PUP-FPS

[michal926]

Zdravím, mam problem, nechtiac som si stiahol do notbooku istu haved, konkretne program PUP-FPS, antivirak mi to hlási dookola...

[Rudy]

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

[michal926]

FRST3.rar

(15.8 KiB) Staženo 45 x

[michal926]

a este 1

[Rudy]

Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[michal926]

tu to je
# AdwCleaner v4.107 - Report created 12/01/2015 at 22:14:15
# Updated 07/01/2015 by Xplode
# Database : 2015-01-11.2 [Live]
# Operating System : Windows 8.1 Connected (64 bits)
# Username : NAY - ACER
# Running from : C:\Users\NAY\Desktop\adwcleaner_4.107.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
[#] Service Deleted : Update Cyti Web
[#] Service Deleted : Util Cyti Web
Service Deleted : {a6994947-8316-401e-82e4-23da215413fb}Gw64

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ShopperPro
Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Sense
Folder Deleted : C:\Program Files (x86)\ShopperPro
Folder Deleted : C:\Program Files (x86)\SavePass 1.1
Folder Deleted : C:\Program Files (x86)\Ge-Force
[!] Folder Deleted : C:\Program Files (x86)\Cyti Web
[!] Folder Deleted : C:\Program Files (x86)\Cyti Web
Folder Deleted : C:\Users\NAY\AppData\Local\Temp\Cyti Web
Folder Deleted : C:\Users\NAY\AppData\Local\globalUpdate
Folder Deleted : C:\Users\NAY\AppData\Local\CrashRpt
Folder Deleted : C:\Users\NAY\AppData\LocalLow\Ge-Force
Folder Deleted : C:\Users\NAY\AppData\Roaming\eCyber
Folder Deleted : C:\Users\NAY\AppData\Roaming\mystartsearch
Folder Deleted : C:\Users\Public\Documents\ShopperPro
Folder Deleted : C:\Users\NAY\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Folder Deleted : C:\Users\NAY\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
File Deleted : C:\Windows\System32\drivers\{a6994947-8316-401e-82e4-23da215413fb}Gw64.sys
File Deleted : C:\Users\NAY\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\NAY\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****

Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : ShopperPro
Task Deleted : ShopperProJSUpd
Task Deleted : SPDriver
Task Deleted : 1f97e74e-77ab-4fc7-94ee-fdc979e77ee7-1
Task Deleted : 1f97e74e-77ab-4fc7-94ee-fdc979e77ee7-5
Task Deleted : 1f97e74e-77ab-4fc7-94ee-fdc979e77ee7-5_user
Task Deleted : 7200b820-2812-461f-a44c-8bd105e1de76-1
Task Deleted : 7200b820-2812-461f-a44c-8bd105e1de76-2
Task Deleted : 7200b820-2812-461f-a44c-8bd105e1de76-5
Task Deleted : 7200b820-2812-461f-a44c-8bd105e1de76-5_user
Task Deleted : 96f17723-0ab7-4e6b-a58d-d8f249d542ef-1
Task Deleted : 96f17723-0ab7-4e6b-a58d-d8f249d542ef-5
Task Deleted : 96f17723-0ab7-4e6b-a58d-d8f249d542ef-5_user

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\NAY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\NAY\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\NAY\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk

***** [ Registry ] *****

Key Deleted : HKCU\Software\Classes\pokki
Key Deleted : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update Cyti Web
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util Cyti Web
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611971195}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622972295}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{aa2fac44-d24d-4fed-9e32-397d138365f1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655975595}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666976695}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644974495}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4b030cae-5396-4e8d-b29f-0bc3213ab606}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611971195}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{aa2fac44-d24d-4fed-9e32-397d138365f1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611971195}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{aa2fac44-d24d-4fed-9e32-397d138365f1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{aa2fac44-d24d-4fed-9e32-397d138365f1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{17ab3f19-64df-45cb-ab83-86e2867f8f77}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1867a5d6-221b-4113-8ff8-77231fcdad5d}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{34b253b9-e66f-43a0-867d-3913017d0ec3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4c515134-c8f1-47bf-8b72-e57c77ff0dcd}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611971195}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622972295}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655975595}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666976695}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611971195}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{17ab3f19-64df-45cb-ab83-86e2867f8f77}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1867a5d6-221b-4113-8ff8-77231fcdad5d}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{34b253b9-e66f-43a0-867d-3913017d0ec3}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4c515134-c8f1-47bf-8b72-e57c77ff0dcd}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Pokki
Key Deleted : HKCU\Software\Cyti Web
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\SavePass 1.1
Key Deleted : HKCU\Software\AppDataLow\Software\Sense
Key Deleted : HKCU\Software\AppDataLow\Software\Ge-Force
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\PIP
Key Deleted : HKLM\SOFTWARE\SavePass 1.1
Key Deleted : HKLM\SOFTWARE\Sense
Key Deleted : HKLM\SOFTWARE\ShopperPro
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
Key Deleted : HKLM\SOFTWARE\Ge-Force
Key Deleted : HKLM\SOFTWARE\Cyti Web
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sense
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ShopperPro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mystartsearch uninstall
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ge-Force
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : [x64] HKLM\SOFTWARE\ShopperPro
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mystartsearch.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.mystartsearch.com

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v


-\\ Google Chrome v39.0.2171.95


*************************

AdwCleaner[R0].txt - [18363 octets] - [12/01/2015 22:10:16]
AdwCleaner[S0].txt - [16235 octets] - [12/01/2015 22:14:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [16296 octets] ##########

[Rudy]

Dejte nový log FRST.

[michal926]

FRST

[michal926]

a dalsi

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\Users\NAY\AppData\Local\Temp
Task: {236C8F1A-197C-4B5D-9385-8E111E4BB35C} - System32\Tasks\IEPGDIE => C:\Users\NAY\AppData\Roaming\IEPGDIE.exe [2015-01-12] (HQ-VideoV11.01) <==== ATTENTION
Task: {6D73A394-89E1-4492-A136-EC351F6C754A} - System32\Tasks\GVFWUIX => C:\Users\NAY\AppData\Roaming\GVFWUIX.exe [2015-01-12] (Object Browser) <==== ATTENTION
C:\Users\NAY\AppData\Roaming\GVFWUIX.exe
ask: C:\Windows\Tasks\GVFWUIX.job => C:\Users\NAY\AppData\Roaming\GVFWUIX.exe <==== ATTENTION
Task: C:\Windows\Tasks\IEPGDIE.job => C:\Users\NAY\AppData\Roaming\IEPGDIE.exe <==== ATTENTION
C:\Users\NAY\AppData\Roaming\IEPGDIE.exe
c:\Users\NAY\AppData\Local\Installer\Installshopperpro_2956\DC1AB13RN51.exe
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[michal926]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-01-2015
Ran by NAY at 2015-01-13 19:43:44 Run:1
Running from C:\Users\NAY\Desktop
Loaded Profile: NAY (Available profiles: NAY)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\Users\NAY\AppData\Local\Temp
Task: {236C8F1A-197C-4B5D-9385-8E111E4BB35C} - System32\Tasks\IEPGDIE => C:\Users\NAY\AppData\Roaming\IEPGDIE.exe [2015-01-12] (HQ-VideoV11.01) <==== ATTENTION
Task: {6D73A394-89E1-4492-A136-EC351F6C754A} - System32\Tasks\GVFWUIX => C:\Users\NAY\AppData\Roaming\GVFWUIX.exe [2015-01-12] (Object Browser) <==== ATTENTION
C:\Users\NAY\AppData\Roaming\GVFWUIX.exe
ask: C:\Windows\Tasks\GVFWUIX.job => C:\Users\NAY\AppData\Roaming\GVFWUIX.exe <==== ATTENTION
Task: C:\Windows\Tasks\IEPGDIE.job => C:\Users\NAY\AppData\Roaming\IEPGDIE.exe <==== ATTENTION
C:\Users\NAY\AppData\Roaming\IEPGDIE.exe
c:\Users\NAY\AppData\Local\Installer\Installshopperpro_2956\DC1AB13RN51.exe
End
*****************

HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => Moved successfully.

"C:\Users\NAY\AppData\Local\Temp" directory move:

C:\Users\NAY\AppData\Local\Temp\14AD.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\173E.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\489606.exe.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\5B1B.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\5F04.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\69E7.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\70A7.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\7348.tmp => Moved successfully.
Could not move "C:\Users\NAY\AppData\Local\Temp\AdobeARM.log" => Scheduled to move on reboot.
C:\Users\NAY\AppData\Local\Temp\AdobeARM_NotLocked.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\adwcleaner.db => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\AdwCleaner.jpg => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\appshat_generic.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\ArmUI.ini => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\BA34.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\BE0D.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\chrome_installer.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Cleaning.ico => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\dd_vcredistMSI002C.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\dd_vcredistMSI02A9.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\dd_vcredistUI002C.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\dd_vcredistUI02A9.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\DMI5E8B.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\DMID3AA.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\EULA.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\F3FD.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\F601.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\flv.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\GsDownload.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Guest.bmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\InstallGenieo.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\MSI47c6e.LOG => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\MSI7919e.LOG => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\MSIb9ef8.LOG => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\NAY.bmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\nsi1D43.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\ochelper.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\ochelper.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\oct20AF.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\oct4C4.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\oct4EFD.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\oct706E.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\oct70A3.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\oct7337.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\oct74B1.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\oct9879.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\oct9CD2.tmp.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\octC0AD.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\octDF46.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\octF86F.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Pokki-2015-01-09.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Pokki-2015-01-10.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Pokki-2015-01-11.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Pokki-2015-01-12.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Report.ico => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Runner2.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\runner2.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Runner4.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\runnerpm.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS359F.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS35CF.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5414.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS54C1.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS54F1.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5502.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5503.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5513.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5524.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5525.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5535.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5556.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5557.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5567.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5578.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS5589.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS558A.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS559A.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS55AB.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SAS6FAB.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Scan.ico => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\sdf6B34.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\sdf6B34.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\smt_mystartsearch.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\sqlite3.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SymCCISDll.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Uninstall.ico => Moved successfully.
Could not move "C:\Users\NAY\AppData\Local\Temp\WAX9353.tmp" => Scheduled to move on reboot.
C:\Users\NAY\AppData\Local\Temp\WebDataJs => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\WER2A86.tmp.appcompat.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\WER2BC0.tmp.version.xml => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\WER2C8C.tmp.WERInternalMetadata.xml => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\wmsetup.log => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\YACDL_00000000.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~8F5F.bat => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~8F5F.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~DF094886AB84142D3C.TMP => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~DF82FE6A3E6D6CF4C3.TMP => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~dlBFB2.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~dlC887.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~dlEC0D.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~dlEC0D\~dljyb\tmp\349.db => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~dlEC0D\~dljyb\tmp\STab_Down.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~dlEC0D\~dljyb\tmp\wpm_v20.0.0.1337.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~dlBFB2\~dljyb\tmp\360.db => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~dlBFB2\~dljyb\tmp\STab_Down.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\~dlBFB2\~dljyb\tmp\wpm_v20.0.0.1337.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\{7F6B7C13-31D6-44A3-A42F-4F47BB77F267}\GsDownload.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SUPERSetup\SAS_LaunchChromeSetup.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SUPERSetup\setup.db3 => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\SUPERSetup\SupportCom_Chrome_V2.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\69E7.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\DECODED_IMAGES => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\DECODED_MESSAGE_CATALOGS => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Background.html => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\background.js => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\ContentOnDocStart.js => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\ContentScript.js => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\manifest.json => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\popup.html => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\popup.js => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\_metadata\verified_contents.json => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\128.png => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_black.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_black_lock.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_black_small.GIF => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_cashback.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_cashback_lock.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_disabled.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_green.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_green_lock.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_grey.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_grey_lock.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_hs.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_hs_lock.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_red.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_red_lock.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_yellow.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\scoped_dir_2104_21223\CRX_INSTALL\Resources\button_yellow_lock.gif => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Rar$EXa0.057\Setup-SopCast-3.8.2-2013-03-01.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\nscE329.tmp\___ocnsis.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\dat926B.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\dat927C.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\dat955E.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\datDBA0.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\datE0EA.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\datE0FB.tmp => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\UnityWebPlayerUpdate.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\temp\c40f5ffe3f15a44c9db43fc5ae5d83ef\mono-1-vc.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\temp\c40f5ffe3f15a44c9db43fc5ae5d83ef\webplayer_win.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\temp\c40f5ffe3f15a44c9db43fc5ae5d83ef\wrap_oal.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\temp\559b9d74773aa14e855cf0e253f701b6\mono-1-vc.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\temp\559b9d74773aa14e855cf0e253f701b6\webplayer_win.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\temp\559b9d74773aa14e855cf0e253f701b6\wrap_oal.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\temp\3389c5071fbe92419242fbc8f97bb576\mono-1-vc.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\temp\3389c5071fbe92419242fbc8f97bb576\webplayer_win.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\temp\3389c5071fbe92419242fbc8f97bb576\wrap_oal.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_2754cd0838a61b42bb45559d7c4bdd6e.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_3389c5071fbe92419242fbc8f97bb576.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_400bb73cf61d0948b5ab45555093a326.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_559b9d74773aa14e855cf0e253f701b6.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_927f3b6696e74f47a389cee9168159f3.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_a9b68de2202656419fe6daa0728fd223.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_ab1924147eddb74d865acd00129a625d.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_b1071578ded32d4da5d73a0c7d9d0b84.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_b9ac646b8d08684d846768ca976a1b1c.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\log_c40f5ffe3f15a44c9db43fc5ae5d83ef.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_03e5b2ea10d45d48b9335258bfef356a.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_0ff383e5e7e26c438910f60535196d95.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_7cd01b0d632f874cb80d60b19f61deb6.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_918262394041e649857ae87701d399fe.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_a966895fad659a429c384719749cba9e.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_bcb9f484ffaf2c4896f3d11f2e1ab775.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_c66e9785f90b9e4bbeedf5a13fce7f0a.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_cd906d73ab8d514eafe61552d7a16f02.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_ce5f3c0d24dba043906aca26f1287997.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Low\UnityWebPlayer\log\manager_dddab92f371abb48940c8f7cbee7e9db.txt => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\is-TGFK5.tmp\bi.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\is-O0MGH.tmp\bi.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\is-IVLEI.tmp\Repair.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\is-DSUDU.tmp\bi.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\is-DJBLD.tmp\bi.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\is-95E94.tmp\InstallHelp.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\is-15LOM.tmp\bi.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Install_19606\bxsdk32.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\Install_13315\bxsdk32.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_76.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\GoogleCrashHandler.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\GoogleUpdate.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\GoogleUpdateBroker.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\GoogleUpdateHelper.msi => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\GoogleUpdateOnDemand.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\goopdate.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\goopdateres_en.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\npGoogleUpdate4.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\psmachine.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.445997\psuser.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\GoogleCrashHandler.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\GoogleUpdate.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\GoogleUpdateBroker.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\GoogleUpdateHelper.msi => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\GoogleUpdateOnDemand.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\goopdate.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\goopdateres_en.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\npGoogleUpdate4.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\psmachine.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.347800\psuser.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\GoogleCrashHandler.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\GoogleUpdate.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\GoogleUpdateBroker.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\GoogleUpdateHelper.msi => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\GoogleUpdateOnDemand.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\goopdate.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\goopdateres_en.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\npGoogleUpdate4.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\psmachine.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251769\psuser.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\GoogleCrashHandler.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\GoogleUpdate.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\GoogleUpdateBroker.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\GoogleUpdateHelper.msi => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\GoogleUpdateOnDemand.exe => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\goopdate.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\goopdateres_en.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\npGoogleUpdate4.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\psmachine.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\comh.251355\psuser.dll => Moved successfully.
C:\Users\NAY\AppData\Local\Temp\chrome_BITS_3880_4376\BITBFA.tmp => Moved successfully.
Could not move "C:\Users\NAY\AppData\Local\Temp" directory. => Scheduled to move on reboot.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{236C8F1A-197C-4B5D-9385-8E111E4BB35C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{236C8F1A-197C-4B5D-9385-8E111E4BB35C}" => Key deleted successfully.
C:\Windows\System32\Tasks\IEPGDIE => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IEPGDIE" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6D73A394-89E1-4492-A136-EC351F6C754A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D73A394-89E1-4492-A136-EC351F6C754A}" => Key deleted successfully.
C:\Windows\System32\Tasks\GVFWUIX => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GVFWUIX" => Key deleted successfully.
C:\Users\NAY\AppData\Roaming\GVFWUIX.exe => Moved successfully.
ask: C:\Windows\Tasks\GVFWUIX.job => C:\Users\NAY\AppData\Roaming\GVFWUIX.exe <==== ATTENTION => Error: No automatic fix found for this entry.
C:\Windows\Tasks\IEPGDIE.job => Moved successfully.
C:\Users\NAY\AppData\Roaming\IEPGDIE.exe => Moved successfully.
c:\Users\NAY\AppData\Local\Installer\Installshopperpro_2956\DC1AB13RN51.exe => Moved successfully.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-01-13 19:48:21)<=

C:\Users\NAY\AppData\Local\Temp\AdobeARM.log => Is moved successfully.
C:\Users\NAY\AppData\Local\Temp\WAX9353.tmp => Is moved successfully.
C:\Users\NAY\AppData\Local\Temp => Moved successfully.

==== End of Fixlog 19:48:23 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[michal926]

Ano, už žiadne hlasenia o škodlivých programoch neprichádzajú, dakujem

[Rudy]

FRST smažte, ADW odinstalujte (spusťte a klikněte na "Uninstall"). Nemáte zač!