Kontrola - Pomalý PC a program DolphinDeals

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Odpovědět
Syki7
Level 1.5
Level 1.5
Příspěvky: 145
Registrován: říjen 14
Pohlaví: Muž
Stav:
Offline

Kontrola - Pomalý PC a program DolphinDeals

Příspěvekod Syki7 » 19 pro 2014 13:25

Zdravím zasílám log kvůli tomu že mám zasekaný a pomalý PC a za druhé kvůli programu DolphinDeals kterej nejde odstranit..(psal jsem do jiné sekce co mám dělat a napsali že sem mám dát log..)
LOG :
------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:23:43, on 19. 12. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe
C:\Program Files (x86)\Dolphin Deals\bin\DolphinDeals.BrowserAdapter.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
c:\PROGRA~2\mcafee\siteadvisor\saui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Michal\Downloads\HijackThis (1).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... J9DCA12875
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... J9DCA12875
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\PROGRA~2\Microsoft Office\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} - C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll
O2 - BHO: McAfee SafeKey Vault - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\PROGRA~2\Microsoft Office\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O3 - Toolbar: McAfee SafeKey - {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe" /platui /runkey
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Michal\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [PCSpeedUp] C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe
O4 - Global Startup: Install SafeKey IE RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: SafeKey - file://C:\Users\Michal\AppData\LocalLow\SafeKey\context.html?cmd=lastpass
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Users\Michal\AppData\LocalLow\SafeKey\context.html?cmd=fillforms
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - c:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - c:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
O9 - Extra 'Tools' menuitem: McAfee SafeKey - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - c:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - c:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: McAfee Application Installer Cleanup (0163471418984017) (0163471418984017mcinstcleanup) - Unknown owner - C:\WINDOWS\TEMP\0163471418984017mcinst.exe (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\hamachi-2.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Hotspot Shield Service (hshld) - AnchorFree Inc. - C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: IePlugin Services (IePluginServices) - Cherished Technololgy LIMITED - C:\ProgramData\IePluginServices\PluginService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\WINDOWS\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PC Speed Up Service (PCSUService) - Unknown owner - C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\windows\SysWOW64\ssins.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: Tor Win32 Service (tor) - Unknown owner - C:\Program Files (x86)\Tor\tor.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update Dolphin Deals - Unknown owner - C:\Program Files (x86)\Dolphin Deals\updateDolphinDeals.exe
O23 - Service: Util Dolphin Deals - Unknown owner - C:\Program Files (x86)\Dolphin Deals\bin\utilDolphinDeals.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Fuyu LIMITED - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 16447 bytes
Nahoru
Reklama
Top
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola - Pomalý PC a program DolphinDeals

Příspěvekod jaro3 » 20 pro 2014 09:52

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na b] Kopírovat do schránky [/b]a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Syki7
Level 1.5
Level 1.5
Příspěvky: 145
Registrován: říjen 14
Pohlaví: Muž
Stav:
Offline

Re: Kontrola - Pomalý PC a program DolphinDeals

Příspěvekod Syki7 » 20 pro 2014 12:08

ATF jsem nedelal protoze pouzivam jenom chrome..
TFC jsem udelal
ADW cleaner-
# AdwCleaner v4.105 - Report created 20/12/2014 at 11:24:40
# Updated 08/12/2014 by Xplode
# Database : 2014-12-16.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Michal - SYKI
# Running from : C:\Users\Michal\Downloads\adwcleaner_4.105.exe
# Option : Scan

***** [ Services ] *****

Service Found : hshld
Service Found : hsstrayservice
Service Found : hsswd
Service Found : IePluginServices
Service Found : pcsuservice
Service Found : WindowsMangerProtect
Service Found : c2cautoupdatesvc
Service Found : c2cpnrsvc
Service Found : Update Dolphin Deals
Service Found : Util Dolphin Deals
Service Found : {484194e7-9731-465e-9331-c230f71240af}Gw64
Service Found : {ad5dee5e-a585-4286-892c-fc27ac63cd14}Gw64
Service Found : {d1b1a663-dd65-4a59-be6a-82f3133a4dba}Gw64

***** [ Files / Folders ] *****

File Found : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_eliteunzip.dl.tb.ask.com_0.localstorage
File Found : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_eliteunzip.dl.tb.ask.com_0.localstorage-journal
File Found : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
File Found : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
File Found : C:\WINDOWS\System32\drivers\{484194e7-9731-465e-9331-c230f71240af}Gw64.sys
File Found : C:\WINDOWS\System32\drivers\{ad5dee5e-a585-4286-892c-fc27ac63cd14}Gw64.sys
File Found : C:\WINDOWS\System32\drivers\{d1b1a663-dd65-4a59-be6a-82f3133a4dba}Gw64.sys
Folder Found : C:\Program Files (x86)\Dolphin Deals
Folder Found : C:\Program Files (x86)\Dolphin Deals
Folder Found : C:\Program Files (x86)\GotClip
Folder Found : C:\Program Files (x86)\hotspot shield
Folder Found : C:\Program Files (x86)\Zrychleni Pocitace
Folder Found : C:\ProgramData\hotspot shield
Folder Found : C:\ProgramData\IePluginServices
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hotspot shield
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zrychleni Pocitace
Folder Found : C:\ProgramData\WindowsMangerProtect
Folder Found : C:\Users\Michal\AppData\Local\CrashRpt
Folder Found : C:\Users\Michal\AppData\Local\Maxiget
Folder Found : C:\Users\Michal\AppData\Local\MaxiGet Download Manager
Folder Found : C:\Users\Michal\AppData\Local\Microsoft\Silverlight\OutOfBrowser\Speedchecker.PCSpeedUp
Folder Found : C:\Users\Michal\AppData\Local\Temp\Dolphin Deals
Folder Found : C:\Users\Michal\AppData\Local\Temp\Dolphin Deals
Folder Found : C:\Users\Michal\AppData\Local\Temp\hotspot shield
Folder Found : C:\Users\Michal\AppData\Roaming\hotspot shield
Folder Found : C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GotClip
Folder Found : C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MaxiGet Download Manager
Folder Found : C:\Users\Michal\AppData\Roaming\mystartsearch
Folder Found : C:\Users\Michal\Documents\PCSpeedUp
Folder Found : C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\hotspot shield
Folder Found : C:\WINDOWS\SysWOW64\hotspot shield

***** [ Scheduled Tasks ] *****

Task Found : PC SpeedUp Service Deactivator
Task Found : CPU Grid Computing

***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command [(Default)] - "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://www.mystartsearch.com/?type=sc&t ... J9DCA12875
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.mystartsearch.com/?type=sc&t ... J9DCA12875
Key Found : HKCU\Software\anchorfree
Key Found : HKCU\Software\Dolphin Deals
Key Found : HKCU\Software\Dolphin Deals
Key Found : HKCU\Software\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MaxiGet Download Manager_is1
Key Found : HKCU\Software\Speedchecker Limited
Key Found : HKCU\Software\SupHpUISoft
Key Found : HKCU\Software\WINNERDM
Key Found : HKCU\Software\YTDownloader
Key Found : [x64] HKCU\Software\anchorfree
Key Found : [x64] HKCU\Software\Dolphin Deals
Key Found : [x64] HKCU\Software\Dolphin Deals
Key Found : [x64] HKCU\Software\Speedchecker Limited
Key Found : [x64] HKCU\Software\SupHpUISoft
Key Found : [x64] HKCU\Software\WINNERDM
Key Found : [x64] HKCU\Software\YTDownloader
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B89F5C49-51DB-4974-AB5A-E25901AA339C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E9B5B0D2-D08A-49FC-8B5C-159B60BAA268}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\SOFTWARE\Dolphin Deals
Key Found : HKLM\SOFTWARE\Dolphin Deals
Key Found : HKLM\SOFTWARE\hotspotshield
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\hotspotshield
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mystartsearch uninstall
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\YTDownloader
Key Found : HKLM\SOFTWARE\mystartsearchSoftware
Key Found : HKLM\SOFTWARE\Speedchecker Limited
Key Found : HKLM\SOFTWARE\SupDp
Key Found : HKLM\SOFTWARE\SupTab
Key Found : HKLM\SOFTWARE\supWindowsMangerProtect
Key Found : HKLM\SOFTWARE\supWPM
Key Found : HKLM\SOFTWARE\YTDownloader
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update Dolphin Deals
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util Dolphin Deals
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{17E113E6-CD0E-4045-B154-65F0E57959EF}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PCSU-SL_is1
Key Found : [x64] HKLM\SOFTWARE\Speedchecker Limited
Key Found : [x64] HKLM\SOFTWARE\YTDownloader
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... J9DCA12875
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... J9DCA12875
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... J9DCA12875
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}

-\\ Google Chrome v37.0.2062.120

[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : aaaaojmikegpiepcfdkkjaplodkpfmlo
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : boipimhfjpakfgckhbljjengakjhkcbp
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : bopakagnckmlgajfccecajhnimjiiedh
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : gkcefkcdkepgkpbgncjchhbjgoanleod
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : hbcennhacfaagdopikcegfcobcadeocj
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : icdlfehblmklkikfigmjhbmmpmkmpooj
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : mhkaekfpcppmmioggniknbnbdbcigpkk
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : pfndaklgolladniicklehhancnlgocpp
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : lifbcibllhkdhoafpjfnlhfpfgnpldfl
[C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\preferences] - Found [Extension] : cflheckfmhopnialghigdlggahiomebp

-\\ Chromium v


-\\ Comodo Dragon v


*************************

AdwCleaner[R0].txt - [34567 octets] - [20/10/2014 19:11:45]
AdwCleaner[R1].txt - [11923 octets] - [20/12/2014 11:24:40]
AdwCleaner[S0].txt - [32478 octets] - [20/10/2014 19:14:06]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [12045 octets] ##########
MBAM :
Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 20. 12. 2014
Scan Time: 11:23:13
Logfile:
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2014.12.20.01
Rootkit Database: v2014.12.14.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Michal

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 424816
Time Elapsed: 43 min, 6 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 3
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PLUGINSERVICE.EXE, 1592, , [4dc49bca196358de340dc0b4798822de]
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\PROTECTWINDOWSMANAGER.EXE, 1696, , [ff12293c6715191d7058dfc8d13010f0]
PUP.Optional.DolphinDeals.A, C:\Program Files (x86)\Dolphin Deals\UPDATEDOLPHINDEALS.EXE, 3688, , [977ae184a3d9c076a54c89e3e41f9769]

Modules: 0
(No malicious items detected)

Registry Keys: 25
PUP.Optional.IePluginService.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginServices, , [4dc49bca196358de340dc0b4798822de],
PUP.Optional.WPM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WindowsMangerProtect, , [ff12293c6715191d7058dfc8d13010f0],
PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WindowsMangerProtect, , [ff12293c6715191d7058dfc8d13010f0],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [54bd0362631978be1129ec218a79837d],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [54bd0362631978be1129ec218a79837d],
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\mystartsearch uninstall, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{484194e7-9731-465e-9331-c230f71240af}Gw64, , [4ac78fd60a72c76f4f8a7af49b68e11f],
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{ad5dee5e-a585-4286-892c-fc27ac63cd14}Gw64, , [050c62033448eb4b4a8f105ee320cd33],
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{d1b1a663-dd65-4a59-be6a-82f3133a4dba}Gw64, , [ff122e374c307eb8a831caa444bf13ed],
PUP.Optional.SpeedChecker.A, HKLM\SOFTWARE\Speedchecker Limited, , [020fde87601c67cf7d4d7fd76a990ff1],
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [be53a5c0ec909d99338a1b9e57ad857b],
PUP.Optional.DolphinDeals.A, HKLM\SOFTWARE\WOW6432NODE\Dolphin Deals, , [62af6104d5a747ef47a81854c73c41bf],
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\mystartsearchSoftware, , [e130abbae09c102643976feb07fc639d],
PUP.Optional.SpeedChecker.A, HKLM\SOFTWARE\WOW6432NODE\Speedchecker Limited, , [ac65283d54282b0b4d7d6fe7e91aaf51],
PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, , [40d16500ea9293a3ee27ab2335cf0ef2],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\supWPM, , [0c05d590b5c71e18c8161c4c19eaee12],
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [c24fe77e8bf1f046427b279252b2ec14],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPDP, , [bb56bca9b2caab8bc8e4df89f70c2ad6],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPTAB, , [13fee4816814c5711ac3a3c5bd467987],
PUP.Optional.DolphinDeals.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Dolphin Deals, , [977ae184a3d9c076a54c89e3e41f9769],
PUP.Optional.DolphinDeals.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util Dolphin Deals, , [c54c62037c0047ef13dff37958ab48b8],
PUP.Optional.IEPluginServices.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\IePluginServices, , [7f92e67f29535bdbf20ff46aaf54f40c],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, , [bf525c0978043105976b97c7897a9a66],
PUP.Optional.DolphinDeals.A, HKU\S-1-5-21-253112895-946898586-2958512260-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Dolphin Deals, , [c849f273e29a24120fe1125ad92a4cb4],
PUP.Optional.WebSearches.A, HKU\S-1-5-21-253112895-946898586-2958512260-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SupHpUISoft, , [1001ce977ffdd066c3caa5c538cbfe02],

Registry Values: 2
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPDP|dir, C:\Program Files (x86)\SupTab, , [bb56bca9b2caab8bc8e4df89f70c2ad6]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPTAB|ptid, sky, , [13fee4816814c5711ac3a3c5bd467987]

Registry Data: 13
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&t ... J9DCA12875, Good: (Chrome.exe), Bad: ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&t ... J9DCA12875),,[030e372e27554aec446b541557ae59a7]
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&t ... J9DCA12875, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&t ... J9DCA12875),,[21f0046199e3fb3bfdb0d29730d53bc5]
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}, Good: (www.google.com), Bad: (http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}),,[769b1352ea9271c5f700c4a5ea1bbb45]
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... J9DCA12875, Good: (www.google.com), Bad: (http://www.mystartsearch.com/?type=hp&t ... J9DCA12875),,[c34e4223a3d985b1ab4b393011f4e917]
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}, Good: (www.google.com), Bad: (http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}),,[828f4f161567fa3cdb1d6900db2ae719]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[4cc5aeb7f28af2445083066fa461cb35]
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&t ... J9DCA12875, Good: (Chrome.exe), Bad: ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&t ... J9DCA12875),,[8f822f36205cf145456a2c3d36cfd22e]
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&t ... J9DCA12875, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&t ... J9DCA12875),,[d33e8fd628543afc4f5e0f5aaf569769]
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}, Good: (www.google.com), Bad: (http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}),,[08095015dca0e55104f331380df89e62]
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... J9DCA12875, Good: (www.google.com), Bad: (http://www.mystartsearch.com/?type=hp&t ... J9DCA12875),,[a869d78e80fc7abce51103667293ac54]
PUP.Optional.MyStartSearch.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}, Good: (www.google.com), Bad: (http://www.mystartsearch.com/web/?type= ... CA12875&q={searchTerms}),,[6ea3d88dadcfc07694641a4f50b54eb2]
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[ea27a3c2f48853e3e6ed0d6863a232ce]
PUP.Optional.MyStartSearch.A, HKU\S-1-5-21-253112895-946898586-2958512260-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... J9DCA12875, Good: (www.google.com), Bad: (http://www.mystartsearch.com/?type=hp&t ... J9DCA12875),,[88892d38710b52e425d4db8e768fdb25]

Folders: 12
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\MYSTARTSEARCH, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\MYSTARTSEARCH\images, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\MYSTARTSEARCH\images\code, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.IePluginServices.A, C:\ProgramData\IEPLUGINSERVICES, , [9081bbaa65179c9a56145adca55e41bf],
PUP.Optional.IePluginServices.A, C:\ProgramData\IEPLUGINSERVICES\update, , [9081bbaa65179c9a56145adca55e41bf],
PUP.Optional.WPM.A, C:\ProgramData\WINDOWSMANGERPROTECT, , [6ea32b3a3a4291a57c4ba395a85bda26],
PUP.Optional.WPM.A, C:\ProgramData\WINDOWSMANGERPROTECT\log, , [6ea32b3a3a4291a57c4ba395a85bda26],
PUP.Optional.WPM.A, C:\ProgramData\WINDOWSMANGERPROTECT\update, , [6ea32b3a3a4291a57c4ba395a85bda26],
PUP.Optional.ShowAppIt.A, C:\ProgramData\SHOWAPPIT, , [14fd2342e5976ccad564014efe0511ef],
PUP.Optional.ShowAppIt.A, C:\ProgramData\SHOWAPPIT\GS_Booster, , [14fd2342e5976ccad564014efe0511ef],
PUP.Optional.ShowAppIt.A, C:\ProgramData\SHOWAPPIT\GS_BOOSTER\1942536000, , [14fd2342e5976ccad564014efe0511ef],
PUP.Optional.ShowAppIt.A, C:\ProgramData\SHOWAPPIT\Setup, , [14fd2342e5976ccad564014efe0511ef],

Files: 54
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PLUGINSERVICE.EXE, , [4dc49bca196358de340dc0b4798822de],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\PROTECTWINDOWSMANAGER.EXE, , [ff12293c6715191d7058dfc8d13010f0],
Adware.SwiftBrowse, C:\$Recycle.Bin\S-1-5-21-253112895-946898586-2958512260-1002\$RNTMOC1.dll, , [30e166ff2656181e5d4f0ada8183cb35],
PUP.Optional.Sanbreel.A, C:\$Recycle.Bin\S-1-5-21-253112895-946898586-2958512260-1002\$RLU3ZQG\DolphinDeals.Bromon.dll, , [d14099ccd2aa270f50576a5fdb263fc1],
PUP.Optional.Sanbreel.A, C:\$Recycle.Bin\S-1-5-21-253112895-946898586-2958512260-1002\$RLU3ZQG\DolphinDeals.BroStats.dll, , [5cb51550d4a80d295b4d884134cd7a86],
PUP.Optional.Sanbreel.A, C:\$Recycle.Bin\S-1-5-21-253112895-946898586-2958512260-1002\$RLU3ZQG\DolphinDeals.CompatibilityChecker.dll, , [3fd26302f389e45225818247e819f40c],
PUP.Optional.Sanbreel.A, C:\$Recycle.Bin\S-1-5-21-253112895-946898586-2958512260-1002\$RSS8G92\DolphinDeals.Bromon.dll, , [2ce53f263b41999d7f288a3fbb46de22],
PUP.Optional.Sanbreel.A, C:\$Recycle.Bin\S-1-5-21-253112895-946898586-2958512260-1002\$RSS8G92\DolphinDeals.BroStats.dll, , [f819a3c2df9d3df9cbddcaff38c924dc],
PUP.Optional.Sanbreel.A, C:\$Recycle.Bin\S-1-5-21-253112895-946898586-2958512260-1002\$RSS8G92\DolphinDeals.CompatibilityChecker.dll, , [39d87fe689f316201294d5f41ae78878],
PUP.Optional.Amonetize, C:\Users\Michal\AppData\Local\Temp\amiupdater245.exe, , [65ac2c394438a98dce4b29ca5ba61ae6],
PUP.Optional.Amonetize, C:\Users\Michal\Downloads\DivX.Web.Player.Installer__8420_il10410.exe, , [31e0c69fabd193a355da27d2629f6d93],
PUP.Optional.MindSpark.A, C:\Users\Michal\Downloads\EliteUnzipSetup.EliteUnzip_aa.gpdjcoccminpbgmiffhifdcnelpojeeb.ch.exe, , [2fe2b3b2a0dc55e17ce95290719046ba],
PUP.Optional.Amonetize, C:\Users\Michal\Downloads\Nepotvrzeno 38797.crdownload, , [c8493b2a5e1e6cca9798a059847dba46],
PUP.Optional.Amonetize, C:\Users\Michal\Downloads\Nepotvrzeno 525339.crdownload, , [ac6586df413ba5919d92b247df228e72],
PUP.Optional.Amonetize, C:\Users\Michal\Downloads\Nepotvrzeno 867393.crdownload, , [bc55e5807c002b0b80afa059f30e7987],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\HTTP_WWW.MYSTARTSEARCH.COM_0.LOCALSTORAGE, , [64ad11541e5ea98d1f897cda35ceb947],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\HTTP_WWW.MYSTARTSEARCH.COM_0.LOCALSTORAGE-JOURNAL, , [16fbe67f7efe0630a9ff3125d72c8080],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\MESSAGEBOX.XML, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\310.json, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\uninstallDlg2.xml, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\UninstallManager.exe, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\bg.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\bg1.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\bk_shadow.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\button.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\button1.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\checkbox.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\checkbox_select.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\checked.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\close.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\loading_bg.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\loading_light.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\min.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\scrollbar.bmp, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\Thumbs.db, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\unchecked.png, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\code\code1.jpg, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\code\code2.jpg, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\code\code3.jpg, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\code\code4.jpg, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\code\code5.jpg, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\code\code6.jpg, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.MyStartSearch.A, C:\Users\Michal\AppData\Roaming\mystartsearch\images\code\Thumbs.db, , [55bcd68f5c20280ee65b92c680833fc1],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{484194E7-9731-465E-9331-C230F71240AF}GW64.SYS, , [4ac78fd60a72c76f4f8a7af49b68e11f],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{AD5DEE5E-A585-4286-892C-FC27AC63CD14}GW64.SYS, , [050c62033448eb4b4a8f105ee320cd33],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{D1B1A663-DD65-4A59-BE6A-82F3133A4DBA}GW64.SYS, , [ff122e374c307eb8a831caa444bf13ed],
PUP.Optional.MindSpark.A, C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\HTTP_ELITEUNZIP.DL.TB.ASK.COM_0.LOCALSTORAGE, , [c94824410b71270fe3f934527a89c33d],
PUP.Optional.MindSpark.A, C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\HTTP_ELITEUNZIP.DL.TB.ASK.COM_0.LOCALSTORAGE-JOURNAL, , [4cc5d88d512bff37c913820437cc6799],
PUP.Optional.DolphinDeals.A, C:\Program Files (x86)\Dolphin Deals\UPDATEDOLPHINDEALS.EXE, , [977ae184a3d9c076a54c89e3e41f9769],
PUP.Optional.DolphinDeals.A, C:\Program Files (x86)\Dolphin Deals\bin\UTILDOLPHINDEALS.EXE, , [c54c62037c0047ef13dff37958ab48b8],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update\conf, , [9081bbaa65179c9a56145adca55e41bf],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\log\ProtectWindowsManager_2014-11-05[20-26-54-330].log, , [6ea32b3a3a4291a57c4ba395a85bda26],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update\conf, , [6ea32b3a3a4291a57c4ba395a85bda26],
PUP.Optional.ShowAppIt.A, C:\ProgramData\ShowAppIt\GS_Booster\1942536000.ini, , [14fd2342e5976ccad564014efe0511ef],

Physical Sectors: 0
(No malicious items detected)


(end)
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola - Pomalý PC a program DolphinDeals

Příspěvekod jaro3 » 21 pro 2014 10:27

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Odpovědět

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 81 hostů