Dobrý den, prosil bych o kontrolu. Stále vyskakují reklamní stránky.
Předem dík.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-11-2014
Ran by Wendy (administrator) on OSCAR-PC on 18-11-2014 18:42:26
Running from C:\Users\Wendy\Desktop
Loaded Profiles: Wendy & UpdatusUser (Available profiles: Wendy & UpdatusUser)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: Angličtina (USA)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9691412ff1876250\stacsv.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9691412ff1876250\AEstSrv.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Badoo) C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Pokki) C:\Users\Wendy\AppData\Local\Pokki\Engine\pokki.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Pokki) C:\Users\Wendy\AppData\Local\Pokki\Engine\pokki.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(forum.viry.cz) C:\Users\Wendy\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [495708 2010-03-23] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2299176 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [951576 2014-03-11] (Microsoft Corporation)
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\...\Run: [Pokki] => C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\...\Run: [Badoo Desktop] => C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe [1067232 2012-12-24] (Badoo)
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\...\RunOnce: [Application Restart #4] => C:\Users\Wendy\AppData\Local\Pokki\Engine\pokki.exe [8252744 2013-11-01] (Pokki)
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\...\RunOnce: [Application Restart #2] => C:\Users\Wendy\AppData\Local\Pokki\Engine\pokki.exe [8252744 2013-11-01] (Pokki)
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\...\MountPoints2: {040bee14-eeeb-11e2-af62-025364366732} - G:\autorun.exe
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\...\MountPoints2: {ce7f23e8-63d1-11e3-b29c-020231676265} - H:\AutoRun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-07-26] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe (McAfee, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x832C4BF9F93ACF01
HKU\S-1-5-21-3655644982-2688807069-2557820165-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
SearchScopes: HKLM -> {b0441a0e-a49a-4e16-afc1-74ecced1921f} URL = http://search.tb.ask.com/search/GGmain. ... earchTerms}
SearchScopes: HKU\S-1-5-21-3655644982-2688807069-2557820165-1000 -> {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = http://badoo.com/startpage/?source=bsb&q={searchTerms}
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: SaveSense -> {71e129ff-6c2a-4984-818c-7e2c998b8d99} -> C:\Users\Wendy\AppData\Local\SaveSense\SaveSenseIE.dll (SaveSense)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.updaterss.com/SaveSenseLive Update;version=3 -> C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF Plugin: @tools.updaterss.com/SaveSenseLive Update;version=9 -> C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3655644982-2688807069-2557820165-1000: @citrixonline.com/appdetectorplugin -> C:\Users\Wendy\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF Plugin HKU\S-1-5-21-3655644982-2688807069-2557820165-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Wendy\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF HKLM\...\Firefox\Extensions: [7go@7go.com] - C:\Users\Wendy\AppData\Roaming\Mozilla\Extensions\7go@7go.com
FF Extension: 7Go Games - C:\Users\Wendy\AppData\Roaming\Mozilla\Extensions\7go@7go.com [2013-08-31]
FF HKLM\...\Firefox\Extensions: [speedanalysis03@SpeedAnalysis.com] - C:\Users\Wendy\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com
FF Extension: Speed Analysis 3 - C:\Users\Wendy\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com [2013-08-31]
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-09]
CHR Extension: (Disk Google) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-09]
CHR Extension: (The Latest Versions of Google ) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bibclkcoilbnbnppanidhimphmfbjaab [2014-10-13]
CHR Extension: (YouTube) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-09]
CHR Extension: (Hľadať v Google) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-09]
CHR Extension: (Uno 3 3D) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnnlgilolbhikgangjeiimcnfbplpki [2014-09-17]
CHR Extension: (CheapME) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmpodoldaoedijndcfmphdilapclmehg [2014-05-23]
CHR Extension: (AdBlock) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-03-09]
CHR Extension: (save net) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch [2014-05-01]
CHR Extension: (YouTurn) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\icphmmimmfdlgaaglejeokffekamhplg [2014-06-19]
CHR Extension: (savie neT) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo [2014-05-01]
CHR Extension: (Patr Pats Flickr App) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\iplbmjolljikncjboeofgmjoaacheemi [2014-07-03]
CHR Extension: (Craigslist) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmplmlaidpjpkjoanahipnjndbdafkfb [2014-06-10]
CHR Extension: (save net) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb [2014-05-02]
CHR Extension: (DiGGiSaveer) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngahnmmncfmejkemncckbmddiplneiki [2014-05-25]
CHR Extension: (Peňaženka Google) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-09]
CHR Extension: (DeaLExPrresos) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\odomncfnkpejhjcngkbkidafnnjoiabl [2014-05-08]
CHR Extension: (Gmail) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-09]
CHR HKLM\...\Chrome\Extension: [gjajpkikblccgefaibcafkfbanllpefi] - C:\Users\Wendy\AppData\Roaming\7go\7go.crx [2013-07-30]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)
S2 savesenselive; C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe [146920 2014-03-08] (SaveSense)
S3 savesenselivem; C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe [146920 2014-03-08] (SaveSense)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9691412ff1876250\STacSV.exe [229458 2010-03-23] (IDT, Inc.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-07-17] (DT Soft Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [15872 2013-02-12] (Microsoft Corporation)
S1 afwpjemn; \??\C:\Windows\system32\drivers\afwpjemn.sys [X]
S1 aivdqxfj; \??\C:\Windows\system32\drivers\aivdqxfj.sys [X]
S1 aoogtmlx; \??\C:\Windows\system32\drivers\aoogtmlx.sys [X]
S1 awnkxshv; \??\C:\Windows\system32\drivers\awnkxshv.sys [X]
S1 axzilazd; \??\C:\Windows\system32\drivers\axzilazd.sys [X]
S1 azwiibih; \??\C:\Windows\system32\drivers\azwiibih.sys [X]
S1 bagbqtds; \??\C:\Windows\system32\drivers\bagbqtds.sys [X]
S1 bduhqumo; \??\C:\Windows\system32\drivers\bduhqumo.sys [X]
S1 bfbnjywp; \??\C:\Windows\system32\drivers\bfbnjywp.sys [X]
S1 bigwnvpt; \??\C:\Windows\system32\drivers\bigwnvpt.sys [X]
S1 bkkiwhrk; \??\C:\Windows\system32\drivers\bkkiwhrk.sys [X]
S1 bmerqoto; \??\C:\Windows\system32\drivers\bmerqoto.sys [X]
S1 bmguvxop; \??\C:\Windows\system32\drivers\bmguvxop.sys [X]
S1 bovklgbu; \??\C:\Windows\system32\drivers\bovklgbu.sys [X]
S1 bplhnnfz; \??\C:\Windows\system32\drivers\bplhnnfz.sys [X]
S1 bqwakhfu; \??\C:\Windows\system32\drivers\bqwakhfu.sys [X]
S1 budatcjt; \??\C:\Windows\system32\drivers\budatcjt.sys [X]
S1 cbhucefx; \??\C:\Windows\system32\drivers\cbhucefx.sys [X]
S1 cbrldtid; \??\C:\Windows\system32\drivers\cbrldtid.sys [X]
S1 ccqbcmch; \??\C:\Windows\system32\drivers\ccqbcmch.sys [X]
S1 ccvqmprz; \??\C:\Windows\system32\drivers\ccvqmprz.sys [X]
S1 cgnahllr; \??\C:\Windows\system32\drivers\cgnahllr.sys [X]
S1 ckjiakai; \??\C:\Windows\system32\drivers\ckjiakai.sys [X]
S1 coomnpel; \??\C:\Windows\system32\drivers\coomnpel.sys [X]
S1 csyoulua; \??\C:\Windows\system32\drivers\csyoulua.sys [X]
S1 ctiizwin; \??\C:\Windows\system32\drivers\ctiizwin.sys [X]
S1 cvofvkaf; \??\C:\Windows\system32\drivers\cvofvkaf.sys [X]
S1 cwnpuftb; \??\C:\Windows\system32\drivers\cwnpuftb.sys [X]
S1 daejnbqc; \??\C:\Windows\system32\drivers\daejnbqc.sys [X]
S1 daiamuhr; \??\C:\Windows\system32\drivers\daiamuhr.sys [X]
S1 ddcnwptd; \??\C:\Windows\system32\drivers\ddcnwptd.sys [X]
S1 dhtycshk; \??\C:\Windows\system32\drivers\dhtycshk.sys [X]
S1 djaxxtll; \??\C:\Windows\system32\drivers\djaxxtll.sys [X]
S1 dppeknxn; \??\C:\Windows\system32\drivers\dppeknxn.sys [X]
S1 dukhylct; \??\C:\Windows\system32\drivers\dukhylct.sys [X]
S1 dupqhqmi; \??\C:\Windows\system32\drivers\dupqhqmi.sys [X]
S1 dvlfiqvt; \??\C:\Windows\system32\drivers\dvlfiqvt.sys [X]
S1 dvsorzux; \??\C:\Windows\system32\drivers\dvsorzux.sys [X]
S1 eaatcdlc; \??\C:\Windows\system32\drivers\eaatcdlc.sys [X]
S1 earmojft; \??\C:\Windows\system32\drivers\earmojft.sys [X]
S1 ecfyonks; \??\C:\Windows\system32\drivers\ecfyonks.sys [X]
S1 edcikgnk; \??\C:\Windows\system32\drivers\edcikgnk.sys [X]
S1 eeeybggr; \??\C:\Windows\system32\drivers\eeeybggr.sys [X]
S1 ekuyymas; \??\C:\Windows\system32\drivers\ekuyymas.sys [X]
S1 emmopwjq; \??\C:\Windows\system32\drivers\emmopwjq.sys [X]
S1 fbhyycww; \??\C:\Windows\system32\drivers\fbhyycww.sys [X]
S1 fdrwbapz; \??\C:\Windows\system32\drivers\fdrwbapz.sys [X]
S1 flyvlhaa; \??\C:\Windows\system32\drivers\flyvlhaa.sys [X]
S1 fmamftnu; \??\C:\Windows\system32\drivers\fmamftnu.sys [X]
S1 fmoglwuc; \??\C:\Windows\system32\drivers\fmoglwuc.sys [X]
S1 fmshyzvg; \??\C:\Windows\system32\drivers\fmshyzvg.sys [X]
S1 ftcmubob; \??\C:\Windows\system32\drivers\ftcmubob.sys [X]
S1 fuqbxqmc; \??\C:\Windows\system32\drivers\fuqbxqmc.sys [X]
S1 gdhcnnhq; \??\C:\Windows\system32\drivers\gdhcnnhq.sys [X]
S1 gdvosjca; \??\C:\Windows\system32\drivers\gdvosjca.sys [X]
S1 gfinqjux; \??\C:\Windows\system32\drivers\gfinqjux.sys [X]
S1 ghfpbbur; \??\C:\Windows\system32\drivers\ghfpbbur.sys [X]
S1 gkpiuvaz; \??\C:\Windows\system32\drivers\gkpiuvaz.sys [X]
S1 gocqlgez; \??\C:\Windows\system32\drivers\gocqlgez.sys [X]
S1 guhsovfe; \??\C:\Windows\system32\drivers\guhsovfe.sys [X]
S1 guyykpna; \??\C:\Windows\system32\drivers\guyykpna.sys [X]
S1 gwpdftlc; \??\C:\Windows\system32\drivers\gwpdftlc.sys [X]
S1 gzbzorru; \??\C:\Windows\system32\drivers\gzbzorru.sys [X]
S1 gzgoqlgo; \??\C:\Windows\system32\drivers\gzgoqlgo.sys [X]
S1 hcgrkioj; \??\C:\Windows\system32\drivers\hcgrkioj.sys [X]
S1 hlmbmckz; \??\C:\Windows\system32\drivers\hlmbmckz.sys [X]
S1 hlryxnui; \??\C:\Windows\system32\drivers\hlryxnui.sys [X]
S1 hmrihzus; \??\C:\Windows\system32\drivers\hmrihzus.sys [X]
S1 hogqthpf; \??\C:\Windows\system32\drivers\hogqthpf.sys [X]
S1 hqsfmhwv; \??\C:\Windows\system32\drivers\hqsfmhwv.sys [X]
S1 ialrgwdm; \??\C:\Windows\system32\drivers\ialrgwdm.sys [X]
S1 ibzqoqgj; \??\C:\Windows\system32\drivers\ibzqoqgj.sys [X]
S1 ihdxykug; \??\C:\Windows\system32\drivers\ihdxykug.sys [X]
S1 ijkzabzh; \??\C:\Windows\system32\drivers\ijkzabzh.sys [X]
S1 ioinwqzf; \??\C:\Windows\system32\drivers\ioinwqzf.sys [X]
S1 ipuxujod; \??\C:\Windows\system32\drivers\ipuxujod.sys [X]
S1 iqplpahr; \??\C:\Windows\system32\drivers\iqplpahr.sys [X]
S1 isaczbjl; \??\C:\Windows\system32\drivers\isaczbjl.sys [X]
S1 ixwgjweu; \??\C:\Windows\system32\drivers\ixwgjweu.sys [X]
S1 jaxmbrdm; \??\C:\Windows\system32\drivers\jaxmbrdm.sys [X]
S1 jdvhcwgm; \??\C:\Windows\system32\drivers\jdvhcwgm.sys [X]
S1 jgwzukme; \??\C:\Windows\system32\drivers\jgwzukme.sys [X]
S1 jknmikez; \??\C:\Windows\system32\drivers\jknmikez.sys [X]
S1 jozfblfb; \??\C:\Windows\system32\drivers\jozfblfb.sys [X]
S1 jpbpyppi; \??\C:\Windows\system32\drivers\jpbpyppi.sys [X]
S1 jrteulfr; \??\C:\Windows\system32\drivers\jrteulfr.sys [X]
S1 jtunbdqi; \??\C:\Windows\system32\drivers\jtunbdqi.sys [X]
S1 jzhpbmee; \??\C:\Windows\system32\drivers\jzhpbmee.sys [X]
S1 kfoymhgh; \??\C:\Windows\system32\drivers\kfoymhgh.sys [X]
S1 kmqtwngt; \??\C:\Windows\system32\drivers\kmqtwngt.sys [X]
S1 ktphexaj; \??\C:\Windows\system32\drivers\ktphexaj.sys [X]
S1 kxlmtgqp; \??\C:\Windows\system32\drivers\kxlmtgqp.sys [X]
S1 kzxfojat; \??\C:\Windows\system32\drivers\kzxfojat.sys [X]
S1 lerrydad; \??\C:\Windows\system32\drivers\lerrydad.sys [X]
S1 lgmbjasr; \??\C:\Windows\system32\drivers\lgmbjasr.sys [X]
S1 lgpjxbyu; \??\C:\Windows\system32\drivers\lgpjxbyu.sys [X]
S1 lkbaadtr; \??\C:\Windows\system32\drivers\lkbaadtr.sys [X]
S1 lnemljms; \??\C:\Windows\system32\drivers\lnemljms.sys [X]
S1 lpeqetqp; \??\C:\Windows\system32\drivers\lpeqetqp.sys [X]
S1 lpwvoulw; \??\C:\Windows\system32\drivers\lpwvoulw.sys [X]
S1 mdwukbzp; \??\C:\Windows\system32\drivers\mdwukbzp.sys [X]
S1 mmwglsrt; \??\C:\Windows\system32\drivers\mmwglsrt.sys [X]
S1 momchnhi; \??\C:\Windows\system32\drivers\momchnhi.sys [X]
S1 mpqddqbt; \??\C:\Windows\system32\drivers\mpqddqbt.sys [X]
S1 mrpmohfa; \??\C:\Windows\system32\drivers\mrpmohfa.sys [X]
S1 msnolvid; \??\C:\Windows\system32\drivers\msnolvid.sys [X]
S1 mxxnhgmu; \??\C:\Windows\system32\drivers\mxxnhgmu.sys [X]
S1 ncdcfrsr; \??\C:\Windows\system32\drivers\ncdcfrsr.sys [X]
S1 njwfevdg; \??\C:\Windows\system32\drivers\njwfevdg.sys [X]
S1 nmhjmhhu; \??\C:\Windows\system32\drivers\nmhjmhhu.sys [X]
S1 nrfvgiho; \??\C:\Windows\system32\drivers\nrfvgiho.sys [X]
S1 ntsivqbz; \??\C:\Windows\system32\drivers\ntsivqbz.sys [X]
S1 nubmabmy; \??\C:\Windows\system32\drivers\nubmabmy.sys [X]
S1 nubtbdou; \??\C:\Windows\system32\drivers\nubtbdou.sys [X]
S1 oalwbchx; \??\C:\Windows\system32\drivers\oalwbchx.sys [X]
S1 obcjncsm; \??\C:\Windows\system32\drivers\obcjncsm.sys [X]
S1 occlehut; \??\C:\Windows\system32\drivers\occlehut.sys [X]
S1 odnrqvdh; \??\C:\Windows\system32\drivers\odnrqvdh.sys [X]
S1 ohcokqwx; \??\C:\Windows\system32\drivers\ohcokqwx.sys [X]
S1 ohrilrgq; \??\C:\Windows\system32\drivers\ohrilrgq.sys [X]
S1 oildtljk; \??\C:\Windows\system32\drivers\oildtljk.sys [X]
S1 onliaojz; \??\C:\Windows\system32\drivers\onliaojz.sys [X]
S1 onqkjbff; \??\C:\Windows\system32\drivers\onqkjbff.sys [X]
S1 orfsequc; \??\C:\Windows\system32\drivers\orfsequc.sys [X]
S1 oseatjez; \??\C:\Windows\system32\drivers\oseatjez.sys [X]
S1 osktkrwo; \??\C:\Windows\system32\drivers\osktkrwo.sys [X]
S1 oubtptzj; \??\C:\Windows\system32\drivers\oubtptzj.sys [X]
S1 oxcpldwu; \??\C:\Windows\system32\drivers\oxcpldwu.sys [X]
S1 oxliczve; \??\C:\Windows\system32\drivers\oxliczve.sys [X]
S1 oynimvks; \??\C:\Windows\system32\drivers\oynimvks.sys [X]
S1 pehqryqu; \??\C:\Windows\system32\drivers\pehqryqu.sys [X]
S1 pggqpulc; \??\C:\Windows\system32\drivers\pggqpulc.sys [X]
S1 pmmksmts; \??\C:\Windows\system32\drivers\pmmksmts.sys [X]
S1 pnsleygr; \??\C:\Windows\system32\drivers\pnsleygr.sys [X]
S1 poumtmrs; \??\C:\Windows\system32\drivers\poumtmrs.sys [X]
S1 pplxhqpm; \??\C:\Windows\system32\drivers\pplxhqpm.sys [X]
S1 pqufbqku; \??\C:\Windows\system32\drivers\pqufbqku.sys [X]
S1 prbgjycx; \??\C:\Windows\system32\drivers\prbgjycx.sys [X]
S1 prxmcokv; \??\C:\Windows\system32\drivers\prxmcokv.sys [X]
S1 pzsmddbd; \??\C:\Windows\system32\drivers\pzsmddbd.sys [X]
S1 qbqufqhy; \??\C:\Windows\system32\drivers\qbqufqhy.sys [X]
S1 qhrosjtx; \??\C:\Windows\system32\drivers\qhrosjtx.sys [X]
S1 qsmvdhfi; \??\C:\Windows\system32\drivers\qsmvdhfi.sys [X]
S1 qucijcya; \??\C:\Windows\system32\drivers\qucijcya.sys [X]
S1 qybljeoe; \??\C:\Windows\system32\drivers\qybljeoe.sys [X]
S1 qyesrkln; \??\C:\Windows\system32\drivers\qyesrkln.sys [X]
S1 rcgwivyl; \??\C:\Windows\system32\drivers\rcgwivyl.sys [X]
S1 rdtpuqtg; \??\C:\Windows\system32\drivers\rdtpuqtg.sys [X]
S1 riyoxdmr; \??\C:\Windows\system32\drivers\riyoxdmr.sys [X]
S1 rjfqtihl; \??\C:\Windows\system32\drivers\rjfqtihl.sys [X]
S1 rmgdjbct; \??\C:\Windows\system32\drivers\rmgdjbct.sys [X]
S1 rptaullr; \??\C:\Windows\system32\drivers\rptaullr.sys [X]
S1 rswekzdl; \??\C:\Windows\system32\drivers\rswekzdl.sys [X]
S1 rvfitwln; \??\C:\Windows\system32\drivers\rvfitwln.sys [X]
S1 rxplexat; \??\C:\Windows\system32\drivers\rxplexat.sys [X]
S1 saqjloid; \??\C:\Windows\system32\drivers\saqjloid.sys [X]
S1 sfbczfnu; \??\C:\Windows\system32\drivers\sfbczfnu.sys [X]
S1 sfvmglgq; \??\C:\Windows\system32\drivers\sfvmglgq.sys [X]
S1 shomgtlx; \??\C:\Windows\system32\drivers\shomgtlx.sys [X]
S1 sjpcupju; \??\C:\Windows\system32\drivers\sjpcupju.sys [X]
S1 smwohoam; \??\C:\Windows\system32\drivers\smwohoam.sys [X]
S1 sndqrlpq; \??\C:\Windows\system32\drivers\sndqrlpq.sys [X]
S1 sqbouvkb; \??\C:\Windows\system32\drivers\sqbouvkb.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S1 szlnmday; \??\C:\Windows\system32\drivers\szlnmday.sys [X]
S1 tbgqntsy; \??\C:\Windows\system32\drivers\tbgqntsy.sys [X]
S1 teroilwd; \??\C:\Windows\system32\drivers\teroilwd.sys [X]
S1 tmndfhkb; \??\C:\Windows\system32\drivers\tmndfhkb.sys [X]
U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSBXP.SYS [49408 2013-11-22] (Seiko Epson Corporation)
S1 tnujcnnu; \??\C:\Windows\system32\drivers\tnujcnnu.sys [X]
S1 tqcksknl; \??\C:\Windows\system32\drivers\tqcksknl.sys [X]
S1 tqsbsjlc; \??\C:\Windows\system32\drivers\tqsbsjlc.sys [X]
S1 tsikffly; \??\C:\Windows\system32\drivers\tsikffly.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S1 ttwesors; \??\C:\Windows\system32\drivers\ttwesors.sys [X]
S1 tvekpqpx; \??\C:\Windows\system32\drivers\tvekpqpx.sys [X]
S1 ubooafgf; \??\C:\Windows\system32\drivers\ubooafgf.sys [X]
S1 ubvhtfre; \??\C:\Windows\system32\drivers\ubvhtfre.sys [X]
S1 ulweptqd; \??\C:\Windows\system32\drivers\ulweptqd.sys [X]
S1 uoguaoat; \??\C:\Windows\system32\drivers\uoguaoat.sys [X]
S1 uommptma; \??\C:\Windows\system32\drivers\uommptma.sys [X]
S1 upqpbtdn; \??\C:\Windows\system32\drivers\upqpbtdn.sys [X]
S1 ustrlkyq; \??\C:\Windows\system32\drivers\ustrlkyq.sys [X]
S1 uwawovmj; \??\C:\Windows\system32\drivers\uwawovmj.sys [X]
S1 uwitoyrf; \??\C:\Windows\system32\drivers\uwitoyrf.sys [X]
S1 vbruzplc; \??\C:\Windows\system32\drivers\vbruzplc.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S1 vpbtwqoi; \??\C:\Windows\system32\drivers\vpbtwqoi.sys [X]
S1 vrezzsob; \??\C:\Windows\system32\drivers\vrezzsob.sys [X]
S1 vsxbjjnp; \??\C:\Windows\system32\drivers\vsxbjjnp.sys [X]
S1 vyqnjmzk; \??\C:\Windows\system32\drivers\vyqnjmzk.sys [X]
S1 wddwwaqd; \??\C:\Windows\system32\drivers\wddwwaqd.sys [X]
S1 wflniylh; \??\C:\Windows\system32\drivers\wflniylh.sys [X]
S1 wghfljds; \??\C:\Windows\system32\drivers\wghfljds.sys [X]
S1 wgputgxs; \??\C:\Windows\system32\drivers\wgputgxs.sys [X]
S1 whevowqn; \??\C:\Windows\system32\drivers\whevowqn.sys [X]
S1 wjfhxjdc; \??\C:\Windows\system32\drivers\wjfhxjdc.sys [X]
S1 wntrjfbx; \??\C:\Windows\system32\drivers\wntrjfbx.sys [X]
S1 wpjfhngf; \??\C:\Windows\system32\drivers\wpjfhngf.sys [X]
S1 wvvqyqtj; \??\C:\Windows\system32\drivers\wvvqyqtj.sys [X]
S1 xayywmjg; \??\C:\Windows\system32\drivers\xayywmjg.sys [X]
S1 xfovvvil; \??\C:\Windows\system32\drivers\xfovvvil.sys [X]
S1 xuobeocx; \??\C:\Windows\system32\drivers\xuobeocx.sys [X]
S1 xyfxpuht; \??\C:\Windows\system32\drivers\xyfxpuht.sys [X]
S1 xzowlcxg; \??\C:\Windows\system32\drivers\xzowlcxg.sys [X]
S1 yayugbqk; \??\C:\Windows\system32\drivers\yayugbqk.sys [X]
S1 ycnaehuf; \??\C:\Windows\system32\drivers\ycnaehuf.sys [X]
S1 ycyjctdi; \??\C:\Windows\system32\drivers\ycyjctdi.sys [X]
S1 ydojyunw; \??\C:\Windows\system32\drivers\ydojyunw.sys [X]
S1 ynwmhnhg; \??\C:\Windows\system32\drivers\ynwmhnhg.sys [X]
S1 ypyrvbkv; \??\C:\Windows\system32\drivers\ypyrvbkv.sys [X]
S1 ywwxzymq; \??\C:\Windows\system32\drivers\ywwxzymq.sys [X]
S1 yyswxokb; \??\C:\Windows\system32\drivers\yyswxokb.sys [X]
S1 yzbsdmkk; \??\C:\Windows\system32\drivers\yzbsdmkk.sys [X]
S1 zjuzmibz; \??\C:\Windows\system32\drivers\zjuzmibz.sys [X]
S1 zobovtye; \??\C:\Windows\system32\drivers\zobovtye.sys [X]
S1 zuontaek; \??\C:\Windows\system32\drivers\zuontaek.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-18 18:42 - 2014-11-18 18:42 - 00027782 _____ () C:\Users\Wendy\Desktop\FRST.txt
2014-11-18 18:41 - 2014-11-18 18:42 - 00000000 ____D () C:\FRST
2014-11-18 18:35 - 2014-11-18 18:31 - 01108992 _____ (Farbar) C:\Users\Wendy\Desktop\FRST.exe
2014-11-18 18:35 - 2014-11-18 18:27 - 00112640 _____ (forum.viry.cz) C:\Users\Wendy\Desktop\FRSTLauncher.exe
2014-11-16 21:24 - 2014-11-16 21:24 - 00000000 ____D () C:\Program Files\FindBesTDeali
2014-11-16 21:24 - 2014-11-16 21:24 - 00000000 ____D () C:\Program Files\EnnjeOyCouopon
2014-11-16 21:24 - 2014-11-16 21:24 - 00000000 ____D () C:\Program Files\DiscountExtenssi
2014-11-16 21:24 - 2014-11-16 21:24 - 00000000 ____D () C:\Program Files\CoupEoxteannssiono
2014-11-16 21:24 - 2014-11-16 21:24 - 00000000 ____D () C:\Program Files\BesetSavveForYou
2014-11-16 21:24 - 2014-11-16 21:24 - 00000000 ____D () C:\Program Files\500CaouponS
2014-11-16 21:20 - 2014-11-16 21:20 - 00000000 ____D () C:\Program Files\DOwNSSaVe
2014-11-16 16:41 - 2014-05-14 16:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-16 16:41 - 2014-05-14 16:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-16 16:41 - 2014-05-14 16:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-16 16:41 - 2014-05-14 16:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-16 16:41 - 2014-05-14 16:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-16 16:41 - 2014-05-14 16:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-16 16:41 - 2014-05-14 16:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-16 16:40 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-16 16:40 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-11-09 11:25 - 2014-11-09 11:25 - 00000034 ____H () C:\Users\Wendy\Downloads\.picasa.ini
2014-11-02 22:40 - 2014-11-02 22:40 - 00000000 ____D () C:\ProgramData\Yellow AdBlocker
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-18 18:42 - 2014-03-09 00:31 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-18 18:37 - 2013-07-16 07:06 - 00713888 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-18 18:33 - 2014-03-08 18:28 - 00000918 _____ () C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job
2014-11-18 18:33 - 2014-03-08 18:28 - 00000914 _____ () C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job
2014-11-18 18:33 - 2013-07-17 14:37 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-18 18:33 - 2013-07-15 23:11 - 01561599 ____N () C:\Windows\WindowsUpdate.log
2014-11-18 18:30 - 2009-07-14 04:34 - 00014336 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-18 18:30 - 2009-07-14 04:34 - 00014336 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-18 18:28 - 2014-03-08 18:27 - 00000292 _____ () C:\Windows\Tasks\SaveSense.job
2014-11-18 18:24 - 2013-07-17 15:08 - 00000000 ____D () C:\Users\Wendy\AppData\Local\Pokki
2014-11-18 18:23 - 2014-03-09 00:31 - 00000880 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-18 18:22 - 2009-07-14 04:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-18 18:21 - 2014-09-17 18:07 - 00000000 ____D () C:\ProgramData\FindBesTDeali
2014-11-17 17:55 - 2014-06-19 23:57 - 00000000 ____D () C:\ProgramData\500CaouponS
2014-11-17 17:55 - 2014-05-25 23:07 - 00000000 ____D () C:\ProgramData\EnnjeOyCouopon
2014-11-17 17:55 - 2014-05-23 11:46 - 00000000 ____D () C:\ProgramData\BesetSavveForYou
2014-11-17 17:55 - 2014-05-08 14:07 - 00000000 ____D () C:\ProgramData\DiscountExtenssi
2014-11-16 21:24 - 2014-07-03 20:07 - 00000000 ____D () C:\ProgramData\CoupEoxteannssiono
2014-11-16 21:24 - 2014-05-01 22:24 - 00000000 ____D () C:\ProgramData\1b68d26b8b43131f
2014-11-16 21:21 - 2014-10-13 22:27 - 00000000 ____D () C:\ProgramData\DOwNSSaVe
2014-11-16 21:21 - 2014-05-02 00:12 - 00000000 ____D () C:\ProgramData\save net
2014-11-16 21:21 - 2014-05-02 00:12 - 00000000 ____D () C:\Program Files\save net
2014-11-16 21:07 - 2014-04-25 17:02 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3655644982-2688807069-2557820165-1000UA.job
2014-11-16 18:21 - 2013-07-17 14:27 - 00000000 ____D () C:\Users\Wendy\AppData\Roaming\DAEMON Tools Lite
2014-11-16 18:07 - 2014-04-25 17:02 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3655644982-2688807069-2557820165-1000Core.job
2014-11-16 18:03 - 2009-07-14 02:37 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-11-09 13:37 - 2014-03-08 18:27 - 00000106 _____ () C:\Users\Wendy\AppData\Roaming\WB.CFG
2014-11-09 12:27 - 2014-07-21 23:01 - 00015239 _____ () C:\Users\Wendy\Desktop\20.7.14.xlsx
2014-11-09 12:23 - 2014-03-27 21:14 - 00000000 ____D () C:\Users\Wendy\Desktop\E
2014-10-30 11:24 - 2013-07-16 07:22 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-24 08:00 - 2013-07-17 15:16 - 00000000 ____D () C:\Users\Wendy\AppData\Roaming\vlc
2014-10-24 02:58 - 2014-09-26 19:52 - 00000000 ____D () C:\Users\Wendy\Desktop\B
Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.5156.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-16 20:45
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:453.33 GB) (Free:403.59 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVERY) (Fixed) (Total:12.43 GB) (Free:1.91 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive h: () (Removable) (Total:3.77 GB) (Free:3.71 GB) NTFS
Available physical RAM: 1948.25 MB
Total physical RAM: 3069.2 MB
Percentage of memory in use: 36%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 8C2AC64E)
Partition 1: (Active) - (Size=453.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=12.4 GB) - (Type=07 NTFS)
Disk: 1 (Size: 3.8 GB) (Disk ID: 6EA0766F)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3655644982-2688807069-2557820165-1000Core.job => C:\Users\Wendy\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3655644982-2688807069-2557820165-1000UA.job => C:\Users\Wendy\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SaveSense.job => C:\Users\Wendy\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job => C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe <==== ATTENTION
Task: C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job => C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe <==== ATTENTION
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Wendy\Desktop" je 17332 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync
"C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update
"C:\Users\Wendy\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MapsGalaxy EPM Support
"C:\PROGRA~1\MAPSGA~2\bar\1.bin\39medint.exe" T8EPMSUP.DLL,S [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MapsGalaxy Search Scope Monitor
"C:\PROGRA~1\MAPSGA~2\bar\1.bin\39srchmn.exe" /m=2 /w /h [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MapsGalaxy_39 Browser Plugin Loader
C:\Program Files\MapsGalaxy_39\bar\1.bin\39brmon.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC
"c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
"C:\Program Files\Real\RealPlayer\Update\realsched.exe" -osboot [x]
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vyskakující reklamy v prohlížečích
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Vyskakující reklamy v prohlížečích
Dobry vecer 
Jak jsme na tom s legalitou systemu? Nejvyssi licence opravdu neni bezna domaci verze 
Jak jsme na tom s legalitou systemu? Nejvyssi licence opravdu neni bezna domaci verze Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Vyskakující reklamy v prohlížečích
Dobry vecer, tak to vazne nevim, nebot je to meho spolubydliciho. Nicmene legalne se to tváří.
Re: Vyskakující reklamy v prohlížečích
To si opravdu spolubydla poridil OS, ktery zacina na cenove hranici 5.000 Kc? Vyuziva funkce, ktere ma Ultimate navic oproti Home Premium, ktera stoji polovic (pri porizeni s notebookem jeste mene)? Ulozte na plochu OTL http://oldtimer.geekstogo.com/OTL.exe
- kliknete pravym na ikonu OTL a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- zatrhnete moznosti Pro vsechny uzivatele, Kontrola na havet "LOP", Kontrola na havěť "Purity"
- do okna dole (Custom Scans/Fixes) zkopirujte script, ktery je nize
- zbytek ponechte, jak je a kliknete na Prohledat
- vysledne logy (OTL.txt a Extras.txt) budou dlouhe, takze je rozdelte do vice prispevku (odpovedi)
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /sPokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Vyskakující reklamy v prohlížečích
Stale to pracuje, tak mi to nedalo a zeptal jsem se na ten win a bylo mi receno ze nevi, koupil ten ntb z druhe ruky.
Re: Vyskakující reklamy v prohlížečích
Podle delky prace programu usuzuji, ze logy budou hooodne dlouhe, nebude lepsi je zabalit do zipu a dat jako prilohu?
Re: Vyskakující reklamy v prohlížečích
altrok píše:vysledne logy (OTL.txt a Extras.txt) budou dlouhe, takze je rozdelte do vice prispevku (odpovedi)
ale ani proti pribaleni (zip/rar) do prilohy nic nemam
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Vyskakující reklamy v prohlížečích
Obcas to psalo, neco v tom smyslu, ze soubor nelze precist at pouziji CHKDSK
Re: Vyskakující reklamy v prohlížečích
Je tam smeti az na pudu... rucne bych se umazal 
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose). Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Clean
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm
- spustte jako spravce
- do velkeho okna zkopirujte script uvedeny nize
- kliknete na Run script
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi
Kód: Vybrat vše
autoclean; emptyclsid; iedefaults; FFdefaults; CHRdefaults; emptyalltemp; resethosts;
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Vyskakující reklamy v prohlížečích
Zatim prvni log. Zoek stale asi pracuje
# AdwCleaner v4.101 - Report created 18/11/2014 at 21:30:31
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : Wendy - OSCAR-PC
# Running from : C:\Users\Wendy\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : savesenselive
[#] Service Deleted : savesenselivem
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\IBUpdaterService
Folder Deleted : C:\ProgramData\SaveSenseLive
[!] Folder Deleted : C:\ProgramData\MiniApp
Folder Deleted : C:\ProgramData\500CaouponS
Folder Deleted : C:\ProgramData\BesetSavveForYou
Folder Deleted : C:\ProgramData\CoupEoxteannssiono
Folder Deleted : C:\ProgramData\DiscountExtenssi
Folder Deleted : C:\ProgramData\DOwNSSaVe
Folder Deleted : C:\ProgramData\EnnjeOyCouopon
Folder Deleted : C:\ProgramData\FindBesTDeali
Folder Deleted : C:\ProgramData\save net
Folder Deleted : C:\ProgramData\Yellow AdBlocker
Folder Deleted : C:\ProgramData\1b68d26b8b43131f
Folder Deleted : C:\Program Files\MyPC Backup
Folder Deleted : C:\Program Files\SaveSenseLive
Folder Deleted : C:\Program Files\500CaouponS
Folder Deleted : C:\Program Files\BesetSavveForYou
Folder Deleted : C:\Program Files\CoupEoxteannssiono
Folder Deleted : C:\Program Files\DiscountExtenssi
Folder Deleted : C:\Program Files\DOwNSSaVe
Folder Deleted : C:\Program Files\EnnjeOyCouopon
Folder Deleted : C:\Program Files\FindBesTDeali
Folder Deleted : C:\Program Files\save net
Folder Deleted : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\torch
Folder Deleted : C:\Users\Wendy\AppData\Local\Chromatic Browser
[!] Folder Deleted : C:\Users\Wendy\AppData\Local\Pokki
Folder Deleted : C:\Users\Wendy\AppData\Local\SaveSense
Folder Deleted : C:\Users\Wendy\AppData\Local\SaveSenseLive
Folder Deleted : C:\Users\Wendy\AppData\Local\torch
Folder Deleted : C:\Users\Wendy\AppData\LocalLow\iac
Folder Deleted : C:\Users\Wendy\AppData\Roaming\7go
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Wendy\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Wendy\AppData\Roaming\SaveSense
Folder Deleted : C:\Users\Wendy\AppData\Roaming\SpeedAnalysis3
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\icphmmimmfdlgaaglejeokffekamhplg
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmpodoldaoedijndcfmphdilapclmehg
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngahnmmncfmejkemncckbmddiplneiki
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\odomncfnkpejhjcngkbkidafnnjoiabl
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Wendy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Wendy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
File Deleted : C:\Windows\system32\roboot.exe
File Deleted : C:\Users\Wendy\AppData\Roaming\speedanalysis.ico
File Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_continuetosave.info_0.localstorage
File Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
***** [ Scheduled Tasks ] *****
Task Deleted : SaveSense
Task Deleted : SaveSenseLiveUpdateTaskMachineCore
Task Deleted : SaveSenseLiveUpdateTaskMachineUA
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\gjajpkikblccgefaibcafkfbanllpefi
Key Deleted : HKCU\Software\Classes\pokki
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\SaveSenseLive.exe
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickCtrl.9
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.Update3WebControl.3
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9
Key Deleted : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Key Deleted : HKCU\Software\Classes\Directory\shell\pokki
Key Deleted : HKCU\Software\Classes\Drive\shell\pokki
Key Deleted : HKCU\Software\Classes\lnkfile\shell\pokki
Key Deleted : HKCU\Software\596dfdfe56aeb42
Key Deleted : HKLM\SOFTWARE\596dfdfe56aeb42
Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-615019665
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A2D3FB7A-6873-45E8-AF96-57092D721828}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1070C156-160B-47A0-B7D9-1860396BAB57}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27CE191D-733B-4450-AFCD-096D105288C3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{39A29266-D3E4-462D-AB05-F93B1053F6CF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44FC7A33-2E5C-48DC-B6F5-B81E8005D122}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{73192D81-6D24-4C40-BF7B-2507C6FA0B1A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{88C606E7-BA26-41CB-8CC3-D1E313E34E75}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{93D3100A-BBB6-456C-96FC-82CAC5F383AC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{998745A3-2AE4-488D-8092-B98FB20A00C2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9E0546FF-D44F-4FE4-A324-995FCACB8D33}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A2D3FB7A-6873-45E8-AF96-57092D721828}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C1424421-D274-491E-9D47-11C8D8CB5F9A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CDDAB3A4-E64D-4AE0-9E1D-F3132F5F913F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E66A759D-367F-433E-85C6-ED7F040BCC32}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F4B8D46C-4EEE-401B-8607-DC03025F34B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{0771C34F-730F-4535-AD4C-37B74D27188E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27CE191D-733B-4450-AFCD-096D105288C3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}
Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\BABSOLUTION
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\distromatic
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Pokki
Key Deleted : HKCU\Software\SaveSense
Key Deleted : HKCU\Software\SaveSenseLive
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\usyndication.com
Key Deleted : HKCU\Software\USyndication
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Iminent
Key Deleted : HKLM\SOFTWARE\SaveSenseLive
Key Deleted : HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\Tiger Savings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2DF3E224-05CD-4113-AA7A-86F2F6607B46}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7DD5E91C-3864-77EC-7635-D14910C2A03E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17207
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Google Chrome v34.0.1847.131
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.gboxapp.com/?category=web&query={searchTerms}&x=0&y=0&language=en
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : icphmmimmfdlgaaglejeokffekamhplg
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : hdcljnpjcehdifhjbjljkhkccknahbch
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : ihgjodoloejopheblnlopkabhmggbnbo
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : lbljijeekodaopfmdmldffilmejgmbhb
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : fmpodoldaoedijndcfmphdilapclmehg
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : ngahnmmncfmejkemncckbmddiplneiki
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : odomncfnkpejhjcngkbkidafnnjoiabl
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://search.gboxapp.com/
-\\ Comodo Dragon v
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.gboxapp.com/?category=web&query={searchTerms}&x=0&y=0&language=en
*************************
AdwCleaner[R0].txt - [17832 octets] - [18/11/2014 21:24:28]
AdwCleaner[S0].txt - [18305 octets] - [18/11/2014 21:30:31]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [18366 octets] ##########
# AdwCleaner v4.101 - Report created 18/11/2014 at 21:30:31
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : Wendy - OSCAR-PC
# Running from : C:\Users\Wendy\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : savesenselive
[#] Service Deleted : savesenselivem
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\IBUpdaterService
Folder Deleted : C:\ProgramData\SaveSenseLive
[!] Folder Deleted : C:\ProgramData\MiniApp
Folder Deleted : C:\ProgramData\500CaouponS
Folder Deleted : C:\ProgramData\BesetSavveForYou
Folder Deleted : C:\ProgramData\CoupEoxteannssiono
Folder Deleted : C:\ProgramData\DiscountExtenssi
Folder Deleted : C:\ProgramData\DOwNSSaVe
Folder Deleted : C:\ProgramData\EnnjeOyCouopon
Folder Deleted : C:\ProgramData\FindBesTDeali
Folder Deleted : C:\ProgramData\save net
Folder Deleted : C:\ProgramData\Yellow AdBlocker
Folder Deleted : C:\ProgramData\1b68d26b8b43131f
Folder Deleted : C:\Program Files\MyPC Backup
Folder Deleted : C:\Program Files\SaveSenseLive
Folder Deleted : C:\Program Files\500CaouponS
Folder Deleted : C:\Program Files\BesetSavveForYou
Folder Deleted : C:\Program Files\CoupEoxteannssiono
Folder Deleted : C:\Program Files\DiscountExtenssi
Folder Deleted : C:\Program Files\DOwNSSaVe
Folder Deleted : C:\Program Files\EnnjeOyCouopon
Folder Deleted : C:\Program Files\FindBesTDeali
Folder Deleted : C:\Program Files\save net
Folder Deleted : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\torch
Folder Deleted : C:\Users\Wendy\AppData\Local\Chromatic Browser
[!] Folder Deleted : C:\Users\Wendy\AppData\Local\Pokki
Folder Deleted : C:\Users\Wendy\AppData\Local\SaveSense
Folder Deleted : C:\Users\Wendy\AppData\Local\SaveSenseLive
Folder Deleted : C:\Users\Wendy\AppData\Local\torch
Folder Deleted : C:\Users\Wendy\AppData\LocalLow\iac
Folder Deleted : C:\Users\Wendy\AppData\Roaming\7go
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Wendy\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Wendy\AppData\Roaming\SaveSense
Folder Deleted : C:\Users\Wendy\AppData\Roaming\SpeedAnalysis3
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki
Folder Deleted : C:\Users\Wendy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\icphmmimmfdlgaaglejeokffekamhplg
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdcljnpjcehdifhjbjljkhkccknahbch
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmpodoldaoedijndcfmphdilapclmehg
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngahnmmncfmejkemncckbmddiplneiki
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\odomncfnkpejhjcngkbkidafnnjoiabl
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Wendy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihgjodoloejopheblnlopkabhmggbnbo
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
Folder Deleted : C:\Users\Wendy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbljijeekodaopfmdmldffilmejgmbhb
File Deleted : C:\Windows\system32\roboot.exe
File Deleted : C:\Users\Wendy\AppData\Roaming\speedanalysis.ico
File Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_continuetosave.info_0.localstorage
File Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
***** [ Scheduled Tasks ] *****
Task Deleted : SaveSense
Task Deleted : SaveSenseLiveUpdateTaskMachineCore
Task Deleted : SaveSenseLiveUpdateTaskMachineUA
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\gjajpkikblccgefaibcafkfbanllpefi
Key Deleted : HKCU\Software\Classes\pokki
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\SaveSenseLive.exe
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickCtrl.9
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLive.Update3WebControl.3
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\SaveSenseLiveUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject
Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9
Key Deleted : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Key Deleted : HKCU\Software\Classes\Directory\shell\pokki
Key Deleted : HKCU\Software\Classes\Drive\shell\pokki
Key Deleted : HKCU\Software\Classes\lnkfile\shell\pokki
Key Deleted : HKCU\Software\596dfdfe56aeb42
Key Deleted : HKLM\SOFTWARE\596dfdfe56aeb42
Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-615019665
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A2D3FB7A-6873-45E8-AF96-57092D721828}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1070C156-160B-47A0-B7D9-1860396BAB57}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27CE191D-733B-4450-AFCD-096D105288C3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{39A29266-D3E4-462D-AB05-F93B1053F6CF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44FC7A33-2E5C-48DC-B6F5-B81E8005D122}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{73192D81-6D24-4C40-BF7B-2507C6FA0B1A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{88C606E7-BA26-41CB-8CC3-D1E313E34E75}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{93D3100A-BBB6-456C-96FC-82CAC5F383AC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{997E3BFB-F821-411C-8B96-D61D415EC8FA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{998745A3-2AE4-488D-8092-B98FB20A00C2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9E0546FF-D44F-4FE4-A324-995FCACB8D33}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A2D3FB7A-6873-45E8-AF96-57092D721828}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C1424421-D274-491E-9D47-11C8D8CB5F9A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CDDAB3A4-E64D-4AE0-9E1D-F3132F5F913F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E66A759D-367F-433E-85C6-ED7F040BCC32}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F4B8D46C-4EEE-401B-8607-DC03025F34B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{0771C34F-730F-4535-AD4C-37B74D27188E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{71E129FF-6C2A-4984-818C-7E2C998B8D99}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27CE191D-733B-4450-AFCD-096D105288C3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}
Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\BABSOLUTION
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\distromatic
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Pokki
Key Deleted : HKCU\Software\SaveSense
Key Deleted : HKCU\Software\SaveSenseLive
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\usyndication.com
Key Deleted : HKCU\Software\USyndication
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Iminent
Key Deleted : HKLM\SOFTWARE\SaveSenseLive
Key Deleted : HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\Tiger Savings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2DF3E224-05CD-4113-AA7A-86F2F6607B46}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7DD5E91C-3864-77EC-7635-D14910C2A03E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17207
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Google Chrome v34.0.1847.131
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.gboxapp.com/?category=web&query={searchTerms}&x=0&y=0&language=en
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : icphmmimmfdlgaaglejeokffekamhplg
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : hdcljnpjcehdifhjbjljkhkccknahbch
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : ihgjodoloejopheblnlopkabhmggbnbo
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : lbljijeekodaopfmdmldffilmejgmbhb
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : fmpodoldaoedijndcfmphdilapclmehg
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : ngahnmmncfmejkemncckbmddiplneiki
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : odomncfnkpejhjcngkbkidafnnjoiabl
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://search.gboxapp.com/
-\\ Comodo Dragon v
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.gboxapp.com/?category=web&query={searchTerms}&x=0&y=0&language=en
*************************
AdwCleaner[R0].txt - [17832 octets] - [18/11/2014 21:24:28]
AdwCleaner[S0].txt - [18305 octets] - [18/11/2014 21:30:31]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [18366 octets] ##########
Re: Vyskakující reklamy v prohlížečích
Jeste bych mel otazku ohledne uzivatelskych uctu. Tento PC mela jakasi wendy, spolubydla zmenil nazev uctu na Oskar, ale stale je to ve slozce wendy. Da se to nejak jednoduse predelat aby ty svoje subory mel ve slozce Oskar? Rikal ze to po nem obcas chce asi admin prava, nebo mu to zakazuje pristup k nekterym souborum. Bohuzel jsem ho vazne moc nepochopl 
Cetl jsem nejake navody jak na to ale vsechno relativne slozte, nevite jestli existuje nejaka ne moc drasticka cesta?
Cetl jsem nejake navody jak na to ale vsechno relativne slozte, nevite jestli existuje nejaka ne moc drasticka cesta?Re: Vyskakující reklamy v prohlížečích
vypada to ze to stale pracuje, tak to sem dam rano, pripadne odpoledne az prijdu z prace. Zatim dekuji za spolupraci.
Re: Vyskakující reklamy v prohlížečích
Nemam moznost postup otestovat primo na Win 7 Ultimate a nerad bych Vas mel na svedomi, ale pokud neni anglictina problem, tento navod by mohl pomoct http://social.technet.microsoft.com/wik ... older.aspx Dobre, zitra to doresime.Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Vyskakující reklamy v prohlížečích
Tak jsem dorazil domu az ted. Zoek se stale tvaril ze pracuje . Na ty odkazy mrknu. DIk
Re: Vyskakující reklamy v prohlížečích
zoek ukoncete, restartujte PC a dejte mu druhou sanci (znovu ho pouzijte dle navodu vyse).Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Přispějete na provoz fóra?