VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

otavné reklamy

https://forum.viry.cz:443/viewtopic.php?t=138636

Stránka 1 z 1

otavné reklamy

Napsal: 17 čer 2014 15:25
od jardakykolka
Dobrý den, mám problém s int. prohlížečem. Při kliknutí na odkaz kdekoliv na internetu jsem přesměrován jinam, na nějaké reklamy. Chci vás tedy poprosit o pomoc s odstraněním tohoto problému, děkuji.

Logfile of random's system information tool 1.10 (written by random/random)
Run by zh at 2014-06-17 16:21:06
Microsoft® Windows Vista™ Ultimate Service Pack 2
System drive C: has 40 GB (26%) free of 153 GB
Total RAM: 2936 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:21:15, on 17.6.2014
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Atheros\AWiCMgr.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
D:\Program Files\SolidWorks Corp\SolidWorks\sldworks_fs.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Windows\system32\conime.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera_crashreporter.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\zh\Downloads\RSIT.exe
C:\Program Files\trend micro\zh.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: CrossriderApp0048559 - {11111111-1111-1111-1111-110411851159} - C:\Program Files\Apps Hat\Apps Hat-bho.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files\PDF Architect\PDFIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: WinToFlash Suggestor - {FC36B0BD-27F0-4cdd-8AB1-50651EFC3EFD} - C:\Program Files\WinToFlash Suggestor\WinToFlashSuggestor.dll
O3 - Toolbar: PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files\PDF Architect\PDFIEPlugin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AWiC] "C:\Program Files\Atheros\AWiCMgr.exe" -nogui
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\zh\AppData\Roaming\uTorrent\utorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SpeedUpMyComputer] C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as
O4 - HKCU\..\Run: [FixMyRegistry] C:\Program Files\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: SolidWorks 2013 Rychlé spuštění.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: WinToFlash Suggestor - {A52C66B3-D4A9-4d10-A67D-2BEF0A85AB3F} - C:\Program Files\WinToFlash Suggestor\WinToFlashSuggestor.dll
O9 - Extra 'Tools' menuitem: WinToFlash Suggestor options - {A52C66B3-D4A9-4d10-A67D-2BEF0A85AB3F} - C:\Program Files\WinToFlash Suggestor\WinToFlashSuggestor.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{D3A4EF15-A8BB-46CD-8EEA-8218C6081F3A}: NameServer = 10.120.0.250,10.120.0.251
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: AWiCSrvc - Atheros Communications - C:\Program Files\Atheros\AWiCSrvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: SW Distributed TS Coordinator Service (CoordinatorServiceHost) - Dassault Systemes SolidWorks Corp. - D:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files\PDF Architect\ConversionService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Remote Solver for Flow Simulation 2013 (RemoteSolverDispatcher) - Mentor Graphics Corporation - D:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe

--
End of file - 7653 bytes

======Scheduled tasks folder======

C:\Windows\tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-1.job - C:\Program Files\Apps Hat\Apps Hat-codedownloader.exe /KJVYYB /aXsNJu=task /wIFMYkNKD='Apps Hat' /bmSLcpNE=48559 /LREiQGfN='000820' /iHSCBR='0' /SXYue='appshatmadness' /APaGmP=ED822B1849B74B508CBA11317B6E67F8IE /WuYlCKuIo=ac3dff082c7a4797a51ff085f1bc584c /VVrapBrZI=1_34_05_22 /ychnQVCh=1.34.5.22 /vmRPZhs=1401736442 /uZBKSQ=http://stats.clientstatsservice.com /JgLJvWQB=http://errors.clientstatsservice.com /qNOEEqb=http://js.clientstatsservice.com /clPaEBS=opera /upfkJoENN /agyCjMMk='http://update.clientstatsservice.com/ie ... pdate.json' /aXsNJu='task' /PNbTqNR=''
C:\Windows\tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-2.job - C:\Program Files\Apps Hat\c25dc242-d70a-462a-acdb-f43ec1d68c75-2.exe /lUuonAr /wIFMYkNKD='Apps Hat' /bmSLcpNE=48559 /LREiQGfN='000820' /iHSCBR='0' /SXYue='appshatmadness' /APaGmP=ED822B1849B74B508CBA11317B6E67F8IE /WuYlCKuIo=ac3dff082c7a4797a51ff085f1bc584c /VVrapBrZI=1_34_05_22 /vmRPZhs=1401736442 /uZBKSQ=http://stats.clientstatsservice.com /JgLJvWQB=http://errors.clientstatsservice.com /VoxIL=11111111-1111-1111-1111-110411851159 /clPaEBS=opera /upfkJoENN /agyCjMMk='http://update.clientstatsservice.com/ie ... pdate.json' /aXsNJu='task' /PNbTqNR=''
C:\Windows\tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-3.job - C:\Program Files\Apps Hat\c25dc242-d70a-462a-acdb-f43ec1d68c75-3.exe /YpbHb=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
C:\Windows\tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-4.job - C:\Program Files\Apps Hat\c25dc242-d70a-462a-acdb-f43ec1d68c75-4.exe /QAKHRhItp /wIFMYkNKD='Apps Hat' /jhLbGW='C:\Program Files\Apps Hat\48559.xpi' /bmSLcpNE=48559 /LREiQGfN='000820' /iHSCBR='0' /SXYue='appshatmadness' /APaGmP=ED822B1849B74B508CBA11317B6E67F8IE /WuYlCKuIo=ac3dff082c7a4797a51ff085f1bc584c /VVrapBrZI=1_34_05_22 /ychnQVCh=1.34.5.22 /vmRPZhs=1401736442 /uZBKSQ=http://stats.clientstatsservice.com /JgLJvWQB=http://errors.clientstatsservice.com /rDULJM=300 /ZCNBBvtYt=39ed7c16-185d-4f88-b976-666d4928ba01@fe4550c1-7a4f-4a62-ad1c-45e0afdf81a4.com /vdEujM=0.94 /BKAZv=a39ed7c16185d4f88b976666d4928ba01fe4550c17a4f4a62ad1c45e0afdf81a4com48559 /SlpURjKf=https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /48559.rdf /MFmYNeEJR='Apps Hat' /WiWxbQec='Apps Hat is the cool new Android app store that helps you discover hot new apps, both free and discounted. Get personalised recommendations, price drop alerts, and share your favourite apps with your friends.' /rcLSU='Nero' /clPaEBS=opera /erZwZuYWk='{"asw":[0, 69]}' /upfkJoENN /MOQqtW /GEtFFnRvH /agyCjMMk='http://update.clientstatsservice.com/ff ... pdate.json' /aXsNJu='task' /PNbTqNR=''
C:\Windows\tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-5.job - C:\Program Files\Apps Hat\c25dc242-d70a-462a-acdb-f43ec1d68c75-5.exe /wKcFeR /wIFMYkNKD='Apps Hat' /bmSLcpNE=48559 /LREiQGfN='000820' /iHSCBR='0' /SXYue='appshatmadness' /APaGmP=ED822B1849B74B508CBA11317B6E67F8IE /WuYlCKuIo=ac3dff082c7a4797a51ff085f1bc584c /VVrapBrZI=1_34_05_22 /vmRPZhs=1401736442 /uZBKSQ=http://stats.clientstatsservice.com /JgLJvWQB=http://errors.clientstatsservice.com /hJkrniyc=http://ipgeoapi.com/ /iqLIfnU=http://update.clientstatsservice.com /TrVutJ=2 /UDVnp=http://logs.clientstatsservice.com /agyCjMMk='http://update.clientstatsservice.com/up ... pdate.json' /aXsNJu='task' /PNbTqNR=''
C:\Windows\tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-6.job - C:\Program Files\Apps Hat\Apps Hat-novainstaller.exe /nWtUzq /aXsNJu=task /wIFMYkNKD='Apps Hat' /bmSLcpNE=48559 /LREiQGfN='000820' /iHSCBR='0' /SXYue='appshatmadness' /APaGmP=ED822B1849B74B508CBA11317B6E67F8IE /WuYlCKuIo=ac3dff082c7a4797a51ff085f1bc584c /VVrapBrZI=1_34_05_22 /ychnQVCh=1.34.5.22 /vmRPZhs=1401736442 /uZBKSQ=http://stats.clientstatsservice.com /JgLJvWQB=http://errors.clientstatsservice.com /qNOEEqb=http://js.clientstatsservice.com /clPaEBS=opera /PjDnRRoi /EhlaCyCU='nova' /agyCjMMk='http://update.clientstatsservice.com/no ... pdate.json' /aXsNJu='task' /PNbTqNR=''
C:\Windows\tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-7.job - C:\Program Files\Apps Hat\Apps Hat-nova.exe /wIFMYkNKD='Apps Hat' /bmSLcpNE=48559 /LREiQGfN='000820' /iHSCBR='0' /SXYue='appshatmadness' /APaGmP=ED822B1849B74B508CBA11317B6E67F8IE /WuYlCKuIo=ac3dff082c7a4797a51ff085f1bc584c /VVrapBrZI=1_34_05_22 /ychnQVCh=1.34.5.22 /vmRPZhs=1401736442 /uZBKSQ=http://stats.clientstatsservice.com /JgLJvWQB=http://errors.clientstatsservice.com /qNOEEqb=http://js.clientstatsservice.com /clPaEBS=opera /PjDnRRoi /EhlaCyCU='nova' /agyCjMMk='http://update.clientstatsservice.com/no ... pdate.json' /aXsNJu='task' /PNbTqNR=''
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\zh\AppData\Roaming\Mozilla\Firefox\Profiles\gjx87v4a.default

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"FFPDFArchitectConverter@pdfarchitect.com"=C:\Program Files\PDF Architect\FFPDFArchitectExt


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\zh\AppData\Roaming\Mozilla\Firefox\Profiles\gjx87v4a.default\extensions\
39ed7c16-185d-4f88-b976-666d4928ba01@fe4550c1-7a4f-4a62-ad1c-45e0afdf81a4.com
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411851159}]
Apps Hat - C:\Program Files\Apps Hat\Apps Hat-bho.dll [2014-06-02 571904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-03-03 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-03-03 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC36B0BD-27F0-4cdd-8AB1-50651EFC3EFD}]
WinToFlash Suggestor - C:\Program Files\WinToFlash Suggestor\WinToFlashSuggestor.dll [2012-05-25 281424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{25A3A431-30BB-47C8-AD6A-E1063801134F} - PDF Architect Toolbar - C:\Program Files\PDF Architect\PDFIEPlugin.dll [2013-04-08 654384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-10-17 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-10-17 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-10-17 150552]
"AWiC"=C:\Program Files\Atheros\AWiCMgr.exe [2009-06-10 196608]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2009-09-04 767312]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"uTorrent"=C:\Users\zh\AppData\Roaming\uTorrent\utorrent.exe [2013-10-06 1141328]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"SpeedUpMyComputer"=C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as []
"FixMyRegistry"=C:\Program Files\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-11-02 2508104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\zh\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\zh\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\zh\AppData\Roaming\uTorrent\utorrent.exe [2013-10-06 1141328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SolidWorks Nástroj pro stahování na pozadí.lnk]
C:\PROGRA~1\COMMON~1\MANAER~1\BACKGR~1\SLDBGD~1.EXE [2012-09-28 2737768]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
SolidWorks 2013 Rychlé spuštění.lnk - C:\Windows\Installer\{B85DDD77-4A6A-4811-B241-EDADBF996BD0}\NewShortcut2_F1630D75496847DD999177A077E0CA0F.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-10-17 210432]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2014-06-17 16:21:06 ----D---- C:\rsit
2014-06-17 16:21:06 ----D---- C:\Program Files\trend micro
2014-06-16 20:59:39 ----D---- C:\ProgramData\YTD Video Downloader
2014-06-16 20:59:26 ----D---- C:\Program Files\GreenTree Applications
2014-06-08 15:04:45 ----D---- C:\Windows\system32\appmgmt
2014-06-06 15:22:02 ----D---- C:\ProgramData\RegClean
2014-06-02 21:16:25 ----D---- C:\Program Files\WinToFlash Suggestor
2014-06-02 21:14:12 ----D---- C:\Program Files\globalUpdate
2014-06-02 21:14:10 ----D---- C:\Program Files\Apps Hat
2014-05-20 22:36:27 ----D---- C:\ProgramData\AVS4YOU
2014-05-20 22:36:16 ----D---- C:\Users\zh\AppData\Roaming\AVS4YOU
2014-05-20 22:29:12 ----A---- C:\Windows\system32\libmfxsw32.dll
2014-05-20 22:29:11 ----A---- C:\Windows\system32\libmfxhw32.dll
2014-05-20 22:29:01 ----D---- C:\Program Files\Common Files\AVSMedia
2014-05-20 22:28:57 ----A---- C:\Windows\system32\GdiPlus.dll
2014-05-20 22:28:56 ----D---- C:\Program Files\AVS4YOU
2014-05-20 22:28:56 ----A---- C:\Windows\system32\msxml3a.dll
2014-05-19 20:12:37 ----D---- C:\ProgramData\Mozilla

======List of files/folders modified in the last 1 month======

2014-06-17 16:21:10 ----D---- C:\Windows\Temp
2014-06-17 16:21:06 ----RD---- C:\Program Files
2014-06-16 23:00:12 ----A---- C:\Windows\NeroDigital.ini
2014-06-16 22:00:16 ----D---- C:\Users\zh\AppData\Roaming\vlc
2014-06-16 20:59:39 ----HD---- C:\ProgramData
2014-06-16 20:47:43 ----D---- C:\Windows\System32
2014-06-16 20:47:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-06-16 20:47:42 ----D---- C:\Windows\inf
2014-06-15 20:19:11 ----D---- C:\Users\zh\AppData\Roaming\uTorrent
2014-06-08 15:10:21 ----SHD---- C:\Windows\Installer
2014-06-08 15:10:02 ----SHD---- C:\System Volume Information
2014-06-08 15:04:41 ----D---- C:\Program Files\Bonjour
2014-06-03 20:21:29 ----D---- C:\Flashtool
2014-06-03 15:48:08 ----D---- C:\Windows\Tasks
2014-06-03 15:48:08 ----D---- C:\Windows\system32\Tasks
2014-06-03 11:04:03 ----D---- C:\Program Files\Opera
2014-06-02 21:13:09 ----D---- C:\Users\zh\AppData\Roaming\Seznam.cz
2014-06-02 21:13:06 ----D---- C:\Windows\Prefetch
2014-06-02 20:46:25 ----D---- C:\hudba
2014-05-30 11:40:30 ----D---- C:\Windows\Minidump
2014-05-30 11:40:21 ----D---- C:\Windows
2014-05-25 20:00:56 ----D---- C:\Windows\system32\FxsTmp
2014-05-23 21:12:26 ----SD---- C:\Users\zh\AppData\Roaming\Microsoft
2014-05-20 22:29:38 ----RSD---- C:\Windows\Fonts
2014-05-20 22:29:01 ----D---- C:\Program Files\Common Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fvevol;BitLocker Drive Encryption Filter Driver; C:\Windows\System32\DRIVERS\fvevol.sys [2009-04-11 143848]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-10-30 242240]
R2 Hardlock;Hardlock; C:\Windows\system32\drivers\hardlock.sys [2006-11-22 693760]
R2 NSHE;Guardant Emulator Driver; \??\C:\Windows\system32\Drivers\NSHE.SYS [2008-11-23 97792]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-06-23 1181184]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2013-10-17 4569088]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C60x86.sys [2013-10-17 50176]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2008-03-13 57536]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2008-03-13 72000]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2009-04-11 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-05 65640]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2009-09-21 858384]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2009-09-21 473360]
R2 RemoteSolverDispatcher;Remote Solver for Flow Simulation 2013; D:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe [2012-09-13 46728]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-06-02 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-10-22 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2012-07-09 46528]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-10-21 85096]
S3 AWiCSrvc;AWiCSrvc; C:\Program Files\Atheros\AWiCSrvc.exe [2009-06-10 49152]
S3 CoordinatorServiceHost;SW Distributed TS Coordinator Service; D:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe [2012-09-28 76904]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-10-17 1044816]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-06-02 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-10-22 116648]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2013-10-17 79360]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2012-07-09 770008]
S4 msvsmon80;Visual Studio 2005 Remote Debugger; C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2005-09-23 2799808]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S4 ssinstall;SInstalátor; C:\Windows\System32\ssins.exe [2013-10-22 2324216]

-----------------EOF-----------------

Re: otavné reklamy

Napsal: 17 čer 2014 15:28
od vyosek
Zdravim :)

:arrow: Co si tak nainstalovat nejaky bezpecnostni program - antivir - treba Avast Free nebo MSE

:arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Re: otavné reklamy

Napsal: 17 čer 2014 20:19
od jardakykolka
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows Vista (TM) Ultimate x86
Ran by zh on Łt 17.06.2014 at 21:13:19,38
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\speedupmycomputer
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\smbarbroker.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smarttweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\systweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\smbarbroker.smbardealer
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\smbarbroker.smbardealer.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0048559.BHO
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0048559.BHO.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0048559.Sandbox
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0048559.Sandbox.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110411851159}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220422852259}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550455855559}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660466856659}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440444854459}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0048559.BHO
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0048559.BHO.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0048559.Sandbox
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0048559.Sandbox.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550455855559}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660466856659}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440444854459}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110411851159}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411851159}



~~~ Files

Successfully deleted: [File] "C:\Windows\system32\roboot.exe"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Users\zh\AppData\Roaming\pdfforge"
Successfully deleted: [Folder] "C:\Users\zh\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Program Files\apps hat"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"
Successfully deleted: [Folder] "C:\Users\zh\AppData\Roaming\microsoft\windows\start menu\programs\smarttweak software"



~~~ FireFox

Emptied folder: C:\Users\zh\AppData\Roaming\mozilla\firefox\profiles\gjx87v4a.default\minidumps [1 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 17.06.2014 at 21:18:20,07
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: otavné reklamy

Napsal: 17 čer 2014 20:24
od vyosek
Jeste si pockam na AdwCleaner

Re: otavné reklamy

Napsal: 17 čer 2014 20:26
od jardakykolka
# AdwCleaner v3.212 - Report created 17/06/2014 at 21:21:15
# Updated 05/06/2014 by Xplode
# Operating System : Windows Vista (TM) Ultimate Service Pack 2 (32 bits)
# Username : zh - ZH-PC
# Running from : C:\Users\zh\Downloads\adwcleaner_3.212.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\RegClean
Folder Deleted : C:\Program Files\globalUpdate
Folder Deleted : C:\Program Files\GreenTree Applications
Folder Deleted : C:\Program Files\WinToFlash Suggestor
Folder Deleted : C:\Users\zh\AppData\Local\globalUpdate
Folder Deleted : C:\Users\zh\AppData\Roaming\Mozilla\Firefox\Profiles\gjx87v4a.default\Extensions\39ed7c16-185d-4f88-b976-666d4928ba01@fe4550c1-7a4f-4a62-ad1c-45e0afdf81a4.com
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
File Deleted : C:\Windows\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-1.job
File Deleted : C:\Windows\System32\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-1
File Deleted : C:\Windows\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-2.job
File Deleted : C:\Windows\System32\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-2
File Deleted : C:\Windows\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-3.job
File Deleted : C:\Windows\System32\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-3
File Deleted : C:\Windows\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-4.job
File Deleted : C:\Windows\System32\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-4
File Deleted : C:\Windows\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-5.job
File Deleted : C:\Windows\System32\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-5
File Deleted : C:\Windows\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-6.job
File Deleted : C:\Windows\System32\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-6
File Deleted : C:\Windows\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-7.job
File Deleted : C:\Windows\System32\Tasks\c25dc242-d70a-462a-acdb-f43ec1d68c75-7

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\acaoakiamfeidcmgooclgeleejkbaecf
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B14ED6F9-33AE-4577-ACDB-EC108DE34B02}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B14ED6F9-33AE-4577-ACDB-EC108DE34B02}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{133A7268-A4B1-4EDC-BC76-CD82A3D23D1A}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{133A7268-A4B1-4EDC-BC76-CD82A3D23D1A}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E430EA0B-7450-4269-9402-5AEFB26255F6}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E430EA0B-7450-4269-9402-5AEFB26255F6}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CFBB06E1-7863-4717-B919-5419F6679971}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CFBB06E1-7863-4717-B919-5419F6679971}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0F48EF86-33CC-40A8-AD88-BC5DEDA274E6}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F48EF86-33CC-40A8-AD88-BC5DEDA274E6}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9E917EFE-CF90-44E3-AEC1-CAD969033F3F}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9E917EFE-CF90-44E3-AEC1-CAD969033F3F}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C33EA030-03D4-4109-AE2F-9052D01EB9A8}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C33EA030-03D4-4109-AE2F-9052D01EB9A8}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{32D02059-5220-4E56-A790-390DFA979963}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32D02059-5220-4E56-A790-390DFA979963}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0AE3F752-6F98-4B8B-BB10-F552D5904731}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0AE3F752-6F98-4B8B-BB10-F552D5904731}
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [FixMyRegistry]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3A188115-B81B-48F2-A958-F974C8F3F309}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{43769158-3B03-4932-8D8A-8F0F344BF024}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E49F0B41-3322-11D4-AEFE-00C04F61025C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FC36B0BD-27F0-4CDD-8AB1-50651EFC3EFD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{78CE34FD-F6D4-4866-B79C-A37268D06A04}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{80904944-C726-4C7D-A452-3FFF2A882095}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2D9B1B31-D034-4738-8F6E-40F0AFCC742C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC36B0BD-27F0-4CDD-8AB1-50651EFC3EFD}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FixMyRegistry
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bi_uninstaller

***** [ Browsers ] *****

-\\ Internet Explorer v7.0.6002.18005


-\\ Mozilla Firefox v28.0 (cs)

[ File : C:\Users\zh\AppData\Roaming\Mozilla\Firefox\Profiles\gjx87v4a.default\prefs.js ]


-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\zh\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : dhdepfaagokllfmhfbcfmocaeigmoebo
Deleted [Extension] : hphibigbodkkohoglgfkddblldpfohjl
Deleted [Extension] : kdcnnmifdmlmjffdgeieikcokcogpbej
Deleted [Extension] : kincjchfokkeneeofpeefomkikfkiedl
Deleted [Extension] : kkkeikdkpjenmoiicggnnodbkebafgpc
Deleted [Extension] : pgmfkblbflahhponhjmkcnpjinenhlnc

*************************

AdwCleaner[R0].txt - [6844 octets] - [17/06/2014 21:20:23]
AdwCleaner[S0].txt - [6979 octets] - [17/06/2014 21:21:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7039 octets] ##########

Re: otavné reklamy

Napsal: 17 čer 2014 20:34
od vyosek
:arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz