Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Policie ČR

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
kail5
Návštěvník
Návštěvník
Příspěvky: 50
Registrován: 23 zář 2008 11:14

Policie ČR

#1 Příspěvek od kail5 »

Zdravím,
kamarádka mi donesla notebook s tímto virem, ještě jsem ho ani nezapínal.
Má na něm dost důležitá data, neměl bych napřed vyšroubovat HDD a udělat zálohu?
Nebo budou následující kroky v tomto šetrné?

Log z čeho mám v úvodu udělat?
Díky za pomoc.
Nahoru
Uživatelský avatar
stell
VIP in memoriam
VIP in memoriam
Příspěvky: 5175
Registrován: 09 pro 2007 09:27
Bydliště: SK-REVUCA
Kontaktovat uživatele:
Kontaktovat uživatele stell

Re: Policie ČR

#2 Příspěvek od stell »

Zdravim
Hadam nechces rozobrat notebook kvoli policajnemu smejdu??To co za sposoby??
Podla tohto navodu vloz sem log z FRST
http://forum.viry.cz/viewtopic.php?f=24&t=130783
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
Obrázek
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Obrázek
Nahoru
kail5
Návštěvník
Návštěvník
Příspěvky: 50
Registrován: 23 zář 2008 11:14

Re: Policie ČR

#3 Příspěvek od kail5 »

No, nepřišlo mi až tak hloupé napřed HDD vyšroubovat, připojit do externího rámečku a nejprv si udělat image disku, ale je-li to "To co za sposoby??", pak respektuju pokyn rádce.

Zde je log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-01-2014
Ran by Veronika (administrator) on VERONIKA-PC on 06-01-2014 14:37:27
Running from E:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Corporation) C:\Windows\System32\dinotify.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2741544 2011-04-08] (Synaptics Incorporated)
HKLM\...\Run: [Lenovo EE Boot Optimizer] - C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [114688 2011-11-03] (Lenovo)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9753024 2011-11-03] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [5908928 2011-11-03] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-02-18] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [332BigDog] - C:\Program Files (x86)\USB Camera2\VM332_STI.EXE [536576 2010-01-19] (Vimicro)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-26] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [228448 2011-01-29] (CyberLink Corp.)
HKLM-x32\...\Run: [VeriFaceManager] - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056 2011-11-03] (Lenovo)
HKLM-x32\...\Run: [UpdatePRCShortCut] - C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-13] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [InboxToolbar] - C:\Program Files (x86)\Inbox Toolbar\Inbox.exe [1380312 2013-12-02] (Inbox.com, Inc.)
HKLM-x32\...\Run: [SweetIM] - C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [115032 2012-10-04] (SweetIM Technologies Ltd.)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2471448 2013-12-10] ()
HKLM-x32\...\Run: [ControlCenter4] - C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [Facebook Update] - C:\Users\Veronika\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-02-04] (Facebook Inc.)
HKCU\...\Run: [RebateInformer] - C:\Program Files (x86)\RebateInformer\RebateInf.exe [1047000 2013-11-15] (Inbox.com, Inc.)
HKCU\...\Run: [SDP] - C:\Program Files (x86)\FilesFrog Update Checker\update_checker.exe [201808 2013-01-31] (Somoto)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-11-03] (Google Inc.)
AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll [ ] ()
AppInit_DLLs-x32: c:\progra~3\bitguard\271769~1.27\{c16c1~1\bitguard.dll [ ] ()
Startup: C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Veronika\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
ShortcutTarget: Facebook Messenger.lnk -> C:\Users\Veronika\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe (Facebook)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=LENN
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.wisesearch.info/?pid=2 ... Z&unqvl=39
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.babylon.com/?affID=119816 ... D53D26262F
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://websearch.wisesearch.info/?pid=2 ... Z&unqvl=39
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.wisesearch.info/?l=1&q ... Z&unqvl=39
SearchScopes: HKCU - DefaultScope {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/?a=6PR4Xj ... earchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerm ... D53D26262F
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.wisesearch.info/?l=1&q ... Z&unqvl=39
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/?a=6PR4Xj ... earchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: AppGraffiti - {6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} - C:\Program Files (x86)\AppGraffiti\AppGraffiti.dll (Omega Partners Ltd)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} - No File
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Downlloead Keeper - {B756A3A7-D0DD-8328-78B9-AA4C42A2C3A7} - C:\ProgramData\Downlloead Keeper\9O.dll No File
BHO-x32: No Name - {CCB69577-088B-4004-9ED8-FF5BCC83A039} - C:\Program Files (x86)\RebateInformer\RebateI.dll (Inbox.com, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} - No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} - No File
Handler: rebinfo - {AF808758-C780-404C-A4EE-4526323FD9B6} - C:\Program Files (x86)\RebateInformer\RebInf64.dll (Inbox.com, Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} - C:\Program Files (x86)\Inbox Toolbar\Inbox.dll (Inbox.com, Inc.)
Handler-x32: rebinfo - {AF808758-C780-404C-A4EE-4526323FD9B6} - C:\Program Files (x86)\RebateInformer\RebateI.dll (Inbox.com, Inc.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.2.0\ViProtocol.dll (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915
FF NewTab: user_pref("browser.newtab.url", "");
FF DefaultSearchEngine: WebSearch
FF SearchEngineOrder.1: WebSearch
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "WebSearch");: user_pref("browser.search.order.1,S", "WebSearch");
FF SelectedSearchEngine: WebSearch
FF Homepage: hxxp://mysearch.avg.com?cid={194C1E1D-D146-4191-8915-BC06A4099740}&mid=311572a6745147d3b4ddb1915f10773d-df2b4946e026b17be4fc60b2c328606b4d2324b5&lang=cs&ds=AVG&coid=avgtbavg&pr=fr&d=&v=&pid=safeguard&sg=0&sap=hp
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.2.0\\npsitesafety.dll (AVG Technologies)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Veronika\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF SearchPlugin: C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\BitGuard.xml
FF SearchPlugin: C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\MyStart Search.xml
FF SearchPlugin: C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\safeguard-secure-search.xml
FF SearchPlugin: C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\SweetIM Search.xml
FF SearchPlugin: C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\WebSearch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: SearchNewTab - C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\Extensions\ahnjoye@mfeawh.edu
FF Extension: Downlloead Keeper - C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\Extensions\i92pj@lbmwiyiyooe.com
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
FF HKCU\...\Firefox\Extensions: [rebate_informer_wp@rebateblast.com] - C:\Program Files (x86)\RebateInformer\Firefox\
FF Extension: Rebate Informer Firefox - C:\Program Files (x86)\RebateInformer\Firefox\

Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: ""
CHR DefaultSearchKeyword: websearch
CHR DefaultSearchProvider: WebSearch
CHR DefaultSearchURL: http://websearch.wisesearch.info/?l=1&q ... Z&unqvl=39
CHR DefaultNewTabURL:
CHR Extension: (AppGraffiti - Free Facebook Layouts) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\angobeimajilfhlcpeiccndaifchnppl\1.0.0.11_0
CHR Extension: (Delta Toolbar) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0
CHR Extension: (Skype Click to Call) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_1
CHR Extension: (Google Wallet) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (RebateInformer) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbbfaealmlpnodchplhdomkgpdkeeal\1.0.0.9_0
CHR HKLM-x32\...\Chrome\Extension: [angobeimajilfhlcpeiccndaifchnppl] - C:\Program Files (x86)\AppGraffiti\Chrome\graff_chr.crx
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Veronika\AppData\Roaming\BabSolution\CR\Delta.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM-x32\...\Chrome\Extension: [odbbfaealmlpnodchplhdomkgpdkeeal] - C:\Program Files (x86)\RebateInformer\Chrome\rebateinformer_c.crx
CHR HKLM-x32\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Windows\SysWOW64\jmdp\SweetNT.crx

==================== Services (Whitelisted) =================

S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [953632 2010-12-14] (Broadcom Corporation.)
S2 IBUpdaterService; C:\Windows\system32\dmwu.exe [1833776 2013-12-29] ()
S2 vToolbarUpdater17.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [1771544 2013-12-10] (AVG Secure Search)

==================== Drivers (Whitelisted) ====================

S1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
S1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\windows\system32\drivers\avgtpx64.sys [46368 2013-11-11] (AVG Technologies)
S3 ALSysIO; \??\C:\Users\ADMINI~1\AppData\Local\Temp\ALSysIO64.sys [x]
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 nvUpdatusService;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
U2 Stereo Service;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-06 14:37 - 2014-01-06 14:37 - 00000000 ____D C:\FRST
2014-01-03 19:15 - 2014-01-03 19:15 - 00211302 _____ C:\Users\Veronika\Downloads\GotClip_Setup.exe
2014-01-03 19:10 - 2014-01-03 19:10 - 491148478 _____ C:\Users\Veronika\Downloads\Past-na-rodiče-cz-[natu3].avi.crdownload
2014-01-03 16:53 - 2014-01-03 16:53 - 00021002 _____ C:\Users\Veronika\Downloads\zkouska chemie (1).odt
2014-01-01 20:11 - 2014-01-01 21:19 - 479519806 _____ C:\Users\Veronika\Downloads\Rok-ďábla (1).AVI
2014-01-01 20:08 - 2014-01-01 20:09 - 03088114 _____ C:\Users\Veronika\Downloads\Rok-ďábla.AVI
2013-12-31 22:29 - 2014-01-01 01:23 - 1619757469 _____ C:\Users\Veronika\Downloads\Bling-Ring---Jako-VIPky-(2013)-CZ-titulky (1).mkv
2013-12-31 20:08 - 2013-12-31 20:36 - 215374363 _____ C:\Users\Veronika\Downloads\Bling-Ring---Jako-VIPky-(2013)-CZ-titulky.mkv
2013-12-31 05:04 - 2013-12-31 05:04 - 00000000 ____D C:\windows\SysWOW64\jmdp
2013-12-31 05:04 - 2013-12-31 05:04 - 00000000 ____D C:\windows\system32\ljkb
2013-12-30 21:08 - 2013-12-30 21:08 - 03436725 _____ C:\Users\Veronika\Downloads\Protokoly - moje.rar
2013-12-30 21:08 - 2013-12-30 21:08 - 00088954 _____ C:\Users\Veronika\Downloads\biologie protokoly.zip
2013-12-30 10:48 - 2013-12-30 10:48 - 00021002 _____ C:\Users\Veronika\Downloads\zkouska chemie.odt
2013-12-30 09:26 - 2013-12-30 10:05 - 353372160 _____ C:\Users\Veronika\Downloads\Glee-S05E08---cz-tit..avi
2013-12-29 23:15 - 2013-12-29 23:35 - 363859968 _____ C:\Users\Veronika\Downloads\Glee-S05E07---cz-tit..avi
2013-12-29 22:21 - 2013-12-29 23:11 - 453767168 _____ C:\Users\Veronika\Downloads\Glee-s05e06-cz-titulky-vloženy.avi
2013-12-29 21:17 - 2013-12-29 21:17 - 448082854 _____ C:\Users\Veronika\Downloads\Glee-s05e06-cz-titulky-vloženy.avi.crdownload
2013-12-29 19:43 - 2013-12-29 20:23 - 364896256 _____ C:\Users\Veronika\Downloads\Glee-S05E05-titulky-vloženy.avi
2013-12-29 12:32 - 2013-12-29 12:52 - 364906496 _____ C:\Users\Veronika\Downloads\Glee-S05E04---cz-tit..avi
2013-12-28 22:50 - 2013-12-28 23:26 - 335714304 _____ C:\Users\Veronika\Downloads\Glee-s05e03-cz-titulky-vlozeny.avi
2013-12-28 22:48 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-12-28 22:48 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-12-28 22:48 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2013-12-28 22:48 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-12-28 22:48 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-12-28 22:48 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2013-12-28 22:48 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-12-28 22:48 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-12-28 22:48 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-12-28 22:48 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-12-28 22:48 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-12-28 22:48 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2013-12-28 22:48 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2013-12-28 22:48 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2013-12-28 22:48 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-12-28 22:48 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-12-28 22:48 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-12-28 22:48 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-12-28 22:48 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-12-28 22:48 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2013-12-28 22:48 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-12-28 22:48 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2013-12-28 22:48 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-12-28 22:48 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2013-12-28 22:48 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-12-28 22:48 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-12-28 22:48 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-12-28 22:48 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2013-12-28 22:48 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2013-12-28 22:48 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-12-28 22:48 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-12-27 16:32 - 2013-12-27 17:13 - 364861440 _____ C:\Users\Veronika\Downloads\Upíří-deníky-(The-Vampire-diaries)-5x10-CZ-titulky.avi
2013-12-27 13:43 - 2013-12-27 14:22 - 363907072 _____ C:\Users\Veronika\Downloads\Upíří-deníky-(The-Vampire-Diaries)-5x09.avi
2013-12-27 13:10 - 2013-12-27 13:31 - 197826418 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-5x08.avi
2013-12-27 12:22 - 2013-12-27 13:09 - 433829888 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x07-Death-and-the-Maiden-(CZ-Titulky).avi
2013-12-22 22:55 - 2013-12-22 23:29 - 309479230 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x06-cz-titulky.avi
2013-12-20 08:32 - 2013-12-20 09:05 - 302888678 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x05-cz-titulky.avi
2013-12-20 03:06 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2013-12-20 03:06 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2013-12-20 03:06 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2013-12-20 03:06 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2013-12-20 03:06 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-12-20 03:02 - 2013-12-20 03:02 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-12-20 03:02 - 2013-12-20 03:02 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-12-20 03:02 - 2013-12-20 03:02 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-12-20 03:02 - 2013-12-20 03:02 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00238288 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-12-20 03:02 - 2013-12-20 03:02 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-12-20 03:02 - 2013-12-20 03:02 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2013-12-19 21:14 - 2013-12-19 21:49 - 324080216 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x04-cz-titulky.avi
2013-12-19 19:25 - 2013-12-19 19:56 - 293339040 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x03---CZ-titulky (1).avi
2013-12-18 22:03 - 2013-12-18 22:14 - 90186314 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x03---CZ-titulky.avi
2013-12-18 21:17 - 2013-12-18 21:52 - 337161626 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x02-cz-titulky.avi
2013-12-18 18:31 - 2013-12-18 19:10 - 355467264 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-5x01-I-Know-What-You-Did-Last-Summer-(CZ-Titulky).avi
2013-12-18 18:11 - 2013-12-18 18:28 - 295223958 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x23---Graduation-+-CZ-titulky.avi
2013-12-17 21:56 - 2013-12-17 21:56 - 00547328 _____ C:\Users\Veronika\Downloads\koralnatci2.ppt
2013-12-17 19:22 - 2013-12-17 19:48 - 254068704 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x22---The-Walking-Dead-+-CZ-titulky.avi
2013-12-17 18:51 - 2013-12-17 19:07 - 287378852 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x21---She's-Come-Undone-+-CZ-titulky.avi
2013-12-15 17:29 - 2013-12-15 17:29 - 00000000 ____D C:\Users\Veronika\Desktop\Nová složka
2013-12-15 13:56 - 2013-12-20 03:06 - 00014367 _____ C:\windows\IE11_main.log
2013-12-14 08:14 - 2013-12-14 10:25 - 1204985760 _____ C:\Users\Veronika\Downloads\Hunger-Games-Vražedná-pomsta-CZ-titulky.avi
2013-12-13 21:56 - 2013-12-13 22:12 - 142357790 _____ C:\Users\Veronika\Downloads\Hobit-2-Šmakova-dračí-poušť--audiostopa-CZ-DABING.m4a
2013-12-13 18:34 - 2013-12-13 21:40 - 1674333853 _____ C:\Users\Veronika\Downloads\Hunger-Games---Vražedná-pomsta-(2013).mkv
2013-12-11 12:48 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-12-11 12:48 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-12-11 12:48 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2013-12-11 12:48 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2013-12-11 12:48 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2013-12-11 12:48 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2013-12-11 12:48 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-12-11 12:48 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2013-12-11 12:48 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2013-12-11 12:47 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2013-12-11 12:47 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2013-12-11 12:47 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2013-12-11 12:47 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2013-12-11 12:47 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2013-12-11 12:47 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2013-12-11 12:47 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2013-12-11 12:47 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2013-12-11 12:47 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2013-12-11 12:47 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2013-12-11 12:44 - 2013-12-11 15:04 - 1250211928 _____ C:\Users\Veronika\Downloads\Game.of.Thrones.S01E01.Winter.is.Coming.2011.mkv
2013-12-11 09:17 - 2013-12-11 09:17 - 00040315 _____ C:\Users\Veronika\Downloads\Game-of-Thrones-S01E01.srt
2013-12-10 17:00 - 2013-12-10 17:00 - 00000000 ____D C:\Users\Veronika\AppData\Local\{D46C8FFE-E3B4-428C-8556-60B1DF37EA67}
2013-12-09 15:15 - 2013-12-09 15:54 - 316197618 _____ C:\Users\Veronika\Downloads\Jak-básníci-přicházejí-o-iluze-(1984)---720×576-,-5.1-CZ---448-Kbps,-2.0-CZ---224-Kbps-+-Titulky---CZ-EN.mkv

==================== One Month Modified Files and Folders =======

2014-01-06 14:37 - 2014-01-06 14:37 - 00000000 ____D C:\FRST
2014-01-06 14:36 - 2011-11-03 06:31 - 18256850 _____ C:\windows\system32\perfh005.dat
2014-01-06 14:36 - 2011-11-03 06:31 - 06370824 _____ C:\windows\system32\perfc005.dat
2014-01-06 14:36 - 2009-07-14 06:13 - 00005434 _____ C:\windows\system32\PerfStringBackup.INI
2014-01-06 14:35 - 2011-11-03 15:48 - 01066635 _____ C:\windows\system32\fastboot.set
2014-01-03 19:57 - 2011-11-03 15:32 - 00000966 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-03 19:52 - 2013-02-17 15:33 - 03232256 ___SH C:\Users\Veronika\Desktop\Thumbs.db
2014-01-03 19:45 - 2013-09-16 16:03 - 00000000 ____D C:\Users\Veronika\Desktop\Medicína
2014-01-03 19:44 - 2013-02-04 13:39 - 00000940 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2747037552-920164662-1855581273-1000UA.job
2014-01-03 19:40 - 2009-07-14 05:51 - 00110001 _____ C:\windows\setupact.log
2014-01-03 19:39 - 2011-11-03 14:53 - 01845659 _____ C:\windows\WindowsUpdate.log
2014-01-03 19:38 - 2013-01-03 19:42 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\Skype
2014-01-03 19:21 - 2013-11-08 12:28 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2014-01-03 19:15 - 2014-01-03 19:15 - 00211302 _____ C:\Users\Veronika\Downloads\GotClip_Setup.exe
2014-01-03 19:10 - 2014-01-03 19:10 - 491148478 _____ C:\Users\Veronika\Downloads\Past-na-rodiče-cz-[natu3].avi.crdownload
2014-01-03 17:56 - 2013-10-31 18:35 - 00000000 ____D C:\ProgramData\MFAData
2014-01-03 16:53 - 2014-01-03 16:53 - 00021002 _____ C:\Users\Veronika\Downloads\zkouska chemie (1).odt
2014-01-03 16:53 - 2013-11-02 16:59 - 01461248 ___SH C:\Users\Veronika\Downloads\Thumbs.db
2014-01-03 16:37 - 2009-07-14 05:45 - 00021280 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-03 16:37 - 2009-07-14 05:45 - 00021280 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-03 16:32 - 2013-02-04 13:39 - 00000918 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2747037552-920164662-1855581273-1000Core.job
2014-01-03 16:32 - 2011-11-03 15:39 - 02636883 _____ C:\FaceProv.log
2014-01-03 16:32 - 2011-11-03 15:39 - 00000000 ____D C:\ProgramData\VeriFace
2014-01-03 11:34 - 2013-06-01 15:52 - 00000000 ____D C:\Users\Veronika\Downloads\Klára Kajuška Juračková_files
2014-01-03 10:14 - 2011-11-03 15:32 - 00000962 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-02 18:53 - 2009-07-14 04:20 - 00000000 ____D C:\windows\system32\NDF
2014-01-02 17:58 - 2013-02-23 20:27 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\vlc
2014-01-01 21:19 - 2014-01-01 20:11 - 479519806 _____ C:\Users\Veronika\Downloads\Rok-ďábla (1).AVI
2014-01-01 20:09 - 2014-01-01 20:08 - 03088114 _____ C:\Users\Veronika\Downloads\Rok-ďábla.AVI
2014-01-01 01:23 - 2013-12-31 22:29 - 1619757469 _____ C:\Users\Veronika\Downloads\Bling-Ring---Jako-VIPky-(2013)-CZ-titulky (1).mkv
2013-12-31 20:36 - 2013-12-31 20:08 - 215374363 _____ C:\Users\Veronika\Downloads\Bling-Ring---Jako-VIPky-(2013)-CZ-titulky.mkv
2013-12-31 05:04 - 2013-12-31 05:04 - 00000000 ____D C:\windows\SysWOW64\jmdp
2013-12-31 05:04 - 2013-12-31 05:04 - 00000000 ____D C:\windows\system32\ljkb
2013-12-30 22:09 - 2013-04-16 14:11 - 00000000 ____D C:\windows\SysWOW64\WNLT
2013-12-30 22:09 - 2013-04-16 14:11 - 00000000 ____D C:\windows\SysWOW64\ARFC
2013-12-30 21:08 - 2013-12-30 21:08 - 03436725 _____ C:\Users\Veronika\Downloads\Protokoly - moje.rar
2013-12-30 21:08 - 2013-12-30 21:08 - 00088954 _____ C:\Users\Veronika\Downloads\biologie protokoly.zip
2013-12-30 10:48 - 2013-12-30 10:48 - 00021002 _____ C:\Users\Veronika\Downloads\zkouska chemie.odt
2013-12-30 10:05 - 2013-12-30 09:26 - 353372160 _____ C:\Users\Veronika\Downloads\Glee-S05E08---cz-tit..avi
2013-12-29 23:35 - 2013-12-29 23:15 - 363859968 _____ C:\Users\Veronika\Downloads\Glee-S05E07---cz-tit..avi
2013-12-29 23:11 - 2013-12-29 22:21 - 453767168 _____ C:\Users\Veronika\Downloads\Glee-s05e06-cz-titulky-vloženy.avi
2013-12-29 22:11 - 2013-02-23 20:27 - 00000000 ____D C:\Program Files (x86)\RebateInformer
2013-12-29 22:10 - 2013-08-25 20:58 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\Dropbox
2013-12-29 22:09 - 2013-08-25 21:10 - 00000000 ___RD C:\Users\Veronika\Dropbox
2013-12-29 22:07 - 2009-07-14 06:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-29 21:17 - 2013-12-29 21:17 - 448082854 _____ C:\Users\Veronika\Downloads\Glee-s05e06-cz-titulky-vloženy.avi.crdownload
2013-12-29 20:23 - 2013-12-29 19:43 - 364896256 _____ C:\Users\Veronika\Downloads\Glee-S05E05-titulky-vloženy.avi
2013-12-29 12:52 - 2013-12-29 12:32 - 364906496 _____ C:\Users\Veronika\Downloads\Glee-S05E04---cz-tit..avi
2013-12-29 11:47 - 2009-07-14 06:09 - 00000000 ____D C:\windows\System32\Tasks\WPD
2013-12-29 11:12 - 2013-04-16 14:11 - 01833776 _____ C:\windows\system32\dmwu.exe
2013-12-29 11:08 - 2013-04-16 14:11 - 00033792 _____ (IncrediMail, Ltd.) C:\windows\system32\ImHttpComm.dll
2013-12-28 23:26 - 2013-12-28 22:50 - 335714304 _____ C:\Users\Veronika\Downloads\Glee-s05e03-cz-titulky-vlozeny.avi
2013-12-27 17:13 - 2013-12-27 16:32 - 364861440 _____ C:\Users\Veronika\Downloads\Upíří-deníky-(The-Vampire-diaries)-5x10-CZ-titulky.avi
2013-12-27 14:22 - 2013-12-27 13:43 - 363907072 _____ C:\Users\Veronika\Downloads\Upíří-deníky-(The-Vampire-Diaries)-5x09.avi
2013-12-27 13:31 - 2013-12-27 13:10 - 197826418 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-5x08.avi
2013-12-27 13:09 - 2013-12-27 12:22 - 433829888 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x07-Death-and-the-Maiden-(CZ-Titulky).avi
2013-12-25 09:03 - 2012-10-31 15:10 - 00829264 _____ (Microsoft Corporation) C:\windows\system32\msvcr100.dll
2013-12-25 09:03 - 2011-06-11 01:15 - 00608080 _____ (Microsoft Corporation) C:\windows\system32\msvcp100.dll
2013-12-22 23:29 - 2013-12-22 22:55 - 309479230 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x06-cz-titulky.avi
2013-12-20 09:05 - 2013-12-20 08:32 - 302888678 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x05-cz-titulky.avi
2013-12-20 07:52 - 2012-12-12 21:15 - 00060824 _____ C:\Users\Veronika\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-20 07:51 - 2012-12-12 21:14 - 00001393 _____ C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-20 04:03 - 2009-07-14 04:20 - 00000000 ____D C:\windows\rescache
2013-12-20 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\windows\PolicyDefinitions
2013-12-20 03:23 - 2012-12-12 21:20 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\SoftGrid Client
2013-12-20 03:06 - 2013-12-15 13:56 - 00014367 _____ C:\windows\IE11_main.log
2013-12-20 03:02 - 2013-12-20 03:02 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-12-20 03:02 - 2013-12-20 03:02 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-12-20 03:02 - 2013-12-20 03:02 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-12-20 03:02 - 2013-12-20 03:02 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-12-20 03:02 - 2013-12-20 03:02 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00238288 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-12-20 03:02 - 2013-12-20 03:02 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-12-20 03:02 - 2013-12-20 03:02 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2013-12-19 21:49 - 2013-12-19 21:14 - 324080216 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x04-cz-titulky.avi
2013-12-19 19:56 - 2013-12-19 19:25 - 293339040 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x03---CZ-titulky (1).avi
2013-12-18 22:14 - 2013-12-18 22:03 - 90186314 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x03---CZ-titulky.avi
2013-12-18 21:52 - 2013-12-18 21:17 - 337161626 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x02-cz-titulky.avi
2013-12-18 19:10 - 2013-12-18 18:31 - 355467264 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-5x01-I-Know-What-You-Did-Last-Summer-(CZ-Titulky).avi
2013-12-18 18:28 - 2013-12-18 18:11 - 295223958 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x23---Graduation-+-CZ-titulky.avi
2013-12-17 21:56 - 2013-12-17 21:56 - 00547328 _____ C:\Users\Veronika\Downloads\koralnatci2.ppt
2013-12-17 19:48 - 2013-12-17 19:22 - 254068704 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x22---The-Walking-Dead-+-CZ-titulky.avi
2013-12-17 19:07 - 2013-12-17 18:51 - 287378852 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x21---She's-Come-Undone-+-CZ-titulky.avi
2013-12-16 14:41 - 2013-02-04 10:35 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-16 14:41 - 2013-01-03 19:42 - 00000000 ____D C:\ProgramData\Skype
2013-12-16 14:36 - 2009-07-14 06:08 - 00017174 _____ C:\windows\Tasks\SCHEDLGU.TXT
2013-12-16 14:35 - 2012-12-17 18:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-16 14:35 - 2009-07-14 05:45 - 00283376 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-15 22:31 - 2013-11-09 19:55 - 00000000 ____D C:\Users\Veronika\Desktop\9x13
2013-12-15 22:29 - 2013-12-04 12:36 - 00000000 ____D C:\Users\Veronika\Desktop\10x15
2013-12-15 17:49 - 2013-09-02 07:52 - 00000000 ___RD C:\Users\Veronika\Desktop\Fotky
2013-12-15 17:29 - 2013-12-15 17:29 - 00000000 ____D C:\Users\Veronika\Desktop\Nová složka
2013-12-15 13:52 - 2013-08-03 07:29 - 00000000 ____D C:\windows\system32\MRT
2013-12-15 13:48 - 2013-01-08 16:39 - 90708896 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-12-14 10:25 - 2013-12-14 08:14 - 1204985760 _____ C:\Users\Veronika\Downloads\Hunger-Games-Vražedná-pomsta-CZ-titulky.avi
2013-12-13 22:12 - 2013-12-13 21:56 - 142357790 _____ C:\Users\Veronika\Downloads\Hobit-2-Šmakova-dračí-poušť--audiostopa-CZ-DABING.m4a
2013-12-13 21:40 - 2013-12-13 18:34 - 1674333853 _____ C:\Users\Veronika\Downloads\Hunger-Games---Vražedná-pomsta-(2013).mkv
2013-12-13 12:10 - 2013-03-10 00:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-11 15:22 - 2013-11-08 12:28 - 00003852 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 15:22 - 2012-12-17 18:37 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 15:21 - 2012-12-17 18:37 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 15:04 - 2013-12-11 12:44 - 1250211928 _____ C:\Users\Veronika\Downloads\Game.of.Thrones.S01E01.Winter.is.Coming.2011.mkv
2013-12-11 09:17 - 2013-12-11 09:17 - 00040315 _____ C:\Users\Veronika\Downloads\Game-of-Thrones-S01E01.srt
2013-12-10 17:00 - 2013-12-10 17:00 - 00000000 ____D C:\Users\Veronika\AppData\Local\{D46C8FFE-E3B4-428C-8556-60B1DF37EA67}
2013-12-10 14:28 - 2013-10-31 18:42 - 00003744 _____ C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2013-12-10 14:27 - 2013-10-31 18:42 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar
2013-12-10 14:27 - 2013-10-31 18:42 - 00000000 ____D C:\Program Files (x86)\AVG SafeGuard toolbar
2013-12-10 07:40 - 2013-11-26 08:38 - 00000000 ____D C:\Users\Veronika\Desktop\Glosáře
2013-12-09 15:54 - 2013-12-09 15:15 - 316197618 _____ C:\Users\Veronika\Downloads\Jak-básníci-přicházejí-o-iluze-(1984)---720×576-,-5.1-CZ---448-Kbps,-2.0-CZ---224-Kbps-+-Titulky---CZ-EN.mkv

Some content of TEMP:
====================
C:\Users\Veronika\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\Veronika\AppData\Local\Temp\oi_{0944ADDD-880E-4E6D-B1C7-1EC42F9CB642}.exe
C:\Users\Veronika\AppData\Local\Temp\run.exe
C:\Users\Veronika\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Veronika\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Veronika\AppData\Local\Temp\Tsu96C8891F.dll
C:\Users\Veronika\AppData\Local\Temp\~10F1.exe
C:\Users\Veronika\AppData\Local\Temp\~F3EF.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-20 02:07

==================== End Of Log ============================
Nahoru
Uživatelský avatar
stell
VIP in memoriam
VIP in memoriam
Příspěvky: 5175
Registrován: 09 pro 2007 09:27
Bydliště: SK-REVUCA
Kontaktovat uživatele:
Kontaktovat uživatele stell

Re: Policie ČR

#4 Příspěvek od stell »

No je tam toho dost, daco zmazem s FRST a zbytok zmazeme s programom,,,
Tvorba fixlistu pro FRST

Spust poznamkovy blok (Start-spustit-notepad)
Zkopiruj skript nize.

Kód: Vybrat vše

Start
HKLM-x32\...\Run: [SweetIM] - C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [115032 2012-10-04] (SweetIM Technologies Ltd.)
AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll [ ] ()
AppInit_DLLs-x32: c:\progra~3\bitguard\271769~1.27\{c16c1~1\bitguard.dll [ ] ()
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=LENN
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.wisesearch.info/?pid=2 ... Z&unqvl=39
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.babylon.com/?affID=119816 ... D53D26262F
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://websearch.wisesearch.info/?pid=2 ... Z&unqvl=39
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.wisesearch.info/?l=1&q={searchTerms}&pid=299&r=2013/10/23&hid=12647256491099720823&lg=EN&cc=CZ&unqvl=39
SearchScopes: HKCU - DefaultScope {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/?a=6PR4Xj ... kw&search={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerms}&affID=119816&babsrc=SP_ss_Btisdt7&mntrId=6A37E4D53D26262F
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.wisesearch.info/?l=1&q={searchTerms}&pid=299&r=2013/10/23&hid=12647256491099720823&lg=EN&cc=CZ&unqvl=39
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/?a=6PR4Xj ... kw&search={searchTerms}
BHO-x32: Downlloead Keeper - {B756A3A7-D0DD-8328-78B9-AA4C42A2C3A7} - C:\ProgramData\Downlloead Keeper\9O.dll No File
CHR Extension: (Delta Toolbar) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0
S2 vToolbarUpdater17.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [1771544 2013-12-10] (AVG Secure Search)
S2 IBUpdaterService; C:\Windows\system32\dmwu.exe [1833776 2013-12-29] ()
C:\Users\Veronika\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\Veronika\AppData\Local\Temp\oi_{0944ADDD-880E-4E6D-B1C7-1EC42F9CB642}.exe
C:\Users\Veronika\AppData\Local\Temp\run.exe
C:\Users\Veronika\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Veronika\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Veronika\AppData\Local\Temp\Tsu96C8891F.dll
C:\Users\Veronika\AppData\Local\Temp\~10F1.exe
C:\Users\Veronika\AppData\Local\Temp\~F3EF.exe
Hosts:
CMD: shutdown /r
End
Uloz vytvoreny TXT jako fixlist.txt
Presun vytvoreny fixlist vedle FRST na Flashku.
Zopakuj akciu podla prveho navodu, ale POZOR>>Spust znovu FRST.exe
Kliknes na Fix
Probehne oprava a pocitac sa restartuje , nechaj to nabehnut do windows.>>vytvori log Fixlog.txt
Ten sem vloz.

2:Spust ADWcleaner>>navod, >>>log sem vloz.
http://www.viruskasino.com/2012/09/adwcleaner.html
SCAN A CLEAN.
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
Obrázek
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Obrázek
Nahoru
kail5
Návštěvník
Návštěvník
Příspěvky: 50
Registrován: 23 zář 2008 11:14

Re: Policie ČR

#5 Příspěvek od kail5 »

Přestal reagovat na usb flashku, takže ten program a fixlist budu muset vypálit na CD.
V mezičase se zeptám: viděl jsem, že tam má dívčina antivir. Dá se této nákaze nějak do budoucna zabránit? Odkud vlastně pochází? Něco infikovaného stáhla a spustila? Lidská hloupost? Nebo chyba v OS?
Nahoru
Uživatelský avatar
stell
VIP in memoriam
VIP in memoriam
Příspěvky: 5175
Registrován: 09 pro 2007 09:27
Bydliště: SK-REVUCA
Kontaktovat uživatele:
Kontaktovat uživatele stell

Re: Policie ČR

#6 Příspěvek od stell »

Vsak vypni pocitac, pockaj chvilku a skus este raz z Flashky.
Do windows sa nedostanes vobec??
Antivir tomu nezabrani, tychto smejdov pisu profici.
A ten AV co tam je,nie je bohvie co.
Ano je to ludska hlupost, :)
Přestal reagovat na usb flashku,
To musis znova absolvovat celu proceduru, prikaz Notepad, a zistit pismenko USB-pretoze system prideli stale ine pismenko.
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
Obrázek
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Obrázek
Nahoru
kail5
Návštěvník
Návštěvník
Příspěvky: 50
Registrován: 23 zář 2008 11:14

Re: Policie ČR

#7 Příspěvek od kail5 »

Chápu, ale ta flashka se neobjevovala ani v Notepadu. Zkusil jsem jinou a ta už šla:

Fixlog:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 05-01-2014
Ran by Veronika at 2014-01-06 18:16:52 Run:1
Running from E:\
Boot Mode: Safe Mode (minimal)
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [SweetIM] - C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [115032 2012-10-04] (SweetIM Technologies Ltd.)
AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll [ ] ()
AppInit_DLLs-x32: c:\progra~3\bitguard\271769~1.27\{c16c1~1\bitguard.dll [ ] ()
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain ... &bmod=LENN
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.wisesearch.info/?pid=2 ... Z&unqvl=39
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.babylon.com/?affID=119816 ... D53D26262F
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://websearch.wisesearch.info/?pid=2 ... Z&unqvl=39
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.wisesearch.info/?l=1&q ... Z&unqvl=39
SearchScopes: HKCU - DefaultScope {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/?a=6PR4Xj ... kw&search={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerm ... D53D26262F
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.wisesearch.info/?l=1&q ... Z&unqvl=39
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/?a=6PR4Xj ... kw&search={searchTerms}
BHO-x32: Downlloead Keeper - {B756A3A7-D0DD-8328-78B9-AA4C42A2C3A7} - C:\ProgramData\Downlloead Keeper\9O.dll No File
CHR Extension: (Delta Toolbar) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0
S2 vToolbarUpdater17.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [1771544 2013-12-10] (AVG Secure Search)
S2 IBUpdaterService; C:\Windows\system32\dmwu.exe [1833776 2013-12-29] ()
C:\Users\Veronika\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\Veronika\AppData\Local\Temp\oi_{0944ADDD-880E-4E6D-B1C7-1EC42F9CB642}.exe
C:\Users\Veronika\AppData\Local\Temp\run.exe
C:\Users\Veronika\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Veronika\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Veronika\AppData\Local\Temp\Tsu96C8891F.dll
C:\Users\Veronika\AppData\Local\Temp\~10F1.exe
C:\Users\Veronika\AppData\Local\Temp\~F3EF.exe
Hosts:
CMD: shutdown /r
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SweetIM => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\bProtector Start Page => Value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Secondary Start Pages => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\bProtectorDefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key deleted successfully.
HKCR\CLSID\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key deleted successfully.
HKCR\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A} => Key deleted successfully.
HKCR\CLSID\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B756A3A7-D0DD-8328-78B9-AA4C42A2C3A7} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{B756A3A7-D0DD-8328-78B9-AA4C42A2C3A7} => Key deleted successfully.
C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde => Moved successfully.
vToolbarUpdater17.2.0 => Service deleted successfully.
IBUpdaterService => Service deleted successfully.
C:\Users\Veronika\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe => Moved successfully.
C:\Users\Veronika\AppData\Local\Temp\oi_{0944ADDD-880E-4E6D-B1C7-1EC42F9CB642}.exe => Moved successfully.
C:\Users\Veronika\AppData\Local\Temp\run.exe => Moved successfully.
C:\Users\Veronika\AppData\Local\Temp\setup_fsu_cid.exe => Moved successfully.
C:\Users\Veronika\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.
C:\Users\Veronika\AppData\Local\Temp\Tsu96C8891F.dll => Moved successfully.
C:\Users\Veronika\AppData\Local\Temp\~10F1.exe => Moved successfully.
C:\Users\Veronika\AppData\Local\Temp\~F3EF.exe => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r =========


========= End of CMD: =========


==== End of Fixlog ====

Už jsem se přihlásil do Win bez nouzového režimu, jdu na ten druhý program. Zatím díky.
Nahoru
kail5
Návštěvník
Návštěvník
Příspěvky: 50
Registrován: 23 zář 2008 11:14

Re: Policie ČR

#8 Příspěvek od kail5 »

SCAN proběhl v pořádku.
CLEAN poprvé zahlásil chybu a spadl, tak jsem krok SCAN A CLEAN provedl ještě jednou. To už proběhlo v pořádku, vyžádalo si to restart, zde jsou logy:

R0
# AdwCleaner v3.016 - Report created 06/01/2014 at 18:24:14
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Veronika - VERONIKA-PC
# Running from : C:\Users\Veronika\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml
File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
File Found : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Found : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.babylon.com_0.localstorage
File Found : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.babylon.com_0.localstorage-journal
File Found : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
File Found : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage-journal
File Found : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
File Found : C:\Users\Veronika\AppData\Roaming\BabMaint.exe
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\42vy6ua4.default-1370100522398\searchplugins\safeguard-secure-search.xml
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\jhvv15pi.default\searchplugins\Babylon.xml
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\jhvv15pi.default\searchplugins\safeguard-secure-search.xml
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\bprotector_extensions.sqlite
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\bprotector_prefs.js
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\BitGuard.xml
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\MyStart Search.xml
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\safeguard-secure-search.xml
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\SweetIM Search.xml
File Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\WebSearch.xml
File Found : C:\windows\System32\dmwu.exe
File Found : C:\windows\System32\ImhxxpComm.dll
File Found : C:\windows\System32\Tasks\EPUpdater
Folder Found : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\angobeimajilfhlcpeiccndaifchnppl
Folder Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\Extensions\ahnjoye@mfeawh.edu
Folder Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\Extensions\ahnjoye@mfeawh.edu
Folder Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\Extensions\i92pj@lbmwiyiyooe.com
Folder Found : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\Extensions\i92pj@lbmwiyiyooe.com
Folder Found C:\Program Files (x86)\AppGraffiti
Folder Found C:\Program Files (x86)\AVG SafeGuard toolbar
Folder Found C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Found C:\Program Files (x86)\FilesFrog Update Checker
Folder Found C:\Program Files (x86)\Inbox Toolbar
Folder Found C:\Program Files (x86)\Inbox.com
Folder Found C:\Program Files (x86)\optimizer pro
Folder Found C:\Program Files (x86)\RebateInformer
Folder Found C:\Program Files (x86)\ss helper
Folder Found C:\Program Files (x86)\SweetIM
Folder Found C:\Program Files (x86)\sweetpacks bundle uninstaller
Folder Found C:\ProgramData\AVG SafeGuard toolbar
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\BitGuard
Folder Found C:\ProgramData\Downlloead Keeper
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppGraffiti
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RebateInformer
Folder Found C:\ProgramData\Partner
Folder Found C:\ProgramData\SearchNewTab
Folder Found C:\ProgramData\SweetIM
Folder Found C:\Users\Veronika\AppData\Local\AVG SafeGuard toolbar
Folder Found C:\Users\Veronika\AppData\LocalLow\AppGraffiti
Folder Found C:\Users\Veronika\AppData\LocalLow\AVG SafeGuard toolbar
Folder Found C:\Users\Veronika\AppData\LocalLow\Inbox Toolbar
Folder Found C:\Users\Veronika\AppData\LocalLow\RebateInformer
Folder Found C:\Users\Veronika\AppData\Roaming\BabSolution
Folder Found C:\Users\Veronika\AppData\Roaming\Babylon
Folder Found C:\Users\Veronika\AppData\Roaming\file scout
Folder Found C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Found C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
Folder Found C:\windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Folder Found C:\windows\System32\ljkb
Folder Found C:\windows\SysWOW64\ARFC
Folder Found C:\windows\SysWOW64\jmdp
Folder Found C:\windows\SysWOW64\WNLT

***** [ Shortcuts ] *****

Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar\Inbox.com.lnk ( /showurl hxxp://www.inbox.com/homepage.aspx?tbid=82120&iwk=243&lng=cs )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar\Nastavení.lnk ( /showurl hxxp://toolbar.inbox.com/settings/settings.aspx?lng=cs )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar\Nápověda.lnk ( /showurl hxxp://toolbar.inbox.com/faq.aspx )

***** [ Registry ] *****

Key Found : HKCU\Software\5d57dddebc39b848
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\AppGraffiti
Key Found : HKCU\Software\AVG SafeGuard toolbar
Key Found : HKCU\Software\BabSolution
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\CToolbar
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DataMngr_Toolbar
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\Inbox Toolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\babylon.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKCU\Software\Somoto
Key Found : HKCU\Software\wnlt
Key Found : [x64] HKCU\Software\AppGraffiti
Key Found : [x64] HKCU\Software\AVG SafeGuard toolbar
Key Found : [x64] HKCU\Software\BabSolution
Key Found : [x64] HKCU\Software\BabylonToolbar
Key Found : [x64] HKCU\Software\BI
Key Found : [x64] HKCU\Software\CToolbar
Key Found : [x64] HKCU\Software\DataMngr
Key Found : [x64] HKCU\Software\DataMngr_Toolbar
Key Found : [x64] HKCU\Software\filescout
Key Found : [x64] HKCU\Software\IM
Key Found : [x64] HKCU\Software\ImInstaller
Key Found : [x64] HKCU\Software\Inbox Toolbar
Key Found : [x64] HKCU\Software\Somoto
Key Found : [x64] HKCU\Software\wnlt
Key Found : HKLM\SOFTWARE\5d57dddebc39b848
Key Found : HKLM\Software\AppGraffiti
Key Found : HKLM\Software\AVG SafeGuard toolbar
Key Found : HKLM\Software\AVG Security Toolbar
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Found : HKLM\SOFTWARE\Classes\AppGraffiti.AppGraffitiJS
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AF808758-C780-404C-A4EE-4526323FD9B6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DB35C569-5624-4CFC-8043-E5139F55A073}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Classes\CShared.TB4Client
Key Found : HKLM\SOFTWARE\Classes\CShared.TB4Script
Key Found : HKLM\SOFTWARE\Classes\CShared.TB4Server
Key Found : HKLM\SOFTWARE\Classes\CShared.TB4Server2
Key Found : HKLM\SOFTWARE\Classes\Inbox.AppServer
Key Found : HKLM\SOFTWARE\Classes\Inbox.IBX404
Key Found : HKLM\SOFTWARE\Classes\Inbox.JSServer
Key Found : HKLM\SOFTWARE\Classes\Inbox.Toolbar
Key Found : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\rebinfo
Key Found : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\RebateI.Rebate Informer BHO
Key Found : HKLM\SOFTWARE\Classes\RebateI.RebateInformImageGen
Key Found : HKLM\SOFTWARE\Classes\RebateInf.RebateInfObj
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\SearchNewTab.SearchNewTab
Key Found : HKLM\SOFTWARE\Classes\SearchNewTab.SearchNewTab.1.0
Key Found : HKLM\SOFTWARE\Classes\sim-packages
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{438B047C-C041-4D15-98CF-A97C6B366C28}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\Software\CToolbar
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\angobeimajilfhlcpeiccndaifchnppl
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Found : HKLM\Software\Inbox Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SweetIM Bundle by SweetPacks
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\wnlt
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [RebateInformer]
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SDP]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [InboxToolbar]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v25.0 (cs)

[ File : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\42vy6ua4.default-1370100522398\prefs.js ]

Line Found : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=6A37E4D53D26262F");
Line Found : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Found : user_pref("browser.search.order.1", "Delta Search");
Line Found : user_pref("browser.search.selectedEngine", "AVG Secure Search");

[ File : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\jhvv15pi.default\prefs.js ]

Line Found : user_pref("avg.install.userHPSettings", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=6A37E4D53D26262F");
Line Found : user_pref("avg.install.userSPSettings", "Delta Search");
Line Found : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=6A37E4D53D26262F");
Line Found : user_pref("browser.search.order.1", "Delta Search");
Line Found : user_pref("browser.search.selectedEngine", "Delta Search");
Line Found : user_pref("ibxcomtb.defs", "<buttons>\n<button id=\"tv_search_cz\" position=\"1097\" default=\"3\" type=\"dropdown\" status_disabled=\"0\" ver=\"1.0.0.1\">\n <caption>CZ a SK televize</caption>\n <h[...]

[ File : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\prefs.js ]

Line Found : user_pref("aol_toolbar.default.homepage.check", false);
Line Found : user_pref("aol_toolbar.default.search.check", false);
Line Found : user_pref("browser.search.defaultenginename", "WebSearch");
Line Found : user_pref("browser.search.defaultenginename,S", "WebSearch");
Line Found : user_pref("browser.search.defaulturl", "hxxp://websearch.wisesearch.info/?pid=299&r=2013/10/23&hid=12647256491099720823&lg=EN&cc=CZ&unqvl=39&l=1&q=");
Line Found : user_pref("browser.search.order.1", "WebSearch");
Line Found : user_pref("browser.search.order.1,S", "WebSearch");
Line Found : user_pref("browser.search.selectedEngine", "WebSearch");
Line Found : user_pref("browser.search.selectedEngine,S", "WebSearch");
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("extensions.LZwnUxfgjHKY.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self.location.hostname.indexOf('mail.')==-1)\r\n{try{for(i=0;i<5;[...]
Line Found : user_pref("extensions.jdwa.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.createElement(\"script\");script.ty[...]
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Found : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found : icon_url
Found : search_url
Found : keyword

*************************

AdwCleaner[R0].txt - [25050 octets] - [06/01/2014 18:24:14]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [25111 octets] ##########

R1
# AdwCleaner v3.016 - Report created 06/01/2014 at 18:27:10
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Veronika - VERONIKA-PC
# Running from : C:\Users\Veronika\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\angobeimajilfhlcpeiccndaifchnppl
Folder Found C:\Users\Veronika\AppData\Local\AVG SafeGuard toolbar

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\5d57dddebc39b848
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\AppGraffiti
Key Found : HKCU\Software\AVG SafeGuard toolbar
Key Found : HKCU\Software\BabSolution
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\CToolbar
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DataMngr_Toolbar
Key Found : HKCU\Software\filescout
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\Inbox Toolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\babylon.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKCU\Software\Somoto
Key Found : HKCU\Software\wnlt
Key Found : [x64] HKCU\Software\AppGraffiti
Key Found : [x64] HKCU\Software\AVG SafeGuard toolbar
Key Found : [x64] HKCU\Software\BabSolution
Key Found : [x64] HKCU\Software\BabylonToolbar
Key Found : [x64] HKCU\Software\BI
Key Found : [x64] HKCU\Software\CToolbar
Key Found : [x64] HKCU\Software\DataMngr
Key Found : [x64] HKCU\Software\DataMngr_Toolbar
Key Found : [x64] HKCU\Software\filescout
Key Found : [x64] HKCU\Software\IM
Key Found : [x64] HKCU\Software\ImInstaller
Key Found : [x64] HKCU\Software\Inbox Toolbar
Key Found : [x64] HKCU\Software\Somoto
Key Found : [x64] HKCU\Software\wnlt
Key Found : HKLM\SOFTWARE\5d57dddebc39b848
Key Found : HKLM\Software\AppGraffiti
Key Found : HKLM\Software\AVG SafeGuard toolbar
Key Found : HKLM\Software\AVG Security Toolbar
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Found : HKLM\SOFTWARE\Classes\AppGraffiti.AppGraffitiJS
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AF808758-C780-404C-A4EE-4526323FD9B6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DB35C569-5624-4CFC-8043-E5139F55A073}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Classes\CShared.TB4Client
Key Found : HKLM\SOFTWARE\Classes\CShared.TB4Script
Key Found : HKLM\SOFTWARE\Classes\CShared.TB4Server
Key Found : HKLM\SOFTWARE\Classes\CShared.TB4Server2
Key Found : HKLM\SOFTWARE\Classes\Inbox.AppServer
Key Found : HKLM\SOFTWARE\Classes\Inbox.IBX404
Key Found : HKLM\SOFTWARE\Classes\Inbox.JSServer
Key Found : HKLM\SOFTWARE\Classes\Inbox.Toolbar
Key Found : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Key Found : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Found : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Found : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\rebinfo
Key Found : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\RebateI.Rebate Informer BHO
Key Found : HKLM\SOFTWARE\Classes\RebateI.RebateInformImageGen
Key Found : HKLM\SOFTWARE\Classes\RebateInf.RebateInfObj
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\SearchNewTab.SearchNewTab
Key Found : HKLM\SOFTWARE\Classes\SearchNewTab.SearchNewTab.1.0
Key Found : HKLM\SOFTWARE\Classes\sim-packages
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{438B047C-C041-4D15-98CF-A97C6B366C28}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\Software\CToolbar
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\angobeimajilfhlcpeiccndaifchnppl
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Found : HKLM\Software\Inbox Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SweetIM Bundle by SweetPacks
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\wnlt
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [RebateInformer]
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SDP]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [InboxToolbar]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v25.0 (cs)

[ File : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\42vy6ua4.default-1370100522398\prefs.js ]

Line Found : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=6A37E4D53D26262F");
Line Found : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Found : user_pref("browser.search.order.1", "Delta Search");
Line Found : user_pref("browser.search.selectedEngine", "AVG Secure Search");

[ File : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\jhvv15pi.default\prefs.js ]

Line Found : user_pref("avg.install.userHPSettings", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=6A37E4D53D26262F");
Line Found : user_pref("avg.install.userSPSettings", "Delta Search");
Line Found : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=6A37E4D53D26262F");
Line Found : user_pref("browser.search.order.1", "Delta Search");
Line Found : user_pref("browser.search.selectedEngine", "Delta Search");
Line Found : user_pref("ibxcomtb.defs", "<buttons>\n<button id=\"tv_search_cz\" position=\"1097\" default=\"3\" type=\"dropdown\" status_disabled=\"0\" ver=\"1.0.0.1\">\n <caption>CZ a SK televize</caption>\n <h[...]

[ File : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\prefs.js ]

Line Found : user_pref("aol_toolbar.default.homepage.check", false);
Line Found : user_pref("aol_toolbar.default.search.check", false);
Line Found : user_pref("browser.search.defaultenginename", "WebSearch");
Line Found : user_pref("browser.search.defaultenginename,S", "WebSearch");
Line Found : user_pref("browser.search.defaulturl", "hxxp://websearch.wisesearch.info/?pid=299&r=2013/10/23&hid=12647256491099720823&lg=EN&cc=CZ&unqvl=39&l=1&q=");
Line Found : user_pref("browser.search.order.1", "WebSearch");
Line Found : user_pref("browser.search.order.1,S", "WebSearch");
Line Found : user_pref("browser.search.selectedEngine", "WebSearch");
Line Found : user_pref("browser.search.selectedEngine,S", "WebSearch");
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("extensions.LZwnUxfgjHKY.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self.location.hostname.indexOf('mail.')==-1)\r\n{try{for(i=0;i<5;[...]
Line Found : user_pref("extensions.jdwa.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.createElement(\"script\");script.ty[...]
Line Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Found : user_pref("sweetim.toolbar.searchguard.enable", "");

*************************

AdwCleaner[R0].txt - [25324 octets] - [06/01/2014 18:24:14]
AdwCleaner[R1].txt - [19275 octets] - [06/01/2014 18:27:10]
AdwCleaner[S0].txt - [5661 octets] - [06/01/2014 18:26:05]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [19396 octets] ##########

S0
# AdwCleaner v3.016 - Report created 06/01/2014 at 18:26:05
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Veronika - VERONIKA-PC
# Running from : C:\Users\Veronika\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\SweetIM
Folder Deleted : C:\ProgramData\Downlloead Keeper
Folder Deleted : C:\ProgramData\SearchNewTab
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppGraffiti
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RebateInformer
Folder Deleted : C:\Program Files (x86)\AppGraffiti
Folder Deleted : C:\Program Files (x86)\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files (x86)\FilesFrog Update Checker
Folder Deleted : C:\Program Files (x86)\Inbox Toolbar
Folder Deleted : C:\Program Files (x86)\Inbox.com
Folder Deleted : C:\Program Files (x86)\optimizer pro
Folder Deleted : C:\Program Files (x86)\RebateInformer
Folder Deleted : C:\Program Files (x86)\ss helper
Folder Deleted : C:\Program Files (x86)\SweetIM
Folder Deleted : C:\Program Files (x86)\sweetpacks bundle uninstaller
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Folder Deleted : C:\windows\SysWOW64\ARFC
Folder Deleted : C:\windows\SysWOW64\jmdp
Folder Deleted : C:\windows\SysWOW64\WNLT
Folder Deleted : C:\windows\System32\ljkb
[!] Folder Deleted : C:\Users\Veronika\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Veronika\AppData\LocalLow\AppGraffiti
Folder Deleted : C:\Users\Veronika\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Veronika\AppData\LocalLow\Inbox Toolbar
Folder Deleted : C:\Users\Veronika\AppData\LocalLow\RebateInformer
Folder Deleted : C:\Users\Veronika\AppData\Roaming\BabSolution
Folder Deleted : C:\Users\Veronika\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Veronika\AppData\Roaming\file scout
Folder Deleted : C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
Folder Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\Extensions\ahnjoye@mfeawh.edu
Folder Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\Extensions\i92pj@lbmwiyiyooe.com
Folder Deleted : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\angobeimajilfhlcpeiccndaifchnppl
File Deleted : C:\windows\System32\dmwu.exe
File Deleted : C:\windows\System32\ImHttpComm.dll
File Deleted : C:\Users\Veronika\AppData\Roaming\BabMaint.exe
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\bprotector_extensions.sqlite
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\bprotector_prefs.js
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\jhvv15pi.default\searchplugins\Babylon.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\BitGuard.xml
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\MyStart Search.xml
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\42vy6ua4.default-1370100522398\searchplugins\safeguard-secure-search.xml
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\jhvv15pi.default\searchplugins\safeguard-secure-search.xml
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\safeguard-secure-search.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\SweetIM Search.xml
File Deleted : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\searchplugins\WebSearch.xml
File Deleted : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Deleted : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Deleted : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
File Deleted : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.babylon.com_0.localstorage
File Deleted : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.babylon.com_0.localstorage-journal
File Deleted : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www1.delta-search.com_0.localstorage
File Deleted : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www1.delta-search.com_0.localstorage-journal
File Deleted : C:\windows\System32\Tasks\EPUpdater

***** [ Shortcuts ] *****

S1
# AdwCleaner v3.016 - Report created 06/01/2014 at 18:28:05
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Veronika - VERONIKA-PC
# Running from : C:\Users\Veronika\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

[!] Folder Deleted : C:\Users\Veronika\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\angobeimajilfhlcpeiccndaifchnppl

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\angobeimajilfhlcpeiccndaifchnppl
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\babylon.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [RebateInformer]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SDP]
Key Deleted : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Deleted : HKLM\SOFTWARE\Classes\AppGraffiti.AppGraffitiJS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CShared.TB4Client
Key Deleted : HKLM\SOFTWARE\Classes\CShared.TB4Script
Key Deleted : HKLM\SOFTWARE\Classes\CShared.TB4Server
Key Deleted : HKLM\SOFTWARE\Classes\CShared.TB4Server2
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.AppServer
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.IBX404
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.JSServer
Key Deleted : HKLM\SOFTWARE\Classes\Inbox.Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\rebinfo
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\RebateI.Rebate Informer BHO
Key Deleted : HKLM\SOFTWARE\Classes\RebateI.RebateInformImageGen
Key Deleted : HKLM\SOFTWARE\Classes\RebateInf.RebateInfObj
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\SearchNewTab.SearchNewTab
Key Deleted : HKLM\SOFTWARE\Classes\SearchNewTab.SearchNewTab.1.0
Key Deleted : HKLM\SOFTWARE\Classes\sim-packages
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [InboxToolbar]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKCU\Software\5d57dddebc39b848
Key Deleted : HKLM\SOFTWARE\5d57dddebc39b848
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AF808758-C780-404C-A4EE-4526323FD9B6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DB35C569-5624-4CFC-8043-E5139F55A073}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{438B047C-C041-4D15-98CF-A97C6B366C28}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\AppGraffiti
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\BI
Key Deleted : HKCU\Software\CToolbar
Key Deleted : HKCU\Software\DataMngr
[#] Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\Inbox Toolbar
Key Deleted : HKCU\Software\Somoto
Key Deleted : HKCU\Software\wnlt
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKLM\Software\AppGraffiti
Key Deleted : HKLM\Software\AVG SafeGuard toolbar
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\CToolbar
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\Inbox Toolbar
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SweetIM Bundle by SweetPacks
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Key Deleted : [x64] HKLM\SOFTWARE\wnlt
Key Deleted : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v25.0 (cs)

[ File : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\42vy6ua4.default-1370100522398\prefs.js ]

Line Deleted : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=6A37E4D53D26262F");
Line Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Deleted : user_pref("browser.search.order.1", "Delta Search");
Line Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search");

[ File : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\jhvv15pi.default\prefs.js ]

Line Deleted : user_pref("avg.install.userHPSettings", "hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=6A37E4D53D26262F");
Line Deleted : user_pref("avg.install.userSPSettings", "Delta Search");
Line Deleted : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?affID=119816&babsrc=NT_ss&mntrId=6A37E4D53D26262F");
Line Deleted : user_pref("browser.search.order.1", "Delta Search");
Line Deleted : user_pref("browser.search.selectedEngine", "Delta Search");
Line Deleted : user_pref("ibxcomtb.defs", "<buttons>\n<button id=\"tv_search_cz\" position=\"1097\" default=\"3\" type=\"dropdown\" status_disabled=\"0\" ver=\"1.0.0.1\">\n <caption>CZ a SK televize</caption>\n <h[...]

[ File : C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915\prefs.js ]

Line Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Line Deleted : user_pref("aol_toolbar.default.search.check", false);
Line Deleted : user_pref("browser.search.defaultenginename", "WebSearch");
Line Deleted : user_pref("browser.search.defaultenginename,S", "WebSearch");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://websearch.wisesearch.info/?pid=299&r=2013/10/23&hid=12647256491099720823&lg=EN&cc=CZ&unqvl=39&l=1&q=");
Line Deleted : user_pref("browser.search.order.1", "WebSearch");
Line Deleted : user_pref("browser.search.order.1,S", "WebSearch");
Line Deleted : user_pref("browser.search.selectedEngine", "WebSearch");
Line Deleted : user_pref("browser.search.selectedEngine,S", "WebSearch");
Line Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Deleted : user_pref("extensions.LZwnUxfgjHKY.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self.location.hostname.indexOf('mail.')==-1)\r\n{try{for(i=0;i<5;[...]
Line Deleted : user_pref("extensions.jdwa.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.createElement(\"script\");script.ty[...]
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");

*************************

AdwCleaner[R0].txt - [25324 octets] - [06/01/2014 18:24:14]
AdwCleaner[R1].txt - [19609 octets] - [06/01/2014 18:27:10]
AdwCleaner[S0].txt - [5661 octets] - [06/01/2014 18:26:05]
AdwCleaner[S1].txt - [19211 octets] - [06/01/2014 18:28:05]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [19272 octets] ##########
Nahoru
Uživatelský avatar
stell
VIP in memoriam
VIP in memoriam
Příspěvky: 5175
Registrován: 09 pro 2007 09:27
Bydliště: SK-REVUCA
Kontaktovat uživatele:
Kontaktovat uživatele stell

Re: Policie ČR

#9 Příspěvek od stell »

ok, upratujeme dalej.
1:Pouzi vsetky tieto programy, co ma kolega tu:
http://forum.viry.cz/viewtopic.php?f=13 ... 2#p1283888

2:Pouzi Shortcut Cleaner
http://www.bleepingcomputer.com/downloa ... t-cleaner/
Log vloz sem.

3:Pouzi JunkwareRemowal
http://www.viruskasino.com/2010/12/prog ... moval-tool
Log vloz sem.

A nakoniec >>
4:Pouzi Malwarebytes anti rootkit.
http://www.viruskasino.com/2010/12/prog ... ti-Rootkit

ak budu nalezy>>Log vloz sem, odskusaj pc a napis ci su este problemy.
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
Obrázek
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Obrázek
Nahoru
kail5
Návštěvník
Návštěvník
Příspěvky: 50
Registrován: 23 zář 2008 11:14

Re: Policie ČR

#10 Příspěvek od kail5 »

Shortcut log:
samé nuly


JRT log:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.9 (01.01.2014:1)
OS: Windows 7 Home Premium x64
Ran by Veronika on po 06.01.2014 at 19:31:29,08
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2747037552-920164662-1855581273-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim



~~~ Files

Successfully deleted: [File] "C:\Users\Veronika\appdata\locallow\SkwConfig.bin"



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Veronika\appdata\local\{1CF5B712-1D19-4119-9850-4529CEEBA2BD}
Successfully deleted: [Empty Folder] C:\Users\Veronika\appdata\local\{22251C76-9A19-4316-9C7E-FC5833381739}
Successfully deleted: [Empty Folder] C:\Users\Veronika\appdata\local\{31258A3B-F44B-4B09-84F9-5F9FE25C7D12}
Successfully deleted: [Empty Folder] C:\Users\Veronika\appdata\local\{799FDE21-08EC-49CB-B478-69480E939FD0}
Successfully deleted: [Empty Folder] C:\Users\Veronika\appdata\local\{9056B213-BC95-469C-BE88-DCF4F48745C7}
Successfully deleted: [Empty Folder] C:\Users\Veronika\appdata\local\{932589B6-6A32-4936-B2B5-25926D8DCC2F}
Successfully deleted: [Empty Folder] C:\Users\Veronika\appdata\local\{B6356673-7D17-4A59-BFC4-A49E83B8AB92}
Successfully deleted: [Empty Folder] C:\Users\Veronika\appdata\local\{D46C8FFE-E3B4-428C-8556-60B1DF37EA67}



~~~ FireFox

Successfully deleted the following from C:\Users\Veronika\AppData\Roaming\mozilla\firefox\profiles\pjbkqsqc.default-1378106702915\prefs.js

user_pref("browser.startup.homepage", "hxxp://mysearch.avg.com?cid={194C1E1D-D146-4191-8915-BC06A4099740}&mid=311572a6745147d3b4ddb1915f10773d-df2b4946e026b17be4fc60b2c328606b
Emptied folder: C:\Users\Veronika\AppData\Roaming\mozilla\firefox\profiles\pjbkqsqc.default-1378106702915\minidumps [2 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 06.01.2014 at 19:38:11,28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Nahoru
kail5
Návštěvník
Návštěvník
Příspěvky: 50
Registrován: 23 zář 2008 11:14

Re: Policie ČR

#11 Příspěvek od kail5 »

MBAR: no malware found.

Stroj se jeví jako v pořádku.
Velké díky :thumbsup:
Nahoru
Uživatelský avatar
stell
VIP in memoriam
VIP in memoriam
Příspěvky: 5175
Registrován: 09 pro 2007 09:27
Bydliště: SK-REVUCA
Kontaktovat uživatele:
Kontaktovat uživatele stell

Re: Policie ČR

#12 Příspěvek od stell »

Ok, Nemas zac.
Temu zatvaram.
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
Obrázek
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Obrázek
Nahoru
kail5
Návštěvník
Návštěvník
Příspěvky: 50
Registrován: 23 zář 2008 11:14

Policejní vir - pokračování zamčeného vlákna

#13 Příspěvek od kail5 »

//EDIT vyosek: Temata sloucena a odemknuto

Zdravím,
před pár dny řešil stell toto vlákno: http://forum.viry.cz/viewtopic.php?f=13&t=135263
- uvadím pro případ, že by se toho ujal zase on a chtěl navázat na předchozí logy
- nákaza se vrátila, prý "po krátkém čase běžné práce", teda patrně žádné cílené stahování z internetu

V návaznosti na předchozí vlákno jsem tedy rovnou udělal boot do nouzového režimu s cmd a spustil FRST.
Zde log:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-01-2014
Ran by Veronika (administrator) on VERONIKA-PC on 10-01-2014 11:41:44
Running from E:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\System32\cmd.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2741544 2011-04-08] (Synaptics Incorporated)
HKLM\...\Run: [Lenovo EE Boot Optimizer] - C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [114688 2011-11-03] (Lenovo)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9753024 2011-11-03] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [5908928 2011-11-03] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-02-18] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [332BigDog] - C:\Program Files (x86)\USB Camera2\VM332_STI.EXE [536576 2010-01-19] (Vimicro)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-26] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [228448 2011-01-29] (CyberLink Corp.)
HKLM-x32\...\Run: [VeriFaceManager] - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056 2011-11-03] (Lenovo)
HKLM-x32\...\Run: [UpdatePRCShortCut] - C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-13] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [ControlCenter4] - C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [Facebook Update] - C:\Users\Veronika\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-02-04] (Facebook Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-11-03] (Google Inc.)
HKCU\...\Run: [AVG-Secure-Search-Update_1213b] - C:\Users\Veronika\AppData\Roaming\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe [2548248 2013-12-05] ()
Startup: C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Veronika\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
ShortcutTarget: Facebook Messenger.lnk -> C:\Users\Veronika\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe (Facebook)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Veronika\AppData\Roaming\Mozilla\Firefox\Profiles\pjbkqsqc.default-1378106702915
FF NewTab: user_pref("browser.newtab.url", "");
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Veronika\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKCU\...\Firefox\Extensions: [rebate_informer_wp@rebateblast.com] - C:\Program Files (x86)\RebateInformer\Firefox\

Chrome:
=======
CHR Extension: (Docs) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Skype Click to Call) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0
CHR Extension: (Google Wallet) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1
CHR Extension: () - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbbfaealmlpnodchplhdomkgpdkeeal\1.0.0.9_0
CHR Extension: (Gmail) - C:\Users\Veronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM-x32\...\Chrome\Extension: [odbbfaealmlpnodchplhdomkgpdkeeal] - C:\Program Files (x86)\RebateInformer\Chrome\rebateinformer_c.crx

==================== Services (Whitelisted) =================

S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [953632 2010-12-14] (Broadcom Corporation.)

==================== Drivers (Whitelisted) ====================

S1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
S1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\windows\system32\drivers\avgtpx64.sys [46368 2013-11-11] (AVG Technologies)
S3 ALSysIO; \??\C:\Users\ADMINI~1\AppData\Local\Temp\ALSysIO64.sys [x]
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 nvUpdatusService;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
U2 Stereo Service;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-10 11:41 - 2014-01-10 11:41 - 00000000 ____D C:\FRST
2014-01-07 16:31 - 2014-01-07 16:31 - 00002890 _____ C:\windows\System32\Tasks\AVG_SYS_TASK_DELETE
2014-01-07 16:31 - 2014-01-07 16:31 - 00002652 _____ C:\windows\System32\Tasks\AVG_SYS_TASK
2014-01-07 16:31 - 2014-01-07 16:31 - 00000386 _____ C:\windows\Tasks\AVG_SYS_TASK_DELETE.job
2014-01-07 16:31 - 2014-01-07 16:31 - 00000358 _____ C:\windows\Tasks\AVG_SYS_TASK.job
2014-01-07 16:31 - 2014-01-07 16:31 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\AVG 1213b Campaign
2014-01-07 16:31 - 2014-01-07 16:31 - 00000000 ____D C:\ProgramData\AVG 1213b Campaign
2014-01-06 20:20 - 2014-01-08 14:24 - 00001008 _____ C:\windows\setupact.log
2014-01-06 20:20 - 2014-01-06 20:20 - 00000584 _____ C:\windows\PFRO.log
2014-01-06 20:20 - 2014-01-06 20:20 - 00000000 _____ C:\windows\setuperr.log
2014-01-06 19:46 - 2014-01-06 20:15 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-06 19:46 - 2014-01-06 19:46 - 00117464 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-01-06 19:46 - 2014-01-06 19:46 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-06 19:45 - 2014-01-06 19:45 - 00089304 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-01-06 19:31 - 2014-01-06 19:31 - 00000000 ____D C:\windows\ERUNT
2014-01-06 19:07 - 2014-01-06 19:07 - 00141622 _____ C:\Users\Veronika\Documents\cc_20140106_190700.reg
2014-01-06 19:07 - 2014-01-06 19:07 - 00007428 _____ C:\Users\Veronika\Documents\cc_20140106_190720.reg
2014-01-06 19:05 - 2014-01-06 19:05 - 00002778 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2014-01-06 19:05 - 2014-01-06 19:05 - 00000000 ____D C:\Program Files\CCleaner
2014-01-06 18:24 - 2014-01-06 18:24 - 00000088 _____ C:\Users\Veronika\Desktop\193358069101762583.log
2014-01-03 19:15 - 2014-01-03 19:15 - 00211302 _____ C:\Users\Veronika\Downloads\GotClip_Setup.exe
2014-01-03 19:10 - 2014-01-03 19:10 - 491148478 _____ C:\Users\Veronika\Downloads\Past-na-rodiče-cz-[natu3].avi.crdownload
2014-01-03 16:53 - 2014-01-03 16:53 - 00021002 _____ C:\Users\Veronika\Downloads\zkouska chemie (1).odt
2014-01-01 20:11 - 2014-01-01 21:19 - 479519806 _____ C:\Users\Veronika\Downloads\Rok-ďábla (1).AVI
2014-01-01 20:08 - 2014-01-01 20:09 - 03088114 _____ C:\Users\Veronika\Downloads\Rok-ďábla.AVI
2013-12-31 22:29 - 2014-01-01 01:23 - 1619757469 _____ C:\Users\Veronika\Downloads\Bling-Ring---Jako-VIPky-(2013)-CZ-titulky (1).mkv
2013-12-31 20:08 - 2013-12-31 20:36 - 215374363 _____ C:\Users\Veronika\Downloads\Bling-Ring---Jako-VIPky-(2013)-CZ-titulky.mkv
2013-12-30 21:08 - 2013-12-30 21:08 - 03436725 _____ C:\Users\Veronika\Downloads\Protokoly - moje.rar
2013-12-30 21:08 - 2013-12-30 21:08 - 00088954 _____ C:\Users\Veronika\Downloads\biologie protokoly.zip
2013-12-30 10:48 - 2013-12-30 10:48 - 00021002 _____ C:\Users\Veronika\Downloads\zkouska chemie.odt
2013-12-30 09:26 - 2013-12-30 10:05 - 353372160 _____ C:\Users\Veronika\Downloads\Glee-S05E08---cz-tit..avi
2013-12-29 23:15 - 2013-12-29 23:35 - 363859968 _____ C:\Users\Veronika\Downloads\Glee-S05E07---cz-tit..avi
2013-12-29 22:21 - 2013-12-29 23:11 - 453767168 _____ C:\Users\Veronika\Downloads\Glee-s05e06-cz-titulky-vloženy.avi
2013-12-29 21:17 - 2013-12-29 21:17 - 448082854 _____ C:\Users\Veronika\Downloads\Glee-s05e06-cz-titulky-vloženy.avi.crdownload
2013-12-29 19:43 - 2013-12-29 20:23 - 364896256 _____ C:\Users\Veronika\Downloads\Glee-S05E05-titulky-vloženy.avi
2013-12-29 12:32 - 2013-12-29 12:52 - 364906496 _____ C:\Users\Veronika\Downloads\Glee-S05E04---cz-tit..avi
2013-12-28 22:50 - 2013-12-28 23:26 - 335714304 _____ C:\Users\Veronika\Downloads\Glee-s05e03-cz-titulky-vlozeny.avi
2013-12-28 22:48 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-12-28 22:48 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-12-28 22:48 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2013-12-28 22:48 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-12-28 22:48 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-12-28 22:48 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2013-12-28 22:48 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-12-28 22:48 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-12-28 22:48 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-12-28 22:48 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-12-28 22:48 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-12-28 22:48 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2013-12-28 22:48 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2013-12-28 22:48 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2013-12-28 22:48 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-12-28 22:48 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-12-28 22:48 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-12-28 22:48 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-12-28 22:48 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-12-28 22:48 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2013-12-28 22:48 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-12-28 22:48 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2013-12-28 22:48 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-12-28 22:48 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2013-12-28 22:48 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-12-28 22:48 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-12-28 22:48 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-12-28 22:48 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2013-12-28 22:48 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2013-12-28 22:48 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-12-28 22:48 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-12-27 16:32 - 2013-12-27 17:13 - 364861440 _____ C:\Users\Veronika\Downloads\Upíří-deníky-(The-Vampire-diaries)-5x10-CZ-titulky.avi
2013-12-27 13:43 - 2013-12-27 14:22 - 363907072 _____ C:\Users\Veronika\Downloads\Upíří-deníky-(The-Vampire-Diaries)-5x09.avi
2013-12-27 13:10 - 2013-12-27 13:31 - 197826418 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-5x08.avi
2013-12-27 12:22 - 2013-12-27 13:09 - 433829888 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x07-Death-and-the-Maiden-(CZ-Titulky).avi
2013-12-22 22:55 - 2013-12-22 23:29 - 309479230 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x06-cz-titulky.avi
2013-12-20 08:32 - 2013-12-20 09:05 - 302888678 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x05-cz-titulky.avi
2013-12-20 03:06 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2013-12-20 03:06 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2013-12-20 03:06 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2013-12-20 03:06 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2013-12-20 03:06 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-12-20 03:02 - 2013-12-20 03:02 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-12-20 03:02 - 2013-12-20 03:02 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-12-20 03:02 - 2013-12-20 03:02 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-12-20 03:02 - 2013-12-20 03:02 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00238288 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-12-20 03:02 - 2013-12-20 03:02 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-12-20 03:02 - 2013-12-20 03:02 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2013-12-19 21:14 - 2013-12-19 21:49 - 324080216 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x04-cz-titulky.avi
2013-12-19 19:25 - 2013-12-19 19:56 - 293339040 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x03---CZ-titulky (1).avi
2013-12-18 22:03 - 2013-12-18 22:14 - 90186314 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x03---CZ-titulky.avi
2013-12-18 21:17 - 2013-12-18 21:52 - 337161626 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x02-cz-titulky.avi
2013-12-18 18:31 - 2013-12-18 19:10 - 355467264 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-5x01-I-Know-What-You-Did-Last-Summer-(CZ-Titulky).avi
2013-12-18 18:11 - 2013-12-18 18:28 - 295223958 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x23---Graduation-+-CZ-titulky.avi
2013-12-17 21:56 - 2013-12-17 21:56 - 00547328 _____ C:\Users\Veronika\Downloads\koralnatci2.ppt
2013-12-17 19:22 - 2013-12-17 19:48 - 254068704 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x22---The-Walking-Dead-+-CZ-titulky.avi
2013-12-17 18:51 - 2013-12-17 19:07 - 287378852 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x21---She's-Come-Undone-+-CZ-titulky.avi
2013-12-15 17:29 - 2013-12-15 17:29 - 00000000 ____D C:\Users\Veronika\Desktop\Nová složka
2013-12-14 08:14 - 2013-12-14 10:25 - 1204985760 _____ C:\Users\Veronika\Downloads\Hunger-Games-Vražedná-pomsta-CZ-titulky.avi
2013-12-13 21:56 - 2013-12-13 22:12 - 142357790 _____ C:\Users\Veronika\Downloads\Hobit-2-Šmakova-dračí-poušť--audiostopa-CZ-DABING.m4a
2013-12-13 18:34 - 2013-12-13 21:40 - 1674333853 _____ C:\Users\Veronika\Downloads\Hunger-Games---Vražedná-pomsta-(2013).mkv
2013-12-11 12:48 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-12-11 12:48 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-12-11 12:48 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2013-12-11 12:48 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2013-12-11 12:48 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2013-12-11 12:48 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2013-12-11 12:48 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-12-11 12:48 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2013-12-11 12:48 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2013-12-11 12:47 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2013-12-11 12:47 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2013-12-11 12:47 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2013-12-11 12:47 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2013-12-11 12:47 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2013-12-11 12:47 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2013-12-11 12:47 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2013-12-11 12:47 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2013-12-11 12:47 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2013-12-11 12:47 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2013-12-11 12:44 - 2013-12-11 15:04 - 1250211928 _____ C:\Users\Veronika\Downloads\Game.of.Thrones.S01E01.Winter.is.Coming.2011.mkv
2013-12-11 09:17 - 2013-12-11 09:17 - 00040315 _____ C:\Users\Veronika\Downloads\Game-of-Thrones-S01E01.srt

==================== One Month Modified Files and Folders =======

2014-01-10 11:41 - 2014-01-10 11:41 - 00000000 ____D C:\FRST
2014-01-10 11:41 - 2011-11-03 06:31 - 18564130 _____ C:\windows\system32\perfh005.dat
2014-01-10 11:41 - 2011-11-03 06:31 - 06480776 _____ C:\windows\system32\perfc005.dat
2014-01-10 11:41 - 2009-07-14 06:13 - 00005434 _____ C:\windows\system32\PerfStringBackup.INI
2014-01-10 11:39 - 2011-11-03 15:48 - 00449953 _____ C:\windows\system32\fastboot.set
2014-01-08 14:26 - 2011-11-03 15:39 - 02655017 _____ C:\FaceProv.log
2014-01-08 14:26 - 2011-11-03 14:53 - 01927649 _____ C:\windows\WindowsUpdate.log
2014-01-08 14:25 - 2013-01-03 19:42 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\Skype
2014-01-08 14:24 - 2014-01-06 20:20 - 00001008 _____ C:\windows\setupact.log
2014-01-08 14:23 - 2009-07-14 04:20 - 00000000 ____D C:\windows\system32\NDF
2014-01-08 14:21 - 2013-11-08 12:28 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2014-01-08 14:20 - 2013-10-31 18:35 - 00000000 ____D C:\ProgramData\MFAData
2014-01-08 14:19 - 2013-02-04 13:39 - 00000918 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2747037552-920164662-1855581273-1000Core.job
2014-01-08 14:12 - 2013-02-04 13:39 - 00000940 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2747037552-920164662-1855581273-1000UA.job
2014-01-08 14:12 - 2011-11-03 15:39 - 00000000 ____D C:\ProgramData\VeriFace
2014-01-08 14:12 - 2011-11-03 15:32 - 00000966 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-07 20:57 - 2011-11-03 15:32 - 00000962 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-07 18:16 - 2013-02-23 20:27 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\vlc
2014-01-07 17:15 - 2013-11-02 16:59 - 01649664 ___SH C:\Users\Veronika\Downloads\Thumbs.db
2014-01-07 16:32 - 2009-07-14 05:45 - 00021280 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-07 16:32 - 2009-07-14 05:45 - 00021280 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-07 16:31 - 2014-01-07 16:31 - 00002890 _____ C:\windows\System32\Tasks\AVG_SYS_TASK_DELETE
2014-01-07 16:31 - 2014-01-07 16:31 - 00002652 _____ C:\windows\System32\Tasks\AVG_SYS_TASK
2014-01-07 16:31 - 2014-01-07 16:31 - 00000386 _____ C:\windows\Tasks\AVG_SYS_TASK_DELETE.job
2014-01-07 16:31 - 2014-01-07 16:31 - 00000358 _____ C:\windows\Tasks\AVG_SYS_TASK.job
2014-01-07 16:31 - 2014-01-07 16:31 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\AVG 1213b Campaign
2014-01-07 16:31 - 2014-01-07 16:31 - 00000000 ____D C:\ProgramData\AVG 1213b Campaign
2014-01-07 16:26 - 2013-08-25 20:58 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\Dropbox
2014-01-07 16:25 - 2013-08-25 21:10 - 00000000 ___RD C:\Users\Veronika\Dropbox
2014-01-07 16:24 - 2009-07-14 06:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2014-01-06 20:20 - 2014-01-06 20:20 - 00000584 _____ C:\windows\PFRO.log
2014-01-06 20:20 - 2014-01-06 20:20 - 00000000 _____ C:\windows\setuperr.log
2014-01-06 20:19 - 2012-12-12 21:20 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\SoftGrid Client
2014-01-06 20:15 - 2014-01-06 19:46 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-06 19:54 - 2013-03-10 00:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-06 19:46 - 2014-01-06 19:46 - 00117464 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-01-06 19:46 - 2014-01-06 19:46 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-06 19:45 - 2014-01-06 19:45 - 00089304 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-01-06 19:33 - 2013-02-17 15:33 - 03232256 ___SH C:\Users\Veronika\Desktop\Thumbs.db
2014-01-06 19:31 - 2014-01-06 19:31 - 00000000 ____D C:\windows\ERUNT
2014-01-06 19:07 - 2014-01-06 19:07 - 00141622 _____ C:\Users\Veronika\Documents\cc_20140106_190700.reg
2014-01-06 19:07 - 2014-01-06 19:07 - 00007428 _____ C:\Users\Veronika\Documents\cc_20140106_190720.reg
2014-01-06 19:06 - 2013-07-23 19:57 - 00000000 ____D C:\Users\Veronika\AppData\Roaming\uTorrent
2014-01-06 19:05 - 2014-01-06 19:05 - 00002778 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2014-01-06 19:05 - 2014-01-06 19:05 - 00000000 ____D C:\Program Files\CCleaner
2014-01-06 19:05 - 2011-02-22 12:19 - 00000000 ____D C:\windows\Panther
2014-01-06 18:52 - 2013-03-02 21:13 - 00000000 ____D C:\windows\Minidump
2014-01-06 18:51 - 2012-12-12 21:14 - 00000000 ____D C:\Users\Veronika
2014-01-06 18:29 - 2013-10-31 18:42 - 00000000 ____D C:\Users\Veronika\AppData\Local\AVG SafeGuard toolbar
2014-01-06 18:24 - 2014-01-06 18:24 - 00000088 _____ C:\Users\Veronika\Desktop\193358069101762583.log
2014-01-03 19:45 - 2013-09-16 16:03 - 00000000 ____D C:\Users\Veronika\Desktop\Medicína
2014-01-03 19:15 - 2014-01-03 19:15 - 00211302 _____ C:\Users\Veronika\Downloads\GotClip_Setup.exe
2014-01-03 19:10 - 2014-01-03 19:10 - 491148478 _____ C:\Users\Veronika\Downloads\Past-na-rodiče-cz-[natu3].avi.crdownload
2014-01-03 16:53 - 2014-01-03 16:53 - 00021002 _____ C:\Users\Veronika\Downloads\zkouska chemie (1).odt
2014-01-03 11:34 - 2013-06-01 15:52 - 00000000 ____D C:\Users\Veronika\Downloads\Klára Kajuška Juračková_files
2014-01-01 21:19 - 2014-01-01 20:11 - 479519806 _____ C:\Users\Veronika\Downloads\Rok-ďábla (1).AVI
2014-01-01 20:09 - 2014-01-01 20:08 - 03088114 _____ C:\Users\Veronika\Downloads\Rok-ďábla.AVI
2014-01-01 01:23 - 2013-12-31 22:29 - 1619757469 _____ C:\Users\Veronika\Downloads\Bling-Ring---Jako-VIPky-(2013)-CZ-titulky (1).mkv
2013-12-31 20:36 - 2013-12-31 20:08 - 215374363 _____ C:\Users\Veronika\Downloads\Bling-Ring---Jako-VIPky-(2013)-CZ-titulky.mkv
2013-12-30 21:08 - 2013-12-30 21:08 - 03436725 _____ C:\Users\Veronika\Downloads\Protokoly - moje.rar
2013-12-30 21:08 - 2013-12-30 21:08 - 00088954 _____ C:\Users\Veronika\Downloads\biologie protokoly.zip
2013-12-30 10:48 - 2013-12-30 10:48 - 00021002 _____ C:\Users\Veronika\Downloads\zkouska chemie.odt
2013-12-30 10:05 - 2013-12-30 09:26 - 353372160 _____ C:\Users\Veronika\Downloads\Glee-S05E08---cz-tit..avi
2013-12-29 23:35 - 2013-12-29 23:15 - 363859968 _____ C:\Users\Veronika\Downloads\Glee-S05E07---cz-tit..avi
2013-12-29 23:11 - 2013-12-29 22:21 - 453767168 _____ C:\Users\Veronika\Downloads\Glee-s05e06-cz-titulky-vloženy.avi
2013-12-29 21:17 - 2013-12-29 21:17 - 448082854 _____ C:\Users\Veronika\Downloads\Glee-s05e06-cz-titulky-vloženy.avi.crdownload
2013-12-29 20:23 - 2013-12-29 19:43 - 364896256 _____ C:\Users\Veronika\Downloads\Glee-S05E05-titulky-vloženy.avi
2013-12-29 12:52 - 2013-12-29 12:32 - 364906496 _____ C:\Users\Veronika\Downloads\Glee-S05E04---cz-tit..avi
2013-12-29 11:47 - 2009-07-14 06:09 - 00000000 ____D C:\windows\System32\Tasks\WPD
2013-12-28 23:26 - 2013-12-28 22:50 - 335714304 _____ C:\Users\Veronika\Downloads\Glee-s05e03-cz-titulky-vlozeny.avi
2013-12-27 17:13 - 2013-12-27 16:32 - 364861440 _____ C:\Users\Veronika\Downloads\Upíří-deníky-(The-Vampire-diaries)-5x10-CZ-titulky.avi
2013-12-27 14:22 - 2013-12-27 13:43 - 363907072 _____ C:\Users\Veronika\Downloads\Upíří-deníky-(The-Vampire-Diaries)-5x09.avi
2013-12-27 13:31 - 2013-12-27 13:10 - 197826418 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-5x08.avi
2013-12-27 13:09 - 2013-12-27 12:22 - 433829888 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x07-Death-and-the-Maiden-(CZ-Titulky).avi
2013-12-25 09:03 - 2012-10-31 15:10 - 00829264 _____ (Microsoft Corporation) C:\windows\system32\msvcr100.dll
2013-12-25 09:03 - 2011-06-11 01:15 - 00608080 _____ (Microsoft Corporation) C:\windows\system32\msvcp100.dll
2013-12-22 23:29 - 2013-12-22 22:55 - 309479230 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x06-cz-titulky.avi
2013-12-20 09:05 - 2013-12-20 08:32 - 302888678 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x05-cz-titulky.avi
2013-12-20 07:52 - 2012-12-12 21:15 - 00060824 _____ C:\Users\Veronika\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-20 07:51 - 2012-12-12 21:14 - 00001393 _____ C:\Users\Veronika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-20 04:03 - 2009-07-14 04:20 - 00000000 ____D C:\windows\rescache
2013-12-20 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\windows\PolicyDefinitions
2013-12-20 03:02 - 2013-12-20 03:02 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-12-20 03:02 - 2013-12-20 03:02 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-12-20 03:02 - 2013-12-20 03:02 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-12-20 03:02 - 2013-12-20 03:02 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-12-20 03:02 - 2013-12-20 03:02 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00238288 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-12-20 03:02 - 2013-12-20 03:02 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-12-20 03:02 - 2013-12-20 03:02 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-12-20 03:02 - 2013-12-20 03:02 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-12-20 03:02 - 2013-12-20 03:02 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2013-12-19 21:49 - 2013-12-19 21:14 - 324080216 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x04-cz-titulky.avi
2013-12-19 19:56 - 2013-12-19 19:25 - 293339040 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x03---CZ-titulky (1).avi
2013-12-18 22:14 - 2013-12-18 22:03 - 90186314 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries---5x03---CZ-titulky.avi
2013-12-18 21:52 - 2013-12-18 21:17 - 337161626 _____ C:\Users\Veronika\Downloads\The-Vampire-diaries-5x02-cz-titulky.avi
2013-12-18 19:10 - 2013-12-18 18:31 - 355467264 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-5x01-I-Know-What-You-Did-Last-Summer-(CZ-Titulky).avi
2013-12-18 18:28 - 2013-12-18 18:11 - 295223958 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x23---Graduation-+-CZ-titulky.avi
2013-12-17 21:56 - 2013-12-17 21:56 - 00547328 _____ C:\Users\Veronika\Downloads\koralnatci2.ppt
2013-12-17 19:48 - 2013-12-17 19:22 - 254068704 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x22---The-Walking-Dead-+-CZ-titulky.avi
2013-12-17 19:07 - 2013-12-17 18:51 - 287378852 _____ C:\Users\Veronika\Downloads\The-Vampire-Diaries-4x21---She's-Come-Undone-+-CZ-titulky.avi
2013-12-16 14:41 - 2013-02-04 10:35 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-16 14:41 - 2013-01-03 19:42 - 00000000 ____D C:\ProgramData\Skype
2013-12-16 14:36 - 2009-07-14 06:08 - 00018314 _____ C:\windows\Tasks\SCHEDLGU.TXT
2013-12-16 14:35 - 2012-12-17 18:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-16 14:35 - 2009-07-14 05:45 - 00283376 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-15 22:31 - 2013-11-09 19:55 - 00000000 ____D C:\Users\Veronika\Desktop\9x13
2013-12-15 22:29 - 2013-12-04 12:36 - 00000000 ____D C:\Users\Veronika\Desktop\10x15
2013-12-15 17:49 - 2013-09-02 07:52 - 00000000 ___RD C:\Users\Veronika\Desktop\Fotky
2013-12-15 17:29 - 2013-12-15 17:29 - 00000000 ____D C:\Users\Veronika\Desktop\Nová složka
2013-12-15 13:52 - 2013-08-03 07:29 - 00000000 ____D C:\windows\system32\MRT
2013-12-15 13:48 - 2013-01-08 16:39 - 90708896 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-12-14 10:25 - 2013-12-14 08:14 - 1204985760 _____ C:\Users\Veronika\Downloads\Hunger-Games-Vražedná-pomsta-CZ-titulky.avi
2013-12-13 22:12 - 2013-12-13 21:56 - 142357790 _____ C:\Users\Veronika\Downloads\Hobit-2-Šmakova-dračí-poušť--audiostopa-CZ-DABING.m4a
2013-12-13 21:40 - 2013-12-13 18:34 - 1674333853 _____ C:\Users\Veronika\Downloads\Hunger-Games---Vražedná-pomsta-(2013).mkv
2013-12-11 15:22 - 2013-11-08 12:28 - 00003852 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 15:22 - 2012-12-17 18:37 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 15:21 - 2012-12-17 18:37 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 15:04 - 2013-12-11 12:44 - 1250211928 _____ C:\Users\Veronika\Downloads\Game.of.Thrones.S01E01.Winter.is.Coming.2011.mkv
2013-12-11 09:17 - 2013-12-11 09:17 - 00040315 _____ C:\Users\Veronika\Downloads\Game-of-Thrones-S01E01.srt

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-20 02:07

==================== End Of Log ============================

Díky.
Naposledy upravil(a) vyosek dne 10 led 2014 12:02, celkem upraveno 1 x.
Důvod: Slouceni temat a odemknuti
Nahoru
kail5
Návštěvník
Návštěvník
Příspěvky: 50
Registrován: 23 zář 2008 11:14

Re: Policie ČR

#14 Příspěvek od kail5 »

Zdravím vespolek, nechci působit netrpělivě, jen nevím, zda to vlákno nezapadlo.
Mrkl by někdo na log?
Díky moc.
Nahoru
Uživatelský avatar
stell
VIP in memoriam
VIP in memoriam
Příspěvky: 5175
Registrován: 09 pro 2007 09:27
Bydliště: SK-REVUCA
Kontaktovat uživatele:
Kontaktovat uživatele stell

Re: Policie ČR

#15 Příspěvek od stell »

Ahoj.
No prepac, ja som ani netusil, ze ta kolega supne do zatvorenej temy.. :boxed:
No nic ,ak este je problem aktualny tak napis, a napis aj o aky problem ide, preto ze ja tu nic nevidim, ziaden policajny smejd.
Pre nezaujem temu Zatvaram/Neotvarat.
Dôležité informácie.
NEŠLAPE Vám počítač?
Je zavirovaný? Šlape pomalu? Nefunguje program? Problém s instalací?
Využíjte služby vzdálené pomoci!
Obrázek
e-mail: stell(zavináč)forum.viry.cz
Thanks! Vďaka!
Obrázek
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“