Zdravím,
nějakým způsobem se mi do PC dostali reklamy navíc, které vytěžují počítač a zněpříjemňují práci na počítači. Dohledal jsem se nějakých návodů, jak je odstranit, avšak žádný z návodů nefungoval. Mohl byste se někdo, prosím, kouknout na tento log?
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:35:39, on 20.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\kong games\kong_games_notification_service.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\Dead\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Dead\Downloads\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.yahoo.com?fr=fp-comodo
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: CrossriderApp0035510 - {11111111-1111-1111-1111-110311551110} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: ShopperProBHO - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [tvncontrol] "C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Dropbox.lnk = Dead\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Start GeekBuddy.lnk = C:\Program Files\COMODO\GeekBuddy\launcher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{5E48D266-6532-4B51-9CAE-BD06538DAFC8}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CCS\Services\Tcpip\..\{FBC01236-DA23-4272-A99F-9418AEA9DB5E}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CS1\Services\Tcpip\..\{5E48D266-6532-4B51-9CAE-BD06538DAFC8}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CS2\Services\Tcpip\..\{5E48D266-6532-4B51-9CAE-BD06538DAFC8}: NameServer = 156.154.70.25,156.154.71.25
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GeekBuddyRSP Server (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: YouTubeAcceleratorService - Unknown owner - C:\PROGRA~2\YOUTUB~1\YouTubeAcceleratorService.exe (file missing)
--
End of file - 10433 bytes
Prosím o zkontrolování logu Vyřešeno
Prosím o zkontrolování logu Vyřešeno
I don't hate people, I just feel better, when they aren't around. - Ch. Bukowski
Re: Prosím o zkontrolování logu
Ahoj! 
Rád Ti pomohu s tvým problémem. Čti prosím mé instrukce pozorně a pokud si něčím nebudeš jist, vždy se raději zeptej.
Je možné, že budeš muset na chvíli vypnout svůj antivirus.
V rámci čištění budou vyprázdněny dočasné adresáře včetně Koše!
Stáhni si AdwCleaner: http://www.bleepingcomputer.com/download/adwcleaner/
Ulož na Plochu, spusť jako správce, klikni na Scan a poté Logfile, vyjede na tebe log, ten sem prosím přilož. AdwCleaner na chvíli zavři.
Po vložení logu sem si znovu otevři AdwCleaner, kde klikni na Scan a poté tentokrát na Clean. Po restartu PC na tebe vyjede další log, ten sem prosím vlož.
---------------------------------------------------------------------------
Stáhni si Zoek: http://download.bleepingcomputer.com/smeenk/zoek.exe
Ulož na Plochu, otevři jako správce, do otevřeného okna vlož tento kód:
A klikni na Run script, chvíli to potrvá. Po restartu PC prosím přilož jeho log.
Rád Ti pomohu s tvým problémem. Čti prosím mé instrukce pozorně a pokud si něčím nebudeš jist, vždy se raději zeptej.
Je možné, že budeš muset na chvíli vypnout svůj antivirus.
V rámci čištění budou vyprázdněny dočasné adresáře včetně Koše!
Stáhni si AdwCleaner: http://www.bleepingcomputer.com/download/adwcleaner/
Ulož na Plochu, spusť jako správce, klikni na Scan a poté Logfile, vyjede na tebe log, ten sem prosím přilož. AdwCleaner na chvíli zavři.
Po vložení logu sem si znovu otevři AdwCleaner, kde klikni na Scan a poté tentokrát na Clean. Po restartu PC na tebe vyjede další log, ten sem prosím vlož.
---------------------------------------------------------------------------
Stáhni si Zoek: http://download.bleepingcomputer.com/smeenk/zoek.exe
Ulož na Plochu, otevři jako správce, do otevřeného okna vlož tento kód:
Kód: Vybrat vše
autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
A klikni na Run script, chvíli to potrvá. Po restartu PC prosím přilož jeho log.
Re: Prosím o zkontrolování logu
V první řadě velké díky, za tvůj čas a ochotu mi pomoci.
1.log zde:
# AdwCleaner v4.201 - Log vytvořen 20/04/2015 v 12:49:26
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-19.4 [Server]
# Operační system : Windows 7 Ultimate Service Pack 1 (x64)
# Uživatelské jméno : Dead - DEAD-PC
# Spuštěno z : C:\Users\Dead\Desktop\adwcleaner_4.201.exe
# Nastavení : Sken
***** [ Služby ] *****
Služba Nalezeno : globalUpdate
Služba Nalezeno : globalUpdatem
Služba Nalezeno : YouTubeAcceleratorService
Služba Nalezeno : SPDRIVER_1.36.1.172
***** [ Soubory / Složky ] *****
Složka Nalezeno : C:\Program Files (x86)\globalUpdate
Složka Nalezeno : C:\Program Files (x86)\kong games
Složka Nalezeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
Složka Nalezeno : C:\ProgramData\ShopperPro
Složka Nalezeno : C:\Users\Dead\AppData\Local\globalUpdate
Složka Nalezeno : C:\Users\Dead\AppData\LocalLow\Goobzo
Složka Nalezeno : C:\Users\Dead\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
Soubor Nalezeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
Soubor Nalezeno : C:\Users\Public\Desktop\GeekBuddy.lnk
***** [ Naplánované úlohy ] *****
Úloha Nalezeno : globalUpdateUpdateTaskMachineCore
Úloha Nalezeno : globalUpdateUpdateTaskMachineUA
Úloha Nalezeno : ShopperPro
Úloha Nalezeno : ShopperProJSUpd
Úloha Nalezeno : SPDriver
Úloha Nalezeno : YTAUpdate_logon
Úloha Nalezeno : kong_games_notification_service
Úloha Nalezeno : kong_games_updating_service
Úloha Nalezeno : YTAUpdate
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-1
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-2
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-3
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-4
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-5
Úloha Nalezeno : d4e590bb-8214-4c59-8429-13fb7d7180b5-1
Úloha Nalezeno : d4e590bb-8214-4c59-8429-13fb7d7180b5-3
Úloha Nalezeno : d4e590bb-8214-4c59-8429-13fb7d7180b5-4
Úloha Nalezeno : d4e590bb-8214-4c59-8429-13fb7d7180b5-5
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Nalezeno : HKCU\Software\1ClickDownload
Klíč Nalezeno : HKCU\Software\APN PIP
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\iWebar
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\Sense
Klíč Nalezeno : HKCU\Software\GlobalUpdate
Klíč Nalezeno : HKCU\Software\Goobzo
Klíč Nalezeno : HKCU\Software\InstalledBrowserExtensions
Klíč Nalezeno : HKCU\Software\Local AppWizard-Generated Applications
Klíč Nalezeno : HKCU\Software\smarttweak
Klíč Nalezeno : [x64] HKCU\Software\1ClickDownload
Klíč Nalezeno : [x64] HKCU\Software\APN PIP
Klíč Nalezeno : [x64] HKCU\Software\GlobalUpdate
Klíč Nalezeno : [x64] HKCU\Software\Goobzo
Klíč Nalezeno : [x64] HKCU\Software\InstalledBrowserExtensions
Klíč Nalezeno : [x64] HKCU\Software\Local AppWizard-Generated Applications
Klíč Nalezeno : [x64] HKCU\Software\smarttweak
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Klíč Nalezeno : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
Klíč Nalezeno : HKLM\SOFTWARE\GeekBuddyRSP
Klíč Nalezeno : HKLM\SOFTWARE\GlobalUpdate
Klíč Nalezeno : HKLM\SOFTWARE\Goobzo
Klíč Nalezeno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Nalezeno : HKLM\SOFTWARE\iWebar
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Nalezeno : HKLM\SOFTWARE\PIP
Klíč Nalezeno : HKLM\SOFTWARE\Sense
Klíč Nalezeno : HKLM\SOFTWARE\ShopperPro
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Klíč Nalezeno : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17728
-\\ Mozilla Firefox v37.0.1 (x86 cs)
-\\ Chromium v
*************************
AdwCleaner[R0].txt - [10057 bytů] - [20/04/2015 12:49:26]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [10116 bytů] ##########
2.log zde:
# AdwCleaner v4.201 - Log vytvořen 20/04/2015 v 12:53:50
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-19.4 [Server]
# Operační system : Windows 7 Ultimate Service Pack 1 (x64)
# Uživatelské jméno : Dead - DEAD-PC
# Spuštěno z : C:\Users\Dead\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : globalUpdate
[#] Služba Smazáno : globalUpdatem
[#] Služba Smazáno : YouTubeAcceleratorService
[#] Služba Smazáno : SPDRIVER_1.36.1.172
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\ShopperPro
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
Složka Smazáno : C:\Program Files (x86)\globalUpdate
Složka Smazáno : C:\Program Files (x86)\kong games
Složka Smazáno : C:\Users\Dead\AppData\Local\globalUpdate
Složka Smazáno : C:\Users\Dead\AppData\LocalLow\Goobzo
Složka Smazáno : C:\Users\Dead\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
Soubor Smazáno : C:\Users\Public\Desktop\GeekBuddy.lnk
Soubor Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
***** [ Naplánované úlohy ] *****
Úloha Smazáno : globalUpdateUpdateTaskMachineCore
Úloha Smazáno : globalUpdateUpdateTaskMachineUA
Úloha Smazáno : ShopperPro
Úloha Smazáno : ShopperProJSUpd
Úloha Smazáno : SPDriver
Úloha Smazáno : YTAUpdate_logon
Úloha Smazáno : kong_games_notification_service
Úloha Smazáno : kong_games_updating_service
Úloha Smazáno : YTAUpdate
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-1
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-2
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-3
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-4
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-5
Úloha Smazáno : d4e590bb-8214-4c59-8429-13fb7d7180b5-1
Úloha Smazáno : d4e590bb-8214-4c59-8429-13fb7d7180b5-3
Úloha Smazáno : d4e590bb-8214-4c59-8429-13fb7d7180b5-4
Úloha Smazáno : d4e590bb-8214-4c59-8429-13fb7d7180b5-5
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Klíč Smazáno : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKCU\Software\1ClickDownload
Klíč Smazáno : HKCU\Software\APN PIP
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKCU\Software\Goobzo
Klíč Smazáno : HKCU\Software\InstalledBrowserExtensions
Klíč Smazáno : HKCU\Software\smarttweak
Klíč Smazáno : HKCU\Software\Local AppWizard-Generated Applications
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Smazáno : HKCU\Software\AppDataLow\Software\iWebar
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Sense
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\Goobzo
Klíč Smazáno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Smazáno : HKLM\SOFTWARE\iWebar
Klíč Smazáno : HKLM\SOFTWARE\PIP
Klíč Smazáno : HKLM\SOFTWARE\Sense
Klíč Smazáno : HKLM\SOFTWARE\ShopperPro
Klíč Smazáno : HKLM\SOFTWARE\GeekBuddyRSP
Klíč Smazáno : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17728
-\\ Mozilla Firefox v37.0.1 (x86 cs)
-\\ Chromium v
*************************
AdwCleaner[R0].txt - [10247 bytů] - [20/04/2015 12:49:26]
AdwCleaner[R1].txt - [10306 bytů] - [20/04/2015 12:53:20]
AdwCleaner[S0].txt - [9717 bytů] - [20/04/2015 12:53:50]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9775 bytů] ##########
3.log zde:
Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by Dead on po 20.04.2015 at 12:57:54,67.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Dead\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
20.4.2015 12:59:14 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~3\IDM deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\PROGRA~3\Shared Space deleted successfully
C:\Users\Dead\AppData\Roaming\DMCache deleted successfully
C:\Users\Dead\AppData\Roaming\Vso deleted successfully
C:\Users\Dead\AppData\Local\GHISLER deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15B851AF-A4B9-43EF-97D3-28E1B4A5DB9B} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1902485B-CE75-42C1-BA2D-57E660793D9A} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B6679C4-B17B-4EE7-997A-EC41AD1D7DB5} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{471e5d22-6313-4cf4-84d9-df78516ad060} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4a56288a-35d9-4f91-959a-b26bec41395c} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7BCDFC64-E33F-417D-BAB-3918E90A6EE} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{80F66A08-7D57-4687-8CC-89A17F9FE351} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{936BEF11-70DD-4817-B073-1C768DB8237} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ED8883E-991C-49CB-88F0-EF666B88C34B} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B64B4F86-3FE5-4B41-9080-45BEA55BFEA8} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c72fcf1e-877b-4dd7-84cc-7f1f2aa7a632} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d090dcb4-04ff-496e-bbd1-409dbaa51525} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D395C512-A0A3-4830-84D5-F164DF1FC9E} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1EFAD21-6D09-4F72-9ED8-F37E26ECE6B} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551110} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551110} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{471e5d22-6313-4cf4-84d9-df78516ad060} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4a56288a-35d9-4f91-959a-b26bec41395c} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c72fcf1e-877b-4dd7-84cc-7f1f2aa7a632} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d090dcb4-04ff-496e-bbd1-409dbaa51525} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952\prefs.js:
Added to C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Deleted from C:\Users\Dead\AppData\Roaming\Thunderbird\Profiles\m5ei6ar8.default\prefs.js:
Added to C:\Users\Dead\AppData\Roaming\Thunderbird\Profiles\m5ei6ar8.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952
user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- FireFox user.js and prefs.js backups ----
prefs_20.04.2015_1327_.backup
ProfilePath: C:\Users\Dead\AppData\Roaming\Thunderbird\Profiles\m5ei6ar8.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_20.04.2015_1327_.backup
==== Deleting Files \ Folders ======================
C:\Users\Dead\AppData\Roaming\pcouffin.log deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Dead\AppData\Local\Installer deleted
C:\Users\Public\Documents\GOOBZO deleted
C:\Users\Public\Documents\ShopperPro deleted
C:\Windows\SysWOW64\AniGIF.ocx deleted
C:\Users\Dead\AppData\Roaming\PdHHcmLhiyRuCHRBVRxfFt.exe deleted
"C:\Users\Dead\AppData\Roaming\PdHHcmLhiyRuCHRBVRxfFt" deleted
"C:\Windows\tasks\PdHHcmLhiyRuCHRBVRxfFt.job" deleted
"C:\Windows\SysNative\tasks\PdHHcmLhiyRuCHRBVRxfFt" deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Dead\AppData\Roaming\Thunderbird\Profiles\m5ei6ar8.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
ProfilePath: C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952
CA36F6DCA9A783FF60CB2DC5D28FA5F0 - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll - PDF-XChange Viewer
==== Chromium Look ======================
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://us.yahoo.com?fr=fp-comodo"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
==== Reset Google Chrome ======================
Nothing found to reset
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dead\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dead\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=52 folders=25 24454594 bytes)
==== Empty Temp Folders ======================
C:\Users\Dead\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
1.log zde:
# AdwCleaner v4.201 - Log vytvořen 20/04/2015 v 12:49:26
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-19.4 [Server]
# Operační system : Windows 7 Ultimate Service Pack 1 (x64)
# Uživatelské jméno : Dead - DEAD-PC
# Spuštěno z : C:\Users\Dead\Desktop\adwcleaner_4.201.exe
# Nastavení : Sken
***** [ Služby ] *****
Služba Nalezeno : globalUpdate
Služba Nalezeno : globalUpdatem
Služba Nalezeno : YouTubeAcceleratorService
Služba Nalezeno : SPDRIVER_1.36.1.172
***** [ Soubory / Složky ] *****
Složka Nalezeno : C:\Program Files (x86)\globalUpdate
Složka Nalezeno : C:\Program Files (x86)\kong games
Složka Nalezeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
Složka Nalezeno : C:\ProgramData\ShopperPro
Složka Nalezeno : C:\Users\Dead\AppData\Local\globalUpdate
Složka Nalezeno : C:\Users\Dead\AppData\LocalLow\Goobzo
Složka Nalezeno : C:\Users\Dead\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
Soubor Nalezeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
Soubor Nalezeno : C:\Users\Public\Desktop\GeekBuddy.lnk
***** [ Naplánované úlohy ] *****
Úloha Nalezeno : globalUpdateUpdateTaskMachineCore
Úloha Nalezeno : globalUpdateUpdateTaskMachineUA
Úloha Nalezeno : ShopperPro
Úloha Nalezeno : ShopperProJSUpd
Úloha Nalezeno : SPDriver
Úloha Nalezeno : YTAUpdate_logon
Úloha Nalezeno : kong_games_notification_service
Úloha Nalezeno : kong_games_updating_service
Úloha Nalezeno : YTAUpdate
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-1
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-2
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-3
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-4
Úloha Nalezeno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-5
Úloha Nalezeno : d4e590bb-8214-4c59-8429-13fb7d7180b5-1
Úloha Nalezeno : d4e590bb-8214-4c59-8429-13fb7d7180b5-3
Úloha Nalezeno : d4e590bb-8214-4c59-8429-13fb7d7180b5-4
Úloha Nalezeno : d4e590bb-8214-4c59-8429-13fb7d7180b5-5
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Nalezeno : HKCU\Software\1ClickDownload
Klíč Nalezeno : HKCU\Software\APN PIP
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\iWebar
Klíč Nalezeno : HKCU\Software\AppDataLow\Software\Sense
Klíč Nalezeno : HKCU\Software\GlobalUpdate
Klíč Nalezeno : HKCU\Software\Goobzo
Klíč Nalezeno : HKCU\Software\InstalledBrowserExtensions
Klíč Nalezeno : HKCU\Software\Local AppWizard-Generated Applications
Klíč Nalezeno : HKCU\Software\smarttweak
Klíč Nalezeno : [x64] HKCU\Software\1ClickDownload
Klíč Nalezeno : [x64] HKCU\Software\APN PIP
Klíč Nalezeno : [x64] HKCU\Software\GlobalUpdate
Klíč Nalezeno : [x64] HKCU\Software\Goobzo
Klíč Nalezeno : [x64] HKCU\Software\InstalledBrowserExtensions
Klíč Nalezeno : [x64] HKCU\Software\Local AppWizard-Generated Applications
Klíč Nalezeno : [x64] HKCU\Software\smarttweak
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Nalezeno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Klíč Nalezeno : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
Klíč Nalezeno : HKLM\SOFTWARE\GeekBuddyRSP
Klíč Nalezeno : HKLM\SOFTWARE\GlobalUpdate
Klíč Nalezeno : HKLM\SOFTWARE\Goobzo
Klíč Nalezeno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Nalezeno : HKLM\SOFTWARE\iWebar
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Nalezeno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Nalezeno : HKLM\SOFTWARE\PIP
Klíč Nalezeno : HKLM\SOFTWARE\Sense
Klíč Nalezeno : HKLM\SOFTWARE\ShopperPro
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Klíč Nalezeno : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Nalezeno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17728
-\\ Mozilla Firefox v37.0.1 (x86 cs)
-\\ Chromium v
*************************
AdwCleaner[R0].txt - [10057 bytů] - [20/04/2015 12:49:26]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [10116 bytů] ##########
2.log zde:
# AdwCleaner v4.201 - Log vytvořen 20/04/2015 v 12:53:50
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-19.4 [Server]
# Operační system : Windows 7 Ultimate Service Pack 1 (x64)
# Uživatelské jméno : Dead - DEAD-PC
# Spuštěno z : C:\Users\Dead\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : globalUpdate
[#] Služba Smazáno : globalUpdatem
[#] Služba Smazáno : YouTubeAcceleratorService
[#] Služba Smazáno : SPDRIVER_1.36.1.172
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\ShopperPro
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
Složka Smazáno : C:\Program Files (x86)\globalUpdate
Složka Smazáno : C:\Program Files (x86)\kong games
Složka Smazáno : C:\Users\Dead\AppData\Local\globalUpdate
Složka Smazáno : C:\Users\Dead\AppData\LocalLow\Goobzo
Složka Smazáno : C:\Users\Dead\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
Soubor Smazáno : C:\Users\Public\Desktop\GeekBuddy.lnk
Soubor Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
***** [ Naplánované úlohy ] *****
Úloha Smazáno : globalUpdateUpdateTaskMachineCore
Úloha Smazáno : globalUpdateUpdateTaskMachineUA
Úloha Smazáno : ShopperPro
Úloha Smazáno : ShopperProJSUpd
Úloha Smazáno : SPDriver
Úloha Smazáno : YTAUpdate_logon
Úloha Smazáno : kong_games_notification_service
Úloha Smazáno : kong_games_updating_service
Úloha Smazáno : YTAUpdate
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-1
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-2
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-3
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-4
Úloha Smazáno : c4c8aa3a-1eaa-4b43-b0b7-6c11df4daae7-5
Úloha Smazáno : d4e590bb-8214-4c59-8429-13fb7d7180b5-1
Úloha Smazáno : d4e590bb-8214-4c59-8429-13fb7d7180b5-3
Úloha Smazáno : d4e590bb-8214-4c59-8429-13fb7d7180b5-4
Úloha Smazáno : d4e590bb-8214-4c59-8429-13fb7d7180b5-5
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Klíč Smazáno : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.BHO.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0035510.Sandbox.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Klíč Smazáno : HKCU\Software\1ClickDownload
Klíč Smazáno : HKCU\Software\APN PIP
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKCU\Software\Goobzo
Klíč Smazáno : HKCU\Software\InstalledBrowserExtensions
Klíč Smazáno : HKCU\Software\smarttweak
Klíč Smazáno : HKCU\Software\Local AppWizard-Generated Applications
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Smazáno : HKCU\Software\AppDataLow\Software\iWebar
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Sense
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\Goobzo
Klíč Smazáno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Smazáno : HKLM\SOFTWARE\iWebar
Klíč Smazáno : HKLM\SOFTWARE\PIP
Klíč Smazáno : HKLM\SOFTWARE\Sense
Klíč Smazáno : HKLM\SOFTWARE\ShopperPro
Klíč Smazáno : HKLM\SOFTWARE\GeekBuddyRSP
Klíč Smazáno : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17728
-\\ Mozilla Firefox v37.0.1 (x86 cs)
-\\ Chromium v
*************************
AdwCleaner[R0].txt - [10247 bytů] - [20/04/2015 12:49:26]
AdwCleaner[R1].txt - [10306 bytů] - [20/04/2015 12:53:20]
AdwCleaner[S0].txt - [9717 bytů] - [20/04/2015 12:53:50]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9775 bytů] ##########
3.log zde:
Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by Dead on po 20.04.2015 at 12:57:54,67.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Dead\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
20.4.2015 12:59:14 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~3\IDM deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\PROGRA~3\Shared Space deleted successfully
C:\Users\Dead\AppData\Roaming\DMCache deleted successfully
C:\Users\Dead\AppData\Roaming\Vso deleted successfully
C:\Users\Dead\AppData\Local\GHISLER deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15B851AF-A4B9-43EF-97D3-28E1B4A5DB9B} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1902485B-CE75-42C1-BA2D-57E660793D9A} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B6679C4-B17B-4EE7-997A-EC41AD1D7DB5} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{471e5d22-6313-4cf4-84d9-df78516ad060} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4a56288a-35d9-4f91-959a-b26bec41395c} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7BCDFC64-E33F-417D-BAB-3918E90A6EE} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{80F66A08-7D57-4687-8CC-89A17F9FE351} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{936BEF11-70DD-4817-B073-1C768DB8237} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ED8883E-991C-49CB-88F0-EF666B88C34B} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B64B4F86-3FE5-4B41-9080-45BEA55BFEA8} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c72fcf1e-877b-4dd7-84cc-7f1f2aa7a632} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d090dcb4-04ff-496e-bbd1-409dbaa51525} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D395C512-A0A3-4830-84D5-F164DF1FC9E} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} deleted successfully
HKEY_USERS\S-1-5-21-1756885086-4175642850-2213832668-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1EFAD21-6D09-4F72-9ED8-F37E26ECE6B} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551110} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551110} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{471e5d22-6313-4cf4-84d9-df78516ad060} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4a56288a-35d9-4f91-959a-b26bec41395c} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c72fcf1e-877b-4dd7-84cc-7f1f2aa7a632} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d090dcb4-04ff-496e-bbd1-409dbaa51525} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952\prefs.js:
Added to C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
Deleted from C:\Users\Dead\AppData\Roaming\Thunderbird\Profiles\m5ei6ar8.default\prefs.js:
Added to C:\Users\Dead\AppData\Roaming\Thunderbird\Profiles\m5ei6ar8.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952
user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- FireFox user.js and prefs.js backups ----
prefs_20.04.2015_1327_.backup
ProfilePath: C:\Users\Dead\AppData\Roaming\Thunderbird\Profiles\m5ei6ar8.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_20.04.2015_1327_.backup
==== Deleting Files \ Folders ======================
C:\Users\Dead\AppData\Roaming\pcouffin.log deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Dead\AppData\Local\Installer deleted
C:\Users\Public\Documents\GOOBZO deleted
C:\Users\Public\Documents\ShopperPro deleted
C:\Windows\SysWOW64\AniGIF.ocx deleted
C:\Users\Dead\AppData\Roaming\PdHHcmLhiyRuCHRBVRxfFt.exe deleted
"C:\Users\Dead\AppData\Roaming\PdHHcmLhiyRuCHRBVRxfFt" deleted
"C:\Windows\tasks\PdHHcmLhiyRuCHRBVRxfFt.job" deleted
"C:\Windows\SysNative\tasks\PdHHcmLhiyRuCHRBVRxfFt" deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\Dead\AppData\Roaming\Thunderbird\Profiles\m5ei6ar8.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
ProfilePath: C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\Dead\AppData\Roaming\Mozilla\Firefox\Profiles\5iz1s9tv.default-1429483802952
CA36F6DCA9A783FF60CB2DC5D28FA5F0 - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll - PDF-XChange Viewer
==== Chromium Look ======================
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://us.yahoo.com?fr=fp-comodo"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
==== Reset Google Chrome ======================
Nothing found to reset
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dead\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dead\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=52 folders=25 24454594 bytes)
==== Empty Temp Folders ======================
C:\Users\Dead\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
I don't hate people, I just feel better, when they aren't around. - Ch. Bukowski
Re: Prosím o zkontrolování logu
Stáhni si MBAM (verzi zadarmo, trial nechceme): http://www.malwarebytes.org/mwb-download/
Nainstaluj, na poslední stránce instalátoru nezapomeň odškrtnout možnost: Povolit bezplatnou zkušební verzi...
Po spuštění se aplikace aktualizuje, poté zvol v horní liště Sken -> vyber Vlastní sken a klikni na Skenovat nyní
Objeví se okno Konfigurace vlastního skenu - vyber všechny disky/diskové oddíly (kromě mechaniky, čtečky,...), v levé liště zatrhni Hledat rootkity a klikni na Spustit sken
Po dokončení skenu klikni na tlačítko Exportovat záznam, log ulož a jeho obsah vlož sem.
Všechny nálezy dej mezitím do karantény.
Nainstaluj, na poslední stránce instalátoru nezapomeň odškrtnout možnost: Povolit bezplatnou zkušební verzi...
Po spuštění se aplikace aktualizuje, poté zvol v horní liště Sken -> vyber Vlastní sken a klikni na Skenovat nyní
Objeví se okno Konfigurace vlastního skenu - vyber všechny disky/diskové oddíly (kromě mechaniky, čtečky,...), v levé liště zatrhni Hledat rootkity a klikni na Spustit sken
Po dokončení skenu klikni na tlačítko Exportovat záznam, log ulož a jeho obsah vlož sem.
Všechny nálezy dej mezitím do karantény.
Re: Prosím o zkontrolování logu
Výpis zde:
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 20.4.2015
Čas skenování: 17:04:26
Protokol:
Správce: Ano
Verze: 2.01.4.1018
Databáze malwaru: v2015.04.20.03
Databáze rootkitů: v2015.03.31.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Dead
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 574876
Uplynulý čas: 1 hod, 52 min, 58 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 1
PUP.Optional.iWebar.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, , [0bc84f1fa1e96fc719e0ad1fdf245fa1],
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 20
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe.vir, , [458ec3ab6624270fb6f6ab9b689aaf51],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe.vir, , [587b432ba9e168ceadff1a2cd131e21e],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe.vir, , [01d2630b41491323e3c9cf7746bc49b7],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateBroker.exe.vir, , [755e6905ddad50e6dbd1ce7817eb22de],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateOnDemand.exe.vir, , [567d0f5fd7b3979fddcf6cda42c0b14f],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir, , [f8db6509fe8c8da9f8b4bd896e9452ae],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir, , [a03388e6e0aa80b6406c182e6f93ef11],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll.vir, , [cc07d797bad07eb83874c383ce34b14f],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll.vir, , [e8ebfc72f09a39fd4a6202443ac8fc04],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir, , [4f84ed817a10a78f238986c012f03ac6],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\kong games\kong_games_notification_service.exe.vir, , [a82b9ed0e1a91d19937a6fd3bb4716ea],
PUP.Optional.Goobzo, C:\AdwCleaner\Quarantine\C\ProgramData\ShopperPro\ShopperPro.dll.vir, , [b81b313df5954ee8fb5f231a14f206fa],
PUP.Optional.Goobzo, C:\AdwCleaner\Quarantine\C\ProgramData\ShopperPro\ShopperPro64.dll.vir, , [e1f26a049af0f541fb5f08359f6757a9],
Trojan.Agent.W, C:\Windows\Setup\SCRIPTS\Windows7Loader.exe, , [755ee688afdbd95d93aaf9aeb0553cc4],
PUP.Optional.CrossRider.A, C:\zoek_backup\C_Users_Dead_AppData_Roaming_PdHHcmLhiyRuCHRBVRxfFt.exe.vir, , [1ab9165848429e98194a3e19f010cc34],
PUP.Optional.ScramblePacker.A, C:\zoek_backup\C_Users_Dead_AppData_Local_Installer\Install_24534\sense.exe, , [a52e036bb0dad85e57ed129a12ef01ff],
PUP.Optional.Goobzo, C:\zoek_backup\C_Users_Dead_AppData_Local_Installer\Install_24534\ytaia.exe, , [9043acc246445fd74c0eaa93050117e9],
PUP.Optional.OpenCandy, E:\Install\DTLite-setup.exe, , [5d765d11bad0e74fca26e741b2543dc3],
PUP.Optional.OpenCandy, E:\Install\PowerISO5.exe, , [4b88c0ae6822e94d6090a385699dbd43],
Malware.Gen, E:\Install\Adobe Photoshop CS5\Adobe.Photoshop.CS5.Extended.v12.0.Keymaker-EMBRACE.exe, , [e8ebcaa46c1e58de735af393778925db],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 20.4.2015
Čas skenování: 17:04:26
Protokol:
Správce: Ano
Verze: 2.01.4.1018
Databáze malwaru: v2015.04.20.03
Databáze rootkitů: v2015.03.31.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Dead
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 574876
Uplynulý čas: 1 hod, 52 min, 58 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 1
PUP.Optional.iWebar.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, , [0bc84f1fa1e96fc719e0ad1fdf245fa1],
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 20
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe.vir, , [458ec3ab6624270fb6f6ab9b689aaf51],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe.vir, , [587b432ba9e168ceadff1a2cd131e21e],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe.vir, , [01d2630b41491323e3c9cf7746bc49b7],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateBroker.exe.vir, , [755e6905ddad50e6dbd1ce7817eb22de],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateOnDemand.exe.vir, , [567d0f5fd7b3979fddcf6cda42c0b14f],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir, , [f8db6509fe8c8da9f8b4bd896e9452ae],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir, , [a03388e6e0aa80b6406c182e6f93ef11],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll.vir, , [cc07d797bad07eb83874c383ce34b14f],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll.vir, , [e8ebfc72f09a39fd4a6202443ac8fc04],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir, , [4f84ed817a10a78f238986c012f03ac6],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\kong games\kong_games_notification_service.exe.vir, , [a82b9ed0e1a91d19937a6fd3bb4716ea],
PUP.Optional.Goobzo, C:\AdwCleaner\Quarantine\C\ProgramData\ShopperPro\ShopperPro.dll.vir, , [b81b313df5954ee8fb5f231a14f206fa],
PUP.Optional.Goobzo, C:\AdwCleaner\Quarantine\C\ProgramData\ShopperPro\ShopperPro64.dll.vir, , [e1f26a049af0f541fb5f08359f6757a9],
Trojan.Agent.W, C:\Windows\Setup\SCRIPTS\Windows7Loader.exe, , [755ee688afdbd95d93aaf9aeb0553cc4],
PUP.Optional.CrossRider.A, C:\zoek_backup\C_Users_Dead_AppData_Roaming_PdHHcmLhiyRuCHRBVRxfFt.exe.vir, , [1ab9165848429e98194a3e19f010cc34],
PUP.Optional.ScramblePacker.A, C:\zoek_backup\C_Users_Dead_AppData_Local_Installer\Install_24534\sense.exe, , [a52e036bb0dad85e57ed129a12ef01ff],
PUP.Optional.Goobzo, C:\zoek_backup\C_Users_Dead_AppData_Local_Installer\Install_24534\ytaia.exe, , [9043acc246445fd74c0eaa93050117e9],
PUP.Optional.OpenCandy, E:\Install\DTLite-setup.exe, , [5d765d11bad0e74fca26e741b2543dc3],
PUP.Optional.OpenCandy, E:\Install\PowerISO5.exe, , [4b88c0ae6822e94d6090a385699dbd43],
Malware.Gen, E:\Install\Adobe Photoshop CS5\Adobe.Photoshop.CS5.Extended.v12.0.Keymaker-EMBRACE.exe, , [e8ebcaa46c1e58de735af393778925db],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
I don't hate people, I just feel better, when they aren't around. - Ch. Bukowski
Re: Prosím o zkontrolování logu
Ahoj,
je mi líto, ale máš nelegální Windows, na základě pravidel tohoto fora musím pomoc odmítnout.
Příště doporučím vyhnout se pirátskému SW, jelikož v sobě má prakticky vždy malware...
je mi líto, ale máš nelegální Windows, na základě pravidel tohoto fora musím pomoc odmítnout.
Příště doporučím vyhnout se pirátskému SW, jelikož v sobě má prakticky vždy malware...
Kdo je online
Uživatelé prohlížející si toto fórum: Google [Bot] a 17 hostů