Prosím o kontrolu logu - zpomalené PC Vyřešeno

[elrodos]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:46:50, on 25.7.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)

FIREFOX: 31.0 (x86 cs)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\soundman.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\OLBPre\OLBPre.exe
C:\Program Files\Opera\38.0.2220.41\opera.exe
C:\Program Files\Opera\38.0.2220.41\opera_crashreporter.exe
C:\Program Files\Opera\38.0.2220.41\opera.exe
C:\Program Files\Opera\38.0.2220.41\opera.exe
C:\Program Files\Opera\38.0.2220.41\opera.exe
C:\Program Files\Opera\38.0.2220.41\opera.exe
C:\Program Files\Opera\38.0.2220.41\opera.exe
C:\Users\Doma\AppData\Local\Temp\scoped_dir856_25701\HijackThis.exe
C:\Program Files\Opera\38.0.2220.41\opera.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0620__yaie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Web Companion] C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
O4 - Startup: MyPC Backup.lnk = C:\Program Files\OLBPre\OLBPre.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\lavasofttcpservice.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LavasoftTcpService - Lavasoft Limited - C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files\Overwolf\OverwolfUpdater.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: WC Assistant (WCAssistantService) - Unknown owner - C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe

--
End of file - 5361 bytes

[Reklama]

[jaro3]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
http://www.geekstogo.com/forum/files/fi ... -oldtimer/
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu klikni na „Logfile“ ,objeví log ( jinak je uložen systémovem disku jako AdwCleaner[C?].txt), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Uložit výsledky a vyber zkopírovat do schránky a vlož sem celý log.
-jinak se log nachází zde: C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

Lavasoft-Ad-Aware není zrovna dobrý antivir..

[elrodos]

Ten ATF Cleaner mi ukazuje tohle, je to OK ?

[elrodos]

# AdwCleaner v5.005 - Logfile created 06/09/2015 at 17:53:14
# Updated 31/08/2015 by Xplode
# Database : 2015-09-04.4 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x86)
# Username : Doma - DOMA-PC
# Running from : C:\Users\Doma\Downloads\adwcleaner_5.005.exe
# Option : Scan
# Support : hxxp://toolslib.net/forum

***** [ Services ] *****

Service Found : globalUpdate
Service Found : globalUpdatem
Service Found : WindowsMangerProtect

***** [ Folders ] *****

Folder Found : C:\Program Files\globalUpdate
Folder Found : C:\Program Files\SavePass 1.1
Folder Found : C:\Program Files\miuitab
Folder Found : C:\Program Files\SavePass 1.1
Folder Found : C:\Program Files\CinemaP-1.9cV03.09
Folder Found : C:\Program Files\nVidia GeForce MX440 AGP8X Windows 7!
Folder Found : C:\Program Files\SavePass 1.1
Folder Found : C:\ProgramData\IHProtectUpDate
Folder Found : C:\Users\Doma\AppData\Local\globalUpdate
Folder Found : C:\Users\Doma\AppData\Local\VideoConverter
Folder Found : C:\Users\Doma\AppData\Local\FileViewPro
Folder Found : C:\Users\Doma\AppData\Local\pokki
Folder Found : C:\Users\Doma\AppData\Roaming\Solvusoft
Folder Found : C:\Users\Doma\AppData\Roaming\VOPackage
Folder Found : C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
Folder Found : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\DTToolbar@toolbarnet.com
Folder Found : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\faststartff@gmail.com
Folder Found : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Folder Found : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com
Folder Found : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\quick_searchff@gmail.com
Folder Found : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\default_newtabff@gmail.com
Folder Found : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com
Folder Found : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com
Folder Found : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\AVJYFVOD75109374@HCDE39471360.com

***** [ Files ] *****

File Found : C:\Program Files\Mozilla Firefox\browser\searchplugins\delta-homes.xml
File Found : C:\Program Files\Mozilla Firefox\browser\searchplugins\mystartsearch.xml
File Found : C:\Windows\system32\roboot.exe
File Found : C:\Windows\system32\drivers\{20915d52-1148-4fc2-8788-129eeb5e27dd}Gw.sys

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

Task Found : globalUpdateUpdateTaskMachineCore
Task Found : globalUpdateUpdateTaskMachineUA
Task Found : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-10_user
Task Found : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-11
Task Found : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-4
Task Found : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-10_user
Task Found : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-11
Task Found : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-4
Task Found : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-10_user
Task Found : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-11
Task Found : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-4
Task Found : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-10_user
Task Found : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-11
Task Found : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-4
Task Found : 4eafeb29-800e-4c0c-b826-caa72a9d2631-2
Task Found : 4eafeb29-800e-4c0c-b826-caa72a9d2631-5
Task Found : 4eafeb29-800e-4c0c-b826-caa72a9d2631-5_user
Task Found : globalUpdateUpdateTaskMachineCore
Task Found : globalUpdateUpdateTaskMachineUA

***** [ Registry ] *****

Key Found : HKCU\Software\Classes\pokki
Key Found : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Found : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Found : HKCU\Software\Mozilla\Extends
Key Found : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [quick_searchff@gmail.com]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [default_newtabff@gmail.com]
Key Found : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4F524A2D-5637-4300-76A7-7A786E7484D7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D8278076-BC68-4484-9233-6E7F1628B56C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4F524A2D-5637-4300-76A7-7A786E7484D7}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{D8278076-BC68-4484-9233-6E7F1628B56C}]
Key Found : HKU\.DEFAULT\Software\AskPartnerNetwork
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
Key Found : HKCU\Software\dt soft\daemon tools toolbar
Key Found : HKCU\Software\GlobalUpdate
Key Found : HKCU\Software\SavePass 1.1
Key Found : HKCU\Software\simplytech
Key Found : HKCU\Software\estdemin
Key Found : HKCU\Software\SavePass 1.1
Key Found : HKCU\Software\SavePass 1.1
Key Found : HKCU\Software\CinemaP-1.9cV03.09
Key Found : HKCU\Software\SavePass 1.1
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
Key Found : HKLM\SOFTWARE\dt soft\daemon tools toolbar
Key Found : HKLM\SOFTWARE\GlobalUpdate
Key Found : HKLM\SOFTWARE\SavePass 1.1
Key Found : HKLM\SOFTWARE\SupDp
Key Found : HKLM\SOFTWARE\SupTab
Key Found : HKLM\SOFTWARE\Trymedia Systems
Key Found : HKLM\SOFTWARE\mystartsearchSoftware
Key Found : HKLM\SOFTWARE\IHProtect
Key Found : HKLM\SOFTWARE\SavePass 1.1
Key Found : HKLM\SOFTWARE\SavePass 1.1
Key Found : HKLM\SOFTWARE\CinemaP-1.9cV03.09
Key Found : HKLM\SOFTWARE\SavePass 1.1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{74f1e872-8d6f-4cc7-58d6-c60d8dfe43ed}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CinemaP-1.9cV03.09
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
Key Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\AppDataLow\Software\Crossrider
Key Found : HKU\S-1-5-18\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.delta-homes.com/web/?type ... 61GP6RH&q={searchTerms}
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.mystartsearch.com/?type=hp&t ... 0_L61GP6RH
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... 0_L61GP6RH
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://search.delta-homes.com/web/?type ... 61GP6RH&q={searchTerms}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.mystartsearch.com/web/?type= ... 61GP6RH&q={searchTerms}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... 0_L61GP6RH
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.mystartsearch.com/?type=hp&t ... 0_L61GP6RH
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.mystartsearch.com/web/?type= ... 61GP6RH&q={searchTerms}
Data Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.delta-homes.com/web/?type ... 61GP6RH&q={searchTerms}
Data Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.mystartsearch.com/?type=hp&t ... 0_L61GP6RH
Data Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... 0_L61GP6RH
Data Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://search.delta-homes.com/web/?type ... 61GP6RH&q={searchTerms}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{059CBE87-FF27-4A69-B553-3FD340616B8E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Data Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D181664F-B595-407C-A509-BDE0AB3A4D2B}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{059CBE87-FF27-4A69-B553-3FD340616B8E}
Key Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Data Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Key Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
Key Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{D181664F-B595-407C-A509-BDE0AB3A4D2B}
Key Found : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Data Found : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.mystartsearch.com/?type=sc&t ... 0_L61GP6RH

***** [ Web browsers ] *****

[C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Found : user_pref("browser.newtab.url", "hxxp://www.delta-homes.com/newtab/?type=nt&ts=1437692958&z=b597c8f3b1612866a2cf4d6gbzac5m0q0teo2t7w9c&from=wpm07233&uid=MaxtorX6L300S0_L61GP6RH");
[C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Found : user_pref("browser.search.defaultenginename", "delta-homes");
[C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Found : user_pref("browser.search.selectedEngine", "delta-homes");
[C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Found : user_pref("browser.startup.homepage", "hxxp://www.mystartsearch.com/?type=hp&ts=1424041109&from=amt&uid=MaxtorX6L300S0_L61GP6RH");
[C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Found : user_pref("extensions.quick_start.enable_search1", false);
[C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Found : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [19757 bytes] ##########
# AdwCleaner v5.201 - Log vytvořen 26/07/2016 v 11:59:20
# Aktualizováno 30/06/2016 by ToolsLib
# Databáze : 2016-07-25.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (X86)
# Uživatelské jméno : Doma - DOMA-PC
# Spuštěno z : C:\Users\Doma\Desktop\adwcleaner_5.201.exe
# Nastavení : Sken
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****

Služba Nalezeno : LavasoftTcpService
Služba Nalezeno : WCAssistantService

***** [ Složky ] *****

Složka Nalezeno : C:\ProgramData\lavasoft\web companion
Složka Nalezeno : C:\ProgramData\Application Data\lavasoft\web companion
Složka Nalezeno : C:\Program Files\OLBPre
Složka Nalezeno : C:\Program Files\lavasoft\web companion
Složka Nalezeno : C:\Users\Doma\AppData\Roaming\lavasoft\web companion

***** [ Soubory ] *****

Soubor Nalezeno : C:\END
Soubor Nalezeno : C:\Windows\system32\lavasofttcpservice.dll
Soubor Nalezeno : C:\Windows\system32\LavasoftTcpServiceOff.ini
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
Soubor Nalezeno : C:\Users\Doma\Desktop\MyPC Backup.lnk
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\searchplugins\yahoo-lavasoft.xml
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage-journal
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage-journal
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_st.chatango.com_0.localstorage
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_wlogin.icq.com_0.localstorage
Soubor Nalezeno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal

***** [ DLL ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****

Zástupce Infikováno : C:\Users\Doma\Desktop\WarThunder.lnk ( hxxp://mmotraffic.com/catalog/goplay/10 ... 8e8b95f718 )
Zástupce Infikováno : C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk ( hxxp://mmotraffic.com/catalog/goplay/10 ... 8e8b95f718 )
Zástupce Infikováno : C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk ( hxxp://mmotraffic.com/catalog/goplay/10 ... 8e8b95f718 )

***** [ Naplánované úlohy ] *****

Úloha Nalezeno : LaunchPreSignup

***** [ Registry ] *****

Klíč Nalezeno : HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Application Hosting
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Klíč Nalezeno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Klíč Nalezeno : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
Klíč Nalezeno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}
Klíč Nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}
Klíč Nalezeno : HKCU\Software\PRODUCTSETUP
Klíč Nalezeno : HKCU\Software\csastats
Klíč Nalezeno : HKLM\SOFTWARE\Lavasoft\Web Companion
Klíč Nalezeno : HKLM\SOFTWARE\FutureGames
Klíč Nalezeno : HKLM\SOFTWARE\mtcaMyciloP
Klíč Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OLBPre
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Klíč Nalezeno : HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
Klíč Nalezeno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\PRODUCTSETUP
Klíč Nalezeno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\csastats
Klíč Nalezeno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
Klíč Nalezeno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\SavePass 1.1
Klíč Nalezeno : HKU\S-1-5-18\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\45B71F1875D5E58488CC6F2DD0665B0E
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Installer\Features\45B71F1875D5E58488CC6F2DD0665B0E
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Installer\Products\45B71F1875D5E58488CC6F2DD0665B0E
Klíč Nalezeno : HKLM\SOFTWARE\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\45B71F1875D5E58488CC6F2DD0665B0E
Klíč Nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E
Data Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://www.yahoo.com/?fr=vmn&type=vmn_ ... 0620__yaie
Data Nalezeno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://www.yahoo.com/?fr=vmn&type=vmn_ ... 0620__yaie
Klíč Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}
Klíč Nalezeno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}
Hodnota Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Web Companion]
Hodnota Nalezeno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Windows\CurrentVersion\Run [Web Companion]
Klíč Nalezeno : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting

***** [ Prohlížeče ] *****

[C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] Nalezeno : user_pref("browser.newtab.url", "hxxps://www.yahoo.com/?fr=vmn&type=vmn__webcompa__1_0__ya__hp_WCYID10270__160620__yaff");
[C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] Nalezeno : user_pref("browser.startup.homepage", "hxxps://www.yahoo.com/?fr=vmn&type=vmn__webcompa__1_0__ya__hp_WCYID10270__160620__yaff");
[C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] Nalezeno : user_pref("browser.newtabpage.url", "hxxps://www.yahoo.com/?fr=vmn&type=vmn__webcompa__1_0__ya__hp_WCYID10270__160620__yaff");

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [19585 bytů] - [06/09/2015 17:55:17]
C:\AdwCleaner\AdwCleaner[C2].txt - [6466 bytů] - [20/10/2015 22:17:41]
C:\AdwCleaner\AdwCleaner[S1].txt - [29921 bytů] - [06/09/2015 17:53:14]
C:\AdwCleaner\AdwCleaner[S2].txt - [6969 bytů] - [20/10/2015 20:54:52]
C:\AdwCleaner\AdwCleaner[S3].txt - [6969 bytů] - [20/10/2015 22:12:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [30141 bytů] ##########

[elrodos]

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware

Nic takového mi to během instalace nenabídlo.

[elrodos]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 26.7.2016
Čas skenování: 12:22
Protokol:
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.07.26.03
Databáze rootkitů: v2016.05.27.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Doma

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 315160
Uplynulý čas: 35 min, 14 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 2
PUP.Optional.MyPCBackup, C:\Program Files\OLBPre\OLBPre.exe, 3768, , [1f7c46e28f0ba29443e83c545da401ff]
PUP.Optional.MyPCBackup, C:\Program Files\OLBPre\OLBPre.exe, 3388, , [1f7c46e28f0ba29443e83c545da401ff]

Moduly: 2
PUP.Optional.PreBackup, C:\Program Files\OLBPre\LinqBridge.dll, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\LinqBridge.dll, , [55469d8b198196a0682a614f13f0f40c],

Klíče registru: 16
PUP.Optional.MyPCBackup, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\OLBPre, , [95063bed1a8031057a01450748bc29d7],
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\mtcaMyciloP, , [4853c068eab0a690e1a143b3f70cdf21],
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\TRACING\caMyciloP_RASAPI32, , [6e2d3bed9505e056927041b56e95f010],
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\TRACING\caMyciloP_RASMANCS, , [8b1018104a50d462bc469a5c93708c74],
PUP.Optional.OneSystemCare, HKLM\SOFTWARE\MICROSOFT\TRACING\OneSystemCare_RASAPI32, , [fe9d7dab42584fe778e5a03f8380dc24],
PUP.Optional.OneSystemCare, HKLM\SOFTWARE\MICROSOFT\TRACING\OneSystemCare_RASMANCS, , [9a012efa6931eb4b1f3e2cb3a0631ee2],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\MICROSOFT\TRACING\pcspeedup_RASAPI32, , [eead9d8bf8a270c62723eef7ec178c74],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\MICROSOFT\TRACING\pcspeedup_RASMANCS, , [871462c6efabca6c3b0f06df6a990ef2],
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{25E8B6C1-E3A9-4905-B3B4-D18CB7845943}, , [17840a1e5f3b270f058bca2dff04748c],
PUP.Optional.MyPCBackup, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6385867A-6CF0-447B-AC88-C8F3DFF0A7E9}, , [0b9049df2773f343cdfdce21689b33cd],
PUP.Optional.MyPCBackup, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\LaunchPreSignup, , [237898906238003634fbffae29da41bf],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}, , [b0eb41e71b7fcb6b96c5924dea19ce32],
PUP.Optional.Linkury.ACMB1, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Application Hosting, , [8d0e2cfc06942214cd151cda1ae9ca36],
PUP.Optional.InstallCore, HKU\S-1-5-21-1777567604-985344441-3338332800-1000\SOFTWARE\csastats, , [e5b662c69307bb7b35bcaa50de25bb45],
PUP.Optional.YahooVNM, HKU\S-1-5-21-1777567604-985344441-3338332800-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}, , [e0bbea3edcbe112551df8a33e61dd32d],
PUP.Optional.ASK, HKU\S-1-5-21-1777567604-985344441-3338332800-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{72712C8F-B519-4216-917F-CAF5101C638A}, , [dac18e9a1486eb4b2103a24f90734eb2],

Hodnoty registru: 8
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{25E8B6C1-E3A9-4905-B3B4-D18CB7845943}|Path, \temp_178c9aa9-94b6-47a2-b8ca-8afb829f5a6b-2, , [17840a1e5f3b270f058bca2dff04748c]
PUP.Optional.MyPCBackup, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6385867A-6CF0-447B-AC88-C8F3DFF0A7E9}|Path, \LaunchPreSignup, , [0b9049df2773f343cdfdce21689b33cd]
PUP.Optional.MyPCBackup, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\OLBPRE|DisplayName, MyPC Backup , , [3f5c94943c5eb284b2ed24be4eb58a76]
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}|DisplayName, globalupdate Helper, , [b0eb41e71b7fcb6b96c5924dea19ce32]
PUP.Optional.YahooVNM, HKU\S-1-5-21-1777567604-985344441-3338332800-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}|URL, https://search.yahoo.com/search?fr=vmn& ... 0__yaie&p={searchTerms}, , [e0bbea3edcbe112551df8a33e61dd32d]
PUP.Optional.YahooVNM, HKU\S-1-5-21-1777567604-985344441-3338332800-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}|TopResultURL, https://search.yahoo.com/search?fr=vmn& ... 0__yaie&p={searchTerms}, , [abf077b1afeb36008aa6526b46bd7a86]
PUP.Optional.ASK, HKU\S-1-5-21-1777567604-985344441-3338332800-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{72712C8F-B519-4216-917F-CAF5101C638A}|URL, http://www.search.ask.com/web?tpid=ORJ- ... &pf=V7&p2=^BBE^OSJ000^YY^CZ&gct=sb&itbv=12.12.2.83&apn_uid=5C5A2B0A-5F81-458C-95DB-084C7FBF5E80&apn_ptnrs=BBE&apn_dtid=^OSJ000^YY^CZ&apn_dbr=Launcher.exe_0_22.0.1471.70&doi=2014-07-15&trgb=IE&q={searchTerms}&psv=&pt=tb, , [dac18e9a1486eb4b2103a24f90734eb2]
PUP.Optional.ASK, HKU\S-1-5-21-1777567604-985344441-3338332800-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{72712C8F-B519-4216-917F-CAF5101C638A}|FaviconURL, http://www.search.ask.com/favicon.ico, , [36659d8b7b1fcb6b7da704ed19eab44c]

Data registru: 1
PUP.Optional.YahooVNM, HKU\S-1-5-21-1777567604-985344441-3338332800-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0620__yaie, Dobré: (www.google.com), Špatné: (https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0620__yaie),,[c6d59296396193a352afa5d4e91b58a8]

Složky: 3
PUP.Optional.PreBackup, C:\Program Files\OLBPre, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\log, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.UpdateAdmin, C:\Windows\Installer\{81F17B54-5D57-485E-88CC-F6D20D66B5E0}, , [4655ef39aaf046f03870bc245da6ae52],

Soubory: 19
PUP.Optional.MyPCBackup, C:\Program Files\OLBPre\OLBPre.exe, , [1f7c46e28f0ba29443e83c545da401ff],
PUP.Optional.MyPCBackup, C:\Program Files\OLBPre\uninst.exe, , [95063bed1a8031057a01450748bc29d7],
PUP.Optional.MyPCBackup, C:\Users\Doma\Desktop\MyPC Backup.lnk, , [08936fb9f1a9152153d765488d76fd03],
PUP.Optional.MyPCBackup, C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk, , [1b809d8b049696a0de4ecde0a65d8080],
PUP.Optional.MyPCBackup, C:\Windows\System32\Tasks\LaunchPreSignup, , [9ffcfc2c4d4d30068ca1614c47bced13],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\OLBPre.exe.config, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\aff.jdat, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\brand.jdat, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\de_DE.mo, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\es_ES.mo, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\fr_FR.mo, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\it_IT.mo, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\LinqBridge.dll, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\pt_PT.mo, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\state.jdat, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.PreBackup, C:\Program Files\OLBPre\log\TASK_SCHEDULER.log, , [55469d8b198196a0682a614f13f0f40c],
PUP.Optional.UpdateAdmin, C:\Windows\Installer\{81F17B54-5D57-485E-88CC-F6D20D66B5E0}\icon.ico, , [4655ef39aaf046f03870bc245da6ae52],
PUP.Optional.HDApp, C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage, , [7b202503207aaa8c76976e7d9073bb45],
PUP.Optional.HDApp, C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage-journal, , [405bb375afeb7db9db324e9def14ed13],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[elrodos]

Lavasoft-Ad-Aware není zrovna dobrý antivir..

Vůbec nevím co to je

[jaro3]

antivir , jaký máš?

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Cleaning (Vymazat)“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

. spusť znovu Malwarebytes' Anti-Malware a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Open Report “ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[elrodos]

antivir , jaký máš?

Microsoft security essential

[jaro3]

tak pokračuj.

[elrodos]

# AdwCleaner v5.005 - Logfile created 06/09/2015 at 17:55:17
# Updated 31/08/2015 by Xplode
# Database : 2015-09-04.4 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x86)
# Username : Doma - DOMA-PC
# Running from : C:\Users\Doma\Downloads\adwcleaner_5.005.exe
# Option : Cleaning
# Support : hxxp://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : globalUpdate
[-] Service Deleted : globalUpdatem
[-] Service Deleted : WindowsMangerProtect

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\globalUpdate
[-] Folder Deleted : C:\Program Files\SavePass 1.1
[-] Folder Deleted : C:\Program Files\miuitab
[!] Folder Not Deleted : C:\Program Files\SavePass 1.1
[-] Folder Deleted : C:\Program Files\CinemaP-1.9cV03.09
[-] Folder Deleted : C:\Program Files\nVidia GeForce MX440 AGP8X Windows 7!
[!] Folder Not Deleted : C:\Program Files\SavePass 1.1
[-] Folder Deleted : C:\ProgramData\IHProtectUpDate
[-] Folder Deleted : C:\Users\Doma\AppData\Local\globalUpdate
[-] Folder Deleted : C:\Users\Doma\AppData\Local\VideoConverter
[-] Folder Deleted : C:\Users\Doma\AppData\Local\FileViewPro
[-] Folder Deleted : C:\Users\Doma\AppData\Local\pokki
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\Solvusoft
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\VOPackage
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\DTToolbar@toolbarnet.com
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\faststartff@gmail.com
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\quick_searchff@gmail.com
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\default_newtabff@gmail.com
[!] Folder Not Deleted : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com
[!] Folder Not Deleted : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com
[-] Folder Deleted : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\Extensions\AVJYFVOD75109374@HCDE39471360.com

***** [ Files ] *****

[-] File Deleted : C:\Program Files\Mozilla Firefox\browser\searchplugins\delta-homes.xml
[-] File Deleted : C:\Program Files\Mozilla Firefox\browser\searchplugins\mystartsearch.xml
[-] File Deleted : C:\Windows\system32\roboot.exe
[-] File Deleted : C:\Windows\system32\drivers\{20915d52-1148-4fc2-8788-129eeb5e27dd}Gw.sys

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : globalUpdateUpdateTaskMachineCore
[-] Task Deleted : globalUpdateUpdateTaskMachineUA
[-] Task Deleted : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-10_user
[-] Task Deleted : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-11
[-] Task Deleted : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-4
[-] Task Deleted : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-10_user
[-] Task Deleted : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-11
[-] Task Deleted : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-4
[-] Task Deleted : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-10_user
[-] Task Deleted : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-11
[-] Task Deleted : 2566a48a-b564-48d2-a1fc-1f0d9dd5ac8b-4
[-] Task Deleted : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-10_user
[-] Task Deleted : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-11
[-] Task Deleted : 2a53781e-2dd9-452d-aa7d-5ebb5756b7bb-4
[-] Task Deleted : 4eafeb29-800e-4c0c-b826-caa72a9d2631-2
[-] Task Deleted : 4eafeb29-800e-4c0c-b826-caa72a9d2631-5
[-] Task Deleted : 4eafeb29-800e-4c0c-b826-caa72a9d2631-5_user
[-] Task Deleted : globalUpdateUpdateTaskMachineCore
[-] Task Deleted : globalUpdateUpdateTaskMachineUA

***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Classes\pokki
[-] Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
[-] Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
[-] Key Deleted : HKCU\Software\Mozilla\Extends
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [quick_searchff@gmail.com]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [default_newtabff@gmail.com]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4F524A2D-5637-4300-76A7-7A786E7484D7}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D8278076-BC68-4484-9233-6E7F1628B56C}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4F524A2D-5637-4300-76A7-7A786E7484D7}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{D8278076-BC68-4484-9233-6E7F1628B56C}]
[-] Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKCU\Software\dt soft\daemon tools toolbar
[-] Key Deleted : HKCU\Software\GlobalUpdate
[-] Key Deleted : HKCU\Software\SavePass 1.1
[-] Key Deleted : HKCU\Software\simplytech
[-] Key Deleted : HKCU\Software\estdemin
[!] Key Not Deleted : HKCU\Software\SavePass 1.1
[!] Key Not Deleted : HKCU\Software\SavePass 1.1
[-] Key Deleted : HKCU\Software\CinemaP-1.9cV03.09
[!] Key Not Deleted : HKCU\Software\SavePass 1.1
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\dt soft\daemon tools toolbar
[-] Key Deleted : HKLM\SOFTWARE\GlobalUpdate
[-] Key Deleted : HKLM\SOFTWARE\SavePass 1.1
[-] Key Deleted : HKLM\SOFTWARE\SupDp
[-] Key Deleted : HKLM\SOFTWARE\SupTab
[-] Key Deleted : HKLM\SOFTWARE\Trymedia Systems
[-] Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
[-] Key Deleted : HKLM\SOFTWARE\IHProtect
[!] Key Not Deleted : HKLM\SOFTWARE\SavePass 1.1
[!] Key Not Deleted : HKLM\SOFTWARE\SavePass 1.1
[-] Key Deleted : HKLM\SOFTWARE\CinemaP-1.9cV03.09
[!] Key Not Deleted : HKLM\SOFTWARE\SavePass 1.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{74f1e872-8d6f-4cc7-58d6-c60d8dfe43ed}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CinemaP-1.9cV03.09
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[!] Key Not Deleted : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\AppDataLow\Software\Crossrider
[!] Key Not Deleted : HKU\S-1-5-18\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{059CBE87-FF27-4A69-B553-3FD340616B8E}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D181664F-B595-407C-A509-BDE0AB3A4D2B}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{059CBE87-FF27-4A69-B553-3FD340616B8E}
[!] Key Not Deleted : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[!] Key Not Deleted : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
[-] Data Restored : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[!] Key Not Deleted : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
[!] Key Not Deleted : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{D181664F-B595-407C-A509-BDE0AB3A4D2B}
[!] Key Not Deleted : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []

***** [ Web browsers ] *****

[-] [C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Deleted : user_pref("browser.newtab.url", "hxxp://www.delta-homes.com/newtab/?type=nt&ts=1437692958&z=b597c8f3b1612866a2cf4d6gbzac5m0q0teo2t7w9c&from=wpm07233&uid=MaxtorX6L300S0_L61GP6RH");
[-] [C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultenginename", "delta-homes");
[-] [C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "delta-homes");
[-] [C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxp://www.mystartsearch.com/?type=hp&ts=1424041109&from=amt&uid=MaxtorX6L300S0_L61GP6RH");
[-] [C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Deleted : user_pref("extensions.quick_start.enable_search1", false);
[-] [C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] [Preference] Deleted : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [19505 bytes] ##########
# AdwCleaner v5.201 - Log vytvořen 27/07/2016 v 12:51:13
# Aktualizováno 30/06/2016 by ToolsLib
# Databáze : 2016-07-26.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (X86)
# Uživatelské jméno : Doma - DOMA-PC
# Spuštěno z : C:\Users\Doma\Desktop\adwcleaner_5.201.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****

[-] Služba Smazáno : LavasoftTcpService
[-] Služba Smazáno : WCAssistantService

***** [ Složky ] *****

[-] Složka Smazáno : C:\ProgramData\lavasoft\web companion
[#] Složka Smazáno : C:\ProgramData\Application Data\lavasoft\web companion
[-] Složka Smazáno : C:\Program Files\OLBPre
[-] Složka Smazáno : C:\Program Files\lavasoft\web companion

***** [ Soubory ] *****

[-] Soubor Smazáno : C:\Windows\system32\lavasofttcpservice.dll
[-] Soubor Smazáno : C:\Windows\system32\LavasoftTcpServiceOff.ini
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
[-] Soubor Smazáno : C:\Users\Doma\Desktop\MyPC Backup.lnk
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\searchplugins\yahoo-lavasoft.xml
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage-journal
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage-journal
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_st.chatango.com_0.localstorage
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_wlogin.icq.com_0.localstorage
[-] Soubor Smazáno : C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****

[-] Zástupce Vyléčeno : C:\Users\Doma\Desktop\WarThunder.lnk
[-] Zástupce Vyléčeno : C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk
[-] Zástupce Vyléčeno : C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk

***** [ Naplánované úlohy ] *****

[-] Úloha Smazáno : LaunchPreSignup

***** [ Registry ] *****

[-] Klíč Smazáno : HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Application Hosting
[-] Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
[-] Klíč Smazáno : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
[-] Klíč Smazáno : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}
[-] Klíč Smazáno : HKCU\Software\PRODUCTSETUP
[-] Klíč Smazáno : HKCU\Software\csastats
[-] Klíč Smazáno : HKLM\SOFTWARE\Lavasoft\Web Companion
[-] Klíč Smazáno : HKLM\SOFTWARE\FutureGames
[-] Klíč Smazáno : HKLM\SOFTWARE\mtcaMyciloP
[-] Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OLBPre
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
[-] Klíč Smazáno : HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
[-] Klíč Smazáno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\SavePass 1.1
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\45B71F1875D5E58488CC6F2DD0665B0E
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\45B71F1875D5E58488CC6F2DD0665B0E
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\45B71F1875D5E58488CC6F2DD0665B0E
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Obnoveno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Hodnota Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Web Companion]
[#] Hodnota Smazáno : HKU\S-1-5-21-1777567604-985344441-3338332800-1000\Software\Microsoft\Windows\CurrentVersion\Run [Web Companion]

***** [ Prohlížeče ] *****

[-] [C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] Smazáno : user_pref("browser.newtab.url", "hxxps://www.yahoo.com/?fr=vmn&type=vmn__webcompa__1_0__ya__hp_WCYID10270__160620__yaff");
[-] [C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] Smazáno : user_pref("browser.startup.homepage", "hxxps://www.yahoo.com/?fr=vmn&type=vmn__webcompa__1_0__ya__hp_WCYID10270__160620__yaff");
[-] [C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\m78v8gr7.default\prefs.js] Smazáno : user_pref("browser.newtabpage.url", "hxxps://www.yahoo.com/?fr=vmn&type=vmn__webcompa__1_0__ya__hp_WCYID10270__160620__yaff");

*************************

:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [28132 bytů] - [06/09/2015 17:55:17]
C:\AdwCleaner\AdwCleaner[C2].txt - [6466 bytů] - [20/10/2015 22:17:41]
C:\AdwCleaner\AdwCleaner[S1].txt - [30221 bytů] - [06/09/2015 17:53:14]
C:\AdwCleaner\AdwCleaner[S2].txt - [7338 bytů] - [20/10/2015 20:54:52]
C:\AdwCleaner\AdwCleaner[S3].txt - [16984 bytů] - [20/10/2015 22:12:38]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [28500 bytů] ##########

[elrodos]

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

Log mi po restartu vyskočil sám, ale nějak se mi nezdá ten jeho datum (dělal jsem ho dnes)