Zdravim, pred casom som si nainstaloval aplikaciu mobilego. Az dodatocne som na forach zistil, ze je to aplikacia, ktora zasviní pocitac. Po odinstalovaní som to presiel niekolkymi antivirmi (online eset, microsoft ess a malwarebite) a odstarnil nejaku haved, ale pocitac stale mrzne. Hlavne firefox. Neviem uz co s tym. Pomozete mi?
Logfile of random's system information tool 1.10 (written by random/random)
Run by peg at 2016-05-23 09:29:11
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 156 GB (33%) free of 477 GB
Total RAM: 8189 MB (66% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:29:17, on 23. 5. 2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18315)
Boot mode: Normal
Running processes:
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\peg.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = web/?type=dspp&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = web/?type=dspp&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SPIRunE] Rundll32 SPIRunE.dll,RunDLLEntry
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [ACDSeeCommanderPro8] C:\Program Files\ACD Systems\ACDSee Pro\8.0\ACDSeeCommanderPro8.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Monitor Ink Alerts - HP Deskjet 2050 J510 series.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit (mi-raysat_3dsmax2013_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe
--
End of file - 11058 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
C:\Windows\Explorer.EXE
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Windows\PixArt\PAC7302\Monitor.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe" -s DefaultInstance
"C:\Program Files\ACD Systems\ACDSee Pro\8.0\ACDSeeCommanderPro8.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\Windows\System32\rundll32.exe" SPIRunE.dll,RunDLLEntry
"C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe"
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3316
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 5d9b2358-9347-4709-adb1-d2cb492e2573
\??\C:\Windows\system32\conhost.exe "-6333333081444012656-1826904469-417549623-1733062961-1429467333-1610252668832444766
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-2133437064166312430973435147-123387928191983775510122734921862924324811669303
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe" -s DefaultInstance
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\peg\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=50.0.2661.102 --handshake-handle=0xd0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4960.0.1817093595\1112001628" --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,10,12,24,53,71 --gpu-vendor-id=0x1002 --gpu-device-id=0x68ba --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.200.1062.1004 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,WebFontsIntervention<WebFontsIntervention --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=sk --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/BrotliEncoding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/CrimePaddingControl/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_43/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4960.2.237340529\1148943574" /prefetch:1
taskeng.exe {09163AF4-4A93-41BE-BA5B-CEA0F217CA30}
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\Users\peg\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@cuminas.jp/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pages.tvunetworks.com/WebPlayer]
"Description"=TVU Web Player Plugin
"Path"=C:\Program Files (x86)\TVUPlayer\npTVUAx.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@verimatrix.com/ViewRightWeb]
"Description"=Verimatrix ViewRightWeb
"Path"=C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default\extensions\
{cd6c4ebf-366e-45a0-98b5-b8217288eed7}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-04-29 2134648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-10 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-04-29 1725056]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-10 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-05-09 11821160]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2016-01-29 1340192]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-08-18 2634872]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-08-18 1710568]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"ACDSeeCommanderPro8"=C:\Program Files\ACD Systems\ACDSee Pro\8.0\ACDSeeCommanderPro8.exe [2014-09-20 2136072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ACDSeeCommanderPro8]
C:\Program Files\ACD Systems\ACDSee Pro\8.0\ACDSeeCommanderPro8.exe [2014-09-20 2136072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-04-23 8204056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-04 767176]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SPIRunE"=Rundll32 SPIRunE.dll,RunDLLEntry []
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-04 767176]
C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Monitor Ink Alerts - HP Deskjet 2050 J510 series.lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=0
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-05-23 09:29:11 ----D---- C:\rsit
2016-05-23 09:29:11 ----D---- C:\Program Files\trend micro
2016-05-19 23:42:08 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2016-05-19 23:38:39 ----A---- C:\Windows\system32\gdi32.dll
2016-05-19 23:38:38 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-05-19 23:38:38 ----A---- C:\Windows\system32\win32k.sys
2016-05-19 23:38:36 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-05-19 23:38:36 ----A---- C:\Windows\system32\tzres.dll
2016-05-19 23:38:34 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-05-19 23:38:34 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-05-19 23:38:33 ----A---- C:\Windows\system32\cdd.dll
2016-05-19 23:38:31 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2016-05-19 23:38:31 ----A---- C:\Windows\system32\d3d10level9.dll
2016-05-19 23:38:29 ----A---- C:\Windows\system32\jnwmon.dll
2016-05-19 23:38:19 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-05-19 23:38:19 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-05-19 23:38:19 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-05-19 23:38:19 ----A---- C:\Windows\system32\iernonce.dll
2016-05-19 23:38:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-05-19 23:38:19 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-05-19 23:38:18 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-05-19 23:38:18 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-05-19 23:38:18 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-05-19 23:38:18 ----A---- C:\Windows\system32\ie4uinit.exe
2016-05-19 23:38:17 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-05-19 23:38:17 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-05-19 23:38:17 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-05-19 23:38:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-05-19 23:38:17 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-05-19 23:38:17 ----A---- C:\Windows\system32\inseng.dll
2016-05-19 23:38:16 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-05-19 23:38:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-05-19 23:38:16 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-05-19 23:38:15 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-05-19 23:38:14 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-05-19 23:38:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-05-19 23:38:14 ----A---- C:\Windows\system32\urlmon.dll
2016-05-19 23:38:14 ----A---- C:\Windows\system32\occache.dll
2016-05-19 23:38:14 ----A---- C:\Windows\system32\iedkcs32.dll
2016-05-19 23:38:13 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-05-19 23:38:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-05-19 23:38:13 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-05-19 23:38:13 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-05-19 23:38:13 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-05-19 23:38:13 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-05-19 23:38:13 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-05-19 23:38:13 ----A---- C:\Windows\system32\dxtrans.dll
2016-05-19 23:38:12 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-05-19 23:38:12 ----A---- C:\Windows\system32\msfeeds.dll
2016-05-19 23:38:12 ----A---- C:\Windows\system32\iesetup.dll
2016-05-19 23:38:12 ----A---- C:\Windows\system32\ieapfltr.dll
2016-05-19 23:38:11 ----A---- C:\Windows\system32\iertutil.dll
2016-05-19 23:38:10 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-05-19 23:38:10 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-05-19 23:38:10 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-05-19 23:38:10 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-05-19 23:38:10 ----A---- C:\Windows\system32\vbscript.dll
2016-05-19 23:38:08 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-05-19 23:38:08 ----A---- C:\Windows\system32\jsproxy.dll
2016-05-19 23:38:07 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-05-19 23:38:06 ----A---- C:\Windows\system32\ieui.dll
2016-05-19 23:38:06 ----A---- C:\Windows\system32\dxtmsft.dll
2016-05-19 23:38:05 ----A---- C:\Windows\system32\ieframe.dll
2016-05-19 23:38:04 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-05-19 23:38:04 ----A---- C:\Windows\system32\mshtmled.dll
2016-05-19 23:38:04 ----A---- C:\Windows\system32\ieUnatt.exe
2016-05-19 23:38:03 ----A---- C:\Windows\system32\webcheck.dll
2016-05-19 23:38:03 ----A---- C:\Windows\system32\jscript9diag.dll
2016-05-19 23:38:03 ----A---- C:\Windows\system32\jscript9.dll
2016-05-19 23:38:03 ----A---- C:\Windows\system32\jscript.dll
2016-05-19 23:38:02 ----A---- C:\Windows\system32\wininet.dll
2016-05-19 23:38:01 ----A---- C:\Windows\system32\msrating.dll
2016-05-19 23:38:01 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-05-19 23:38:01 ----A---- C:\Windows\system32\mshtml.dll
2016-05-19 23:37:25 ----A---- C:\Windows\system32\rpcrt4.dll
2016-05-19 23:37:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-05-19 23:37:25 ----A---- C:\Windows\system32\lsasrv.dll
2016-05-19 23:37:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-05-19 23:37:24 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-05-19 23:37:24 ----A---- C:\Windows\system32\kerberos.dll
2016-05-19 23:37:23 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-05-19 23:37:23 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-05-19 23:37:23 ----A---- C:\Windows\system32\ntdll.dll
2016-05-19 23:37:23 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-05-19 23:37:23 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-05-19 23:37:23 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-05-19 23:37:22 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-05-19 23:37:22 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-05-19 23:37:22 ----A---- C:\Windows\system32\certcli.dll
2016-05-19 23:37:22 ----A---- C:\Windows\system32\advapi32.dll
2016-05-19 23:37:21 ----A---- C:\Windows\system32\smss.exe
2016-05-19 23:37:21 ----A---- C:\Windows\system32\schannel.dll
2016-05-19 23:37:21 ----A---- C:\Windows\system32\kernel32.dll
2016-05-19 23:37:20 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-05-19 23:37:20 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-05-19 23:37:20 ----A---- C:\Windows\system32\wow64win.dll
2016-05-19 23:37:20 ----A---- C:\Windows\system32\winsrv.dll
2016-05-19 23:37:20 ----A---- C:\Windows\system32\msv1_0.dll
2016-05-19 23:37:20 ----A---- C:\Windows\system32\KernelBase.dll
2016-05-19 23:37:20 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-05-19 23:37:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-05-19 23:37:19 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-05-19 23:37:19 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-05-19 23:37:19 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-05-19 23:37:19 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-05-19 23:37:19 ----A---- C:\Windows\system32\wow64.dll
2016-05-19 23:37:19 ----A---- C:\Windows\system32\wdigest.dll
2016-05-19 23:37:19 ----A---- C:\Windows\system32\TSpkg.dll
2016-05-19 23:37:19 ----A---- C:\Windows\system32\sspicli.dll
2016-05-19 23:37:19 ----A---- C:\Windows\system32\srcore.dll
2016-05-19 23:37:19 ----A---- C:\Windows\system32\rpchttp.dll
2016-05-19 23:37:19 ----A---- C:\Windows\system32\ncrypt.dll
2016-05-19 23:37:19 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-05-19 23:37:19 ----A---- C:\Windows\system32\csrsrv.dll
2016-05-19 23:37:19 ----A---- C:\Windows\system32\conhost.exe
2016-05-19 23:37:18 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-05-19 23:37:18 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-05-19 23:37:18 ----A---- C:\Windows\system32\wow64cpu.dll
2016-05-19 23:37:18 ----A---- C:\Windows\system32\sspisrv.dll
2016-05-19 23:37:18 ----A---- C:\Windows\system32\srclient.dll
2016-05-19 23:37:18 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-05-19 23:37:18 ----A---- C:\Windows\system32\secur32.dll
2016-05-19 23:37:18 ----A---- C:\Windows\system32\lsass.exe
2016-05-19 23:37:18 ----A---- C:\Windows\system32\drivers\appid.sys
2016-05-19 23:37:18 ----A---- C:\Windows\system32\cryptbase.dll
2016-05-19 23:37:18 ----A---- C:\Windows\system32\appidapi.dll
2016-05-19 23:37:17 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-05-19 23:37:17 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-05-19 23:37:17 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-05-19 23:37:17 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-05-19 23:37:17 ----A---- C:\Windows\system32\rstrui.exe
2016-05-19 23:37:17 ----A---- C:\Windows\system32\ntvdm64.dll
2016-05-19 23:37:17 ----A---- C:\Windows\system32\credssp.dll
2016-05-19 23:37:17 ----A---- C:\Windows\system32\appidsvc.dll
2016-05-19 23:37:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-19 23:37:16 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-05-19 23:37:16 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-05-19 23:37:16 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-19 23:37:16 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-19 23:37:16 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-05-19 23:37:16 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-05-19 23:37:16 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-05-19 23:37:16 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-05-19 23:37:16 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-05-19 23:37:16 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-05-19 23:37:16 ----A---- C:\Windows\system32\auditpol.exe
2016-05-19 23:37:16 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-05-19 23:37:16 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-05-19 23:37:15 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-05-19 23:37:14 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-05-19 23:37:14 ----A---- C:\Windows\SYSWOW64\user.exe
2016-05-19 23:37:14 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-05-19 23:37:14 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-05-19 23:37:14 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-05-19 23:37:14 ----A---- C:\Windows\system32\apisetschema.dll
2016-05-19 23:37:13 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-05-19 23:37:13 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-05-19 23:37:13 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-05-19 23:37:13 ----A---- C:\Windows\system32\msobjs.dll
2016-05-19 23:37:13 ----A---- C:\Windows\system32\msaudite.dll
2016-05-19 23:37:13 ----A---- C:\Windows\system32\adtschema.dll
2016-05-19 23:36:56 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-05-19 23:36:56 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-05-05 14:08:57 ----D---- C:\Program Files (x86)\Genie Soft
2016-05-05 14:08:20 ----D---- C:\Users\peg\AppData\Roaming\Mobogenie
2016-05-04 00:53:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-05-23 09:29:17 ----D---- C:\Windows\Prefetch
2016-05-23 09:29:11 ----RD---- C:\Program Files
2016-05-23 08:53:39 ----D---- C:\Windows\Temp
2016-05-23 08:35:15 ----D---- C:\ProgramData\NVIDIA
2016-05-23 04:13:34 ----D---- C:\Windows\system32\config
2016-05-22 03:29:39 ----D---- C:\Users\peg\AppData\Roaming\uTorrent
2016-05-22 01:00:01 ----D---- C:\Windows\inf
2016-05-21 08:54:05 ----SHD---- C:\Windows\Installer
2016-05-21 08:53:11 ----RD---- C:\Program Files (x86)
2016-05-21 08:53:11 ----D---- C:\Program Files\Common Files\Apple
2016-05-21 08:52:30 ----SHD---- C:\System Volume Information
2016-05-21 08:50:24 ----AD---- C:\ProgramData\TEMP
2016-05-21 08:30:41 ----D---- C:\Windows\rescache
2016-05-21 07:53:13 ----D---- C:\Windows
2016-05-21 03:04:10 ----D---- C:\Windows\debug
2016-05-21 02:19:13 ----D---- C:\Windows\SysWOW64
2016-05-20 21:22:23 ----D---- C:\Users\peg\AppData\Roaming\Skype
2016-05-20 19:58:39 ----D---- C:\Windows\Microsoft.NET
2016-05-20 19:47:41 ----RSD---- C:\Windows\assembly
2016-05-20 17:39:06 ----D---- C:\Windows\System32
2016-05-20 17:39:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-05-20 17:33:09 ----D---- C:\Windows\winsxs
2016-05-20 04:02:44 ----D---- C:\Windows\SYSWOW64\en-US
2016-05-20 04:02:44 ----D---- C:\Windows\system32\en-US
2016-05-20 04:02:44 ----D---- C:\Windows\system32\drivers
2016-05-20 04:02:44 ----D---- C:\Windows\ehome
2016-05-20 04:02:44 ----D---- C:\Program Files\Windows Journal
2016-05-20 04:02:44 ----D---- C:\Program Files\Internet Explorer
2016-05-20 04:02:42 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-20 04:02:38 ----D---- C:\Windows\system32\Boot
2016-05-20 04:02:38 ----D---- C:\Windows\AppPatch
2016-05-20 03:16:32 ----D---- C:\Windows\system32\MRT
2016-05-20 03:00:53 ----A---- C:\Windows\system32\MRT.exe
2016-05-20 01:40:58 ----D---- C:\Users\peg\AppData\Roaming\Radegast
2016-05-19 23:42:25 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-05-19 23:31:42 ----D---- C:\Windows\system32\catroot2
2016-05-19 22:48:56 ----D---- C:\Windows\Tasks
2016-05-19 22:45:23 ----D---- C:\Windows\system32\Tasks
2016-05-08 15:52:49 ----D---- C:\Program Files (x86)\Wondershare
2016-05-08 15:52:30 ----D---- C:\Users\peg\AppData\Roaming\Wondershare
2016-05-08 15:15:59 ----D---- C:\Users\peg\AppData\Roaming\Sony
2016-05-06 15:11:26 ----RD---- C:\Program Files (x86)\Skype
2016-05-05 17:32:49 ----D---- C:\Windows\system32\NDF
2016-05-05 16:39:43 ----D---- C:\Users\peg\AppData\Roaming\HMYGSetting
2016-05-05 16:38:35 ----D---- C:\ProgramData\Wondershare
2016-05-05 16:03:48 ----D---- C:\Windows\en-US
2016-05-05 11:31:12 ----D---- C:\Windows\system32\DriverStore
2016-05-05 10:36:01 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-04 22:00:03 ----D---- C:\Users\peg\AppData\Roaming\Firestorm_x64
2016-05-02 02:24:19 ----D---- C:\ProgramData\firebird
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdide64;amdide64; C:\Windows\system32\DRIVERS\amdide64.sys [2012-12-03 11944]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-11-13 289120]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2012-06-22 56336]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2013-05-27 106816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-08-04 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-08-04 665088]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2013-05-27 227648]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2015-07-15 96256]
R3 AVerBDA6x_x64;AVerMedia SAA716x BDA Service; C:\Windows\system32\DRIVERS\AVerBDA716x_x64.sys [2012-07-26 2324736]
R3 AVerEth;AVerMedia Ethernet Adapter for MPE Service; C:\Windows\system32\DRIVERS\AVerEth64.sys [2011-03-16 26624]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-05-25 52608]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-05-25 76160]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-05-10 2861288]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-11-13 133816]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-08-18 19576]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-08-11 50472]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
R3 t3;Sound Blaster X-Fi Xtreme Audio; C:\Windows\system32\drivers\t3.sys [2009-05-06 639512]
R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\Windows\system32\drivers\asusgsb.sys [2009-02-17 17792]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-08-04 21622784]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 64896]
S3 netr28ux;RT2870 USB Wireless LAN Card Driver for Vista; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-06-10 867328]
S3 PAC7302;PC VGA Camer@ Plus; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-09-10 527360]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2011-04-26 353000]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 VASDeviceDrm;LiveTalk365 Audio Streamer with Drm (WDM); C:\Windows\system32\drivers\vasdDev.sys [2015-03-11 33616]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-08-04 246784]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2015-08-04 344064]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-10-07 77104]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2011-01-28 348160]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2011-04-01 403456]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-04-29 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-04-29 1773696]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [2010-09-17 98304]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-08-18 1155192]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-07-26 24888]
R2 mi-raysat_3dsmax2013_64;mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit; C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [2011-09-15 86016]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-01-29 23808]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-08-18 1872504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-08-18 5544568]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-02-04 932040]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-02-04 409800]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [2010-09-17 3735552]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-01-29 374344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-19 269504]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2015-03-04 79360]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-12-20 1432400]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-04-23 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-04 146888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;Adobe SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-30 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2016-03-10 1514464]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Mobilego spomalil pocitac
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Mobilego spomalil pocitac
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Mobilego spomalil pocitac
ZOEK:
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by peg on po 23. 05. 2016 at 11:31:37,27.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\peg\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
23. 5. 2016 11:32:25 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\AMC2000 deleted successfully
C:\PROGRA~2\Live365 deleted successfully
C:\PROGRA~2\Raptr deleted successfully
C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) deleted successfully
C:\PROGRA~3\PicPick deleted successfully
C:\PROGRA~3\VideoMach deleted successfully
C:\Users\peg\AppData\Roaming\Evaer deleted successfully
C:\Users\peg\AppData\Roaming\Opera Software deleted successfully
C:\Users\peg\AppData\Roaming\Publish Providers deleted successfully
C:\Users\peg\AppData\Local\CrashDumps deleted successfully
C:\Users\peg\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\peg\AppData\Local\EmieSiteList deleted successfully
C:\Users\peg\AppData\Local\EmieUserList deleted successfully
C:\Users\peg\AppData\Local\Opera Software deleted successfully
C:\Users\peg\AppData\Local\WMTools Downloaded Files deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1551137665-2508732421-223125544-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CA7DFF65-E473-4efe-ADF0-FC1E50CDFC82} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default\prefs.js:
Added to C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\PROGRA~2\AV Vcs 7.0 DIAMOND not found
C:\PROGRA~2\AGEIA Technologies not found
C:\PROGRA~2\AMC2000 not found
C:\PROGRA~2\Live365 not found
C:\PROGRA~2\Raptr not found
C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) not found
C:\PROGRA~3\{6cfbfdf1-0d43-516d-6cfb-bfdf10d4f7c4} deleted
C:\Users\peg\.android deleted
C:\PROGRA~2\Your Uninstaller deleted
C:\PROGRA~2\Genie Soft deleted
C:\PROGRA~2\COMMON~1\Wondershare deleted
C:\install.exe deleted
C:\Users\peg\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mobogenie3.lnk deleted
C:\Users\peg\AppData\Roaming\Mobogenie deleted
C:\Users\peg\AppData\Roaming\RHEng deleted
C:\Users\peg\AppData\Roaming\Wondershare deleted
C:\Users\peg\AppData\Roaming\METAbolt01a4afa5-46f7-4831-8565-eb2ea1496514_fr_groups.ini deleted
C:\Users\peg\AppData\Roaming\METAbolt2a028392-3b6d-4bbd-8529-390ad1df0bad_fr_groups.ini deleted
C:\Users\peg\AppData\Roaming\METAbolt4743650c-14bb-4c05-ad79-b556a874aad9_fr_groups.ini deleted
C:\Users\peg\AppData\Roaming\METAbolt4b50aaac-2056-4f1e-92b8-fead5a5c6c67_fr_groups.ini deleted
C:\Users\peg\AppData\Roaming\METAbolta0ba35cb-b69f-4936-bd73-1c1eaf8bfb74_fr_groups.ini deleted
C:\PROGRA~3\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\peg\AppData\Local\AntikVirtualSTB deleted
C:\Users\peg\AppData\Local\Wondershare deleted
C:\Users\peg\AppData\Local\CrashRpt deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobogenie3 deleted
C:\Users\Public\Documents\GenieSoft deleted
C:\Users\peg\Documents\Genie Soft deleted
C:\Windows\sysWoW64\config\systemprofile\Documents\Mobogenie deleted
C:\Windows\sysWoW64\config\systemprofile\Documents\Genie Soft deleted
C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default\jetpack deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\Newtonsoft.Json.dll" deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppCollect.dll" deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppCommon.dll" not deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppService.exe" not deleted
"C:\PROGRA~2\Wondershare" not deleted
"C:\PROGRA~2\Wondershare\WAF" not deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0" not deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
ProfilePath: C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default
- TextMarker Go - %ProfilePath%\extensions\{cd6c4ebf-366e-45a0-98b5-b8217288eed7}
- ImTranslator - %ProfilePath%\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Skype - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
==== Firefox Plugins ======================
Profilepath: C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default
B5CFBB8AC7C0069D80DBEAA72F3CE9E2 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll - Shockwave for Director / Shockwave for Director
258693279212838A6A879A69A17BE215 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll - Shockwave Flash
==== Chromium Look ======================
Google Chrome Version: 46.0.2490.86
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[29. 04. 2016 15:53]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
fcfenmboojpjinhpgggodefccipikbpd - No path found[]
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]
Skype - peg\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Google Drive App Launcher - peg\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/en-us/?pc=U270&ocid=U270DHP"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/en-us/?pc=U270&ocid=U270DHP"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?FORM=U270DF& ... -SearchBox
==== Reset Google Chrome ======================
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\peg\AppData\Local\Mozilla\Firefox\Profiles\zjxmj93v.default\cache2 emptied successfully
C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default\storage\default\https+++plus.google.com\cache emptied successfully
==== Empty Chrome Cache ======================
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=871 folders=140 380518076 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\peg\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\peg\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppCommon.dll" not found
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppService.exe" not found
"C:\PROGRA~2\Wondershare" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted
==== EOF on po 23. 05. 2016 at 12:34:58,12 ======================
JRT
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 7 Ultimate x64
Ran by peg (Administrator) on po 23. 05. 2016 at 12:28:50,47
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 18
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHT61VZ7 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0Y5CIC9 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J5Y48VYT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PMFSW8G8 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S85LGEIE (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHT61VZ7 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0Y5CIC9 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J5Y48VYT (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PMFSW8G8 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S85LGEIE (Temporary Internet Files Folder)
Registry: 2
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 23. 05. 2016 at 12:31:31,80
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by peg on po 23. 05. 2016 at 11:31:37,27.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\peg\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
23. 5. 2016 11:32:25 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\AMC2000 deleted successfully
C:\PROGRA~2\Live365 deleted successfully
C:\PROGRA~2\Raptr deleted successfully
C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) deleted successfully
C:\PROGRA~3\PicPick deleted successfully
C:\PROGRA~3\VideoMach deleted successfully
C:\Users\peg\AppData\Roaming\Evaer deleted successfully
C:\Users\peg\AppData\Roaming\Opera Software deleted successfully
C:\Users\peg\AppData\Roaming\Publish Providers deleted successfully
C:\Users\peg\AppData\Local\CrashDumps deleted successfully
C:\Users\peg\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\peg\AppData\Local\EmieSiteList deleted successfully
C:\Users\peg\AppData\Local\EmieUserList deleted successfully
C:\Users\peg\AppData\Local\Opera Software deleted successfully
C:\Users\peg\AppData\Local\WMTools Downloaded Files deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1551137665-2508732421-223125544-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CA7DFF65-E473-4efe-ADF0-FC1E50CDFC82} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default\prefs.js:
Added to C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\PROGRA~2\AV Vcs 7.0 DIAMOND not found
C:\PROGRA~2\AGEIA Technologies not found
C:\PROGRA~2\AMC2000 not found
C:\PROGRA~2\Live365 not found
C:\PROGRA~2\Raptr not found
C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) not found
C:\PROGRA~3\{6cfbfdf1-0d43-516d-6cfb-bfdf10d4f7c4} deleted
C:\Users\peg\.android deleted
C:\PROGRA~2\Your Uninstaller deleted
C:\PROGRA~2\Genie Soft deleted
C:\PROGRA~2\COMMON~1\Wondershare deleted
C:\install.exe deleted
C:\Users\peg\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mobogenie3.lnk deleted
C:\Users\peg\AppData\Roaming\Mobogenie deleted
C:\Users\peg\AppData\Roaming\RHEng deleted
C:\Users\peg\AppData\Roaming\Wondershare deleted
C:\Users\peg\AppData\Roaming\METAbolt01a4afa5-46f7-4831-8565-eb2ea1496514_fr_groups.ini deleted
C:\Users\peg\AppData\Roaming\METAbolt2a028392-3b6d-4bbd-8529-390ad1df0bad_fr_groups.ini deleted
C:\Users\peg\AppData\Roaming\METAbolt4743650c-14bb-4c05-ad79-b556a874aad9_fr_groups.ini deleted
C:\Users\peg\AppData\Roaming\METAbolt4b50aaac-2056-4f1e-92b8-fead5a5c6c67_fr_groups.ini deleted
C:\Users\peg\AppData\Roaming\METAbolta0ba35cb-b69f-4936-bd73-1c1eaf8bfb74_fr_groups.ini deleted
C:\PROGRA~3\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\peg\AppData\Local\AntikVirtualSTB deleted
C:\Users\peg\AppData\Local\Wondershare deleted
C:\Users\peg\AppData\Local\CrashRpt deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobogenie3 deleted
C:\Users\Public\Documents\GenieSoft deleted
C:\Users\peg\Documents\Genie Soft deleted
C:\Windows\sysWoW64\config\systemprofile\Documents\Mobogenie deleted
C:\Windows\sysWoW64\config\systemprofile\Documents\Genie Soft deleted
C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default\jetpack deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\Newtonsoft.Json.dll" deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppCollect.dll" deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppCommon.dll" not deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppService.exe" not deleted
"C:\PROGRA~2\Wondershare" not deleted
"C:\PROGRA~2\Wondershare\WAF" not deleted
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0" not deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
ProfilePath: C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default
- TextMarker Go - %ProfilePath%\extensions\{cd6c4ebf-366e-45a0-98b5-b8217288eed7}
- ImTranslator - %ProfilePath%\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Skype - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
==== Firefox Plugins ======================
Profilepath: C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default
B5CFBB8AC7C0069D80DBEAA72F3CE9E2 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll - Shockwave for Director / Shockwave for Director
258693279212838A6A879A69A17BE215 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll - Shockwave Flash
==== Chromium Look ======================
Google Chrome Version: 46.0.2490.86
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[29. 04. 2016 15:53]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
fcfenmboojpjinhpgggodefccipikbpd - No path found[]
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]
Skype - peg\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Google Drive App Launcher - peg\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/en-us/?pc=U270&ocid=U270DHP"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/en-us/?pc=U270&ocid=U270DHP"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?FORM=U270DF& ... -SearchBox
==== Reset Google Chrome ======================
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\peg\AppData\Local\Mozilla\Firefox\Profiles\zjxmj93v.default\cache2 emptied successfully
C:\Users\peg\AppData\Roaming\Mozilla\Firefox\Profiles\zjxmj93v.default\storage\default\https+++plus.google.com\cache emptied successfully
==== Empty Chrome Cache ======================
C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=871 folders=140 380518076 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\peg\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\peg\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppCommon.dll" not found
"C:\PROGRA~2\Wondershare\WAF\2.1.6.0\WsAppService.exe" not found
"C:\PROGRA~2\Wondershare" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted
==== EOF on po 23. 05. 2016 at 12:34:58,12 ======================
JRT
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 7 Ultimate x64
Ran by peg (Administrator) on po 23. 05. 2016 at 12:28:50,47
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 18
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHT61VZ7 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0Y5CIC9 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J5Y48VYT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PMFSW8G8 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S85LGEIE (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EHT61VZ7 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0Y5CIC9 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J5Y48VYT (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PMFSW8G8 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S85LGEIE (Temporary Internet Files Folder)
Registry: 2
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 23. 05. 2016 at 12:31:31,80
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: Mobilego spomalil pocitac
ako sa sprava PC 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Mobilego spomalil pocitac
Firefox stale blbne. Akoby vzdy rozmysla, ked chcem prekliknut, alebo nieco spustit. Pocitac zatial normalne
Re: Mobilego spomalil pocitac
kedze tam toho bolo vela, skus este vycistit PC s ADWCleanerom
ak sa situacia nezlepsi skus preinstalovat Firefox
ak sa situacia nezlepsi skus preinstalovat Firefox
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Mobilego spomalil pocitac
dobre, dakujem velmi za pomoc
Re: Mobilego spomalil pocitac
rado sa stalo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?