a-0b86-4b1f-b3ac-8ef22347b618}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5DF7BDE8-8B0E-4AE9-AFB0-135C97CD8B49}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{8c622b89-a072-4605-89e8-9a37723f6b16}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{a1df716a-0b86-4b1f-b3ac-8ef22347b618}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{ED51C0C4-1065-4DFE-9693-36CE4C6C2A2A}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0385D834-29DA-49A2-992C-904C4C673C47}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7CAF40DC-ED5C-4097-A5B5-74E177E2F0E1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{961A92DC-CFB1-463B-BE31-EDB3B06C24FD}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9DCC7A8F-674E-4A70-93F3-AE3EC0ADCC62}
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKCU\Software\simplytech
[-] Key Deleted : HKCU\Software\TNT2
[-] Key Deleted : HKCU\Software\Super Optimizer
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
[-] Key Deleted : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
[-] Key Deleted : HKLM\SOFTWARE\GeekBuddyRSP
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E957849A-94AC-6F46-4623-C31474E3C170}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B5DB572D-EA87-D3B0-08F6-4D153EA6A783}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{76DEE3DC-2B8B-E212-2126-D31D9E73DFE4}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B696F285-F54E-2524-58B1-E06A70ABE6BE}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CE94DD89-7404-B4B9-E713-E55CC0AB6C3B}
[!] Key Not Deleted : [x64] HKCU\Software\simplytech
[!] Key Not Deleted : [x64] HKCU\Software\TNT2
[!] Key Not Deleted : [x64] HKCU\Software\Super Optimizer
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-2229232713-360834936-347754365-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-2229232713-360834936-347754365-1000\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
***** [ Web browsers ] *****
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultenginename", "mystartsearch");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.alias", "mystartsearch");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.iconURL", "hxxp://www.mystartsearch.com/favicon.ico");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.name", "mystartsearch");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.url", "hxxp://www.mystartsearch.com/web/?type=ds&ts=1428155417&from=wpc&uid=ST1000DM003-1CH162_Z1D530ZGXXXXZ1D530ZG&q={searchTerms}");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "mystartsearch");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxp://search.gboxapp.com/");
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.4jBjfulFlP5s3sja.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.Oys543FdQgWKiWdd.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.W6jiegmc8oIjT9At.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.ZaUL7ZjOuq1MZz9i.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.lvCnkvyEPXncMd93.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Roaming\Mozilla\Firefox\Profiles\lzoo6rau.default\prefs.js] [Preference] Deleted : user_pref("extensions.xLzXKeWgDgMHKZ7o.scode", "(function(){try{if(window.location.href.indexOf(\"qHUHrHYEpdg5qHk7rdkFqHUFrn\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : C0EB984343813F005012A482B2EBDEEB1094BEA51F2BC83DD128D7C378B64042","homepage_is_newtabpage":"5B7DDAA2A56BDE97967B702B58E4FE86E1FA1B6D019C49BA94B45B6BB1EB29FB","pinned_tabs":"C2811537BBD755E1353985D4EE2DBC1584231CFD8A9BD92450399A0FE248442D","prefs":{"preference_reset_time":"2EE878F801F2055B651448A053CB7BD0A434E01CC11A9062CBDFBC7EBFC33CB5"},"profile":{"reset_prompt_memento":"FF7EE120C3382F3C2828C2712348920636C0B1F9D6A11D7BB6401720F8827324"},"safebrowsing":{"incidents_sent":"565E67E7E210EE2A0E5CA6F88B0D0052E39FDE8F32D2AB4A863AC124B2E84DCB"},"search_provider_overrides":"3C77322CE0B6CF8C1964C894314921A62EF17FBA88FE87AC30A4F44443831A8F","session":{"restore_on_startup":"015F09977CF64C95E4676E87887D79EA874454D4047AAE28CA401F710B0B63EB","startup_urls":"24A29D9E3059B5A6154525B2ABAA41371EDC541960577FA2F631EBA0BC4C68A7"},"software_reporter":{"prompt_reason":"B81DCE8203BB416E6D13EDC7EFA2DF5421BB5B1221555A3306EECE1B0D08E59D","prompt_seed":"C1BA42DBF5D217716D71284ED4256FA6091D8F9C287A620A25A47EA0D6DA7577","prompt_version":"D0E856B301F209384B5D43CC1034589A491DF6AFD0D093974236066FEB8455AA"},"sync":{"remaining_rollback_tries":"82BAF81938A8C45E8FB9C229E5B90331EC5001C741FCD734E5B6862CCEEABC9A"}},"super_mac":"971AF9BA1A66334380BA184F5A7A03242B562EA8EA0F1088052033BE2CD53F99"},"session":{"startup_urls":["hxxp://search.gboxapp.com/"]},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601
[-] [C:\Users\pidlo\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://search.gboxapp.com/
*************************
:: Proxy settings cleared
:: Winsock settings cleared
:: Chrome policies deleted
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [21399 bytes] ##########
Re: prevence prosím kontrolu logu.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.7 (08.18.2015:1)
OS: Windows 7 Home Premium x64
Ran by pidlo on źt 20.08.2015 at 19:14:53,82
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update Air Globe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Util Air Globe
~~~ Files
Successfully deleted: [File] C:\Users\pidlo\AppData\Roaming\appdataFr2.bin
Successfully deleted: [File] C:\Users\pidlo\AppData\Roaming\appdataFr25.bin
Successfully deleted: [File] C:\Users\pidlo\AppData\Roaming\appdataFr3.bin
Successfully deleted: [File] C:\Users\pidlo\Appdata\Local\google\chrome\user data\default\local storage\chrome-extension_ogminpmldncgcmokldnmmapddoccmhfl_0.localstorage
~~~ Folders
~~~ FireFox
Successfully deleted the following from C:\Users\pidlo\AppData\Roaming\mozilla\firefox\profiles\lzoo6rau.default\prefs.js
user_pref(browser.search.searchengine.desc, this is my first firefox searchEngine);
user_pref(browser.search.searchengine.ptid, wpc);
user_pref(browser.search.searchengine.uid, ST1000DM003-1CH162_Z1D530ZGXXXXZ1D530ZG);
user_pref(extensions.9H7UJdQrt8JAubKm.scode, (function(){try{if(window.location.href.indexOf(\qHUHrHYEpdg5qHk7rdkFqHUFrn\)>-1){return;}}catch(e){}try{var d=[[\www.viracu
user_pref(extensions.bBa2SxcSNSlbquTa.scode, (function(){try{if(window.location.href.indexOf(\qHUHrHYEpdg5qHk7rdkFqHUFrn\)>-1){return;}}catch(e){}try{var d=[[\www.viracu
user_pref(extensions.iUqu6x220czJPxXB.scode, (function(){try{if(window.location.href.indexOf(\qHUHrHYEpdg5qHk7rdkFqHUFrn\)>-1){return;}}catch(e){}try{var d=[[\www.viracu
Emptied folder: C:\Users\pidlo\AppData\Roaming\mozilla\firefox\profiles\lzoo6rau.default\minidumps [5 files]
~~~ Chrome
[C:\Users\pidlo\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
[C:\Users\pidlo\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
[C:\Users\pidlo\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
[C:\Users\pidlo\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
ogminpmldncgcmokldnmmapddoccmhfl
]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 20.08.2015 at 19:26:54,32
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.7 (08.18.2015:1)
OS: Windows 7 Home Premium x64
Ran by pidlo on źt 20.08.2015 at 19:14:53,82
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update Air Globe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Util Air Globe
~~~ Files
Successfully deleted: [File] C:\Users\pidlo\AppData\Roaming\appdataFr2.bin
Successfully deleted: [File] C:\Users\pidlo\AppData\Roaming\appdataFr25.bin
Successfully deleted: [File] C:\Users\pidlo\AppData\Roaming\appdataFr3.bin
Successfully deleted: [File] C:\Users\pidlo\Appdata\Local\google\chrome\user data\default\local storage\chrome-extension_ogminpmldncgcmokldnmmapddoccmhfl_0.localstorage
~~~ Folders
~~~ FireFox
Successfully deleted the following from C:\Users\pidlo\AppData\Roaming\mozilla\firefox\profiles\lzoo6rau.default\prefs.js
user_pref(browser.search.searchengine.desc, this is my first firefox searchEngine);
user_pref(browser.search.searchengine.ptid, wpc);
user_pref(browser.search.searchengine.uid, ST1000DM003-1CH162_Z1D530ZGXXXXZ1D530ZG);
user_pref(extensions.9H7UJdQrt8JAubKm.scode, (function(){try{if(window.location.href.indexOf(\qHUHrHYEpdg5qHk7rdkFqHUFrn\)>-1){return;}}catch(e){}try{var d=[[\www.viracu
user_pref(extensions.bBa2SxcSNSlbquTa.scode, (function(){try{if(window.location.href.indexOf(\qHUHrHYEpdg5qHk7rdkFqHUFrn\)>-1){return;}}catch(e){}try{var d=[[\www.viracu
user_pref(extensions.iUqu6x220czJPxXB.scode, (function(){try{if(window.location.href.indexOf(\qHUHrHYEpdg5qHk7rdkFqHUFrn\)>-1){return;}}catch(e){}try{var d=[[\www.viracu
Emptied folder: C:\Users\pidlo\AppData\Roaming\mozilla\firefox\profiles\lzoo6rau.default\minidumps [5 files]
~~~ Chrome
[C:\Users\pidlo\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
[C:\Users\pidlo\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
[C:\Users\pidlo\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
[C:\Users\pidlo\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
ogminpmldncgcmokldnmmapddoccmhfl
]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 20.08.2015 at 19:26:54,32
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: prevence prosím kontrolu logu.
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 20.8.2015
Čas skenování: 19:34
Protokol: mbam.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.20.04
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: pidlo
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 433539
Uplynulý čas: 9 min, 13 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 9
PUP.Optional.ServiceRNDM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Outrageous Tool, Do karantény, [bb5987841972dc5a7cc67b4acb3608f8],
PUP.Optional.ServiceRNDM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Outrageous Priest, Do karantény, [e82ce328a1ead66081c1467f55ace21e],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{6933C2BA-C67D-42C7-8C77-1FF4B364AF54}, Do karantény, [fe1693788704c5711eaa86f4e02104fc],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C637A71C-A4B2-4B47-1B2A-1042A8D525A3}, Do karantény, [918356b5d3b8c670d7f184f620e101ff],
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB, Do karantény, [28ecea21f49781b5c3a9298ce51f4cb4],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1000_Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, Do karantény, [a0749576800b4ee89c4f387df212867a],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1000_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, Do karantény, [50c477941c6f50e669826a4bac5844bc],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1001_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, Do karantény, [6ca83ecdcebd1026ca218134dd27ef11],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-501_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, Do karantény, [f81c43c8a9e2d363ad3eaa0be71d6997],
Hodnoty registru: 9
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype1, 3/15/15 7:29:48, Do karantény, [28ecea21f49781b5c3a9298ce51f4cb4]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype9, 3/15/15 7:29:48, Do karantény, [38dc26e50289d066b3b902b310f40df3]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype39, 3/15/15 7:29:48, Do karantény, [d2424fbccdbe0630e4889223ec1812ee]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype6, 3/15/15 7:30:58, Do karantény, [ff15d536eba0c3734b21d3e2a0642bd5]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype40, 3/15/15 7:33:27, Do karantény, [e0343bd01c6f5cda353710a5a1639a66]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype19, 3/15/15 7:34:2, Do karantény, [898b9c6fa3e832049cd0a114699b768a]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype20, 3/15/15 7:34:2, Do karantény, [c153bd4e5f2c2610620ac9ec30d44db3]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype38, 3/15/15 7:34:2, Do karantény, [3fd5aa619fec80b6f27a4174d72d926e]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype15, 3/15/15 7:34:43, Do karantény, [f22248c33e4d38fe98d4991cbf4535cb]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 1
PUP.Optional.MiniAdblocker.A, C:\ProgramData\Mini - Adblocker, Do karantény, [df35b952d8b30f27622a2ed4659e5ba5],
Soubory: 9
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Tool\Outrageous Tool.exe, Do karantény, [bb5987841972dc5a7cc67b4acb3608f8],
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Priest\Outrageous Priest.exe, Do karantény, [e82ce328a1ead66081c1467f55ace21e],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{7EF893B9-B959-41C1-A85A-B7EBB769A343}, Do karantény, [50c440cb88038da9532c644010f1ce32],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{C4683E83-3EBB-45F3-983B-517364DF6DAB}, Do karantény, [ab69be4d08831b1ba0df7d27bc455fa1],
PUP.Optional.Multiplug, C:\Program Files (x86)\SystemRaise\SystemRaise.dll, Do karantény, [61b34ac15d2e78bed547e9917091d42c],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Leo Dictionary Widget\Leo Dictionary Widget.exe, Do karantény, [fe1693788704c5711eaa86f4e02104fc],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Liam Payne News\Liam Payne News.exe, Do karantény, [070d8586e4a7dd59c800255501001ae6],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Undeaddies\Undeaddies.exe, Do karantény, [23f16e9da1ea2e08f6d2700a04fdde22],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Redmine Issues Checker\Redmine Issues Checker.exe, Do karantény, [918356b5d3b8c670d7f184f620e101ff],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 20.8.2015
Čas skenování: 19:34
Protokol: mbam.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.20.04
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: pidlo
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 433539
Uplynulý čas: 9 min, 13 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 9
PUP.Optional.ServiceRNDM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Outrageous Tool, Do karantény, [bb5987841972dc5a7cc67b4acb3608f8],
PUP.Optional.ServiceRNDM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Outrageous Priest, Do karantény, [e82ce328a1ead66081c1467f55ace21e],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{6933C2BA-C67D-42C7-8C77-1FF4B364AF54}, Do karantény, [fe1693788704c5711eaa86f4e02104fc],
PUP.Optional.Multiplug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C637A71C-A4B2-4B47-1B2A-1042A8D525A3}, Do karantény, [918356b5d3b8c670d7f184f620e101ff],
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB, Do karantény, [28ecea21f49781b5c3a9298ce51f4cb4],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1000_Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, Do karantény, [a0749576800b4ee89c4f387df212867a],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1000_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, Do karantény, [50c477941c6f50e669826a4bac5844bc],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-1001_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, Do karantény, [6ca83ecdcebd1026ca218134dd27ef11],
PUP.Optional.Hicosmea, HKU\S-1-5-21-2229232713-360834936-347754365-501_Classes\WOW6432NODE\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}, Do karantény, [f81c43c8a9e2d363ad3eaa0be71d6997],
Hodnoty registru: 9
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype1, 3/15/15 7:29:48, Do karantény, [28ecea21f49781b5c3a9298ce51f4cb4]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype9, 3/15/15 7:29:48, Do karantény, [38dc26e50289d066b3b902b310f40df3]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype39, 3/15/15 7:29:48, Do karantény, [d2424fbccdbe0630e4889223ec1812ee]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype6, 3/15/15 7:30:58, Do karantény, [ff15d536eba0c3734b21d3e2a0642bd5]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype40, 3/15/15 7:33:27, Do karantény, [e0343bd01c6f5cda353710a5a1639a66]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype19, 3/15/15 7:34:2, Do karantény, [898b9c6fa3e832049cd0a114699b768a]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype20, 3/15/15 7:34:2, Do karantény, [c153bd4e5f2c2610620ac9ec30d44db3]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype38, 3/15/15 7:34:2, Do karantény, [3fd5aa619fec80b6f27a4174d72d926e]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2229232713-360834936-347754365-1000\SOFTWARE\OB|monitype15, 3/15/15 7:34:43, Do karantény, [f22248c33e4d38fe98d4991cbf4535cb]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 1
PUP.Optional.MiniAdblocker.A, C:\ProgramData\Mini - Adblocker, Do karantény, [df35b952d8b30f27622a2ed4659e5ba5],
Soubory: 9
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Tool\Outrageous Tool.exe, Do karantény, [bb5987841972dc5a7cc67b4acb3608f8],
PUP.Optional.ServiceRNDM.A, C:\Program Files (x86)\Outrageous Priest\Outrageous Priest.exe, Do karantény, [e82ce328a1ead66081c1467f55ace21e],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{7EF893B9-B959-41C1-A85A-B7EBB769A343}, Do karantény, [50c440cb88038da9532c644010f1ce32],
PUP.Optional.SuperOptimizer.A, C:\ProgramData\Comodo\Cis\Quarantine\data\{C4683E83-3EBB-45F3-983B-517364DF6DAB}, Do karantény, [ab69be4d08831b1ba0df7d27bc455fa1],
PUP.Optional.Multiplug, C:\Program Files (x86)\SystemRaise\SystemRaise.dll, Do karantény, [61b34ac15d2e78bed547e9917091d42c],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Leo Dictionary Widget\Leo Dictionary Widget.exe, Do karantény, [fe1693788704c5711eaa86f4e02104fc],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Liam Payne News\Liam Payne News.exe, Do karantény, [070d8586e4a7dd59c800255501001ae6],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Undeaddies\Undeaddies.exe, Do karantény, [23f16e9da1ea2e08f6d2700a04fdde22],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\Redmine Issues Checker\Redmine Issues Checker.exe, Do karantény, [918356b5d3b8c670d7f184f620e101ff],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: prevence prosím kontrolu logu.
RogueKiller V10.10.1.0 (x64) [Aug 17 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : pidlo [Práva správce]
Started from : C:\Users\pidlo\Desktop\RogueKillerX64.exe
Mód : Prohledat -- Datum : 08/20/2015 21:01:27
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 0 ¤¤¤
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
¤¤¤ Antirootkit : 4 (Driver: Nahrán) ¤¤¤
[IAT:Addr(Hook.IEAT|VT.Unknown)] (chrome.exe) ADVAPI32.dll - RegQueryValueExW : C:\Program Files (x86)\Google\Chrome\Application\GoogleUpdateHelper.dll @ 0x6ae97050
[IAT:Addr(Hook.IEAT)] (chrome.exe @ COMCTL32.dll) kernel32.dll - CreateFileW : C:\Program Files (x86)\Google\Chrome\Application\GoogleUpdateHelper.dll @ 0x6ae96550
[IAT:Addr(Hook.IEAT)] (chrome.exe @ cryptnet.dll) kernel32.dll - CreateFileW : C:\Program Files (x86)\Google\Chrome\Application\GoogleUpdateHelper.dll @ 0x6ae96550
[IAT:Addr(Hook.IEAT)] (chrome.exe @ devenum.dll) ADVAPI32.dll - RegQueryValueExW : C:\Program Files (x86)\Google\Chrome\Application\GoogleUpdateHelper.dll @ 0x6ae97050
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000DM003-1CH162 ATA Device +++++
--- User ---
[MBR] 9d3fe8e361a2ed1bd8de605a7dc83841
[BSP] d437633418b06fce5f9faffdf0544274 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 953767 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : pidlo [Práva správce]
Started from : C:\Users\pidlo\Desktop\RogueKillerX64.exe
Mód : Prohledat -- Datum : 08/20/2015 21:01:27
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 0 ¤¤¤
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
¤¤¤ Antirootkit : 4 (Driver: Nahrán) ¤¤¤
[IAT:Addr(Hook.IEAT|VT.Unknown)] (chrome.exe) ADVAPI32.dll - RegQueryValueExW : C:\Program Files (x86)\Google\Chrome\Application\GoogleUpdateHelper.dll @ 0x6ae97050
[IAT:Addr(Hook.IEAT)] (chrome.exe @ COMCTL32.dll) kernel32.dll - CreateFileW : C:\Program Files (x86)\Google\Chrome\Application\GoogleUpdateHelper.dll @ 0x6ae96550
[IAT:Addr(Hook.IEAT)] (chrome.exe @ cryptnet.dll) kernel32.dll - CreateFileW : C:\Program Files (x86)\Google\Chrome\Application\GoogleUpdateHelper.dll @ 0x6ae96550
[IAT:Addr(Hook.IEAT)] (chrome.exe @ devenum.dll) ADVAPI32.dll - RegQueryValueExW : C:\Program Files (x86)\Google\Chrome\Application\GoogleUpdateHelper.dll @ 0x6ae97050
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000DM003-1CH162 ATA Device +++++
--- User ---
[MBR] 9d3fe8e361a2ed1bd8de605a7dc83841
[BSP] d437633418b06fce5f9faffdf0544274 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 953767 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43072
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: prevence prosím kontrolu logu.
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir i firewall.
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Vlož nový log z HJT + informuj o problémech.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir i firewall.
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
Kód: Vybrat vše
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts; klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Vlož nový log z HJT + informuj o problémech.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: prevence prosím kontrolu logu.
RogueKiller V10.10.1.0 (x64) [Aug 17 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : pidlo [Práva správce]
Started from : C:\Users\pidlo\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 08/22/2015 17:32:38
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 0 ¤¤¤
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost Smazáno
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 4 ¤¤¤
[FIREFX:Addon] lzoo6rau.default : AdBlocker Manger [qbemoohrtgdvyrwcec@rlqpqnvofmcwg.net] -> Smazáno
[FIREFX:Addon] lzoo6rau.default : Skype Click to Call [{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}] -> Smazáno
[FIREFX:Addon] lzoo6rau.default : FreshApp [mndplb_bgpauko@glrvbpfsp_pwrkm_ra.org] -> Smazáno
[FIREFX:Addon] lzoo6rau.default : SupremeApp [apucdxejdxbahga@ayeojxdnqldyhiiwt.com] -> Smazáno
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000DM003-1CH162 ATA Device +++++
--- User ---
[MBR] 9d3fe8e361a2ed1bd8de605a7dc83841
[BSP] d437633418b06fce5f9faffdf0544274 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 953767 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : pidlo [Práva správce]
Started from : C:\Users\pidlo\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 08/22/2015 17:32:38
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 0 ¤¤¤
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost Smazáno
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 4 ¤¤¤
[FIREFX:Addon] lzoo6rau.default : AdBlocker Manger [qbemoohrtgdvyrwcec@rlqpqnvofmcwg.net] -> Smazáno
[FIREFX:Addon] lzoo6rau.default : Skype Click to Call [{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}] -> Smazáno
[FIREFX:Addon] lzoo6rau.default : FreshApp [mndplb_bgpauko@glrvbpfsp_pwrkm_ra.org] -> Smazáno
[FIREFX:Addon] lzoo6rau.default : SupremeApp [apucdxejdxbahga@ayeojxdnqldyhiiwt.com] -> Smazáno
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000DM003-1CH162 ATA Device +++++
--- User ---
[MBR] 9d3fe8e361a2ed1bd8de605a7dc83841
[BSP] d437633418b06fce5f9faffdf0544274 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 953767 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 15 hostů