Prosím o kontrolu logu

Zpráva

imunk · #1 Příspěvek od **imunk** » 25 srp 2014 22:59

Dobrý večer, chcel by som poprosiť o kontrolu logu. Dnes som schytal vec s názvom "istartsurf", podarilo sa mi to z vyhľadávačov ako tak odstrániť (v IE mi to ešte zostalo ako doplnok, ktorý nejde vymazať), potom som cez SPY Hunter vyhľadával škodlivé objekty. Našlo mi ich asi 700 ale odstrániť mi ich nešlo kvôli tomu, že nie som registrovaný a pod. Potom som skúsil MBAM. Počítač nejak pomaly nejde, ale ak je počítač tými rôznymi vecami "zaprasený", istota je istota povyhadzovať to.

Log:
Malwarebytes Anti-Malware
http://www.malwarebytes.org

Scan Date: 25.8.2014
Scan Time: 23:40:52
Logfile: log.txt
Administrator: No

Version: 2.00.2.1012
Malware Database: v2014.08.25.05
Rootkit Database: v2014.08.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Munky

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 295598
Time Elapsed: 11 min, 40 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 23
PUP.Optional.OffersWizard.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\inethnfd, , [488188424932092d2c1a23cd5fa3a25e],
PUP.Optional.PlusHD.A, HKLM\SOFTWARE\HD-V1.9, , [577282481a61f93d46f0e810f2105ca4],
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\istartsurfSoftware, , [a0298d3d512a84b22f16aa3f0ef445bb],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE, , [4c7d5971ea91af870ed7f1fe44be926e],
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [8e3b5872d4a7f14551068aafc93b7789],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, , [d9f07a50a3d82214d72491bf31d3946c],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, , [d0f9ecde0d6ef73f5ca0f957d72d48b8],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPDP, , [32976466a8d3cb6b0d4028bf29d98e72],
PUP.Optional.Qone8, HKU\S-1-5-21-414406328-2375656959-3668132288-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [89403d8d621978be5bfb1c1d966e7f81],
PUP.Optional.PlusHD.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\HD-V1.9, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.GlobalUpdate.T, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\globalUpdate, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\globalUpdatem, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickCtrl.10, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\globalUpdate.Update3WebControl.4, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}, , [e2e79238007bd26463ca27b2c53d34cc],

Registry Values: 4
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE|path, C:\Program Files\globalUpdate\Update\GoogleUpdate.exe, , [4c7d5971ea91af870ed7f1fe44be926e]
PUP.Optional.FastStart.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|faststartff@gmail.com, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com, , [ccfd3d8d29521125ffea43094bb90af6]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\SUPDP|dir, C:\Program Files\SupTab, , [32976466a8d3cb6b0d4028bf29d98e72]
PUP.Optional.FastStart.A, HKU\S-1-5-21-414406328-2375656959-3668132288-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS|appid, faststartff@gmail.com, , [3c8d4486b5c61422f210b43f41c15da3]

Registry Data: 6
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1 ... 416GA6U5LX, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe http://www.istartsurf.com/?type=sc&ts=1 ... 416GA6U5LX),,[c405e6e426551521fb386f654abae61a]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.istartsurf.com/web/?type=ds& ... earchTerms}, Good: (http://www.google.com), Bad: (http://www.istartsurf.com/web/?type=ds& ... earchTerms}),,[517839917ffcc76f2009914330d4e11f]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.istartsurf.com/?type=hp&ts=1 ... 416GA6U5LX, Good: (http://www.google.com), Bad: (http://www.istartsurf.com/?type=hp&ts=1 ... 416GA6U5LX),,[02c7b7133e3d0630ed3aa13330d440c0]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.istartsurf.com/?type=hp&ts=1 ... 416GA6U5LX, Good: (http://www.google.com), Bad: (http://www.istartsurf.com/?type=hp&ts=1 ... 416GA6U5LX),,[f5d4b61404775dd9111ab222b153ff01]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[f4d599312358c175f054c11ee12314ec]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-414406328-2375656959-3668132288-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.istartsurf.com/?type=hp&ts=1 ... 416GA6U5LX, Good: (http://www.google.com), Bad: (http://www.istartsurf.com/?type=hp&ts=1 ... 416GA6U5LX),,[b4155f6bd4a7dd590622fed67f8504fc]

Folders: 69
PUP.Optional.OffersWizard.A, C:\Program Files\Common Files\Config, , [488188424932092d2c1a23cd5fa3a25e],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\include, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\include\tools, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\lib, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\module, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\pack, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\en, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\en-US, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\es, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\es-419, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr-BE, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr-CA, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr-CH, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr-LU, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\it, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\it-CH, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\pl, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\pt-BR, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\ru, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\ru-MO, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\tr, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\vi, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\zh-CN, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\zh-TW, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\defaults, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\defaults\preferences, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\Download, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\Install, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\Offline, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\Offline\{CB143152-39EF-4E9B-8651-DE5EB14087A3}, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.SupTab.A, C:\Program Files\SupTab, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\skin, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\en-US, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-419, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-ES, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-BE, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CA, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CH, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-FR, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-LU, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-CH, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-IT, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pl, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt-BR, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru-MO, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\tr-TR, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\vi-VI, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-CN, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-TW, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.IStartSurf.A, C:\Users\Munky\AppData\Roaming\istartsurf, , [0dbcfdcd116a46f026dbc61a22e0e41c],
PUP.Optional.IStartSurf.A, C:\Users\Munky\AppData\Roaming\istartsurf\log, , [0dbcfdcd116a46f026dbc61a22e0e41c],

Files: 166
PUP.Optional.Amonetize, C:\Users\Munky\AppData\Local\Temp\DivX.Web.Player.Installer__8420_il38370.exe, , [d7f2ccfef8833204a075abffbd4451af],
PUP.Optional.CrossRider.A, C:\Users\Munky\AppData\Local\Temp\nsu1861.tmp\Znhjbnc.exe, , [705913b708732d0984bd0745ea16e21e],
PUP.Optional.IStartSurf.A, C:\Program Files\Mozilla Firefox\browser\searchplugins\istartsurf.xml, , [6762a921cdae73c36614ffebc939817f],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\ad83e2d7-ed9f-4e69-99f9-df35540d578c-11, , [6f5a29a159229c9ae0007c73986af808],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\ad83e2d7-ed9f-4e69-99f9-df35540d578c-3, , [8e3b00ca42393df9924e727d34cebb45],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\ad83e2d7-ed9f-4e69-99f9-df35540d578c-6, , [6366b218bdbe83b3cd1326c949b9cf31],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\ad83e2d7-ed9f-4e69-99f9-df35540d578c-7, , [c60315b56f0c1f175c8436b94bb7ea16],
PUP.Optional.OffersWizard.A, C:\Program Files\Common Files\Config\ver.xml, , [488188424932092d2c1a23cd5fa3a25e],
PUP.Optional.OffersWizard.A, C:\Program Files\Common Files\Config\data.xml, , [488188424932092d2c1a23cd5fa3a25e],
PUP.Optional.OffersWizard.A, C:\Program Files\Common Files\Config\uninstinethnfd.exe, , [488188424932092d2c1a23cd5fa3a25e],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\ad83e2d7-ed9f-4e69-99f9-df35540d578c-11.job, , [864320aa25561e188be5af9f46be629e],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\ad83e2d7-ed9f-4e69-99f9-df35540d578c-3.job, , [715834962556b680cba5a7a77a8a6f91],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\ad83e2d7-ed9f-4e69-99f9-df35540d578c-6.job, , [04c58248e19a251195db2a243cc832ce],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\ad83e2d7-ed9f-4e69-99f9-df35540d578c-7.job, , [28a1c505cab190a60e62133b17ed8779],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job, , [dbee89416d0efc3a7e08f85638cc946c],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore, , [bf0a3298f4875bdb790e202e4cb84cb4],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job, , [6e5b854566151e18196f143acf356e92],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA, , [1dac9733572458ded8b188c6788ca858],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\42b7328a-c1eb-42b8-8783-e07ab422c41a.job, , [7a4f8644ef8c73c39c5d88c8dc285aa6],
PUP.Optional.CrossRider.A, C:\Windows\System32\Tasks\42b7328a-c1eb-42b8-8783-e07ab422c41a, , [a6233694f48792a4cc2e55fbb74d1ae6],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\1293297481.mxaddon, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\42b7328a-c1eb-42b8-8783-e07ab422c41a.exe, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\5bebbd91-3b00-4443-ae55-8bca760eef3f.crx, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\a246f641-c494-4e1c-a79f-5765b3ab90f1.crx, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\ad83e2d7-ed9f-4e69-99f9-df35540d578c.crx, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\bgNova.html, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\Interop.IWshRuntimeLibrary.dll, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\Newtonsoft.Json.dll, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\SuperSocket.ClientEngine.Common.dll, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\SuperSocket.ClientEngine.Core.dll, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\SuperSocket.ClientEngine.Protocol.dll, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\Uninstall.exe, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\utils.exe, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.PlusHD.A, C:\Program Files\HD-V1.9\WebSocket4Net.dll, , [18b146844b303afc54100bc94eb404fc],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome.manifest, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\install.rdf, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\index.html, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\quick_start.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\quick_start.xul, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\include\speed_dial.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\include\tools\about_blank_hook.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\include\tools\misc.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\include\tools\popup_image_helper.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\include\tools\urlrequestor.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\js.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\lib\doT.min.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery-2.1.0.min.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery.autocomplete.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\module\hotSearch.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\module\mostgrid.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\module\search.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\module\stat.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\pack\common.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\pack\ga.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\content\js\pack\xagainit.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\en\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\en-US\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\es\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\es-419\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr-BE\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr-CA\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr-CH\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\fr-LU\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\it\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\it-CH\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\pl\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\pt-BR\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\ru\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\ru-MO\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\tr\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\vi\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\zh-CN\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\locale\zh-TW\locale.properties, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin\default_logo.png, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin\googlelogo.png, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin\google_trends.png, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin\icon.png, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin\loading.gif, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin\logo.png, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin\newtab.ico, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin\simple.css, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\chrome\skin\style.css, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\defaults\preferences\fvd.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\defaults\preferences\preferences.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\addonmanager.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\aes.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\config.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\dialogs.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\last_tab.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\misc.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\properties.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\remoterequest.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\restoreprefs.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.FastStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\extensions\faststartff@gmail.com\modules\settings.js, , [29a0359566150e2838dcf4e27e849070],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\GoogleUpdate.exe, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleUpdateBroker.exe, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleUpdateHelper.msi, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleUpdateOnDemand.exe, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\goopdate.dll, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\goopdateres_en.dll, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\psmachine.dll, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\psuser.dll, , [e2e79238007bd26463ca27b2c53d34cc],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\GoogleCrashHandler.exe, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\GoogleUpdate.exe, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\GoogleUpdateBroker.exe, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\GoogleUpdateHelper.msi, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\GoogleUpdateOnDemand.exe, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\goopdate.dll, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\goopdateres_en.dll, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\npGoogleUpdate4.dll, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\psmachine.dll, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.GlobalUpdate.A, C:\Users\Munky\AppData\Local\Temp\comh.310139\psuser.dll, , [deeb9a3063184beb8bbee3f6867cca36],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\BHOEnabler.exe, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\msvcp110.dll, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\msvcr110.dll, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\RSHP.exe, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\WindowsSupportDll32.dll, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\WindowsSupportDll64.dll, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\skin\btn.png, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\skin\close.png, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\skin\main.xml, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\data.html, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\indexIE.html, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\indexIE8.html, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\main.css, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\ver.txt, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\google_trends.png, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\icon128.png, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\icon16.png, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\icon48.png, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\loading.gif, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\logo32.ico, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\common.js, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\ga.js, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\jquery-1.11.0.min.js, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\jquery.autocomplete.js, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\js.js, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\library.js, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\xagainit-ie8.js, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\xagainit2.0.js, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\en-US\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-419\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-ES\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-BE\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CA\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CH\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-FR\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-LU\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-CH\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-IT\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pl\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt-BR\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru-MO\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\tr-TR\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\vi-VI\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-CN\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-TW\messages.json, , [44853595710ae353beb5cc112ad8ff01],
PUP.Optional.IStartSurf.A, C:\Users\Munky\AppData\Roaming\istartsurf\UninstallManager.exe, , [0dbcfdcd116a46f026dbc61a22e0e41c],
PUP.Optional.IStartSurf.A, C:\Users\Munky\AppData\Roaming\istartsurf\log\UninstallManager_2014-08-25[22-24-31-346].log, , [0dbcfdcd116a46f026dbc61a22e0e41c],
PUP.Optional.QuickStart.A, C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\prefs.js, Good: (), Bad: (user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");), ,[983142881b601125e6b0759ae4219c64]

Physical Sectors: 0
(No malicious items detected)

(end)

#2 Příspěvek od **motji** » 25 srp 2014 23:02

Dobrý večer

pěkné

, vše smažte. Spy Hunter odinstalujte, je nanic

Stáhněte Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
-Uložte program na plochu a spusťte . Pak se zobrazí se licenční podminky - potvrďte start libovolnou klávesou.
- vytvoří se záloha a proběhne skenování.
Po skončení skenování na Vás vyběhne log (bude uložen v c:\JRT jako JRT.txt) - zkopírujte jej sem

Stáhněte AdwCleaner http://www.bleepingcomputer.com/download/adwcleaner/
-Uložte program na plochu a ukončete všechny spuštěné programy .
-spusťte AdwCleaner, klikněte na Scan a po dokončení skenu na Clean
- provede se oprava, restartuje se pc - (případně restartujte) a objeví se log C:\AdwCleaner\AdwCleaner.txt , obsah logu zkopírujte zde.

Pokračování ráno, dobrou noc

imunk · #3 Příspěvek od **imunk** » 25 srp 2014 23:05

Ok. Ďakujem pekne. Zatiaľ dobrú

#4 Příspěvek od **motji** » 26 srp 2014 07:53

Dobré ranko

Logy poprosím sem

imunk · #5 Příspěvek od **imunk** » 26 srp 2014 09:16

Dobré predpoludnie

JRT log:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x86
Ran by Munky on Łt 26.08.2014 at 10:01:29,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Users\Munky\AppData\Roaming\thinstall"

~~~ FireFox

Emptied folder: C:\Users\Munky\AppData\Roaming\mozilla\firefox\profiles\y1fkt69h.default\minidumps [1 files]

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 26.08.2014 at 10:04:33,30
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

imunk · #6 Příspěvek od **imunk** » 26 srp 2014 09:16

AdwCleaner log:
# AdwCleaner v3.308 - Report created 26/08/2014 at 10:10:26
# Updated 20/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Munky - MUNKY-PC
# Running from : C:\Users\Munky\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\globalUpdate
Folder Deleted : C:\Program Files\SupTab
Folder Deleted : C:\Users\Munky\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Munky\AppData\Roaming\istartsurf
Folder Deleted : C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\Extensions\faststartff@gmail.com
File Deleted : C:\Program Files\Mozilla Firefox\browser\searchplugins\istartsurf.xml
File Deleted : C:\Users\Munky\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Munky\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****

Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : Your File Updater
Task Deleted : 42b7328a-c1eb-42b8-8783-e07ab422c41a
Task Deleted : ad83e2d7-ed9f-4e69-99f9-df35540d578c-11
Task Deleted : ad83e2d7-ed9f-4e69-99f9-df35540d578c-3
Task Deleted : ad83e2d7-ed9f-4e69-99f9-df35540d578c-6
Task Deleted : ad83e2d7-ed9f-4e69-99f9-df35540d578c-7

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{90120000-00B0-0409-0000-0000000FF1CE}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v30.0 (sk)

[ File : C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default\prefs.js ]

Line Deleted : user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");
Line Deleted : user_pref("extensions.quick_start.enable_search1", false);
Line Deleted : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

-\\ Google Chrome v

[ File : C:\Users\Munky\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.icq.com/search/results.php?ch_id=osd&q={searchTerms}&icid=chrome
Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&affID=112555&tt=280612_7_&babsrc=SP_ss&mntrId=0eed16cb0000000000002c8158b6ab83
Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
Deleted [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1408 ... earchTerms}
Deleted [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1408 ... earchTerms}
Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh

*************************

AdwCleaner[R2].txt - [9419 octets] - [26/08/2014 10:06:58]
AdwCleaner[S2].txt - [8788 octets] - [26/08/2014 10:10:26]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [8848 octets] ##########

#7 Příspěvek od **motji** » 26 srp 2014 09:21

Pěkné

, ještě použijte mbam a pak vložte log
http://forum.viry.cz/viewtopic.php?f=29&t=137928

imunk · #8 Příspěvek od **imunk** » 26 srp 2014 13:35

Pekné v akom zmysle?

Tak 4-hodinová analýza diskov je hotová.

Log:
Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 26.8.2014
Scan Time: 10:24:32
Logfile: log.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.08.25.05
Rootkit Database: v2014.08.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Munky

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 890285
Time Elapsed: 4 hr, 9 min, 31 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 2
PUP.Optional.IEPluginService.A, C:\AdwCleaner\Quarantine\C\Program Files\SupTab\RSHP.exe.vir, , [05c4804a6f0cc17588d51a5b0bf66997],
Trojan.Agent.CK, C:\Users\Munky\Documents\RA´zne\keygen.exe, , [a52419b1b6c555e1c7ca8202fa0608f8],

Physical Sectors: 0
(No malicious items detected)

(end)

#9 Příspěvek od **motji** » 26 srp 2014 13:42

NO hezky zabordelizovaný pc, ale zdá se že ADW cleaner to zvládnul sám

. jak to ted s pc vypadá?

imunk · #10 Příspěvek od **imunk** » 26 srp 2014 13:56

Ide dobre. Aj o niečo rýchlejšie. Musím však povedať, že nejak extra pomalý nebol predtým, len som sa nemohol zbaviť úplne toho istartsurf-u

Takže už by to v prehliadačoch teda nemalo otravovať po týchto čisteniach, však? Teraz som ho rušne ešte z Chromu vymazal v správci vyhľadávania vo všeobecnom poli, ale mu to ešte asi ostalo v pamäti.

#11 Příspěvek od **motji** » 26 srp 2014 17:27

Ještě poprosím o log z Frstu http://forum.viry.cz/viewtopic.php?f=13&t=133100

imunk · #12 Příspěvek od **imunk** » 26 srp 2014 18:55

Áno, tu to je + do prílohy som hodil súbor addition.txt:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:26-08-2014
Ran by Munky (administrator) on MUNKY-PC on 26-08-2014 19:49:54
Running from C:\Users\Munky\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.3.132.0\BBSvc.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(gogo6, Inc.) C:\Program Files\gogo6\gogoCLIENT\gogoc.exe
() C:\Program Files\Guard-ICQ\GuardICQ.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
(National Instruments Corporation) C:\Windows\System32\lkads.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(National Instruments Corporation) C:\Program Files\National Instruments\MAX\nimxs.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
() C:\Program Files\Cyberlink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(National Instruments, Inc.) C:\Windows\System32\lkcitdl.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Program Files\Lenovo\OnekeyDM\OnekeyDM.exe
(Lenovo) C:\Program Files\Lenovo\VeriFace\PManage.exe
(National Instruments Corporation) C:\Windows\System32\lktsrv.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
() C:\Program Files\Guard-ICQ\GuardICQ.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarDriverAdapter_550vista.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
(iSkySoft) C:\Program Files\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(Google Inc.) C:\Users\Munky\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Munky\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Munky\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Munky\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Munky\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Munky\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.EXE
(forum.viry.cz) C:\Users\Munky\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-08-07] (Intel Corporation)
HKLM\...\Run: [MDS_Menu] => C:\Program Files\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe [218408 2008-11-15] (CyberLink Corp.)
HKLM\...\Run: [Lenovo SlideNav] => C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe [845640 2009-10-22] (Lenovo)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-30] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8120864 2009-12-17] (Realtek Semiconductor)
HKLM\...\Run: [OnekeyDM] => C:\Program Files\Lenovo\OnekeyDM\OnekeyDM.exe [335872 2009-03-27] ()
HKLM\...\Run: [VeriFaceManager] => C:\Program Files\Lenovo\VeriFace\PManage.exe [3122440 2010-01-11] (Lenovo)
HKLM\...\Run: [UpdateP2GShortCut] => C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-04] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] => C:\Program Files\Lenovo\Energy Management\utility.exe [4114288 2009-09-29] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] => C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064560 2009-09-29] (Lenovo (Beijing) Limited)
HKLM\...\Run: [Guard.Mail.ru.gui] => C:\Program Files\Guard-ICQ\GuardICQ.exe [1564368 2012-06-23] ()
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2219184 2011-01-12] (ESET)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM\...\Run: [NI Update Service] => C:\Program Files\National Instruments\Shared\Update Service\NIUpdateService.exe [3002976 2011-06-07] (National Instruments)
HKLM\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [1734144 2013-05-29] (iSkySoft)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [3816784 2014-07-21] (LogMeIn Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\.DEFAULT\...\RunOnce: [WLStart] => C:\Program Files\Windows Live\Installer\wlstart.exe [779600 2009-07-26] (Microsoft Corporation)
HKU\S-1-5-21-414406328-2375656959-3668132288-1003\...\Run: [Google Update] => C:\Users\Munky\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-06-23] (Google Inc.)
HKU\S-1-5-21-414406328-2375656959-3668132288-1003\...\Run: [NIRegistrationWizard] => C:\Program Files\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [846520 2010-06-21] ()
HKU\S-1-5-21-414406328-2375656959-3668132288-1003\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-414406328-2375656959-3668132288-1003\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-414406328-2375656959-3668132288-1003\...\Run: [Xvid] => C:\Program Files\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\S-1-5-21-414406328-2375656959-3668132288-1003\...\MountPoints2: {a9e0e003-0c72-11e2-8a0d-2c8158b6ab83} - F:\Autorun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation)
Startup: C:\Users\Munky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Orezávač obrazovky a spúšťač programu OneNote 2007.lnk
ShortcutTarget: Orezávač obrazovky a spúšťač programu OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: AccExtIco1 -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll ()
ShellIconOverlayIdentifiers: AccExtIco2 -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll ()
ShellIconOverlayIdentifiers: AccExtIco3 -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x86.dll ()
ShellIconOverlayIdentifiers: VeriFace Enc -> {771C7324-DA80-49D3-8017-753B0AF60951} => C:\windows\system32\IcnOvrly.dll ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Winsock: Catalog5 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [24280] (National Instruments Corporation)
Tcpip\..\Interfaces\{7C532DC6-3CDD-4E94-B885-ECEAF646A603}: [NameServer] 80.242.44.36,80.242.44.85

FireFox:
========
FF ProfilePath: C:\Users\Munky\AppData\Roaming\Mozilla\Firefox\Profiles\y1fkt69h.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Munky\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Munky\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nplv2011win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nplv90win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-06-25]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.azet.sk/"
CHR DefaultSearchURL: Default -> https://mail.google.com/mail/?extsrc=mailto&url=%s
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Munky\AppData\Local\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Munky\AppData\Local\Google\Chrome\Application\36.0.1985.143\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Munky\AppData\Local\Google\Chrome\Application\36.0.1985.143\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Munky\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\3.0.40624.0\npctrl.dll No File
CHR CustomProfile: C:\Users\Munky\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Munky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-06-23]
CHR Extension: (Hľadať v Google) - C:\Users\Munky\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-06-23]
CHR Extension: (GoPhoto.it) - C:\Users\Munky\AppData\Local\Google\Chrome\User Data\Default\Extensions\eaahdfjocacnglbpoiopljkpejmhekak [2013-01-20]
CHR Extension: (Peňaženka Google) - C:\Users\Munky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR Extension: (Gmail) - C:\Users\Munky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-06-23]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
CHR HKLM\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Users\Munky\AppData\Local\CRE\pacgpkgadgmibnhpdidcnfafllnmeomc.crx [2012-06-07]
CHR HKCU\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Users\Munky\AppData\Local\CRE\pacgpkgadgmibnhpdidcnfafllnmeomc.crx [2012-06-07]
CHR StartMenuInternet: Google Chrome - C:\Users\Munky\AppData\Local\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [582944 2009-07-01] (Broadcom Corporation.)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 CodeMeter.exe; C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe [2370448 2012-05-18] (WIBU-SYSTEMS AG)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [33584 2011-01-12] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [810144 2011-01-12] (ESET)
R2 gogoc; C:\Program Files\gogo6\gogoCLIENT\gogoc.exe [390472 2010-03-22] (gogo6, Inc.)
R2 Guard.Mail.ru; C:\Program Files\Guard-ICQ\GuardICQ.exe [1564368 2012-06-23] ()
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1905488 2014-07-21] (LogMeIn Inc.)
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [579400 2009-09-22] (Lenovo Group Limited)
R2 LkCitadelServer; C:\windows\system32\lkcitdl.exe [695136 2010-10-27] (National Instruments, Inc.)
R2 lkClassAds; C:\windows\system32\lkads.exe [46192 2011-06-14] (National Instruments Corporation)
R2 lkTimeSync; C:\windows\system32\lktsrv.exe [56952 2011-06-14] (National Instruments Corporation)
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [375056 2014-07-16] (LogMeIn, Inc.)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 mxssvr; C:\Program Files\National Instruments\MAX\nimxs.exe [12696 2011-06-14] (National Instruments Corporation)
R2 NIApplicationWebServer; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [50336 2011-05-27] (National Instruments Corporation)
R2 NIDomainService; C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe [362104 2011-06-14] (National Instruments Corporation)
S4 NILM License Manager; C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1427688 2010-08-02] (Macrovision Corporation)
R2 nimDNSResponder; C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [194224 2011-06-01] (National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [121032 2011-06-10] (National Instruments Corporation)
R2 niSvcLoc; C:\Program Files\National Instruments\Shared\NI WebServer\SystemWebServer.exe [50328 2011-05-27] (National Instruments Corporation)
R2 NITaggerService; C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe [676016 2011-06-14] (National Instruments Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19702048 2014-04-30] (NVIDIA Corporation)
S3 OpcEnum; C:\windows\system32\OpcEnum.exe [98304 2009-06-03] (OPC Foundation) [File not signed]
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [244904 2009-07-17] () [File not signed]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R2 cvintdrv; C:\windows\system32\Drivers\cvintdrv.sys [4096 2009-08-03] () [File not signed]
R1 dtsoftbus01; C:\windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-10-02] (DT Soft Ltd)
R2 eamonm; C:\windows\System32\DRIVERS\eamonm.sys [137144 2010-12-21] (ESET)
R1 ehdrv; C:\windows\System32\DRIVERS\ehdrv.sys [115008 2010-12-21] (ESET)
R3 enecirhid; C:\windows\System32\DRIVERS\enecirhid.sys [11776 2009-05-19] (ENE TECHNOLOGY INC.)
R3 enecirhidma; C:\windows\System32\DRIVERS\enecirhidma.sys [5632 2008-04-24] (ENE TECHNOLOGY INC.)
R2 epfwwfpr; C:\windows\System32\DRIVERS\epfwwfpr.sys [95384 2010-12-21] (ESET)
R1 funfrm; C:\windows\system32\Drivers\funfrm.sys [54800 2010-01-11] ()
S3 gogoTunnelDevice; C:\windows\System32\DRIVERS\gogotun.sys [21064 2010-03-22] (gogo6 Inc.)
R3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R0 LPCFilter; C:\windows\System32\DRIVERS\LPCFilter.sys [36208 2009-07-02] (COMPAL ELECTRONIC INC.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [17240 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad32v.sys [34080 2014-03-31] (NVIDIA Corporation)
R3 usbsmi; C:\windows\System32\DRIVERS\SMIksdrv.sys [171520 2009-08-21] (SMI)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-26 19:49 - 2014-08-26 19:50 - 00026918 _____ () C:\Users\Munky\Desktop\FRST.txt
2014-08-26 19:48 - 2014-08-26 19:50 - 00000000 ____D () C:\FRST
2014-08-26 19:45 - 2014-08-26 19:45 - 00112640 _____ (forum.viry.cz) C:\Users\Munky\Desktop\FRSTLauncher.exe
2014-08-26 19:44 - 2014-08-26 19:44 - 01095168 _____ (Farbar) C:\Users\Munky\Desktop\FRST.exe
2014-08-26 19:34 - 2014-08-26 19:34 - 00000168 _____ () C:\windows\setupact.log
2014-08-26 19:34 - 2014-08-26 19:34 - 00000000 ____H () C:\ProgramData\cm-lock
2014-08-26 19:34 - 2014-08-26 19:34 - 00000000 _____ () C:\windows\setuperr.log
2014-08-26 10:07 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\windows\system32\sqlite3.dll
2014-08-26 10:01 - 2014-08-26 10:01 - 00000000 ____D () C:\windows\ERUNT
2014-08-26 00:20 - 2014-08-26 17:27 - 00000000 ____D () C:\windows\Minidump
2014-08-25 21:00 - 2014-08-25 21:00 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-08-25 20:58 - 2014-08-26 00:18 - 00000000 ____D () C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-08-25 20:37 - 2014-08-25 20:37 - 00000000 ____D () C:\Program Files\HD-V1.9
2014-08-24 17:24 - 2014-08-24 17:24 - 00000000 ____D () C:\Users\Munky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2014-08-21 14:55 - 2014-08-21 14:55 - 00000684 _____ () C:\Users\Public\Desktop\YoWindow.lnk
2014-08-21 14:55 - 2014-08-21 14:55 - 00000000 ____D () C:\ProgramData\YoWindow
2014-08-21 14:55 - 2014-08-21 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YoWindow
2014-08-21 14:54 - 2014-08-21 14:54 - 00000000 ____D () C:\Program Files\YoWindow
2014-08-18 13:29 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2014-08-18 13:29 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2014-08-18 13:29 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2014-08-18 13:29 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2014-08-18 13:24 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-08-18 13:24 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-08-18 13:24 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-08-18 13:24 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-08-18 13:24 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-08-18 13:24 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-08-18 13:24 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-08-18 13:24 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-08-18 13:24 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-08-18 13:24 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-08-18 13:24 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-08-18 13:24 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-08-18 13:24 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-08-18 13:24 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-08-18 13:24 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-08-18 13:24 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-08-18 13:24 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-08-18 13:24 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-08-18 13:24 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-08-18 13:24 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-08-18 13:24 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-08-18 13:24 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-08-18 13:24 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-08-18 13:24 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-08-18 13:24 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-08-18 13:24 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-08-18 13:24 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-08-18 13:24 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-08-18 13:24 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-08-18 13:24 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-08-18 13:24 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2014-08-18 13:24 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-08-18 13:24 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2014-08-18 13:24 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2014-08-18 13:23 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-08-18 13:19 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2014-08-18 13:19 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-08-18 13:19 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-08-18 13:19 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2014-08-18 13:17 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-08-18 13:17 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-08-18 13:17 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-08-16 12:48 - 2014-08-16 13:02 - 00000000 ___HD () C:\windows\msdownld.tmp
2014-08-16 12:25 - 2014-08-16 12:25 - 00000000 __SHD () C:\Users\Munky\AppData\Local\EmieUserList
2014-08-16 12:25 - 2014-08-16 12:25 - 00000000 __SHD () C:\Users\Munky\AppData\Local\EmieSiteList
2014-08-15 17:58 - 2014-08-15 18:08 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-08-15 17:58 - 2014-08-15 18:06 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-09 13:31 - 2014-08-09 13:31 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-09 13:30 - 2014-08-09 13:29 - 00272808 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2014-08-09 13:29 - 2014-08-09 13:29 - 00175528 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2014-08-09 13:29 - 2014-08-09 13:29 - 00175528 _____ (Oracle Corporation) C:\windows\system32\java.exe
2014-08-09 13:29 - 2014-08-09 13:29 - 00096680 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2014-08-09 13:29 - 2014-08-09 13:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-03 17:54 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-08-03 17:54 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-08-03 17:54 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-08-03 17:54 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2014-08-03 17:54 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2014-08-03 17:54 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-08-03 17:54 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-08-03 17:53 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-08-03 17:53 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-07-29 22:07 - 2014-07-02 19:39 - 00609240 _____ (NVIDIA Corporation) C:\windows\system32\nvStreaming.exe
2014-07-29 21:58 - 2014-07-02 22:54 - 24198088 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-07-29 21:58 - 2014-07-02 22:54 - 15296456 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-07-29 21:58 - 2014-07-02 22:54 - 11283344 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-07-29 21:58 - 2014-07-02 22:54 - 11222048 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-07-29 21:58 - 2014-07-02 22:54 - 10681176 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-07-29 21:58 - 2014-07-02 22:54 - 03988952 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-07-29 21:58 - 2014-07-02 22:54 - 01054552 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3234052.dll
2014-07-29 21:58 - 2014-07-02 22:54 - 00907552 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3234052.dll
2014-07-29 21:58 - 2014-07-02 22:54 - 00907096 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-07-29 21:58 - 2014-07-02 22:54 - 00869152 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-07-27 23:07 - 2014-07-27 23:07 - 00000000 ____D () C:\Users\Munky\Documents\Rôzne

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-26 19:50 - 2014-08-26 19:49 - 00026918 _____ () C:\Users\Munky\Desktop\FRST.txt
2014-08-26 19:50 - 2014-08-26 19:48 - 00000000 ____D () C:\FRST
2014-08-26 19:48 - 2009-07-14 06:34 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-26 19:48 - 2009-07-14 06:34 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-26 19:45 - 2014-08-26 19:45 - 00112640 _____ (forum.viry.cz) C:\Users\Munky\Desktop\FRSTLauncher.exe
2014-08-26 19:44 - 2014-08-26 19:44 - 01095168 _____ (Farbar) C:\Users\Munky\Desktop\FRST.exe
2014-08-26 19:44 - 2013-12-04 18:50 - 00000546 _____ () C:\windows\Tasks\MATLAB R2013b Startup Accelerator.job
2014-08-26 19:41 - 2010-01-01 11:11 - 01714400 _____ () C:\windows\system32\PerfStringBackup.INI
2014-08-26 19:39 - 2012-07-01 19:27 - 00000938 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-26 19:38 - 2010-01-11 01:34 - 01504065 _____ () C:\windows\WindowsUpdate.log
2014-08-26 19:35 - 2014-04-28 21:50 - 00000000 ____D () C:\Users\Munky\AppData\Local\LogMeIn Hamachi
2014-08-26 19:34 - 2014-08-26 19:34 - 00000168 _____ () C:\windows\setupact.log
2014-08-26 19:34 - 2014-08-26 19:34 - 00000000 ____H () C:\ProgramData\cm-lock
2014-08-26 19:34 - 2014-08-26 19:34 - 00000000 _____ () C:\windows\setuperr.log
2014-08-26 19:34 - 2012-07-01 19:27 - 00000934 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-26 19:34 - 2010-01-11 01:57 - 14035987 _____ () C:\FaceProv.log
2014-08-26 19:34 - 2010-01-11 01:55 - 00000000 ____D () C:\ProgramData\VeriFace
2014-08-26 19:34 - 2010-01-11 01:50 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-08-26 19:34 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-08-26 17:27 - 2014-08-26 00:20 - 00000000 ____D () C:\windows\Minidump
2014-08-26 17:27 - 2012-06-23 11:27 - 00001080 _____ () C:\Users\Munky\Desktop\Cyberlink Power2Go.lnk
2014-08-26 17:17 - 2012-06-23 13:03 - 00000962 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-414406328-2375656959-3668132288-1003UA.job
2014-08-26 16:32 - 2012-06-23 11:59 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-08-26 10:01 - 2014-08-26 10:01 - 00000000 ____D () C:\windows\ERUNT
2014-08-26 09:55 - 2014-06-20 13:03 - 00000000 ____D () C:\Users\Munky\AppData\Local\Adobe
2014-08-26 00:20 - 2012-06-23 13:06 - 00002434 _____ () C:\Users\Munky\Desktop\Google Chrome.lnk
2014-08-26 00:18 - 2014-08-25 20:58 - 00000000 ____D () C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-08-25 22:29 - 2012-06-29 10:25 - 00001088 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-08-25 22:29 - 2012-06-23 11:28 - 00001413 _____ () C:\Users\Munky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-25 22:28 - 2012-06-29 10:25 - 00001100 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-25 22:17 - 2012-06-23 13:03 - 00000910 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-414406328-2375656959-3668132288-1003Core.job
2014-08-25 21:00 - 2014-08-25 21:00 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-08-25 20:58 - 2014-07-22 15:24 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-08-25 20:37 - 2014-08-25 20:37 - 00000000 ____D () C:\Program Files\HD-V1.9
2014-08-24 17:24 - 2014-08-24 17:24 - 00000000 ____D () C:\Users\Munky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
2014-08-21 15:00 - 2012-09-16 14:14 - 00000000 ____D () C:\Users\Munky\AppData\Roaming\YoWindow
2014-08-21 14:55 - 2014-08-21 14:55 - 00000684 _____ () C:\Users\Public\Desktop\YoWindow.lnk
2014-08-21 14:55 - 2014-08-21 14:55 - 00000000 ____D () C:\ProgramData\YoWindow
2014-08-21 14:55 - 2014-08-21 14:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YoWindow
2014-08-21 14:54 - 2014-08-21 14:54 - 00000000 ____D () C:\Program Files\YoWindow
2014-08-19 12:21 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\Microsoft.NET
2014-08-18 13:42 - 2014-05-06 15:32 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-08-18 13:39 - 2010-01-01 11:19 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-18 13:38 - 2013-08-15 16:54 - 00000000 ____D () C:\windows\system32\MRT
2014-08-18 13:32 - 2012-06-26 11:49 - 96303304 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-08-18 13:02 - 2012-06-23 11:27 - 00000000 ____D () C:\Users\Munky
2014-08-18 13:02 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\wfp
2014-08-18 13:00 - 2012-06-23 13:04 - 00000000 ____D () C:\Users\Munky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-18 13:00 - 2012-06-23 11:27 - 00000000 ____D () C:\Users\Munky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-08-18 13:00 - 2010-01-01 18:48 - 00000000 ____D () C:\windows\system32\XPSViewer
2014-08-18 13:00 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\MUI
2014-08-18 13:00 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-08-18 12:58 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\registration
2014-08-18 12:56 - 2012-06-23 16:20 - 00000000 ____D () C:\Users\Munky\AppData\Roaming\Skype
2014-08-16 20:07 - 2012-06-23 12:41 - 00000000 ____D () C:\Users\Munky\AppData\Roaming\ICQ
2014-08-16 13:02 - 2014-08-16 12:48 - 00000000 ___HD () C:\windows\msdownld.tmp
2014-08-16 12:25 - 2014-08-16 12:25 - 00000000 __SHD () C:\Users\Munky\AppData\Local\EmieUserList
2014-08-16 12:25 - 2014-08-16 12:25 - 00000000 __SHD () C:\Users\Munky\AppData\Local\EmieSiteList
2014-08-15 18:08 - 2014-08-15 17:58 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-08-15 18:06 - 2014-08-15 17:58 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-09 13:31 - 2014-08-09 13:31 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-09 13:31 - 2013-10-18 22:42 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-09 13:29 - 2014-08-09 13:30 - 00272808 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2014-08-09 13:29 - 2014-08-09 13:29 - 00175528 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2014-08-09 13:29 - 2014-08-09 13:29 - 00175528 _____ (Oracle Corporation) C:\windows\system32\java.exe
2014-08-09 13:29 - 2014-08-09 13:29 - 00096680 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2014-08-09 13:29 - 2014-08-09 13:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-09 13:29 - 2012-08-31 14:23 - 00000000 ____D () C:\Program Files\Java
2014-08-07 03:43 - 2014-08-18 13:17 - 00412160 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-08-07 03:39 - 2014-08-18 13:17 - 00302592 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-08-05 09:20 - 2012-06-25 20:46 - 00231584 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2014-08-01 01:16 - 2014-08-18 13:24 - 00307384 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-07-29 22:08 - 2014-05-27 20:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-07-29 22:08 - 2010-01-11 01:37 - 00000000 ____D () C:\Temp
2014-07-29 22:07 - 2014-03-11 22:43 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-29 21:49 - 2014-05-27 20:08 - 00000000 ____D () C:\Users\Munky\AppData\Local\NVIDIA
2014-07-27 23:08 - 2011-12-01 17:19 - 00000000 ____D () C:\Users\Munky\Documents\Životopisy & žiadosti
2014-07-27 23:07 - 2014-07-27 23:07 - 00000000 ____D () C:\Users\Munky\Documents\Rôzne
2014-07-27 21:48 - 2012-06-25 21:03 - 00000000 ____D () C:\Users\Munky\AppData\Roaming\uTorrent
2014-07-27 15:47 - 2012-07-27 16:26 - 00000000 ____D () C:\Users\Munky\AppData\Roaming\vlc

Some content of TEMP:
====================
C:\Users\Munky\AppData\Local\Temp\Quarantine.exe
C:\Users\Munky\AppData\Local\Temp\setup.exe
C:\Users\Munky\AppData\Local\Temp\SHSetup.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-414406328-2375656959-3668132288-1003Core.job => C:\Users\Munky\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-414406328-2375656959-3668132288-1003UA.job => C:\Users\Munky\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\MATLAB R2013b Startup Accelerator.job => C:\Program Files\MATLAB\R2013b\bin\win32\MATLABStartupAccelerator.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: ESET NOD32 Antivirus 4.2 (Enabled - Up to date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AS: ESET NOD32 Antivirus 4.2 (Enabled - Up to date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Munky\Desktop" je 218 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#13 Příspěvek od **motji** » 26 srp 2014 19:04

Tento program znáte?
C:\Program Files\National Instruments

imunk · #14 Příspěvek od **imunk** » 26 srp 2014 19:07

Áno. Súčasťou toho je jeden program LabVIEW, v ktorom som robil svoju bakalársku prácu. Myslím však, že ho už nebudem potrebovať. Odinštalujem?

#15 Příspěvek od **motji** » 26 srp 2014 20:41

Ne nemusíte, jen program neznám

Ještě obnovte prohlížeče http://www.viruskasino.com/2013/04/obno ... FeedBurner
A jestli nejsou problémy, je to vše

VIRY.CZ

Prosím o kontrolu logu

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu