kontrola logu ken

[sanko33]

Zdravím,poslední dobou se mi furt zobrazují reklami,na něco kliknu a vyskočí reklama. Prosím co s tím? .Díky za rady
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 9:35:46, on 10.3.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18231)


Boot mode: Normal

Running processes:
C:\Users\Kentaur\AppData\Roaming\ACEStream\engine\ace_engine.exe
C:\Program Files (x86)\Standard8-in-Right\Standard8inRight.exe
C:\Users\Kentaur\AppData\Roaming\ACEStream\updater\ace_update.exe
C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\plugin.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Kentaur\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://un-stop.net/wpad.dat?4acf3f3f879 ... 70c7382517
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Discover Treasure - {bfa55139-82af-4663-a19b-e135dac8d043} - C:\Program Files (x86)\Discover Treasure\Extensions\bfa55139-82af-4663-a19b-e135dac8d043.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [AceStream] C:\Users\Kentaur\AppData\Roaming\ACEStream\engine\ace_engine.exe
O4 - HKCU\..\Run: [Standard8inRight] "C:\Program Files (x86)\Standard8-in-Right\Standard8inRight.exe" Minimum
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: ihpmServer - RayDl - C:\Program Files (x86)\RayDld\ihpmServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Service Mgr DiscoverTreasure - Unknown owner - C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update Mgr DiscoverTreasure - Unknown owner - C:\Program Files (x86)\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 10590 bytes

[Reklama]

[jaro3]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
http://www.geekstogo.com/forum/files/fi ... -oldtimer/
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu klikni na „Logfile“ ,objeví log ( jinak je uložen systémovem disku jako AdwCleaner[C?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

proč zakládáš dvě témata se stejným logem? To druhé smaž!

[sanko33]

Říkám,mám ho asi zavirovanej,co kliknu tak mi naskočí reklama a nebo dvakrát se na to kliknu.

[sanko33]

# AdwCleaner v5.101 - Logfile created 10/03/2016 at 12:44:19
# Updated 07/03/2016 by Xplode
# Database : 2016-03-08.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : Kentaur - KENTAUR-PC
# Running from : C:\Users\Kentaur\Downloads\adwcleaner_5.101.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : ihpmServer
Service Found : Service Mgr DiscoverTreasure
Service Found : Update Mgr DiscoverTreasure

***** [ Folders ] *****

Folder Found : C:\Program Files (x86)\LuckyBrowse
Folder Found : C:\Program Files (x86)\RayDld
Folder Found : C:\Program Files (x86)\SimpleFiles
Folder Found : C:\Program Files (x86)\Discover Treasure
Folder Found : C:\Program Files (x86)\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77
Folder Found : C:\Program Files (x86)\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77
Folder Found : C:\ProgramData\LuckyBrowse
Folder Found : C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77
Folder Found : C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\LuckyBrowse
Folder Found : C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhleiomobdhaledkcckbkmehihmekcg
Folder Found : C:\Users\Kentaur\AppData\LocalLow\.acestream
Folder Found : C:\Users\Kentaur\AppData\Roaming\.acestream
Folder Found : C:\Users\Kentaur\AppData\Roaming\acestream
Folder Found : C:\Users\Kentaur\AppData\Roaming\SimpleFiles
Folder Found : C:\Users\Kentaur\AppData\Roaming\yoursearching
Folder Found : C:\Users\Kentaur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
Folder Found : C:\Windows\SysNative\Tasks\LuckyBrowse

***** [ Files ] *****

File Found : C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cmhleiomobdhaledkcckbkmehihmekcg_0.localstorage
File Found : C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cmhleiomobdhaledkcckbkmehihmekcg
File Found : C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_discovertreasure-a.akamaihd.net_0.localstorage
File Found : C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_discovertreasure-a.akamaihd.net_0.localstorage-journal

***** [ DLL ] *****


***** [ Shortcuts ] *****

Shortcut Infected : C:\Users\Kentaur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( "hxxp://esurf.biz/?ssid=1457527610&a=1003081&src=sh&uuid=d39c0e02-e4b1-46ae-8ffd-0f8223b9c0b9" )
Shortcut Infected : C:\Users\Kentaur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( "hxxp://esurf.biz/?ssid=1457527610&a=1003081&src=sh&uuid=d39c0e02-e4b1-46ae-8ffd-0f8223b9c0b9" )
Shortcut Infected : C:\Users\Kentaur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( "hxxp://esurf.biz/?ssid=1457527610&a=1003081&src=sh&uuid=d39c0e02-e4b1-46ae-8ffd-0f8223b9c0b9" )

***** [ Scheduled tasks ] *****

Task Found : LuckyBrowse

***** [ Registry ] *****

Key Found : HKCU\Software\Classes\Applications\ace_player.exe
Key Found : HKCU\Software\Classes\AudioCD\shell\PlayWithACEStream
Key Found : HKCU\Software\Classes\DVD\shell\PlayWithACEStream
Key Found : HKCU\Software\Classes\MIME\Database\Content Type\application/x-acestream-plugin
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayCDAudioOnArrival
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDAudioOnArrival
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDMovieOnArrival
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayMusicFilesOnArrival
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlaySVCDMovieOnArrival
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVCDMovieOnArrival
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVideoFilesOnArrival
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive
Key Found : HKLM\SOFTWARE\Classes\AppID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{1be2a904-f559-4e81-bb8e-60ac8e0adda0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5e93ab20-cb18-4a82-9f8b-b2ef20f1aee8}
Key Found : HKCU\Software\Classes\CLSID\{79690976-ED6E-403C-BBBA-F8928B5EDE17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{bfa55139-82af-4663-a19b-e135dac8d043}
Key Found : HKLM\SOFTWARE\Classes\Interface\{395DA725-A162-43FF-B885-27BD92F112E8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{8DD92279-9B04-4C6F-A862-EF3C24603804}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{04FEAF9C-DC32-41C7-95CA-790E93488E7D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bfa55139-82af-4663-a19b-e135dac8d043}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{bfa55139-82af-4663-a19b-e135dac8d043}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{bfa55139-82af-4663-a19b-e135dac8d043}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{395DA725-A162-43FF-B885-27BD92F112E8}
Key Found : HKCU\Software\AceStream
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\SimpleFiles
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\ihpmserver
Key Found : HKLM\SOFTWARE\LuckyBrowse
Key Found : HKLM\SOFTWARE\RayDld
Key Found : HKLM\SOFTWARE\SimpleFiles
Key Found : HKLM\SOFTWARE\yoursearchingSoftware
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\yoursearching
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Discover Treasure
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Discover Treasure
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [TCP Query User{80E78F13-1203-423E-8E62-45369814BAC3}C:\users\kentaur\appdata\roaming\acestream\engine\ace_engine.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [UDP Query User{D47556A9-C489-4369-A6F4-0BE1952CD643}C:\users\kentaur\appdata\roaming\acestream\engine\ace_engine.exe]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{ED7AD27B-CD47-415B-99B6-95A3D048E40A}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{70693BD7-2969-42FB-9BAE-C3657F2148E9}]
Key Found : HKCU\Software\Classes\.acelive
Key Found : HKCU\Software\Classes\.acemedia
Key Found : HKCU\Software\Classes\.acestream
Key Found : HKCU\Software\Classes\.tslive
Key Found : HKCU\Software\Classes\acestream
Key Found : HKCU\Software\Classes\AceStream.CDAudio
Key Found : HKCU\Software\Classes\AceStream.DVDMovie
Key Found : HKCU\Software\Classes\AceStream.file
Key Found : HKCU\Software\Classes\AceStream.OPENFolder
Key Found : HKCU\Software\Classes\AceStream.SVCDMovie
Key Found : HKCU\Software\Classes\AceStream.VCDMovie

***** [ Web browsers ] *****

[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : eu.ask.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search.icq.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : slirsredirect.search.aol.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : websearch.ask.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : omiga-plus
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : start.facemoods.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : isearch.omiga-plus.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search.conduit.com_
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : mystart.incredibar.com/mb139
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : startsear.ch
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : websearch
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search.sweetim.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : ask search
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search.babylon.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search.conduit.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : ask.com_
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : ask.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : mysearch.avg.com
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : funmoods
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://search.babylon.com/?affID=111813 ... 8093213622
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://websearch.mocaflix.com/
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://websearch.searchdwebs.info/?pid= ... Z&unqvl=22
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://mysearch.avg.com/?cid={F7D660E8-6EF6-458A-87C6-996E75DFF5B1}&mid=c1655201306344a0b71dce08b197a2a4-192bd342a57433901453a37bc5aac103eb3126c0&lang=en&ds=ad011&pr=sa&d=2013-10-10 23:05:29&v=17.1.0.25&pid=safeguard&sg=0&sap=hp
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://search.conduit.com/?ctid=CT32886 ... 15287&UM=2
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://isearch.omiga-plus.com/?type=hpp ... X835WC123T
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : cmhleiomobdhaledkcckbkmehihmekcg
[C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : lmnbobhffedhdhfpcjkjphcfpeeiocdn

*************************

C:\Program Files (x86)\AdwCleaner\AdwCleaner[S1].txt - [11830 bytes] - [10/03/2016 12:44:19]

########## EOF - C:\Program Files (x86)\AdwCleaner\AdwCleaner[S1].txt - [11924 bytes] ##########

[sanko33]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 10.3.2016
Čas skenování: 12:51
Protokol: jj.txt
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2016.03.10.03
Databáze rootkitů: v2016.02.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Kentaur

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 335451
Uplynulý čas: 8 min, 26 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 12
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\ihpmServer.exe, 1432, , [6dae00862b6e9d9978faae1732cf659b]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe, 2872, , [859636503168979f8a413e25956c51af]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\8\Plugin.exe, 4908, , [76a5aadc2f6a2a0c5c6f461d34cd7a86]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\2\Plugin.exe, 4932, , [b566216595042a0cd1fa1d467b86f709]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\10\Plugin.exe, 4960, , [011a3452782142f43596db88946ddd23]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\Plugin.exe, 4316, , [31ea7016d0c91f173e8d76edbd4425db]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\Plugin.exe, 5008, , [31ea7016d0c91f173e8d76edbd4425db]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\5\Plugin.exe, 4976, , [6ab19aecaeeb171f705b4d1626db25db]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\3\Plugin.exe, 4948, , [908bf492a5f4a78ff0db67fc24dd8e72]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\3\Plugin.exe, 4588, , [908bf492a5f4a78ff0db67fc24dd8e72]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12\Plugin.exe, 2144, , [24f7fa8caced54e2c803382ba75a01ff]
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12\Plugin.exe, 220, , [24f7fa8caced54e2c803382ba75a01ff]

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 38
PUP.Optional.Elex, HKLM\SOFTWARE\CLASSES\TYPELIB\{8DD92279-9B04-4C6F-A862-EF3C24603804}, , [6dae00862b6e9d9978faae1732cf659b],
PUP.Optional.Elex, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{8DD92279-9B04-4C6F-A862-EF3C24603804}, , [6dae00862b6e9d9978faae1732cf659b],
PUP.Optional.Elex, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{8DD92279-9B04-4C6F-A862-EF3C24603804}, , [6dae00862b6e9d9978faae1732cf659b],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ihpmServer, , [6dae00862b6e9d9978faae1732cf659b],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr DiscoverTreasure, , [859636503168979f8a413e25956c51af],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr DiscoverTreasure, , [d843daac39609a9c884364ffa75a26da],
PUP.Optional.WinManger, HKLM\SOFTWARE\CLASSES\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, , [ab705d29acedd06678443d814cb6d729],
PUP.Optional.WinManger, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, , [ab705d29acedd06678443d814cb6d729],
PUP.Optional.WinManger, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, , [ab705d29acedd06678443d814cb6d729],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}, , [ba6142448f0ab87ee7356b293ec4847c],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}, , [ba6142448f0ab87ee7356b293ec4847c],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{bfa55139-82af-4663-a19b-e135dac8d043}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{bfa55139-82af-4663-a19b-e135dac8d043}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\TYPELIB\{04feaf9c-dc32-41c7-95ca-790e93488e7d}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\INTERFACE\{395DA725-A162-43FF-B885-27BD92F112E8}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{395DA725-A162-43FF-B885-27BD92F112E8}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{395DA725-A162-43FF-B885-27BD92F112E8}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{04feaf9c-dc32-41c7-95ca-790e93488e7d}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{04feaf9c-dc32-41c7-95ca-790e93488e7d}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{BFA55139-82AF-4663-A19B-E135DAC8D043}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKU\S-1-5-21-1205089267-638990030-2556686559-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{BFA55139-82AF-4663-A19B-E135DAC8D043}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKU\S-1-5-21-1205089267-638990030-2556686559-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BFA55139-82AF-4663-A19B-E135DAC8D043}, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, , [ec2f64225346f3437ba5682ccf33f709],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, , [ec2f64225346f3437ba5682ccf33f709],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Discover Treasure, , [2deea0e6a0f90531e3e871f2936e6799],
PUP.Optional.LuckyBrowse, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{15D39247-4DAC-455A-9D67-00E472EE9051}, , [45d63b4b9efb2610305670a0a16259a7],
PUP.Optional.LuckyBrowse, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\LuckyBrowse, , [bf5c9fe70c8dc274e41a5e0728dc32ce],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\Conduit, , [7aa1add96732e94d38636a17689cbd43],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\DiscoverTreasure, , [ee2d82043663072f9f6eb961bc47a35d],
PUP.Optional.Elex, HKLM\SOFTWARE\WOW6432NODE\ihpmserver, , [9b800e780396ec4af0b385b2fa0a6898],
PUP.Optional.LuckyBrowse.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\LuckyBrowse, , [c15a3c4afc9d8fa78aecb665ca39d62a],
PUP.Optional.YourSearching.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\yoursearchingSoftware, , [42d9ccba782152e46bcf76f98381a65a],
PUP.Optional.YourSearching.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\yoursearching, , [e734c5c1039685b1f3460867da2ac040],
PUP.Optional.Elex, HKLM\SOFTWARE\WOW6432NODE\RAYDLD, , [26f5711546531e1876e8e03a43c09070],
PUP.Optional.SimpleFiles, HKLM\SOFTWARE\WOW6432NODE\SIMPLEFILES, , [1a0191f5fe9b162034c38ee235cf7c84],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-1205089267-638990030-2556686559-1000\SOFTWARE\Conduit, , [35e63b4bb1e893a36337b4cd4bb9db25],
PUP.Optional.SimpleFiles, HKU\S-1-5-21-1205089267-638990030-2556686559-1000\SOFTWARE\SIMPLEFILES, , [12096521aaef290daa4c72fe70943fc1],
PUP.Optional.SimpleFiles, HKU\S-1-5-21-1205089267-638990030-2556686559-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SimpleDownloads, , [50cb92f48712c96da5c729b0738f916f],

Hodnoty registru: 12
PUP.Optional.LuckyBrowse, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{15D39247-4DAC-455A-9D67-00E472EE9051}|Path, \LuckyBrowse, , [45d63b4b9efb2610305670a0a16259a7]
PUP.Optional.InternetQuickAccess, HKLM\SOFTWARE\POLICIES\CHROMIUM\EXTENSIONINSTALLSOURCES|1, http://ext.internetquickaccess.com/*, , [0615bec8bbde979f60e71d4acc38b848]
PUP.Optional.InternetQuickAccess, HKLM\SOFTWARE\WOW6432NODE\POLICIES\CHROMIUM\EXTENSIONINSTALLSOURCES|1, http://ext.internetquickaccess.com/*, , [0e0d50369900181e8fb82146739123dd]
PUP.Optional.Elex, HKLM\SOFTWARE\WOW6432NODE\RAYDLD|dir, C:\Program Files (x86)\RayDld, , [26f5711546531e1876e8e03a43c09070]
PUP.Optional.SimpleFiles, HKLM\SOFTWARE\WOW6432NODE\SIMPLEFILES|PARTNER_ID, 3, , [1a0191f5fe9b162034c38ee235cf7c84]
Hijack.AutoConfigURL.PrxySvrRST, HKLM\SYSTEM\CONTROLSET001\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, 0http://un-stop.net/wpad.dat?4acf3f3f879bbb0ffebd4008ad1dd70c7382517, , [df3cbfc78a0fb1855f57641ea55f50b0]
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr DiscoverTreasure|ImagePath, "C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe", , [0b103452c5d4df57d235353ea55fec14]
PUP.Optional.SimpleFiles, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{ED7AD27B-CD47-415B-99B6-95A3D048E40A}, v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\SimpleFiles\downloader.exe|Name=SimpleDownloads|, , [45d697efcfcac76f696148344fb5ac54]
PUP.Optional.SimpleFiles, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{70693BD7-2969-42FB-9BAE-C3657F2148E9}, v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files (x86)\SimpleFiles\downloader.exe|Name=SimpleDownloads|, , [77a47313a3f6290d7753c6b615efd42c]
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr DiscoverTreasure|ImagePath, "C:\Program Files (x86)\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe", , [69b2790dcecbd36350b86211976db749]
Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-21-1205089267-638990030-2556686559-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AutoConfigUrl, http://un-stop.net/wpad.dat?4acf3f3f879 ... 70c7382517, , [a873e2a42e6b88aea312087a5fa50000]
PUP.Optional.SimpleFiles, HKU\S-1-5-21-1205089267-638990030-2556686559-1000\SOFTWARE\SIMPLEFILES|is_firstrun, no, , [12096521aaef290daa4c72fe70943fc1]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 28
PUP.Optional.Elex, C:\Program Files (x86)\RayDld, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.SimpleFiles, C:\Program Files (x86)\SimpleFiles, , [50cb92f48712c96da5c729b0738f916f],
PUP.Optional.LuckyBrowse.ShrtCln, C:\ProgramData\LuckyBrowse, , [e437dda986134de9483cd0367b88fd03],
PUP.Optional.LuckyBrowse.ShrtCln, C:\Program Files (x86)\LuckyBrowse, , [da41d4b2f0a9003622630ff73dc6c23e],
PUP.Optional.LuckyBrowse.ShrtCln, C:\Program Files (x86)\LuckyBrowse\app, , [da41d4b2f0a9003622630ff73dc6c23e],
PUP.Optional.LuckyBrowse.ShrtCln, C:\Program Files (x86)\LuckyBrowse\misc, , [da41d4b2f0a9003622630ff73dc6c23e],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\10, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12\resources, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\2, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\3, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\5, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\resources, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\8, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\Program Files (x86)\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77, , [de3dc2c46f2ab0867fd514f3a85bf60a],
PUP.Optional.Yontoo, C:\Program Files (x86)\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater, , [de3dc2c46f2ab0867fd514f3a85bf60a],
PUP.Optional.Yontoo, C:\Program Files (x86)\Discover Treasure, , [fc1f55316336f3438ec75cab5fa420e0],
PUP.Optional.Yontoo, C:\Program Files (x86)\Discover Treasure\Extensions, , [fc1f55316336f3438ec75cab5fa420e0],
PUP.Optional.LuckyBrowse.ShrtCln, C:\ProgramData\Microsoft\Windows\Start Menu\LuckyBrowse, , [bb60cabc36636ec84ab3b5537b887f81],
PUP.Optional.YourSearching.ShrtCln, C:\Users\Kentaur\AppData\Roaming\yoursearching, , [ba618204bedb8ea8378062a94eb57d83],
PUP.Optional.SimpleFiles, C:\Users\Kentaur\AppData\Roaming\SimpleFiles, , [66b58afc6534bf77ec2f9a727f84659b],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhleiomobdhaledkcckbkmehihmekcg\1.0.5911.946_0, , [5ebd2b5b7c1d26103f48b08ac73e24dc],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhleiomobdhaledkcckbkmehihmekcg, , [5ebd2b5b7c1d26103f48b08ac73e24dc],

Soubory: 90
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\ihpmServer.exe, , [6dae00862b6e9d9978faae1732cf659b],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe, , [859636503168979f8a413e25956c51af],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\8\Plugin.exe, , [76a5aadc2f6a2a0c5c6f461d34cd7a86],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\2\Plugin.exe, , [b566216595042a0cd1fa1d467b86f709],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\10\Plugin.exe, , [011a3452782142f43596db88946ddd23],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\Plugin.exe, , [31ea7016d0c91f173e8d76edbd4425db],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\5\Plugin.exe, , [6ab19aecaeeb171f705b4d1626db25db],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\3\Plugin.exe, , [908bf492a5f4a78ff0db67fc24dd8e72],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12\Plugin.exe, , [24f7fa8caced54e2c803382ba75a01ff],
PUP.Optional.Yontoo, C:\Program Files (x86)\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe, , [d843daac39609a9c884364ffa75a26da],
PUP.Optional.Yontoo, C:\Program Files (x86)\Discover Treasure\Extensions\bfa55139-82af-4663-a19b-e135dac8d043.dll, , [40dbcbbb752478bea6633b599d65817f],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12\resources\plugin.dll, , [d24910767326999d2f9c3132c938af51],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\resources\40.0.0.dll, , [53c81d69c2d7de586566ee75827f41bf],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\resources\45.0.1.dll, , [46d51373cdcce452606b6cf791702fd1],
PUP.Optional.Yontoo, C:\Program Files (x86)\Discover Treasure\Uninstaller.exe, , [2deea0e6a0f90531e3e871f2936e6799],
PUP.Optional.SimpleFiles, C:\Program Files (x86)\SimpleFiles\downloader.exe, , [60bb99edd5c453e36e681e0d15f06799],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\Raydld.exe, , [65b6493dbbde90a60d680cb906fbab55],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Temp\{944C4A39-0FDA-4F7F-972E-A3315F1EF0D1}.dll, , [9586ceb81584c4721fac86dd2ad7a35d],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage, , [ff1c8ef8851476c0f1d8b660af54c040],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal, , [2fecf294d5c462d4b118928411f29868],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_discovertreasure-a.akamaihd.net_0.localstorage, , [4ad15a2c61383bfb8586d24855ae49b7],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_discovertreasure-a.akamaihd.net_0.localstorage-journal, , [43d8f6907029f14546c5a476af54fd03],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\uninstall.exe, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\DuiLib.dll, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\msvcp110.dll, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\msvcr110.dll, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\Ray.ini, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\main.xml, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\About.xml, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\about_banner.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\animate_history.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\animate_portal.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\animate_recent.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\big_button_down.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\bk_shadow.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\bottom_toolbar_bk.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\brower_back.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\brower_refresh.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\btn.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\btn_browser_dir.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\ck_box.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\ck_check.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\close.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\create.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\delete.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\drag_flag.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\exclamation.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\list_header_bk.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\logo_16.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\logo_small.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\Menu.xml, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\MenuItem.xml, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\menu_bk.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\menu_bk_seperator.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\MessageBox.xml, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\min.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\open_position.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\pause.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\progress_bk.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\progress_fore.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\scrollbar.bmp, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\Start.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\sysmenu.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\TaskListItem.xml, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\TaskListItemHistory.xml, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\TaskNew.xml, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\task_completed.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\task_failed.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\task_pause.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\toolbar_separator.png, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.Elex, C:\Program Files (x86)\RayDld\skin\WebPortal.xml, , [1605c3c3cacf092d693997a0ae567e82],
PUP.Optional.LuckyBrowse, C:\Windows\System32\Tasks\LuckyBrowse, , [6bb097ef2c6d93a301fb88ddae5617e9],
PUP.Optional.PriceMoon, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage, , [b764aadccccd5adc82e4cba8887c6799],
PUP.Optional.PriceMoon, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage-journal, , [32e9eb9b6336ca6cbbabeb8837cdf50b],
PUP.Optional.SimpleFiles, C:\Program Files (x86)\SimpleFiles\htmlayout.dll, , [50cb92f48712c96da5c729b0738f916f],
PUP.Optional.SimpleFiles, C:\Program Files (x86)\SimpleFiles\uninstall.dat, , [50cb92f48712c96da5c729b0738f916f],
PUP.Optional.SimpleFiles, C:\Program Files (x86)\SimpleFiles\Uninstall.exe, , [50cb92f48712c96da5c729b0738f916f],
PUP.Optional.LuckyBrowse.ShrtCln, C:\ProgramData\LuckyBrowse\install.dat, , [e437dda986134de9483cd0367b88fd03],
PUP.Optional.LuckyBrowse.ShrtCln, C:\Program Files (x86)\LuckyBrowse\misc\sciter32.dll, , [da41d4b2f0a9003622630ff73dc6c23e],
PUP.Optional.LuckyBrowse.ShrtCln, C:\Program Files (x86)\LuckyBrowse\misc\uninstall.exe, , [da41d4b2f0a9003622630ff73dc6c23e],
PUP.Optional.Yontoo, C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\temp, , [a774681e6831b87edb78ea1d649f7f81],
PUP.Optional.Yontoo, C:\Program Files (x86)\Discover Treasure\7za.exe, , [fc1f55316336f3438ec75cab5fa420e0],
PUP.Optional.Yontoo, C:\Program Files (x86)\Discover Treasure\Extensions\cmhleiomobdhaledkcckbkmehihmekcg.crx, , [fc1f55316336f3438ec75cab5fa420e0],
PUP.Optional.LuckyBrowse.ShrtCln, C:\ProgramData\Microsoft\Windows\Start Menu\LuckyBrowse\Remove.lnk, , [bb60cabc36636ec84ab3b5537b887f81],
PUP.Optional.YourSearching.ShrtCln, C:\Users\Kentaur\AppData\Roaming\yoursearching\inst1.dat, , [ba618204bedb8ea8378062a94eb57d83],
PUP.Optional.YourSearching.ShrtCln, C:\Users\Kentaur\AppData\Roaming\yoursearching\unipc.dat, , [ba618204bedb8ea8378062a94eb57d83],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhleiomobdhaledkcckbkmehihmekcg\1.0.5911.946_0\manifest.json, , [5ebd2b5b7c1d26103f48b08ac73e24dc],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhleiomobdhaledkcckbkmehihmekcg\1.0.5911.946_0\background.js, , [5ebd2b5b7c1d26103f48b08ac73e24dc],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhleiomobdhaledkcckbkmehihmekcg\1.0.5911.946_0\content.js, , [5ebd2b5b7c1d26103f48b08ac73e24dc],
PUP.Optional.Yontoo, C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhleiomobdhaledkcckbkmehihmekcg\1.0.5911.946_0\icon.png, , [5ebd2b5b7c1d26103f48b08ac73e24dc],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Orcus]

- Spusť znovu MbAM a dej Skenovat nyní
- Po proběhnutí programu, se ti objeví hláška, tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

====================================================

- Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
- Klikni na „ Smazat“
- Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

====================================================

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

====================================================

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- Počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[sanko33]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.3 (02.09.2016)
Operating System: Windows 7 Ultimate x64
Ran by Kentaur (Administrator) on źt 10.03.2016 at 20:17:39,29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 12

Failed to delete: C:\Users\Kentaur\AppData\Roaming\acestream (Folder)
Successfully deleted: C:\Users\Kentaur\Appdata\LocalLow\.acestream (Folder)
Successfully deleted: C:\Users\Kentaur\AppData\Roaming\.acestream (Folder)
Successfully deleted: C:\Users\Kentaur\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\15AQ9UJT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Kentaur\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3RSQQXGD (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Kentaur\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MHMR5M7H (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Kentaur\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ON0WLT6B (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\prefetch\AVAST_FREE_ANTIVIRUS_SETUP_ON-98594B16.pf (File)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\15AQ9UJT (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3RSQQXGD (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MHMR5M7H (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ON0WLT6B (Temporary Internet Files Folder)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 10.03.2016 at 20:20:16,38
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[sanko33]

Tohle se mi furt ukazuje.

[sanko33]

# AdwCleaner v5.101 - Logfile created 11/03/2016 at 07:56:56
# Updated 07/03/2016 by Xplode
# Database : 2016-03-08.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : Kentaur - KENTAUR-PC
# Running from : C:\Users\Kentaur\Downloads\adwcleaner_5.101.exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Users\Kentaur\AppData\Roaming\acestream
[-] Folder Deleted : C:\Users\Kentaur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media

***** [ Files ] *****

[-] File Deleted : C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_discovertreasure-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_discovertreasure-a.akamaihd.net_0.localstorage-journal

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Classes\Applications\ace_player.exe
[-] Key Deleted : HKCU\Software\Classes\AudioCD\shell\PlayWithACEStream
[-] Key Deleted : HKCU\Software\Classes\DVD\shell\PlayWithACEStream
[-] Key Deleted : HKCU\Software\Classes\MIME\Database\Content Type\application/x-acestream-plugin
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayCDAudioOnArrival
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDAudioOnArrival
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDMovieOnArrival
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayMusicFilesOnArrival
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlaySVCDMovieOnArrival
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVCDMovieOnArrival
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVideoFilesOnArrival
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive
[-] Key Deleted : HKCU\Software\Classes\CLSID\{79690976-ED6E-403C-BBBA-F8928B5EDE17}
[-] Key Deleted : HKCU\Software\AceStream
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
[-] Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [TCP Query User{80E78F13-1203-423E-8E62-45369814BAC3}C:\users\kentaur\appdata\roaming\acestream\engine\ace_engine.exe]
[-] Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [UDP Query User{D47556A9-C489-4369-A6F4-0BE1952CD643}C:\users\kentaur\appdata\roaming\acestream\engine\ace_engine.exe]
[-] Key Deleted : HKCU\Software\Classes\.acelive
[-] Key Deleted : HKCU\Software\Classes\.acemedia
[-] Key Deleted : HKCU\Software\Classes\.acestream
[-] Key Deleted : HKCU\Software\Classes\.tslive
[-] Key Deleted : HKCU\Software\Classes\acestream
[-] Key Deleted : HKCU\Software\Classes\AceStream.CDAudio
[-] Key Deleted : HKCU\Software\Classes\AceStream.DVDMovie
[-] Key Deleted : HKCU\Software\Classes\AceStream.file
[-] Key Deleted : HKCU\Software\Classes\AceStream.OPENFolder
[-] Key Deleted : HKCU\Software\Classes\AceStream.SVCDMovie
[-] Key Deleted : HKCU\Software\Classes\AceStream.VCDMovie

***** [ Web browsers ] *****

[-] [C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://search.babylon.com/?affID=111813 ... 8093213622
[-] [C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://websearch.mocaflix.com/
[-] [C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://websearch.searchdwebs.info/?pid= ... Z&unqvl=22
[-] [C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://mysearch.avg.com/?cid={F7D660E8-6EF6-458A-87C6-996E75DFF5B1}&mid=c1655201306344a0b71dce08b197a2a4-192bd342a57433901453a37bc5aac103eb3126c0&lang=en&ds=ad011&pr=sa&d=2013-10-10 23:05:29&v=17.1.0.25&pid=safeguard&sg=0&sap=hp
[-] [C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://search.conduit.com/?ctid=CT32886 ... 15287&UM=2
[-] [C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://isearch.omiga-plus.com/?type=hpp ... X835WC123T
[-] [C:\Users\Kentaur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : lmnbobhffedhdhfpcjkjphcfpeeiocdn

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

*************************

C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [5586 bytes] - [11/03/2016 07:56:56]
C:\Program Files (x86)\AdwCleaner\AdwCleaner[S1].txt - [12028 bytes] - [10/03/2016 12:44:19]
C:\Program Files (x86)\AdwCleaner\AdwCleaner[S2].txt - [5531 bytes] - [11/03/2016 07:54:38]

########## EOF - C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [5866 bytes] ##########

[sanko33]

RogueKiller V12.0.1.0 (x64) [Mar 7 2016] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : Kentaur [Práva správce]
Started from : C:\Users\Kentaur\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 03/11/2016 08:16:27

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 8 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-1205089267-638990030-2556686559-1000\Software\Microsoft\Windows\CurrentVersion\Run | AceStream : C:\Users\Kentaur\AppData\Roaming\ACEStream\engine\ace_engine.exe [x] -> Nevybráno
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-1205089267-638990030-2556686559-1000\Software\Microsoft\Windows\CurrentVersion\Run | AceStream : C:\Users\Kentaur\AppData\Roaming\ACEStream\engine\ace_engine.exe [x] -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{E0031D94-7371-416B-B7C8-B51E3CD5E009} | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{E0031D94-7371-416B-B7C8-B51E3CD5E009} | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{E0031D94-7371-416B-B7C8-B51E3CD5E009} | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nenahrán [0x0]) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST9500423AS ATA Device +++++
--- User ---
[MBR] cfd9d409a136ff159669cc57452bab8b
[BSP] a0b71dc8cbe48c20d467a3715043fa65 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 476838 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
RogueKiller V12.0.1.0 (x64) [Mar 7 2016] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : Kentaur [Práva správce]
Started from : C:\Users\Kentaur\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 03/11/2016 08:16:27

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 8 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-1205089267-638990030-2556686559-1000\Software\Microsoft\Windows\CurrentVersion\Run | AceStream : C:\Users\Kentaur\AppData\Roaming\ACEStream\engine\ace_engine.exe [x] -> Nevybráno
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-1205089267-638990030-2556686559-1000\Software\Microsoft\Windows\CurrentVersion\Run | AceStream : C:\Users\Kentaur\AppData\Roaming\ACEStream\engine\ace_engine.exe [x] -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{E0031D94-7371-416B-B7C8-B51E3CD5E009} | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{E0031D94-7371-416B-B7C8-B51E3CD5E009} | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{E0031D94-7371-416B-B7C8-B51E3CD5E009} | DhcpNameServer : 10.0.0.138 ([X]) -> Nevybráno

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nenahrán [0x0]) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST9500423AS ATA Device +++++
--- User ---
[MBR] cfd9d409a136ff159669cc57452bab8b
[BSP] a0b71dc8cbe48c20d467a3715043fa65 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 476838 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

[jaro3]

. spusť znovu Malwarebytes' Anti-Malware a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.



Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:

- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)

- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Vypni antivir i firewall.
Stáhni
Zoek.exe

a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

[sanko33]

Malwarebytes Anti-Malware
www.malwarebytes.org


Protection, 12.3.2016 8:48, SYSTEM, KENTAUR-PC, Protection, Malware Protection, Starting,
Protection, 12.3.2016 8:48, SYSTEM, KENTAUR-PC, Protection, Malware Protection, Started,
Protection, 12.3.2016 8:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Starting,
Protection, 12.3.2016 8:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Started,
Update, 12.3.2016 9:33, SYSTEM, KENTAUR-PC, Scheduler, Domain Database, 2016.3.11.2, 2016.3.12.1,
Update, 12.3.2016 9:33, SYSTEM, KENTAUR-PC, Scheduler, Malware Database, 2016.3.11.4, 2016.3.12.2,
Protection, 12.3.2016 9:33, SYSTEM, KENTAUR-PC, Protection, Refresh, Starting,
Protection, 12.3.2016 9:33, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Stopping,
Protection, 12.3.2016 9:33, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Stopped,
Protection, 12.3.2016 9:33, SYSTEM, KENTAUR-PC, Protection, Refresh, Success,
Protection, 12.3.2016 9:33, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Starting,
Protection, 12.3.2016 9:33, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Started,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49655, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49655, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49656, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49657, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49658, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49696, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49696, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49697, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49698, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49720, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49721, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49722, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49723, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49724, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49725, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49736, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49737, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49738, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:47, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49739, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49751, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49751, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49754, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49752, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49753, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49754, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49755, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49756, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49760, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49761, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49762, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49764, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49765, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49766, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49781, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49782, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49783, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.41, tcf.huntergui.com, 49784, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49793, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49794, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49795, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49796, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49796, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49797, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49798, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49809, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49810, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49811, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:48, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49812, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49826, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49827, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49828, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49831, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49832, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49833, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49853, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49854, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49855, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49856, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49857, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49867, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49868, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49869, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49870, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49871, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:51, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49872, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49887, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49890, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49888, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49889, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49901, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49902, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49903, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49904, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49905, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:52, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49906, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49916, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49917, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49918, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49919, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49920, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49921, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49929, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49930, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 49931, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49932, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49933, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:53, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 49934, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49946, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49947, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49971, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49972, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49973, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49974, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49984, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49985, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.3, tcf.huntergui.com, 49986, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49987, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49988, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:55, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.1, nhn.rundevoptions.com, 49989, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50008, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50009, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50010, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50012, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50013, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50014, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50020, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50021, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50022, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50023, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50024, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50025, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50032, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50033, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50034, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50073, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50083, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50084, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50085, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50086, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50083, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.10, cdn.visadd.com, 50134, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.10, cdn.visadd.com, 50134, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.14, istatic.eshopcomp.com, 50146, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.14, istatic.eshopcomp.com, 50146, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50274, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50275, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:56, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50276, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50283, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50284, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50285, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50286, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50287, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.10, cdn.visadd.com, 50296, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50316, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50319, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50320, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50321, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50323, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.10, cdn.visadd.com, 50324, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50336, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50361, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50365, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.10, cdn.visadd.com, 50368, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.14, istatic.eshopcomp.com, 50369, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.0, tcf.huntergui.com, 50376, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50377, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50378, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, IP, 134.213.3.139, www.tr553.com, 50379, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.2, nhn.rundevoptions.com, 50380, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.10, cdn.visadd.com, 50388, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.14, istatic.eshopcomp.com, 50390, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.16, www.tradeadexchange.com, 50403, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 10:57, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.16, www.tradeadexchange.com, 50403, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:00, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, www.tradeadexchange.com, 50473, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:00, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, www.tradeadexchange.com, 50473, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:13, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.16, www.tradeadexchange.com, 50620, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:14, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.16, www.tradeadexchange.com, 50635, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:14, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50644, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:14, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50644, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:14, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50645, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:14, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50646, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:14, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.15, nhn.rundevoptions.com, 50649, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:14, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.15, nhn.rundevoptions.com, 50650, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:14, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.15, nhn.rundevoptions.com, 50649, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:14, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.15, nhn.rundevoptions.com, 50651, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50671, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50672, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50673, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.15, nhn.rundevoptions.com, 50674, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50689, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50690, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.17, tcf.huntergui.com, 50691, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.15, nhn.rundevoptions.com, 50692, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.15, nhn.rundevoptions.com, 50693, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:15, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 127.42.0.15, nhn.rundevoptions.com, 50694, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:16, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.40, tcf.huntergui.com, 50707, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 12.3.2016 11:16, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Domain, 37.58.96.40, tcf.huntergui.com, 50707, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Scan, 12.3.2016 11:17, SYSTEM, KENTAUR-PC, Manual, Začátek: 12.3.2016 10:59, Doba trvání: 7 min 41 sekund, Sken hrozeb, Dokončeno, Detekce malwaru 0, Detekce jiných hrozeb 6,
Protection, 12.3.2016 11:18, SYSTEM, KENTAUR-PC, Protection, Malware Protection, Starting,
Protection, 12.3.2016 11:18, SYSTEM, KENTAUR-PC, Protection, Malware Protection, Started,
Protection, 12.3.2016 11:18, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Starting,
Protection, 12.3.2016 11:19, SYSTEM, KENTAUR-PC, Protection, Malicious Website Protection, Started,

(end)
furt mi to ukazuje ty reklamy a nemužu se toho zbavit :///