Wolny internet i wyskakujące reklamy

Post22 mar 2015, 17:13

Sam komputer działa dość sprawnie, natomiast strony internetowe chodzą tak wolno, że właściwie nie da sie na nich pracować. Do tego przy wciśnięciu każdego okienka (nawet wyszukiwarki) wyskakują reklamy i jakieś strony. Dodaję, że zupełnie nie znam się na komputerach, więc nawet nie wiem jakie załączniki powinnam dodać, ale jeśli trzeba to takowe dostarczę.

Post22 mar 2015, 17:32

Witaj kara1,
jestem djarta i spróbuję Ci pomóc.

Na sam początek dostarcz mi logi z FRST => bezpieczenstwo/korzystanie-z-frst-t28530.html

Pozdrawiam.

Post22 mar 2015, 17:48

A podaj specyfikacje komputera i jaka przeglądarkę używasz np. Firefox, Chrome itp.

Post22 mar 2015, 18:15

Używam zwykle Chroma. Co do specyfiki, możesz dopracować pytanie?

Tutaj te dane:
Dostępne tylko dla zarejestrowanych użytkowników

Dostępne tylko dla zarejestrowanych użytkowników

Dostępne tylko dla zarejestrowanych użytkowników

Post22 mar 2015, 18:35

kara1 pisze:Co do specyfiki, możesz dopracować pytanie?

Chodzi o procesor/RAM/grafikę itp. ale myślę że to zbędne gdyż najważniejsze informacje są już zawarte w logach

Post22 mar 2015, 19:05

W sumie racja to jest w logach zawarte

ale wcześniej nie było logów

, ale z drugiej strony jak ktoś się nie zna na logach to nawet nie zagląda do nich. Ale dobra niech będzie ze każdy się na tym zna i niech zaglądają na logi.

Post22 mar 2015, 19:05

co tu sie dzieje O.o mam wirusa ? moje posty automatycznie znikają pomocy napisałem się nieźle i wszystko stracone !

Post22 mar 2015, 19:09

1. Otwórz notatnik i wklej:

CloseProcesses:
S1 dpjuhquw; \??\C:\Windows\system32\drivers\dpjuhquw.sys [X]
S1 gzznzpiw; \??\C:\Windows\system32\drivers\gzznzpiw.sys [X]
S1 iulaemcy; \??\C:\Windows\system32\drivers\iulaemcy.sys [X]
S1 kohyvjea; \??\C:\Windows\system32\drivers\kohyvjea.sys [X]
S1 lankqgma; \??\C:\Windows\system32\drivers\lankqgma.sys [X]
S1 ntmfqlqj; \??\C:\Windows\system32\drivers\ntmfqlqj.sys [X]
S1 qfunrrtb; \??\C:\Windows\system32\drivers\qfunrrtb.sys [X]
S1 wpcbhwqs; \??\C:\Windows\system32\drivers\wpcbhwqs.sys [X]
R1 qrnfd_1_10_0_9; C:\Windows\System32\drivers\qrnfd_1_10_0_9.sys [58224 2015-02-06] (Quick Ref)
C:\Windows\System32\drivers\qrnfd_1_10_0_9.sys
R2 ASDR; C:\Windows\SysWOW64\ASDR.exe [61440 2009-07-27] () [File not signed]
R2 cewomose; C:\Users\Ola\AppData\Roaming\85C158C0-1426617719-11D5-9C29-20CF30F2C8AC\jnsl459C.tmp [125440 2015-03-17] () [File not signed]
S2 dealplylive; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-07-09] (DealPly Technologies Ltd)
S3 dealplylivem; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-07-09] (DealPly Technologies Ltd)
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2015-03-18] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2015-03-18] (globalUpdate) [File not signed]
R2 IBUpdaterService; C:\Windows\system32\dmwu.exe [3039536 2015-01-05] ()
R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158816 2015-03-10] (XTab system)
R2 likyhevy; C:\Users\Ola\AppData\Local\85C158C0-1426622212-11D5-9C29-20CF30F2C8AC\insh7CE6.tmp [103424 2015-03-17] () [File not signed]
R2 mekytipo; C:\Users\Ola\AppData\Local\85C158C0-1426621563-11D5-9C29-20CF30F2C8AC\snsn95D1.tmp [136192 2015-03-17] () [File not signed]
R2 MyWebSearchService; C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSVC.EXE [34320 2012-02-04] (MyWebSearch.com)
R2 qorypire; C:\Users\Ola\AppData\Roaming\85C158C0-1426617719-11D5-9C29-20CF30F2C8AC\nskCBA3.tmp [232448 2015-03-21] () [File not signed]
R2 qrsvc_1.10.0.9; C:\Program Files (x86)\QuickRef_1.10.0.9\Service\qrsvc.exe [278592 2015-02-06] (Quick Ref)
R2 tigozoce; C:\Users\Ola\AppData\Local\85C158C0-1426621544-11D5-9C29-20CF30F2C8AC\cnsi508A.tmp [96256 2015-03-17] () [File not signed]
CHR Extension: (SweetPacks Chrome Extension) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj [2013-01-24]
CHR Extension: (opnbmdkdflhjiclaoiiifmheknpccalb) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\opnbmdkdflhjiclaoiiifmheknpccalb [2015-03-21]
CHR Extension: (HQCinema Pro 2.1V16.03) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj [2015-03-17]
CHR HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - Dostępne tylko dla zarejestrowanych użytkowników
CHR HKLM-x32\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonChrome.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - No Path Or update_url value
CHR HKLM-x32\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx [2013-01-24]
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - No Path Or update_url value
CHR HKLM-x32\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Windows\SysWOW64\jmdp\SweetNT.crx [2014-04-06]
CHR HKLM-x32\...\Chrome\Extension: [onpejdpfebeopffobknkodakfphdelnh] - C:\Users\Ola\AppData\Roaming\BabSolution\CR\Delta.crx [Not Found]
CHR Extension: (ibkclpciafdglkjkcibmohobjkcfkaef) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibkclpciafdglkjkcibmohobjkcfkaef [2015-03-21]
CHR Extension: (SweetIM for Facebook) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn [2013-01-24]
CHR Extension: (CinemaP-1.9cV05.03) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\kljbbcnooaklhpifalnihdiofoahmmjj [2015-03-17]
CHR Extension: (DealPly Germany) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf [2013-07-09]
CHR Extension: (Browse2save) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\naneoookjplhlbhmibmkmddejdnlooaf [2013-02-16]
CHR Extension: (cellaaeoekimmemgdheibaibbaoeefbl) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\cellaaeoekimmemgdheibaibbaoeefbl [2015-03-21]
CHR Extension: (Search-NewTab) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhilnnpdikaedgaijiailjcndmooebph [2013-02-16]
CHR Extension: (Browse2save) - C:\Users\Ola\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpbiahmhokkmnlhjgcpahalnbkjllkja [2013-01-15]
CHR HomePage: Default -> hxxp://www.istartsurf.com/?type=hppp&ts ... XX9VMTDJER
CHR StartupUrls: Default -> "hxxp://www.istartsurf.com/?type=hppp&ts=1426618654&from=face&uid=ST3500418AS_9VMTDJERXXXX9VMTDJER"
CHR DefaultSearchKeyword: Default -> istartsurf
FF HKLM-x32\...\Firefox\Extensions: [support@predictad.com] - C:\Program Files (x86)\AutocompletePro\support@predictad.com
FF Extension: AutocompletePro - Your handy search suggestions tool - C:\Program Files (x86)\AutocompletePro\support@predictad.com [2011-05-03]
FF HKLM-x32\...\Firefox\Extensions: [m3ffxtbr@mywebsearch.com] - C:\Program Files (x86)\MyWebSearch\bar\1.bin
FF Extension: My Web Search - C:\Program Files (x86)\MyWebSearch\bar\1.bin [2012-02-04]
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2015-03-18] (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2015-03-18] (globalUpdate)
FF Plugin-x32: @tools.dpliveupdate.com/DealPlyLive Update;version=3 -> C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll [2013-07-09] (DealPly Technologies Ltd)
FF Plugin-x32: @tools.dpliveupdate.com/DealPlyLive Update;version=9 -> C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll [2013-07-09] (DealPly Technologies Ltd)
FF Plugin-x32: @mywebsearch.com/Plugin -> C:\Program Files (x86)\MyWebSearch\bar\1.bin\NPMyWebS.dll [2012-02-04] (MyWebSearch.com)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe Dostępne tylko dla zarejestrowanych użytkowników
Toolbar: HKU\.DEFAULT -> No Name - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No File
Toolbar: HKU\.DEFAULT -> No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKU\.DEFAULT -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\.DEFAULT -> No Name - {A0B1221C-A3FF-4F7C-A393-DC63AF5301E9} - No File
Toolbar: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> No Name - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No File
Toolbar: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> No Name - {0E91EFA2-AF48-4333-9965-5DD29DE31B56} - No File
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Dostępne tylko dla zarejestrowanych użytkowników
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = Dostępne tylko dla zarejestrowanych użytkowników
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Dostępne tylko dla zarejestrowanych użytkowników
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = Dostępne tylko dla zarejestrowanych użytkowników
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Dostępne tylko dla zarejestrowanych użytkowników
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Dostępne tylko dla zarejestrowanych użytkowników
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = Dostępne tylko dla zarejestrowanych użytkowników
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = Dostępne tylko dla zarejestrowanych użytkowników
URLSearchHook: HKLM-x32 - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
URLSearchHook: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 - SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
URLSearchHook: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 - (No Name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL (MyWebSearch.com)
URLSearchHook: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKLM-x32 -> {56256A51-B582-467e-B8D4-7786EDA79AE0} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKLM-x32 -> {8A96AF9E-4074-43b7-BEA3-87217BDA7406} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}&pid=710&r=2013/02/16&hid=3878318829&lg=EN&cc=PL
SearchScopes: HKLM-x32 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}&crg=3.1010000.00000&barid={535494E0-1418-11E0-8BF2-20CF30F2C8AC}
SearchScopes: HKU\.DEFAULT -> DefaultScope {56256A51-B582-467e-B8D4-7786EDA79AE0} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\.DEFAULT -> {56256A51-B582-467e-B8D4-7786EDA79AE0} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {8A96AF9E-4074-43b7-BEA3-87217BDA7406} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {9E206429-5B5C-4D61-946C-631AF38BEDE4} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
SearchScopes: HKU\S-1-5-21-2875713022-3664676025-4200636764-1000 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}
BHO: UrlHelper Class -> {A40DC6C5-79D0-4ca8-A185-8FF989AF1115} -> C:\PROGRA~2\WI3C8A~1\Datamngr\x64\IEBHO.dll No File
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation.)
BHO-x32: MyWebSearch Search Assistant BHO -> {00A6FAF1-072E-44cf-8957-5838F569A31D} -> C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL [2012-02-04] (MyWebSearch.com)
BHO-x32: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-12-18] (Adobe Systems Incorporated)
BHO-x32: mwsBar BHO -> {07B18EA1-A523-4961-B6BB-170DE4475CCA} -> C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL [2012-02-04] (MyWebSearch.com)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: AC-Pro -> {0FB6A909-6086-458F-BD92-1F8EE10042A0} -> C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll [2010-02-17] (SimplyGen)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18] (Adobe Systems Incorporated)
BHO-x32: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files (x86)\XTab\SupTab.dll [2015-03-10] (Thinknice Co. Limited)
BHO-x32: Winamp Toolbar Loader -> {4accc990-3dc7-4456-a734-5cb4b610a7f5} -> C:\Program Files (x86)\Winamp Toolbar\winamppltb.dll [2012-06-04] (AOL Inc.)
BHO-x32: Browse2save -> {5FBCB47D-4CEE-D34F-81CF-08E2647CC40C} -> C:\ProgramData\Browse2save\511ff4e4c43a3.dll [2013-02-16] ()
BHO-x32: DVDVideoSoftTB Toolbar -> {872b5b88-9db5-4310-bdd0-ac189557e5f5} -> C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll [2011-05-09] (Conduit Ltd.)
BHO-x32: Search-NewTab -> {91E0E1B1-A69A-6DA2-A88F-C1391B2EE5F4} -> C:\ProgramData\Search-NewTab\511ff51764d81.dll [2013-02-16] ()
BHO-x32: Searchqu Toolbar -> {99079a25-328f-4bd4-be04-00955acaa0a7} -> C:\Program Files (x86)\Windows iLivid Toolbar\ToolBar\searchqudtx.dll [2011-03-02] ()
BHO-x32: Babylon IE plugin -> {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} -> C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll No File
BHO-x32: UrlHelper Class -> {A40DC6C5-79D0-4ca8-A185-8FF989AF1115} -> C:\PROGRA~2\WI3C8A~1\Datamngr\IEBHO.dll No File
BHO-x32: No Name -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> No File
BHO-x32: DealPly Shopping -> {ae48ed75-5a56-4c5f-bbce-6f1ac3875f66} -> C:\Program Files (x86)\DealPly\DealPlyIE.dll [2013-06-04] (DealPly)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.)
BHO-x32: Browse2save -> {E026AB96-0819-1A18-5214-E3EE8B3B974D} -> C:\ProgramData\Browse2save\50f5606fa5b54.dll [2013-01-15] ()
BHO-x32: SweetPacks Browser Helper -> {EEE6C35C-6118-11DC-9C72-001320C79847} -> C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-07-04] (SweetIM Technologies Ltd.)
BHO-x32: Yontoo -> {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} -> C:\Program Files (x86)\Yontoo\YontooIEClient.dll [2012-01-19] (Yontoo LLC)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation.)
Toolbar: HKLM-x32 - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-07-04] (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - IspAssistant-FileServe - {0E91EFA2-AF48-4333-9965-5DD29DE31B56} - C:\Program Files (x86)\FileServe Toolbar\fileservetb.DLL [2011-03-24] ()
Toolbar: HKLM-x32 - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files (x86)\Windows iLivid Toolbar\ToolBar\searchqudtx.dll [2011-03-02] ()
Toolbar: HKLM-x32 - My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL [2012-02-04] (MyWebSearch.com)
Toolbar: HKLM-x32 - Winamp Toolbar - {a0b1221c-a3ff-4f7c-a393-dc63af5301e9} - C:\Program Files (x86)\Winamp Toolbar\winamppltb.dll [2012-06-04] (AOL Inc.)
Toolbar: HKLM-x32 - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll [2011-05-09] (Conduit Ltd.)
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2014-04-23] (Samsung)
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\...\Run: [GoogleChromeAutoLaunch_3F8692A37A6C6B9A5F43B7C356D72276] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [809288 2015-03-14] (Google Inc.)
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\...\MountPoints2: {2dd770fc-8107-11e2-8d83-20cf30f2c8ac} - J:\Startme.exe
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [2872320 2010-11-20] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe -update activex
AppInit_DLLs: C:\PROGRA~2\WI3C8A~1\Datamngr\x64\datamngr.dll => C:\PROGRA~2\WI3C8A~1\Datamngr\x64\datamngr.dll File Not Found
AppInit_DLLs: C:\PROGRA~2\WI3C8A~1\Datamngr\x64\IEBHO.dll => C:\PROGRA~2\WI3C8A~1\Datamngr\x64\IEBHO.dll File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
HKU\S-1-5-21-2875713022-3664676025-4200636764-1000\...\Run: [MyWebSearch Email Plugin] => C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEMON.EXE [38408 2012-02-04] (MyWebSearch.com)
HKLM-x32\...\Run: [mbot_pl_184] => C:\Program Files (x86)\mbot_pl_184\mbot_pl_184.exe [3979944 2015-03-13] ()
HKLM-x32\...\Run: [WinCheck] => C:\Users\Ola\AppData\Local\85C158C0-1426621403-11D5-9C29-20CF30F2C8AC\bnsw2831.exe [277504 2015-03-17] ()
HKLM-x32\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
HKLM-x32\...\RunOnce: [upmbot_pl_184.exe] => C:\Users\Ola\AppData\Local\mbot_pl_184\upmbot_pl_184.exe [3308712 2015-03-13] ()
HKLM-x32\...\Run: [SweetIM] => C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [115032 2012-05-29] (SweetIM Technologies Ltd.)
HKLM-x32\...\Run: [DATAMNGR] => C:\PROGRA~2\WI3C8A~1\Datamngr\DATAMN~1.EXE
HKLM-x32\...\Run: [My Web Search Bar Search Scope Monitor] => C:\Program Files (x86)\MyWebSearch\bar\1.bin\M3SRCHMN.EXE [34336 2012-02-04] (MyWebSearch.com)
HKLM-x32\...\Run: [MyWebSearch Email Plugin] => C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEMON.EXE [38408 2012-02-04] (MyWebSearch.com)
NETSVC: update -> No ServiceDLL Path.
DeleteJunctionsIndirectory: C:\Windows\system64
C:\Windows\Tasks\*.job
C:\Windows\Tasks\*.*
C:\ProgramData\*.tmp
C:\ProgramData\*.log
C:\Users\Ola\AppData\Local\{1A35C31F-7C21-4721-956A-C5BEADCC82DC}
C:\Users\Ola\AppData\Roaming\IIEAI
C:\Users\Ola\AppData\Roaming\IIEAI.exe
C:\Users\Ola\AppData\Roaming\logs.dat
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BasementDuster => ""="service"
C:\ProgramData\CxM68h4Q.exe
Task: {0104BF72-670A-4CCD-BAD1-2CA162D233A0} - System32\Tasks\At42 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {0474CA7F-E166-4479-AAD6-1CB824384E55} - System32\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3 => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-3.exe [2015-03-17] (Cinema PlusV05.03) <==== ATTENTION
Task: {047BD5E9-3CEB-4E3D-9E63-38FF6E9D353B} - System32\Tasks\At43 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {04958B99-7708-4086-82E4-101923A3A5BB} - System32\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-1-6 => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-1-6.exe [2015-03-17] (OB) <==== ATTENTION
Task: {04C14156-2F97-4E69-A2AC-E6B8603EC9FF} - System32\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-10_user => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-10.exe [2015-03-17] (OB) <==== ATTENTION
Task: {0F1B2AE0-3C9D-4B45-BF8F-7F8033D96A34} - System32\Tasks\At34 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {1069A07E-6195-4464-B59A-92D7B03F163B} - System32\Tasks\4465 => Wscript.exe C:\Users\Ola\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION
Task: {119AF4D9-9D8E-4585-8608-0FAE93B8E146} - System32\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-10.exe [2015-03-17] (Cinema PlusV05.03) <==== ATTENTION
Task: {193B4565-34C4-4A1A-9EB3-21770253C3C7} - System32\Tasks\{7CF59B93-F33C-4235-A1D0-9EA05AF3AA1E} => C:\Program Files (x86)\Deep Silver\Wildlife Park 2\WLP2.exe
Task: {1C7EC323-F374-4BDB-BBE9-543DB36233C5} - System32\Tasks\At37 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {1F0F1CB9-F790-46D8-A34A-B47C58322016} - System32\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-5_user => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-5.exe [2015-03-17] (OB) <==== ATTENTION
Task: {22A73DA2-2FDE-4E15-AC6B-AA9D3DA3FEA7} - System32\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-5_user => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-5.exe [2015-03-17] (ObjectB) <==== ATTENTION
Task: {255C7838-A2E8-4056-B0AD-26EA5CF3699C} - System32\Tasks\At26 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {25C98C04-6184-4E51-B27B-DD9884F60E68} - System32\Tasks\At29 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {395CCA76-9B8B-42E6-A334-8A9F7ED17D95} - System32\Tasks\At38 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {39906415-CFA0-45CC-BD7E-B471A33545D7} - System32\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-1-6 => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-1-6.exe [2015-03-17] (Webby) <==== ATTENTION
Task: {3EC1D6C8-4C43-4E1A-8483-E05941C86821} - System32\Tasks\{3B8928B0-2443-4C67-9361-DB29A1AE9137} => pcalua.exe -a "C:\Users\Ola\Desktop\Nowy folder (4)\MyHorseAndMe_Demo.exe" -d "C:\Users\Ola\Desktop\Nowy folder (4)"
Task: {480B49D6-BBD4-49CF-8A3E-6B796210701E} - System32\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-5 => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-5.exe [2015-03-17] (ObjectB) <==== ATTENTION
Task: {4BC2C0FA-540B-40D5-BDF0-0BA8397089B2} - System32\Tasks\DealPlyLiveUpdateTaskMachineCore => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-07-09] (DealPly Technologies Ltd) <==== ATTENTION
Task: {4FE498B1-1677-42F9-BFD2-8068629CB5AA} - System32\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5 => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-5.exe [2015-03-17] (Cinema PlusV05.03) <==== ATTENTION
Task: {50CCAB4A-4B58-4E5A-858B-311927A7C204} - System32\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-5 => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-5.exe [2015-03-18] (InstallMoonV18.03) <==== ATTENTION
Task: {56A306C3-5834-4E46-BD08-134A1063ABA1} - System32\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-1-7 => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-1-7.exe [2015-03-17] (OB) <==== ATTENTION
Task: {58B476CB-C5CF-4892-8B31-042BA1EB032A} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2875713022-3664676025-4200636764-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {5D6097B3-D5BB-4B57-9782-2360E1E7C986} - System32\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-6 => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-6.exe [2015-03-17] (OB) <==== ATTENTION
Task: {5F249DCB-8D91-4DDC-9A67-1D6F68444821} - System32\Tasks\YourFile DownloaderUpdate => C:\Program Files (x86)\YourFileDownloader\YourFileUpdater.exe <==== ATTENTION
Task: {60CADB4F-603D-4BD0-970D-FD445E2C268B} - System32\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-5_user => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-5.exe [2015-03-18] (InstallMoonV18.03) <==== ATTENTION
Task: {66049E14-46C4-42EC-BABE-3A55D17E1B30} - System32\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7 => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.exe [2015-03-17] (Cinema PlusV05.03) <==== ATTENTION
Task: {6950594A-2F84-4924-9157-30C7F7919C0B} - System32\Tasks\At47 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {6AFB6005-3CA7-449C-8F9B-3A0E2808DE97} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files (x86)\ASUS\AASP\1.01.02\AsLoader.exe [2009-08-20] (ASUSTeK Computer Inc.)
Task: {6BFBB46A-E888-46DC-B7E0-BF7335749F51} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\Ola\AppData\Local\SmartWeb\SmartWebHelper.exe [2015-02-17] (SoftBrain Technologies Ltd.) <==== ATTENTION
Task: {6F9D615F-7BD7-4A66-A295-6FF5D03D4ACD} - System32\Tasks\At35 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {751FE90F-A334-4881-9F2C-08EB72DB781F} - System32\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-5_user => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-5.exe [2015-03-17] (Webby) <==== ATTENTION
Task: {7B7F77E2-609F-4D10-96CF-95127ABC1685} - System32\Tasks\At28 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {821B2508-8FEC-4A05-B9BA-A8C23B60C5C2} - System32\Tasks\{B50B664E-1E5E-4011-800D-0CB3F28C5A86} => C:\Program Files (x86)\Deep Silver\Wildlife Park 2\WLP2.exe
Task: {821BC8A1-D1C5-4100-823B-9DDFA894D3C0} - System32\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7 => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-7.exe [2015-03-17] (Cinema PlusV05.03) <==== ATTENTION
Task: {84F8377A-F548-42CC-BBA0-93F287812227} - System32\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-1-7 => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-1-7.exe [2015-03-17] (Webby) <==== ATTENTION
Task: {858FFE27-D976-4C99-92E6-FDEF4676AE7D} - System32\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-7 => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-7.exe [2015-03-17] (Webby) <==== ATTENTION
Task: {86D280B2-DB65-464C-8E6E-ED4F55D199B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {88C5E34D-B8FF-43EE-9D97-C712A9A44BB9} - System32\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-3 => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-3.exe [2015-03-17] (HQ CinemaV16.03) <==== ATTENTION
Task: {90625584-A883-4DAA-AEF5-C43EB0E29B08} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-03-18] (globalUpdate) <==== ATTENTION
Task: {93227CEC-A3FC-45B2-8FC5-C424FCBB81E1} - System32\Tasks\At36 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {946ECE52-EA4E-45BF-B745-563CEAFDD678} - System32\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-6 => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-6.exe [2015-03-18] (InstallMoonV18.03) <==== ATTENTION
Task: {95740BCF-EFC1-49BE-B2BF-39865CC6E2FC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2009-10-22] (Apple Inc.)
Task: {970854CF-0078-485E-91EA-7DA8B3240C61} - System32\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-5 => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-5.exe [2015-03-17] (OB) <==== ATTENTION
Task: {981E78E0-AC2A-4455-8B4F-1C770446D140} - System32\Tasks\IIEAI => C:\Users\Ola\AppData\Roaming\IIEAI.exe [2015-03-18] (InstallMoonV18.03) <==== ATTENTION
Task: {99C4E69E-B083-4CA1-9853-B842F7C15716} - System32\Tasks\Dealply => C:\Users\Ola\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe [2013-07-09] () <==== ATTENTION
Task: {9B71AE7C-053C-4F54-816B-DE4D758B745A} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {9CC5E4D4-6C4B-432A-86FF-730FA0BAE769} - System32\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-6 => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-6.exe [2015-03-17] (Webby) <==== ATTENTION
Task: {A3491AD3-9691-45B4-B8ED-375CEDB66BC6} - System32\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-6 => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-6.exe [2015-03-17] (HQ CinemaV16.03) <==== ATTENTION
Task: {A354A2BA-F715-450C-8E12-BF7E774203EE} - System32\Tasks\At33 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {A57629BA-B206-4ED0-88A9-01B1DFA9DA92} - System32\Tasks\At39 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {A5A87AEF-078C-4462-8445-BEA2DD6940D1} - System32\Tasks\{333B4274-A388-4FBF-ABB3-859666006F86} => Iexplore.exe Dostępne tylko dla zarejestrowanych użytkowników
Task: {A5B02648-1C30-496F-951B-35635A9D772D} - System32\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-7 => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-7.exe [2015-03-17] (OB) <==== ATTENTION
Task: {AA2CB53B-4A53-4785-9572-8563A3BB0862} - System32\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-1-7 => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-1-7.exe [2015-03-17] (ObjectB) <==== ATTENTION
Task: {ADAA0145-17E6-48D8-A765-F5A202821640} - System32\Tasks\DealPlyLiveUpdateTaskMachineUA => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-07-09] (DealPly Technologies Ltd) <==== ATTENTION
Task: {AE542704-952F-4518-B11B-777AEEAB22A2} - System32\Tasks\At48 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {B1039E80-CCDF-4625-BF7C-819BF723FA8C} - System32\Tasks\{596F0F8F-4427-4D4A-AA06-EA48DBCE8DCF} => C:\Program Files (x86)\OpenOffice.org 3\program\swriter.exe [2010-05-21] (OpenOffice.org)
Task: {B35F9494-7144-4F39-8D43-F42F8CD70BFF} - System32\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-10_user => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-10.exe [2015-03-18] (InstallMoonV18.03) <==== ATTENTION
Task: {B6E55A34-6662-451A-8413-8CD7C35AC398} - System32\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-7 => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-7.exe [2015-03-17] (ObjectB) <==== ATTENTION
Task: {B7145C0D-C95B-4E8B-8500-A1A20064D3C1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-24] (Google Inc.)
Task: {B7287BB6-70B3-4CB8-AF02-B7966D9577B3} - System32\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-6 => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-6.exe [2015-03-17] (ObjectB) <==== ATTENTION
Task: {BD7E7B5E-3F58-4DD7-BDC4-98ECC6ED0880} - System32\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6 => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-6.exe [2015-03-17] (Cinema PlusV05.03) <==== ATTENTION
Task: {BDCA9370-5A41-4C49-B4B1-E4E3E5045B5A} - System32\Tasks\At31 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {BE9BED68-D868-4E9A-96A2-85FC2B0238D3} - System32\Tasks\At44 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {C0699EB1-8C67-45E0-9D47-622AF84F7DF9} - System32\Tasks\At25 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {C1306DFD-D2AB-4DEE-9165-5DB69DECAF02} - System32\Tasks\At30 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {C2C980CE-7B3E-4297-B398-363FD17CA011} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-03-18] (globalUpdate) <==== ATTENTION
Task: {C9080E83-C9D9-49A0-9EFD-0AAF3C7DA53D} - System32\Tasks\{EAA22281-BEED-435E-A4A2-BFC0EA52CCBD} => pcalua.exe -a E:\Setup.exe -d E:\
Task: {D067336F-909E-4230-9D2B-848F3CC26633} - System32\Tasks\At41 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {D55EBCF7-712D-4666-A167-EADDD1200241} - System32\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-1-6 => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-1-6.exe [2015-03-17] (ObjectB) <==== ATTENTION
Task: {D5B3FFDA-8D06-4021-A685-C0FD54958FF1} - System32\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-1-6 => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-1-6.exe [2015-03-17] (HQ CinemaV16.03) <==== ATTENTION
Task: {DBC1A7B3-00AF-4965-A220-00FB23793EB2} - System32\Tasks\At46 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {DBC35B6C-4054-4378-ABC8-390725FD96BA} - System32\Tasks\At45 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {DC81D87A-E551-406F-9882-35EA22D50665} - System32\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6 => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.exe [2015-03-17] (Cinema PlusV05.03) <==== ATTENTION
Task: {DD0095B1-4582-420E-84A4-CF27EBB99E20} - System32\Tasks\BitGuard => Sc.exe start BitGuard <==== ATTENTION
Task: {DFE864CF-217B-4409-AE60-119DA88BDA26} - System32\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-1-6 => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-1-6.exe [2015-03-18] (InstallMoonV18.03) <==== ATTENTION
Task: {E0D80AFB-8FC4-43D2-8C66-2B18F8371C63} - System32\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-5_user => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-5.exe [2015-03-17] (HQ CinemaV16.03) <==== ATTENTION
Task: {E5036A40-C745-43BA-8207-C96182CAA63A} - System32\Tasks\{81A2A95F-07EF-48C6-ABE6-90C4FE1FF781} => C:\Program Files (x86)\OpenOffice.org 3\program\swriter.exe [2010-05-21] (OpenOffice.org)
Task: {E76C3353-6141-49FE-AF23-791AD9AB7414} - System32\Tasks\At27 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {E81ECDDD-E32C-4CEB-90B4-119FECD59BB7} - System32\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-5.exe [2015-03-17] (Cinema PlusV05.03) <==== ATTENTION
Task: {F2EAEED3-F453-4D41-BC34-C0CE67DC74A7} - System32\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-5 => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-5.exe [2015-03-17] (Webby) <==== ATTENTION
Task: {F4FB9BB9-F678-4CCE-A9EE-0E498825A095} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2875713022-3664676025-4200636764-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {F7452842-26F2-493E-80EF-FFF76C247B39} - System32\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-7 => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-7.exe [2015-03-18] (InstallMoonV18.03) <==== ATTENTION
Task: {F963C3E9-C0E5-49D2-BD83-3BFD7A5CE47A} - System32\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-5 => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-5.exe [2015-03-17] (HQ CinemaV16.03) <==== ATTENTION
Task: {FA442428-C94F-4A4E-A406-00D5CF29F389} - System32\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-1-7 => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-1-7.exe [2015-03-18] (InstallMoonV18.03) <==== ATTENTION
Task: {FB85B70A-03A6-47E1-97AE-82F43C094019} - System32\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-7 => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-7.exe [2015-03-17] (HQ CinemaV16.03) <==== ATTENTION
Task: {FBE5FD98-A24B-4844-B749-FB4C31574E3D} - System32\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-1-7 => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-1-7.exe [2015-03-17] (HQ CinemaV16.03) <==== ATTENTION
Task: {FC63D26F-C978-4532-917D-818F182F897A} - System32\Tasks\At32 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {FD3C0C66-9F90-4127-B7FF-4F8991F1340E} - System32\Tasks\At40 => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: {FDEBEC51-86EC-4E1D-A762-DEE324485255} - System32\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-10_user => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-10.exe [2015-03-17] (HQ CinemaV16.03) <==== ATTENTION
Task: {FF7875F7-8FF2-417B-911F-A7014F0A802C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-08] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-1-6.job => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-1-7.job => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-5.job => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-5_user.job => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-6.job => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\07326e85-6adb-4f6b-bc5d-32dc9071bc95-7.job => C:\Program Files (x86)\iWebar\07326e85-6adb-4f6b-bc5d-32dc9071bc95-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-3.exe <==== ATTENTION
Task: C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job => C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-1-6.job => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-1-7.job => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-10_user.job => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-5.job => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-5_user.job => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-6.job => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\2846cc36-090b-4510-b3a5-ca756fae0964-7.job => C:\Program Files (x86)\SavePass 1.1\2846cc36-090b-4510-b3a5-ca756fae0964-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-1-6.job => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-1-7.job => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-10_user.job => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-3.job => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-3.exe <==== ATTENTION
Task: C:\Windows\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-5.job => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-5_user.job => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-6.job => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-7.job => C:\Program Files (x86)\HQCinema Pro 2.1V16.03\3c9b06e0-86c9-4015-9484-5bf1a9e5c6b0-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-1-6.job => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-1-7.job => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-10_user.job => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-5.job => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-5_user.job => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-6.job => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\7daaf9e4-c619-449f-8baf-abd3452a2cc6-7.job => C:\Program Files (x86)\GoHDV18.03\7daaf9e4-c619-449f-8baf-abd3452a2cc6-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\At25.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At26.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At27.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At28.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At29.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At30.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At31.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At32.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At33.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At34.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At35.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At36.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At37.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At38.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At39.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At40.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At41.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At42.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At43.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At44.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At45.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At46.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At47.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\At48.job => C:\ProgramData\CxM68h4Q.exe <==== ATTENTION
Task: C:\Windows\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-1-6.job => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-1-7.job => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-5.job => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-5_user.job => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-6.job => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\d39d7769-f017-489f-b092-4d3d4757c45f-7.job => C:\Program Files (x86)\Object Browser\d39d7769-f017-489f-b092-4d3d4757c45f-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\Dealply.job => C:\Users\Ola\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe <==== ATTENTION
Task: C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\IIEAI.job => C:\Users\Ola\AppData\Roaming\IIEAI.exe <==== ATTENTION
CMD: netsh winsock reset
CMD: sfc /scannow
Hosts:
ZeroAccess:
Emptytemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok narzędzia FRST. Uruchom FRST i kliknij w Fix.

2. Użyj >Dostępne tylko dla zarejestrowanych użytkowników
najpierw kliknij na SZUKAJ, a dopiero po zakończeniu skanowania, gdy uaktywni się przycisk USUŃ, to kliknij na niego.
Pokaż raport z niego C:\AdwCleaner\AdwCleaner[S].txt

3. Uruchom Dostępne tylko dla zarejestrowanych użytkowników. Wciśnij dowolny klawisz i czekaj, aż skończy się operacja. (UWAGA: podczas pobierania, programy mogą wskazywać, że to jest zagrożenie, proszę to zignorować). Pokaż raport.

4. Wykonaj i wklej nowe logi z FRST. Nie zapomnij zahaczykować Addiotion.txt.

Post22 mar 2015, 20:42

Dzięki za pomoc, ale obecnie po zrealizowaniu 2 punktu straciłam dostęp do Internetu. Właściwie na pasku pokazuje mi, że komputer jest połączony z Internetem, ale gdy próbuję otworzyć wyszukiwarkę (albo obojętnie jaką stronę internetową) to wyświetla mi "strona internetowa jest niedostępna"

Jak mam odzyskać dostęp do internetu, bo bez tego nie mogę kontynuować?
Bardzo proszę o pomoc, bo nie wiem co mam robić...

Post22 mar 2015, 21:27

1. Otwórz Notatnik i wklej w nim:

reg delete HKLM\SYSTEM\CurrentControlSet\Control\Network /v Config /f
ipconfig /flushdns
netsh winsock reset all
netsh int 6to4 reset all
netsh int ipv4 reset all
netsh int ipv6 reset all
netsh int httpstunnel reset all
netsh int isatap reset all
netsh int portproxy reset all
netsh int tcp reset all
netsh int teredo reset all
netsh advfirewall reset
netsh int ip reset c:\resetlog.txt
pause

Z menu Notatnika > Plik > Zapisz jako > Ustaw rozszerzenie na Wszystkie pliki > Zapisz jako FIX.BAT
Uruchom jako Administrator > restart systemu.

Restart systemu jak to zostanie ukonczone i sprawdz czy masz internet.

Post23 mar 2015, 15:03

Tak, już mam internet. Dziękuję. Czy mogę kontynuować od punktu 2 czy muszę zacząć wszystko od nowa?

Post23 mar 2015, 15:06

Od punktu 2

Post25 mar 2015, 15:46

FRST: Dostępne tylko dla zarejestrowanych użytkowników

Addition: Dostępne tylko dla zarejestrowanych użytkowników

Shortcut: Dostępne tylko dla zarejestrowanych użytkowników

Adw..: Dostępne tylko dla zarejestrowanych użytkowników[S0].txt

JRT: Dostępne tylko dla zarejestrowanych użytkowników

Post25 mar 2015, 16:33

Wykonaj najpierw wszystko co radzi djarta.

Używam zwykle Chroma.

Dodatkowo później do blokowania reklam na tej przeglądarce możesz zainstalować dodatek:
Dostępne tylko dla zarejestrowanych użytkowników

Obrazek

Post25 mar 2015, 17:01

1. Otwórz notatnik i wklej:

CloseProcesses:
S2 fecidere; C:\Users\Ola\AppData\Roaming\85C158C0-1426617719-11D5-9C29-20CF30F2C8AC\nsoDB3.tmp [221184 2015-03-24] () [File not signed]
C:\Users\Ola\AppData\Roaming\85C158C0-1426617719-11D5-9C29-20CF30F2C8AC
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 06 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5-x64 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 06 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
CMD: netsh winsock reset
2015-03-18 15:17 - 2015-03-18 15:19 - 00000000 ____D () C:\Program Files (x86)\853c6b9e-fe6c-4385-ae70-357ec1950f42
2015-03-18 15:16 - 2015-03-18 15:22 - 00000000 ____D () C:\Program Files (x86)\GoHDV18.03
2015-03-17 21:04 - 2015-03-17 21:05 - 00000000 ____D () C:\Program Files (x86)\2ad24506-dd22-4e38-bb52-29516a955dbd
2015-03-17 21:04 - 2015-03-17 21:05 - 00000000 ____D () C:\Program Files (x86)\024d4a01-8fe4-4cd4-91d1-28c3027cf485
2015-03-17 21:03 - 2015-03-17 21:03 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2015-03-17 21:02 - 2015-03-17 21:02 - 00000000 ____D () C:\Users\Ola\AppData\Local\CrashRpt
2015-03-17 20:42 - 2015-03-22 15:48 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-03-17 19:56 - 2015-03-17 19:57 - 00000000 ____D () C:\Users\Ola\AppData\Local\85C158C0-1426622212-11D5-9C29-20CF30F2C8AC
2015-03-17 19:46 - 2015-03-25 14:14 - 00000000 ____D () C:\Users\Ola\AppData\Local\85C158C0-1426621563-11D5-9C29-20CF30F2C8AC
2015-03-17 19:46 - 2015-03-17 19:46 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf
2015-03-17 19:45 - 2015-03-17 19:45 - 00000000 ____D () C:\Users\Ola\AppData\Local\85C158C0-1426621544-11D5-9C29-20CF30F2C8AC
2015-03-17 19:44 - 2015-03-17 21:05 - 00000000 ____D () C:\Program Files (x86)\3d13b1ef-e5f8-47a9-ac49-69304950c30d
2015-03-17 19:44 - 2015-03-17 19:44 - 00000000 ____D () C:\Program Files (x86)\3de93337-3702-4b20-92b5-1d7c3a1b6c32
2015-03-17 19:43 - 2015-03-17 19:45 - 00000000 ____D () C:\Program Files (x86)\HQCinema Pro 2.1V16.03
2015-03-17 19:43 - 2015-03-17 19:43 - 00000000 ____D () C:\Users\Ola\AppData\Local\85C158C0-1426621403-11D5-9C29-20CF30F2C8AC
2015-03-17 19:43 - 2015-03-17 19:43 - 00000000 ____D () C:\Program Files (x86)\43d45ddb-733d-4a4f-9d91-4e3253112627
2015-03-17 19:42 - 2015-03-17 19:44 - 00000000 ____D () C:\Program Files (x86)\CinemaP-1.9cV05.03
2015-03-17 19:41 - 2015-03-24 22:17 - 00000000 ____D () C:\Users\Ola\AppData\Roaming\85C158C0-1426617719-11D5-9C29-20CF30F2C8AC
2015-03-16 10:51 - 2015-03-16 10:51 - 00000824 _____ () C:\Windows\QT$INST$.~32
2015-03-16 10:51 - 2015-03-16 10:51 - 00000030 _____ () C:\Windows\RESULT.QTW
2015-03-16 10:51 - 2015-03-16 10:51 - 00000000 ____D () C:\~QTWTMP.TMP
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\ProgramData\TEMP:888AFB86
AlternateDataStreams: C:\ProgramData\TEMP:ED2998F5
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\CinemaP-1.9cV05.03
Emptytemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok narzędzia FRST. Uruchom FRST i kliknij w Fix.

2. Dostarcz logi z FRST + FSS => Dostępne tylko dla zarejestrowanych użytkowników (zahaczykuj wszystkie pola w programie i Scan).