Zasekávajícíc se notebook

[kaja13fe]

Zdravím,
mám postarší notebook (HP Pavilion dv6, rok výroby 2010, systém x64, Windows 7), který se mi poslední dobou začal hrozně zasekávat. Vymazala jsem co jsem mohla, defragmentovala (pomocí Windows nástroje), ale potom to bylo ještě horší. Mohla bych poprosit o radu, co bych s ním měla udělat, aby fungoval alespoň trochu svižně na normální surfování po netu?
Mohlo by pomoct přeinstalování na Windows 10 nebo to bude spíše horší?
Předem díky za jakoukoliv radu.

[Reklama]

[Orcus]

Vlož log z HJT - viz můj podpis.

[kaja13fe]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:09:20, on 13.11.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18057)

FIREFOX: 23.0.1 (cs)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files (x86)\DigitalPersona\Bin\DpAgent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Users\Kája\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Kája\Stažené soubory\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.autocompletepro.com/?si=7148&bi=400
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.autocompletepro.com/?si=7148&bi=400
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.autocompletepro.com/?si=7148&bi=400
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: DigitalPersona Personal Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DpAgent] C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN238583X905PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Kája\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_D35BFB71940DA182A3CEF65A09776DCE] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - Startup: Dropbox.lnk = ?
O4 - Startup: Sledovat výstrahy inkoustu - HP Deskjet 3050A J611 series (Síť).lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: SmartPrint - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe
O23 - Service: Creative Centrale Media Server (CTUPnPSv) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Creative Centrale\CTUPnPSv.exe
O23 - Service: @C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IePlugin Services (IePluginServices) - Unknown owner - C:\ProgramData\IePluginServices\PluginService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files (x86)\WinPcap\rpcapd.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Služba zařazování tisku (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update Brass Search - Unknown owner - C:\Program Files (x86)\Brass Search\updateBrassSearch.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Unknown owner - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15677 bytes

[jerabina]

Ahoj, vítej na fóru PC-HELP!

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

===================================================

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

===================================================

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

===================================================

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

[kaja13fe]

# AdwCleaner v5.020 - Logfile created 14/11/2015 at 11:51:06
# Updated 13/11/2015 by Xplode
# Database : 2015-11-13.3 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Kája
# Running from : C:\Users\Kája\Stažené soubory\AdwCleaner.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : IePluginServices
Service Found : WindowsMangerProtect

***** [ Folders ] *****

Folder Found : C:\Program Files\Zrychleni Pocitace
Folder Found : C:\Program Files (x86)\AutocompletePro
Folder Found : C:\Program Files (x86)\ICQ6Toolbar
Folder Found : C:\Program Files (x86)\registry mechanic
Folder Found : C:\Program Files (x86)\SupTab
Folder Found : C:\Program Files (x86)\DownlOad keeper
Folder Found : C:\Program Files (x86)\DownlOad keeper
Folder Found : C:\ProgramData\ICQ\ICQToolbar
Folder Found : C:\ProgramData\IePluginServices
Folder Found : C:\ProgramData\WindowsMangerProtect
Folder Found : C:\ProgramData\WinterSoft
Folder Found : C:\ProgramData\DownlOad keeper
Folder Found : C:\ProgramData\DownlOad keeper
Folder Found : C:\ProgramData\66d3f177c26c77fd
Folder Found : C:\Users\Kája\AppData\Local\PackageAware
Folder Found : C:\Users\Kája\AppData\Local\WinnerDM
Folder Found : C:\Users\Kája\AppData\Roaming\GrabPro
Folder Found : C:\Users\Kája\AppData\Roaming\registry mechanic
Folder Found : C:\Users\Kája\AppData\Roaming\SupTab
Folder Found : C:\Users\Kája\AppData\Roaming\Uniblue
Folder Found : C:\Users\Kája\AppData\Roaming\Dorrible
Folder Found : C:\Users\Kája\AppData\Roaming\ProgSense
Folder Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\FoxTab
Folder Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\ICQToolbarData
Folder Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\Extensions\ffxtlbr@Facemoods.com.xpi
Folder Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\Extensions\support@predictad.com
Folder Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\Extensions\yua8v3i@lbeso.com
Folder Found : C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Folder Found : C:\Users\Zbytek\AppData\Roaming\ProgSense

***** [ Files ] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mystartsearch.xml
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage-journal
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.metrolyrics.com_0.localstorage
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.metrolyrics.com_0.localstorage-journal
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ad.turn.com_0.localstorage
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ad.turn.com_0.localstorage-journal
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cdn.turn.com_0.localstorage
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cdn.turn.com_0.localstorage-journal
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage-journal
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.yourtango.com_0.localstorage
File Found : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.yourtango.com_0.localstorage-journal
File Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-1.xml
File Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-2.xml
File Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-3.xml
File Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-4.xml
File Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-5.xml
File Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-6.xml
File Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin.xml
File Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\Extensions\ffxtlbr@Facemoods.com.xpi
File Found : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\user.js
File Found : C:\Windows\SysNative\roboot64.exe

***** [ DLL ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Found : HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel [Homepage]
Key Found : HKLM\SOFTWARE\Classes\AppID\AutocompletePro.DLL
Key Found : HKLM\SOFTWARE\Classes\Applications\iMesh_V11_en_Setup.exe
Key Found : HKLM\SOFTWARE\Classes\Applications\iMeshV11.exe
Key Found : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO
Key Found : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\defdhglnppeioeflggkmglipcecffkhk
Key Found : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7CD74AFF-3433-4E34-92E2-D98DFDB30754}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{21FA44EF-376D-4D53-9B0F-8A89D3229068}]
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AutocompletePro
Key Found : HKCU\Software\AutocompleteProBHO
Key Found : HKCU\Software\ICQ\ICQToolbar
Key Found : HKCU\Software\Imesh
Key Found : HKCU\Software\Speedchecker Limited
Key Found : HKCU\Software\SupHpUISoft
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : HKCU\Software\WINNERDM
Key Found : HKCU\Software\ProgSense
Key Found : HKCU\Software\DownLite
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Found : HKLM\SOFTWARE\SupDp
Key Found : HKLM\SOFTWARE\SupTab
Key Found : HKLM\SOFTWARE\supWindowsMangerProtect
Key Found : HKLM\SOFTWARE\supWPM
Key Found : HKLM\SOFTWARE\Uniblue
Key Found : HKLM\SOFTWARE\mystartsearchSoftware
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AutocompletePro3_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C1A27135-69EB-8D44-7358-34727DD7B820}
Key Found : HKU\.DEFAULT\Software\IBUpdaterService
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.autocompletepro.com/?si=7148&bi=400
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://search.autocompletepro.com/?si=7148&bi=400
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://search.autocompletepro.com/?si=7148&bi=400
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Default_Page_URL] - hxxp://search.autocompletepro.com/?si=7148&bi=400
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search] - hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}
Data Found : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://search.autocompletepro.com/?si=7148&bi=400
Data Found : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page] - hxxp://search.autocompletepro.com/?si=7148&bi=400
Data Found : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)] - hxxp://search.autocompletepro.com/?si=7148&bi=400&q=%s
Data Found : HKCU\Software\Microsoft\Internet Explorer\SearchURI [(Default)] - hxxp://search.autocompletepro.com/?si=7148&bi=400&q=%s
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Found : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.mystartsearch.com/?type=sc&t ... S_5VJ3Y6BS

***** [ Web browsers ] *****

[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("browser.search.defaultengine", "Ask.com");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("browser.search.defaultenginename", "mystartsearch");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("browser.search.order.1", "Ask.com");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("extensions.crossrider.bic", "1396c7179ae6bad8cc2bca261979e558");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("extensions.facemoods.first_time", false);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.allowSendURL", false);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.displayHistory", false);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.engineVerified", true);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.facebookSmilesAddonHiddenPacks", "");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.firstTbRun", false);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.geolastmodified", 1347893195);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.hiddenElements", "itb_options itb_people itb_zoom_in itb_zoom_out itb_zoom_default itb_games itb_highlight");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.history", "Game%20of%20Thrones||round||budu%20na%20tebe%20%C4%8Dekat||gogo||grooveshark||svchost.exe||faustball||faustbal||krav%C3%AD%20hora||Rad%C5%A1i%20si%20to%20p%C3%AD%C5%A1[...]
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.icqgeo", 42);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.installTime", "1346107238");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.newtab_state", "1");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.numberOfSearches", 0);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.previousFFVersion", "15.0.1");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.searchOnDrop", false);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.showAds", false);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.showPc", false);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.skip_default_search", "no");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.suggestions", false);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.uninstStatSent", true);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.uniqueID", "129313398012931360951293200453039");
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.usageStatstTimestamp", 1347893199);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.voucherHideClicks", 0);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.voucherRedeemClicks", 0);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.voucherWasShown", 0);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Found : user_pref("icqtoolbar.xmlLanguage", "cs");
[C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : defdhglnppeioeflggkmglipcecffkhk
[C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : defdhglnppeioeflggkmglipcecffkhk

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [19911 bytes] ##########

[kaja13fe]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 14.11.2015
Čas skenování: 12:20
Protokol:
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2015.11.14.02
Databáze rootkitů: v2015.11.13.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Kája

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 415549
Uplynulý čas: 33 min, 54 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 34
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\TYPELIB\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\INTERFACE\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\INTERFACE\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [ea00017c1f6cf640e85cf65d26dd8c74],
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\mystartsearchSoftware, , [fdedfe7f305b73c32127810f46bc5ea2],
PUP.Optional.WPM, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, , [7f6bef8e612a87af9915217c28db44bc],
PUP.Optional.SupTab, HKLM\SOFTWARE\WOW6432NODE\supWPM, , [4aa0037a137883b3b0dc850f4bb8ee12],
PUP.Optional.Complitly, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\defdhglnppeioeflggkmglipcecffkhk, , [bb2f7eff5635ce687a80c5a0c241d729],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21111111-1111-1111-1111-110011501160}, , [e604abd2395251e59afd5714d52e25db],
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [5892601db6d546f0261e89cad42fb848],
PUP.Optional.SupTab, HKLM\SOFTWARE\WOW6432NODE\SUPDP, , [18d23f3eaae1b680d5b57b1944bf06fa],
PUP.Optional.SupTab, HKLM\SOFTWARE\WOW6432NODE\SUPTAB, , [30baabd23f4cf1450784abe9020112ee],
PUP.Optional.IEPluginServices, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginServices, , [f8f2017c206bad891d665d1a8e7541bf],
PUP.Optional.BrassSearch, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Brass Search, , [5298720b800bf046d4694819de2540c0],
PUP.Optional.WindowsMangerProtect, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WindowsMangerProtect, , [e505c3ba4c3f0f277e8d2b72946fdc24],
PUP.Optional.IEPluginServices, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\IePluginServices, , [15d59fde89025adcc4be7afdf310a55b],
PUP.Optional.WindowsMangerProtect, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, , [a7436518315a32043eccf9a415ee9e62],
PUP.Optional.1ClickDownload, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\1ClickDownload, , [28c2cfae62293600f70dcb91dd26738d],
PUP.Optional.SpeedChecker, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\Speedchecker Limited, , [27c3df9eb9d20f2766bdd9cd17ecbd43],
PUP.Optional.WebSearches.ShrtCln, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\SupHpUISoft, , [dd0db2cbf69539fd7a64c4d18c76ce32],
PUP.Optional.CrossRider, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [f3f757266b204de90166d89246bd748c],
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [0edc433aa1ea7bbb51f278db9370a45c],
PUP.Optional.ICQ, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6552C7DD-90A4-4387-B795-F8F96747DE19}, , [d3179ce1b7d490a690d1d0a7689b619f],
PUP.Optional.PCSpeedUp, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\SPEEDCHECKER LIMITED\PC Speed Up, , [be2cd8a596f55adc2217b9cd946f7e82],
PUP.Optional.SavingsSidekick, HKU\S-1-5-21-3469165684-4060942089-2706562166-1003\SOFTWARE\APPDATALOW\SOFTWARE\Savings Sidekick, , [0bdfc2bbe8a3be78eff64547b44fe11f],

Hodnoty registru: 12
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, mystartsearch, , [ea00017c1f6cf640e85cf65d26dd8c74]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}, , [b733bac375160c2ad90a76123fc3e21e]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21111111-1111-1111-1111-110011501160}|AppName, Savings Sidekick-bg.exe, , [e604abd2395251e59afd5714d52e25db]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, mystartsearch, , [5892601db6d546f0261e89cad42fb848]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}, , [f6f4e499b6d571c5bc275533db277f81]
PUP.Optional.PremierOpinion, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{6E19037A-12E3-4295-8915-ED48BC341614}, C:\Program Files (x86)\RelevantKnowledge, , [b1390e6f7e0d181eb07d7a0eef147987]
PUP.Optional.SupTab, HKLM\SOFTWARE\WOW6432NODE\SUPDP|dir, C:\Program Files (x86)\SupTab, , [18d23f3eaae1b680d5b57b1944bf06fa]
PUP.Optional.SupTab, HKLM\SOFTWARE\WOW6432NODE\SUPTAB|ptid, sky, , [30baabd23f4cf1450784abe9020112ee]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, mystartsearch, , [0edc433aa1ea7bbb51f278db9370a45c]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}, , [bf2b750888034aecbb27b7d1b74b60a0]
PUP.Optional.ICQ, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6552C7DD-90A4-4387-B795-F8F96747DE19}|URL, http://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd, , [d3179ce1b7d490a690d1d0a7689b619f]
PUP.Optional.ICQ, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6552C7DD-90A4-4387-B795-F8F96747DE19}|FaviconURL, http://c.icq.com/favicon.ico, , [4c9e5726cdbe2a0ce37e6b0cf40f2bd5]

Data registru: 14
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&t ... S_5VJ3Y6BS, Dobré: (iexplore.exe), Špatné: (C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&t ... S_5VJ3Y6BS),,[48a2daa3e1aa6ec891b960eaf90b51af]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}),,[f3f78eeff398a2949f8bb09acb3954ac]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS),,[57936c11c7c4bf77cb5f68e215ef35cb]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS),,[5a904a33e6a5d95d9595dd6d93713ac6]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}),,[b6349ce15f2c70c634f692b8768e6997]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Dobré: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Špatné: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[45a57eff4b40999df8ee3e129d67f808]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&t ... S_5VJ3Y6BS, Dobré: (iexplore.exe), Špatné: (C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&t ... S_5VJ3Y6BS),,[7575037aa9e250e63515d07a80840000]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}),,[3baff38aa2e9d561f832c288a262eb15]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS),,[32b8bebf2e5de05683a757f3b054b947]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS),,[3dad96e73d4e58de1d0d2e1cdc28bd43]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}),,[9555a6d71774fa3c0a202327b74d23dd]
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Dobré: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Špatné: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[5b8f2c51414a0333e10596bae12310f0]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS),,[6882fe7fabe02e08989334167094cc34]
PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-3469165684-4060942089-2706562166-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS, Dobré: (www.google.com), Špatné: (http://www.mystartsearch.com/?type=hp&t ... S_5VJ3Y6BS),,[10da89f4f5966ec8e546ac9ea95b0df3]

Složky: 60
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\icons, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.DownloadKeeper, C:\ProgramData\DownlOad keeper, , [10da3944c1ca8bab2c381f4755ad26da],
PUP.Optional.DownloadKeeper, C:\Program Files (x86)\DownlOad keeper, , [13d7522b1d6e241268fd600625dd7c84],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.IEPluginServices, C:\ProgramData\IePluginServices, , [9a50a6d76328c86e507e24476d95e020],
PUP.Optional.IEPluginServices, C:\ProgramData\IePluginServices\update, , [9a50a6d76328c86e507e24476d95e020],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\chrome, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\chrome\content, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\defaults, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\defaults\preferences, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.SupTab, C:\Users\Kája\AppData\Roaming\SupTab, , [707a7c016e1d59dd995089f1b34f728e],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\skin, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\skin\image, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\img, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\js, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\en-US, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\es-419, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\es-ES, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-BE, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-CA, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-CH, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-FR, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-LU, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\it-CH, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\it-IT, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\pl, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\pt, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\pt-BR, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\ru, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\ru-MO, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\tr-TR, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\vi-VI, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\zh-CN, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\zh-TW, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.WPM, C:\ProgramData\WindowsMangerProtect, , [618934496c1f350128cc2955e0227789],
PUP.Optional.WPM, C:\ProgramData\WindowsMangerProtect\update, , [618934496c1f350128cc2955e0227789],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\defaults, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\defaults\preferences, , [06e40e6f266574c2f4134a38b9493cc4],

Soubory: 157
PUP.Optional.MultiPlug, C:\Program Files (x86)\DownlOad keeper\i_Cul.tlb, , [29c17ffe2368d3635363b1890ff3be42],
PUP.Optional.IEPluginService, C:\Program Files (x86)\SupTab\RSHP.exe, , [eefc88f54b401b1b313def384fb23dc3],
PUP.Optional.SkyTech, C:\Program Files (x86)\SupTab\SearchProtect64.dll, , [5c8e8eef6f1c79bd059e46e4728fe11f],
PUP.Optional.PCPerformer, C:\Windows\System32\roboot64.exe, , [42a891ecbbd0f640ca2b1716916f619f],
PUP.Optional.MyStartSearch.ShrtCln, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mystartsearch.xml, , [7b6f65184d3e22147fc76828f111b44c],
PUP.Optional.ICQPlugin, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-1.xml, , [bd2d6c11b6d5f244cc97c2b5c3404fb1],
PUP.Optional.ICQPlugin, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-2.xml, , [9e4c96e71d6e32047be87afd47bc8080],
PUP.Optional.ICQPlugin, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-3.xml, , [6981e895e4a7e6509fc4d2a5e91abb45],
PUP.Optional.ICQPlugin, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-4.xml, , [608ab1cc8ffc0b2bf370d7a03bc87e82],
PUP.Optional.ICQPlugin, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-5.xml, , [2bbf27565a31f54100639cdbd03356aa],
PUP.Optional.ICQPlugin, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-6.xml, , [43a70b72a2e953e301628ceb7390de22],
PUP.Optional.ICQPlugin, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin.xml, , [f6f4a4d93f4c49edfa69accb0bf83bc5],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\bg.html, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\contentscript.js, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\manifest.json, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\icons\128.png, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\icons\16.png, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\icons\256.png, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\icons\32.png, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\icons\48.png, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\icons\64.png, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.Complitly, C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.0_0\icons\Thumbs.db, , [4b9f4934f7943402bbef7ae22bd76a96],
PUP.Optional.DownloadKeeper, C:\ProgramData\DownlOad keeper\rhsBhA.dat, , [10da3944c1ca8bab2c381f4755ad26da],
PUP.Optional.DownloadKeeper, C:\Program Files (x86)\DownlOad keeper\i_Cul.dat, , [13d7522b1d6e241268fd600625dd7c84],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\voucher.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\BG\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\CZ\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\DE\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\EN\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\ES\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\FR\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\HE\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\IT\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\RU\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\SK\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR\Configuration.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR\OptionDlg.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR\RegionalSettings.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\ProgramData\ICQ\ICQToolbar\XML\TR\UserInterface.xml, , [1eccf489593237ffc003521908fa0000],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\config.xml, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\Icons.bmp, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\icq6Toolbar.ico, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\ICQUnToolbar.exe, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\logo_small.gif, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\ServiceStarter.exe, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\short.wav, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\Version.txt, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\voucher.bmp, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.ICQToolbar, C:\Program Files (x86)\ICQ6Toolbar\voucher2.bmp, , [c327a7d6f9928bab71543e2d44bedd23],
PUP.Optional.IEPluginServices, C:\ProgramData\IePluginServices\update\conf, , [9a50a6d76328c86e507e24476d95e020],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\chrome.manifest, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\install.rdf, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\chrome\content\browserOverlay.xul, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\chrome\content\options.js, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\chrome\content\options.xul, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\chrome\content\utils.js, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.PredictAd, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\extensions\support@predictad.com\defaults\preferences\predictad.js, , [4e9c66174843f1455fcbfa7a57ab5ca4],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\BHOEnabler.exe, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\ient.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\install.data, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\Loader32.exe, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\msvcp110.dll, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\msvcr110.dll, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\uninstall.exe, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\WindowsSupportDll32.dll, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\WindowsSupportDll64.dll, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\skin\bk_shadow.png, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\skin\btn.png, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\skin\close.png, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\skin\main.xml, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\skin\image\ck_box.png, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\skin\image\ck_check.png, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\data.html, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\indexIE.html, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\indexIE8.html, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\main.css, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\ver.txt, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\img\google_trends.png, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\img\icon128.png, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\img\icon16.png, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\img\icon48.png, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\img\loading.gif, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\img\logo32.ico, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\js\common.js, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\js\ga.js, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\js\jquery-1.11.0.min.js, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\js\jquery.autocomplete.js, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\js\js.js, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\js\library.js, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\js\xagainit-ie8.js, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\js\xagainit2.0.js, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\en-US\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\es-419\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\es-ES\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-BE\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-CA\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-CH\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-FR\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\fr-LU\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\it-CH\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\it-IT\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\pl\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\pt\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\pt-BR\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\ru\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\ru-MO\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\tr-TR\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\vi-VI\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\zh-CN\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.SupTab, C:\Program Files (x86)\SupTab\web\_locales\zh-TW\messages.json, , [ca20a4d9d1ba04327b6f26544fb355ab],
PUP.Optional.WPM, C:\ProgramData\WindowsMangerProtect\update\conf, , [618934496c1f350128cc2955e0227789],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome.manifest, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\install.rdf, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content\browserOverlay.xul, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content\options.js, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content\options.xul, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content\utils.js, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.PredictAd, C:\Program Files (x86)\AutocompletePro\support@predictad.com\defaults\preferences\predictad.js, , [06e40e6f266574c2f4134a38b9493cc4],
PUP.Optional.MyStartSearch, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js, Dobré: (), Špatné: (user_pref("browser.search.defaultenginename", "mystartsearch");), ,[dd0dcdb0aeddf640bc921c5bf31117e9]
PUP.Optional.CrossRider, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js, Dobré: (), Špatné: (user_pref("extensions.crossrider.bic", "1396c7179ae6bad8cc2bca261979e558");), ,[ac3ec6b71d6e44f2bae9294e21e30000]
PUP.Optional.FaceMoods, C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js, Dobré: (), Špatné: (user_pref("extensions.facemoods.first_time", false);), ,[8763c4b97a113afc9c2992e58b796b95]

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[jerabina]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

Spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[kaja13fe]

# AdwCleaner v5.021 - Logfile created 19/11/2015 at 19:27:36
# Updated 14/11/2015 by Xplode
# Database : 2015-11-19.3 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Kája - KÁJUŠKY
# Running from : C:\Users\Kája\Stažené soubory\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : IePluginServices
[-] Service Deleted : WindowsMangerProtect

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\Zrychleni Pocitace
[-] Folder Deleted : C:\Program Files (x86)\AutocompletePro
[-] Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar
[-] Folder Deleted : C:\Program Files (x86)\registry mechanic
[-] Folder Deleted : C:\Program Files (x86)\SupTab
[-] Folder Deleted : C:\Program Files (x86)\DownlOad keeper
[!] Folder Not Deleted : C:\Program Files (x86)\DownlOad keeper
[-] Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
[-] Folder Deleted : C:\ProgramData\IePluginServices
[-] Folder Deleted : C:\ProgramData\WindowsMangerProtect
[-] Folder Deleted : C:\ProgramData\WinterSoft
[-] Folder Deleted : C:\ProgramData\DownlOad keeper
[!] Folder Not Deleted : C:\ProgramData\DownlOad keeper
[-] Folder Deleted : C:\ProgramData\66d3f177c26c77fd
[-] Folder Deleted : C:\Users\Kája\AppData\Local\PackageAware
[-] Folder Deleted : C:\Users\Kája\AppData\Local\WinnerDM
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\GrabPro
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\registry mechanic
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\SupTab
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\Uniblue
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\Dorrible
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\ProgSense
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\FoxTab
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\ICQToolbarData
[#] Folder Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\Extensions\ffxtlbr@Facemoods.com.xpi
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\Extensions\support@predictad.com
[-] Folder Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\Extensions\yua8v3i@lbeso.com
[-] Folder Deleted : C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
[-] Folder Deleted : C:\Users\Zbytek\AppData\Roaming\ProgSense

***** [ Files ] *****

[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mystartsearch.xml
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.metrolyrics.com_0.localstorage
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.metrolyrics.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ad.turn.com_0.localstorage
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ad.turn.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cdn.turn.com_0.localstorage
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cdn.turn.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.yourtango.com_0.localstorage
[-] File Deleted : C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.yourtango.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-1.xml
[-] File Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-2.xml
[-] File Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-3.xml
[-] File Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-4.xml
[-] File Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-5.xml
[-] File Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin-6.xml
[-] File Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\searchplugins\icqplugin.xml
[-] File Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\Extensions\ffxtlbr@Facemoods.com.xpi
[-] File Deleted : C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\user.js
[-] File Deleted : C:\Windows\SysNative\roboot64.exe

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Value Deleted : HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel [Homepage]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\AutocompletePro.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\Applications\iMesh_V11_en_Setup.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\Applications\iMeshV11.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO
[-] Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\defdhglnppeioeflggkmglipcecffkhk
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7CD74AFF-3433-4E34-92E2-D98DFDB30754}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{21FA44EF-376D-4D53-9B0F-8A89D3229068}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
[-] Key Deleted : HKCU\Software\1ClickDownload
[-] Key Deleted : HKCU\Software\AutocompletePro
[-] Key Deleted : HKCU\Software\AutocompleteProBHO
[-] Key Deleted : HKCU\Software\ICQ\ICQToolbar
[-] Key Deleted : HKCU\Software\Imesh
[-] Key Deleted : HKCU\Software\Speedchecker Limited
[-] Key Deleted : HKCU\Software\SupHpUISoft
[-] Key Deleted : HKCU\Software\YahooPartnerToolbar
[-] Key Deleted : HKCU\Software\WINNERDM
[-] Key Deleted : HKCU\Software\ProgSense
[-] Key Deleted : HKCU\Software\DownLite
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
[-] Key Deleted : HKLM\SOFTWARE\SupDp
[-] Key Deleted : HKLM\SOFTWARE\SupTab
[-] Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
[-] Key Deleted : HKLM\SOFTWARE\supWPM
[-] Key Deleted : HKLM\SOFTWARE\Uniblue
[-] Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AutocompletePro3_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C1A27135-69EB-8D44-7358-34727DD7B820}
[-] Key Deleted : HKU\.DEFAULT\Software\IBUpdaterService
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
[!] Data Not Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchURI [(Default)]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []

***** [ Web browsers ] *****

[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultengine", "Ask.com");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultenginename", "mystartsearch");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("browser.search.order.1", "Ask.com");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("extensions.crossrider.bic", "1396c7179ae6bad8cc2bca261979e558");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("extensions.facemoods.first_time", false);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.allowSendURL", false);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.displayHistory", false);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.engineVerified", true);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.facebookSmilesAddonHiddenPacks", "");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.firstTbRun", false);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.geolastmodified", 1347893195);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options itb_people itb_zoom_in itb_zoom_out itb_zoom_default itb_games itb_highlight");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.history", "Game%20of%20Thronesroundbudu%20na%20tebe%20%C4%8Dekatgogogroovesharksvchost.exefaustballfaustbalkrav%C3%AD%20horaRad%C5%A1i%20si%20to%20p%C3%AD%C5%A1[...]
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.icqgeo", 42);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.installTime", "1346107238");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_state", "1");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.previousFFVersion", "15.0.1");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.searchOnDrop", false);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.showAds", false);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.showPc", false);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.skip_default_search", "no");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.suggestions", false);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.uninstStatSent", true);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.uniqueID", "129313398012931360951293200453039");
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1347893199);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[-] [C:\Users\Kája\AppData\Roaming\Mozilla\Firefox\Profiles\6ixzy8kq.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
[-] [C:\Users\Kája\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : defdhglnppeioeflggkmglipcecffkhk
[-] [C:\Users\Zbytek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : defdhglnppeioeflggkmglipcecffkhk

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [19452 bytes] ##########

[kaja13fe]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 19.11.2015
Čas skenování: 19:33
Protokol:
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2015.11.19.04
Databáze rootkitů: v2015.11.14.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Kája

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 416162
Uplynulý čas: 40 min, 43 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 4
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Do karantény, [c31de59ae9a245f10c5c19413cc7f20e],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21111111-1111-1111-1111-110011501160}, Do karantény, [19c7a4dbcdbe21158f0f20525ba80cf4],
PUP.Optional.BrassSearch, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Brass Search, Do karantény, [4d938ff0b8d348eec282fe6aa75cd729],
PUP.Optional.SavingsSidekick, HKU\S-1-5-21-3469165684-4060942089-2706562166-1003\SOFTWARE\APPDATALOW\SOFTWARE\Savings Sidekick, Do karantény, [924e3748791271c5339ffc97748f8f71],

Hodnoty registru: 4
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, mystartsearch, Do karantény, [c31de59ae9a245f10c5c19413cc7f20e]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.mystartsearch.com/web/?type= ... VJ3Y6BS&q={searchTerms}, Do karantény, [fce4512e5d2e66d0e35119770cf6cf31]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21111111-1111-1111-1111-110011501160}|AppName, Savings Sidekick-bg.exe, Do karantény, [19c7a4dbcdbe21158f0f20525ba80cf4]
PUP.Optional.PremierOpinion, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{6E19037A-12E3-4295-8915-ED48BC341614}, C:\Program Files (x86)\RelevantKnowledge, Do karantény, [d808b0cfef9c76c0d052f69919ea926e]

Data registru: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Dobré: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Špatné: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Nahrazeno,[736d4738c1ca3ff7b9963b1f2dd78d73]

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[jaro3]

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“ , v okně na pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.