Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-02-2014 03
Ran by Doma (administrator) on DOMA-PC on 10-02-2014 16:38:01
Running from C:\Users\Doma\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\iSafe\iSafeSvc.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\iSafe\iSafeSvc2.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\iSafe\iSafeTray.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
() C:\w-programy\WandouLabs\wandoujia_helper.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Mozilla Corporation) C:\w-programy\firefox\firefox.exe
(DT Soft Ltd) C:\w-programy\Daemon tools\DTShellHlp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\w-programy\firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PMMUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
(forum.viry.cz) C:\Users\Doma\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2589992 2011-04-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11786344 2011-03-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2207848 2011-03-21] (Realtek Semiconductor)
HKLM\...\Run: [Power Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831016 2011-08-02] (Acer Incorporated)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-06-21] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-04-24] (NTI Corporation)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1103440 2011-07-01] (Dritek System Inc.)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Dolby PCEE4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-21-2138877737-341917836-3242031496-1000\...\Run: [DAEMON Tools Lite] - C:\w-programy\Daemon tools\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd)
HKU\S-1-5-21-2138877737-341917836-3242031496-1000\...\Run: [AdobeBridge] - [X]
HKU\S-1-5-21-2138877737-341917836-3242031496-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2138877737-341917836-3242031496-1000\...\MountPoints2: {09458228-622e-11e2-96e3-ccaf7807dea1} - G:\.autorun\autorun.exe
HKU\S-1-5-21-2138877737-341917836-3242031496-1000\...\MountPoints2: {0945823a-622e-11e2-96e3-ccaf7807dea1} - H:\AutoRun.exe
HKU\S-1-5-21-2138877737-341917836-3242031496-1000\...\MountPoints2: {f728afad-cc8a-11e2-aed0-b870f4ea275e} - F:\Startme.exe
AppInit_DLLs: c:\progra~2\movies~1\safety~1\x64\safety~2.dll => File Not Found
AppInit_DLLs-x32: c:\progra~2\movies~1\safety~1\safety~2.dll => File Not Found
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
Startup: C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wandoujia_helper.lnk
ShortcutTarget: wandoujia_helper.lnk -> C:\w-programy\WandouLabs\wandoujia_helper.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKCU - Default Value = {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
URLSearchHook: HKCU - QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
URLSearchHook: HKCU - (No Name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - No File
SearchScopes: HKLM - DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKLM-x32 - DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - {95289393-33EA-4F8D-B952-483415B9C955} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={ ... rer:source?}
SearchScopes: HKCU - {95289393-33EA-4F8D-B952-483415B9C955} URL = http://search.qip.ru/?query={searchTerms}
SearchScopes: HKCU - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = http://search.qip.ru/search?query={searchTerms}&from=IE
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: No Name - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No File
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
BHO-x32: No Name - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No File
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\a3398kgk.default-1391787944038
FF Homepage: about:blank
FF NewTab: about:blank
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\progra~2\mcafee\msc\npmcsn~1.dll No File
FF Plugin-x32: @mcafee.com/SAFFPlugin - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @VideoDownloadConverter_ScriptHelper.com/Plugin - C:\Program Files (x86)\VideoDownloadConverter\npVDCPlugin.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-02-24]
FF StartMenuInternet: FIREFOX.EXE - c:\w-programy\firefox\firefox.exe
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 iSafeService; C:\Program Files (x86)\iSafe\iSafeSvc.exe [117928 2014-01-28] (Elex do Brasil Participações Ltda)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256832 2011-04-24] (NTI Corporation)
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [28504 2012-03-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-01-19] (DT Soft Ltd)
R3 iSafeKrnl; C:\Program Files (x86)\iSafe\iSafeKrnl.sys [219648 2014-01-28] (Elex do Brasil Participações Ltda)
R1 iSafeNetFilter; C:\Program Files (x86)\iSafe\iSafeNetFilter.sys [44032 2014-01-28] (Elex do Brasil Participações Ltda)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106408 2012-12-19] (Oracle Corporation)
U3 DfSdkS;
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-10 16:38 - 2014-02-10 16:38 - 00018060 _____ () C:\Users\Doma\Desktop\FRST.txt
2014-02-10 16:37 - 2014-02-10 16:38 - 00000000 ____D () C:\FRST
2014-02-10 16:37 - 2014-02-10 16:37 - 00112640 _____ (forum.viry.cz) C:\Users\Doma\Desktop\FRSTLauncher.exe
2014-02-10 16:31 - 2014-02-10 16:31 - 02170880 _____ (Farbar) C:\Users\Doma\Desktop\FRST64.exe
2014-02-10 16:27 - 2014-02-10 16:27 - 00000056 _____ () C:\Windows\setupact.log
2014-02-10 16:27 - 2014-02-10 16:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-10 16:26 - 2014-02-10 16:26 - 00001724 _____ () C:\Windows\PFRO.log
2014-02-10 16:24 - 2014-02-10 16:24 - 00000000 ____D () C:\Users\Doma\Desktop\pojistky
2014-02-10 16:12 - 2014-02-10 16:12 - 00003052 _____ () C:\Windows\System32\Tasks\{0207FA5A-04F1-43E8-A9F0-C01766EA997A}
2014-02-07 17:47 - 2014-02-07 17:47 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-02-07 17:31 - 2014-02-07 17:42 - 00000000 ____D () C:\Program Files (x86)\Age Of Empires 3
2014-02-07 15:59 - 2014-02-07 15:59 - 00262144 _____ () C:\Windows\Minidump\020714-28095-01.dmp.old
2014-02-07 15:44 - 2014-02-07 17:21 - 00000000 ____D () C:\Users\Doma\Desktop\hryaoe
2014-02-07 15:40 - 2014-02-07 15:40 - 06161846 _____ () C:\Users\Doma\Downloads\aoe3cz1.01a(1).rar
2014-02-07 09:38 - 2014-02-07 09:38 - 00028707 _____ () C:\Users\Doma\Downloads\830B779773035A84C48D26D78DCE317A10E3176E.torrent
2014-02-07 09:36 - 2014-02-07 09:36 - 00446912 _____ () C:\Users\Doma\Downloads\The_Vampire_Diaries_S05E13_HDTV_XviD-FUM[ettv].exe
2014-02-07 09:07 - 2014-02-07 09:07 - 05483968 _____ (Speedchecker Limited ) C:\Users\Doma\Downloads\zrychlenipocitace_11f88949792a4059ae2f804aae087711_.exe
2014-02-06 17:53 - 2014-02-06 17:57 - 15867731 _____ () C:\Users\Doma\Downloads\Age-of-Empires-III-(patch-v1.01,-crack,-cz).rar
2014-02-06 17:22 - 2014-02-06 17:37 - 45232099 _____ () C:\Users\Doma\Downloads\Age-of-Empires-3-cz-čeština-cz.rar
2014-02-06 17:12 - 2014-02-06 17:12 - 06161846 _____ () C:\Users\Doma\Downloads\aoe3cz1.01a.rar
2014-02-06 17:09 - 2014-02-06 17:09 - 00000000 ____D () C:\ProgramData\Age of Empires 3
2014-02-06 17:07 - 2014-02-06 17:08 - 16913728 _____ () C:\Users\Doma\Downloads\aoe3-114-english.exe
2014-02-06 16:40 - 2014-02-06 16:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-06 15:49 - 2014-02-06 15:49 - 00017535 _____ () C:\Users\Doma\Downloads\Age-of-Empires-3.torrent
2014-02-06 15:46 - 2014-02-06 15:46 - 00021953 _____ () C:\Users\Doma\Downloads\torrent-age-of-empires-3.torrent
2014-02-06 08:59 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-02-06 08:59 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-02-06 08:59 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-02-05 17:55 - 2014-02-05 17:55 - 00000112 _____ () C:\Windows\wininit.ini
2014-02-05 17:44 - 2014-02-10 16:31 - 00000000 ____D () C:\Program Files (x86)\iSafe
2014-02-05 17:44 - 2014-02-05 17:44 - 00000000 ____D () C:\Windows\system32\log
2014-02-05 17:44 - 2014-02-05 17:44 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\eCyber
2014-02-05 17:42 - 2014-02-10 16:18 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\iSafe
2014-02-05 17:41 - 2014-02-05 17:42 - 09613984 _____ () C:\Users\Doma\Downloads\yet_another_cleaner.exe
2014-02-05 16:27 - 2014-02-05 16:27 - 00410570 _____ () C:\Users\Doma\Downloads\50_odstinu_temnoty.epub
2014-02-04 17:57 - 2014-02-04 18:04 - 35466230 _____ () C:\Users\Doma\Downloads\Little-Fighter-2.5---v2.0.zip
2014-02-04 17:49 - 2014-02-04 17:49 - 00000000 ____D () C:\ProgramData\BrowserProtect
2014-02-04 17:49 - 2014-02-04 17:49 - 00000000 ____D () C:\ProgramData\Browser Manager
2014-02-04 17:49 - 2014-02-04 17:49 - 00000000 ____D () C:\ProgramData\BitGuard
2014-02-04 17:47 - 2014-02-04 17:50 - 03829760 _____ () C:\Users\Doma\Downloads\LITTLE-FIGHTER-2.5.exe
2014-02-04 17:10 - 2014-02-04 17:10 - 00000000 ____D () C:\Users\Doma\AppData\Local\WebPlayer
2014-02-04 17:08 - 2014-02-04 17:08 - 00003242 _____ () C:\Windows\System32\Tasks\SomotoUpdateCheckerAutoStart
2014-02-04 17:08 - 2014-02-04 17:08 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2014-02-04 17:08 - 2014-02-04 17:08 - 00000000 ____D () C:\Users\Doma\AppData\Local\FilesFrog Update Checker
2014-02-04 17:08 - 2014-02-04 17:08 - 00000000 ____D () C:\Program Files (x86)\FLV Video Player
2014-02-04 17:07 - 2014-02-04 17:07 - 00167536 _____ () C:\Users\Doma\Downloads\FLVPlayerSetup-1S2xeTs.exe
2014-02-01 17:41 - 2014-02-01 17:50 - 34467304 _____ () C:\Users\Doma\Downloads\Kabát---Devky-ty-to-znaj.zip
2014-02-01 14:55 - 2014-02-01 17:40 - 1484954906 _____ () C:\Users\Doma\Downloads\Sviňák.2013.(Filth)BDRip.komedie.CZ.rar
2014-02-01 12:26 - 2014-02-10 16:06 - 00000000 ____D () C:\Users\Doma\Desktop\mobil jitus
2014-01-18 08:57 - 2014-01-18 08:57 - 01720752 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2014-01-18 08:57 - 2014-01-18 08:57 - 01001904 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll
2014-01-18 08:57 - 2014-01-18 08:57 - 00054704 _____ () C:\Windows\system32\USBCoInstaller.dll
2014-01-18 08:27 - 2014-02-01 12:31 - 00000000 ____D () C:\Users\Doma\Documents\Wandoujia2
2014-01-18 08:27 - 2014-01-18 08:27 - 00000771 _____ () C:\Users\Doma\Desktop\Sony C2105 Backup.lnk
2014-01-18 08:22 - 2014-02-06 18:45 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\Wandoujia2
2014-01-18 08:22 - 2014-01-18 08:57 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\WandoujiaUsbDriver
2014-01-18 08:22 - 2014-01-18 08:26 - 00000000 ____D () C:\Users\Doma\AppData\Local\Wandoujia2
2014-01-18 08:22 - 2014-01-18 08:22 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SnapPea
2014-01-18 08:22 - 2014-01-18 08:22 - 00000000 ____D () C:\Users\Doma\.android
2014-01-18 08:22 - 2014-01-18 08:22 - 00000000 ____D () C:\SnapPea
2014-01-18 08:20 - 2014-01-18 08:20 - 31959128 _____ (Wandou Labs) C:\Users\Doma\Downloads\SnapPea_2.69.0.5457_newuser.exe
2014-01-15 16:20 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 16:20 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 16:19 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 16:19 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 16:19 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 16:19 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 16:19 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 16:19 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 16:19 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
==================== One Month Modified Files and Folders =======
2014-02-10 16:38 - 2014-02-10 16:38 - 00018060 _____ () C:\Users\Doma\Desktop\FRST.txt
2014-02-10 16:38 - 2014-02-10 16:37 - 00000000 ____D () C:\FRST
2014-02-10 16:37 - 2014-02-10 16:37 - 00112640 _____ (forum.viry.cz) C:\Users\Doma\Desktop\FRSTLauncher.exe
2014-02-10 16:35 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-10 16:35 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-10 16:31 - 2014-02-10 16:31 - 02170880 _____ (Farbar) C:\Users\Doma\Desktop\FRST64.exe
2014-02-10 16:31 - 2014-02-05 17:44 - 00000000 ____D () C:\Program Files (x86)\iSafe
2014-02-10 16:31 - 2013-01-17 18:06 - 02052387 _____ () C:\Windows\WindowsUpdate.log
2014-02-10 16:30 - 2013-01-19 12:49 - 00000000 ____D () C:\ProgramData\clear.fi
2014-02-10 16:27 - 2014-02-10 16:27 - 00000056 _____ () C:\Windows\setupact.log
2014-02-10 16:27 - 2014-02-10 16:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-10 16:27 - 2013-06-14 12:36 - 00000944 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-10 16:27 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-10 16:26 - 2014-02-10 16:26 - 00001724 _____ () C:\Windows\PFRO.log
2014-02-10 16:25 - 2013-02-12 17:34 - 00000000 ___RD () C:\Users\Doma\Desktop\filmy
2014-02-10 16:25 - 2013-01-20 16:19 - 00000000 ____D () C:\Users\Doma\Desktop\programy
2014-02-10 16:24 - 2014-02-10 16:24 - 00000000 ____D () C:\Users\Doma\Desktop\pojistky
2014-02-10 16:24 - 2014-01-07 16:52 - 00266097 _____ () C:\Users\Doma\Desktop\jita vaha.xlsx
2014-02-10 16:23 - 2013-03-21 15:59 - 00000000 ___RD () C:\Users\Doma\Desktop\pisnicky
2014-02-10 16:23 - 2013-01-29 15:38 - 00000000 ____D () C:\Users\Doma\Desktop\hry
2014-02-10 16:21 - 2013-06-14 12:36 - 00000000 ____D () C:\Program Files (x86)\Google
2014-02-10 16:19 - 2013-01-26 15:42 - 00003962 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{AE1FC0C9-F20F-4CBB-9B43-44AC78E08FA4}
2014-02-10 16:18 - 2014-02-05 17:42 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\iSafe
2014-02-10 16:12 - 2014-02-10 16:12 - 00003052 _____ () C:\Windows\System32\Tasks\{0207FA5A-04F1-43E8-A9F0-C01766EA997A}
2014-02-10 16:12 - 2013-01-19 13:01 - 00000000 ____D () C:\w-hry
2014-02-10 16:06 - 2014-02-01 12:26 - 00000000 ____D () C:\Users\Doma\Desktop\mobil jitus
2014-02-10 16:04 - 2013-06-14 12:36 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-10 16:04 - 2013-01-19 13:07 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\uTorrent
2014-02-10 16:04 - 2013-01-19 12:58 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\DAEMON Tools Lite
2014-02-10 11:54 - 2013-04-07 17:47 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-08 13:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-07 17:47 - 2014-02-07 17:47 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-02-07 17:42 - 2014-02-07 17:31 - 00000000 ____D () C:\Program Files (x86)\Age Of Empires 3
2014-02-07 17:21 - 2014-02-07 15:44 - 00000000 ____D () C:\Users\Doma\Desktop\hryaoe
2014-02-07 17:09 - 2011-08-12 07:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-07 16:45 - 2013-03-05 18:49 - 00000000 ____D () C:\Windows\Minidump
2014-02-07 15:59 - 2014-02-07 15:59 - 00262144 _____ () C:\Windows\Minidump\020714-28095-01.dmp.old
2014-02-07 15:40 - 2014-02-07 15:40 - 06161846 _____ () C:\Users\Doma\Downloads\aoe3cz1.01a(1).rar
2014-02-07 09:38 - 2014-02-07 09:38 - 00028707 _____ () C:\Users\Doma\Downloads\830B779773035A84C48D26D78DCE317A10E3176E.torrent
2014-02-07 09:36 - 2014-02-07 09:36 - 00446912 _____ () C:\Users\Doma\Downloads\The_Vampire_Diaries_S05E13_HDTV_XviD-FUM[ettv].exe
2014-02-07 09:07 - 2014-02-07 09:07 - 05483968 _____ (Speedchecker Limited ) C:\Users\Doma\Downloads\zrychlenipocitace_11f88949792a4059ae2f804aae087711_.exe
2014-02-06 21:15 - 2013-06-23 17:18 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\vlc
2014-02-06 18:45 - 2014-01-18 08:22 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\Wandoujia2
2014-02-06 17:57 - 2014-02-06 17:53 - 15867731 _____ () C:\Users\Doma\Downloads\Age-of-Empires-III-(patch-v1.01,-crack,-cz).rar
2014-02-06 17:37 - 2014-02-06 17:22 - 45232099 _____ () C:\Users\Doma\Downloads\Age-of-Empires-3-cz-čeština-cz.rar
2014-02-06 17:12 - 2014-02-06 17:12 - 06161846 _____ () C:\Users\Doma\Downloads\aoe3cz1.01a.rar
2014-02-06 17:09 - 2014-02-06 17:09 - 00000000 ____D () C:\ProgramData\Age of Empires 3
2014-02-06 17:09 - 2013-08-28 16:10 - 00000000 ____D () C:\Users\Doma\Documents\My Games
2014-02-06 17:09 - 2013-01-26 12:19 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-02-06 17:08 - 2014-02-06 17:07 - 16913728 _____ () C:\Users\Doma\Downloads\aoe3-114-english.exe
2014-02-06 16:40 - 2014-02-06 16:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-06 15:49 - 2014-02-06 15:49 - 00017535 _____ () C:\Users\Doma\Downloads\Age-of-Empires-3.torrent
2014-02-06 15:46 - 2014-02-06 15:46 - 00021953 _____ () C:\Users\Doma\Downloads\torrent-age-of-empires-3.torrent
2014-02-06 12:43 - 2013-01-19 12:50 - 00000000 ____D () C:\w-programy
2014-02-05 18:00 - 2013-02-24 12:46 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-02-05 17:55 - 2014-02-05 17:55 - 00000112 _____ () C:\Windows\wininit.ini
2014-02-05 17:45 - 2011-08-12 08:31 - 00002734 _____ () C:\Windows\System32\Tasks\Adobe ARM
2014-02-05 17:44 - 2014-02-05 17:44 - 00000000 ____D () C:\Windows\system32\log
2014-02-05 17:44 - 2014-02-05 17:44 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\eCyber
2014-02-05 17:42 - 2014-02-05 17:41 - 09613984 _____ () C:\Users\Doma\Downloads\yet_another_cleaner.exe
2014-02-05 16:35 - 2013-01-18 02:59 - 00631526 _____ () C:\Windows\system32\perfh005.dat
2014-02-05 16:35 - 2013-01-18 02:59 - 00122148 _____ () C:\Windows\system32\perfc005.dat
2014-02-05 16:35 - 2009-07-14 06:13 - 01470298 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-05 16:27 - 2014-02-05 16:27 - 00410570 _____ () C:\Users\Doma\Downloads\50_odstinu_temnoty.epub
2014-02-04 18:07 - 2011-08-12 08:28 - 00000000 ____D () C:\Program Files\EgisTec IPS
2014-02-04 18:04 - 2014-02-04 17:57 - 35466230 _____ () C:\Users\Doma\Downloads\Little-Fighter-2.5---v2.0.zip
2014-02-04 17:50 - 2014-02-04 17:47 - 03829760 _____ () C:\Users\Doma\Downloads\LITTLE-FIGHTER-2.5.exe
2014-02-04 17:49 - 2014-02-04 17:49 - 00000000 ____D () C:\ProgramData\BrowserProtect
2014-02-04 17:49 - 2014-02-04 17:49 - 00000000 ____D () C:\ProgramData\Browser Manager
2014-02-04 17:49 - 2014-02-04 17:49 - 00000000 ____D () C:\ProgramData\BitGuard
2014-02-04 17:10 - 2014-02-04 17:10 - 00000000 ____D () C:\Users\Doma\AppData\Local\WebPlayer
2014-02-04 17:08 - 2014-02-04 17:08 - 00003242 _____ () C:\Windows\System32\Tasks\SomotoUpdateCheckerAutoStart
2014-02-04 17:08 - 2014-02-04 17:08 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2014-02-04 17:08 - 2014-02-04 17:08 - 00000000 ____D () C:\Users\Doma\AppData\Local\FilesFrog Update Checker
2014-02-04 17:08 - 2014-02-04 17:08 - 00000000 ____D () C:\Program Files (x86)\FLV Video Player
2014-02-04 17:07 - 2014-02-04 17:07 - 00167536 _____ () C:\Users\Doma\Downloads\FLVPlayerSetup-1S2xeTs.exe
2014-02-01 17:50 - 2014-02-01 17:41 - 34467304 _____ () C:\Users\Doma\Downloads\Kabát---Devky-ty-to-znaj.zip
2014-02-01 17:40 - 2014-02-01 14:55 - 1484954906 _____ () C:\Users\Doma\Downloads\Sviňák.2013.(Filth)BDRip.komedie.CZ.rar
2014-02-01 12:31 - 2014-01-18 08:27 - 00000000 ____D () C:\Users\Doma\Documents\Wandoujia2
2014-01-22 15:17 - 2009-07-14 06:08 - 00032610 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-18 08:57 - 2014-01-18 08:57 - 01720752 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2014-01-18 08:57 - 2014-01-18 08:57 - 01001904 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll
2014-01-18 08:57 - 2014-01-18 08:57 - 00054704 _____ () C:\Windows\system32\USBCoInstaller.dll
2014-01-18 08:57 - 2014-01-18 08:22 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\WandoujiaUsbDriver
2014-01-18 08:56 - 2009-07-14 05:45 - 04927840 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-18 08:55 - 2013-01-17 20:00 - 00066400 _____ () C:\Users\Doma\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-18 08:27 - 2014-01-18 08:27 - 00000771 _____ () C:\Users\Doma\Desktop\Sony C2105 Backup.lnk
2014-01-18 08:26 - 2014-01-18 08:22 - 00000000 ____D () C:\Users\Doma\AppData\Local\Wandoujia2
2014-01-18 08:22 - 2014-01-18 08:22 - 00000000 ____D () C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SnapPea
2014-01-18 08:22 - 2014-01-18 08:22 - 00000000 ____D () C:\Users\Doma\.android
2014-01-18 08:22 - 2014-01-18 08:22 - 00000000 ____D () C:\SnapPea
2014-01-18 08:22 - 2013-01-17 20:01 - 00000000 ___RD () C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-18 08:22 - 2013-01-17 19:59 - 00000000 ____D () C:\Users\Doma
2014-01-18 08:20 - 2014-01-18 08:20 - 31959128 _____ (Wandou Labs) C:\Users\Doma\Downloads\SnapPea_2.69.0.5457_newuser.exe
2014-01-16 15:05 - 2013-03-03 07:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Disabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: avast! Internet Security (Disabled) {131692B0-0864-D491-4E21-3A3A1D8BBB47}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Doma\Desktop" je 45345 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
prosim o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
prosim o kontrolu
- Přílohy
-
- Addition.rar
- (7.33 KiB) Staženo 46 x
Re: prosim o kontrolu
Zdravím, smaž nepotřebné soubory
pomocí CCleaneru
návod :
Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš
Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)
čištění registru je třeba několikrát zopakovat !
Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém
Stáhni a ulož na plochu AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.
pomocí CCleaneru
návod :
Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš
Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)
čištění registru je třeba několikrát zopakovat !
Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém
Stáhni a ulož na plochu AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.
Re: prosim o kontrolu
# AdwCleaner v3.018 - Report created 10/02/2014 at 19:19:42
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Doma - DOMA-PC
# Running from : C:\Users\Doma\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\BitGuard
Folder Found C:\ProgramData\Browser Manager
Folder Found C:\ProgramData\BrowserProtect
Folder Found C:\Users\Doma\AppData\Local\FilesFrog Update Checker
Folder Found C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\Somoto
Key Found : HKCU\Software\torch
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : [x64] HKCU\Software\Somoto
Key Found : [x64] HKCU\Software\torch
Key Found : HKLM\SOFTWARE\Classes\.bdc
Key Found : HKLM\SOFTWARE\Classes\.bgl
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Found : HKLM\Software\torch
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://search.qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://search.qip.ru/ie
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://search.qip.ru/ie
-\\ Mozilla Firefox v18.0.1 (cs)
[ File : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\a3398kgk.default-1391787944038\prefs.js ]
*************************
AdwCleaner[R0].txt - [4055 octets] - [10/02/2014 19:12:10]
AdwCleaner[R1].txt - [3951 octets] - [10/02/2014 19:19:42]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [4011 octets] ##########
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Doma - DOMA-PC
# Running from : C:\Users\Doma\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\BitGuard
Folder Found C:\ProgramData\Browser Manager
Folder Found C:\ProgramData\BrowserProtect
Folder Found C:\Users\Doma\AppData\Local\FilesFrog Update Checker
Folder Found C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\Somoto
Key Found : HKCU\Software\torch
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Found : [x64] HKCU\Software\Somoto
Key Found : [x64] HKCU\Software\torch
Key Found : HKLM\SOFTWARE\Classes\.bdc
Key Found : HKLM\SOFTWARE\Classes\.bgl
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Key Found : HKLM\Software\torch
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://search.qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://search.qip.ru
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://search.qip.ru/ie
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://search.qip.ru/ie
-\\ Mozilla Firefox v18.0.1 (cs)
[ File : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\a3398kgk.default-1391787944038\prefs.js ]
*************************
AdwCleaner[R0].txt - [4055 octets] - [10/02/2014 19:12:10]
AdwCleaner[R1].txt - [3951 octets] - [10/02/2014 19:19:42]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [4011 octets] ##########
Re: prosim o kontrolu
Znovu spusť AdwCleaner ale tentokrát klikni na Clean,
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zase zkopíruj Report.
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zase zkopíruj Report.
Re: prosim o kontrolu
# AdwCleaner v3.018 - Report created 12/02/2014 at 14:25:18
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Doma - DOMA-PC
# Running from : C:\Users\Doma\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
[#] Folder Deleted : C:\ProgramData\BitGuard
[#] Folder Deleted : C:\ProgramData\Browser Manager
[#] Folder Deleted : C:\ProgramData\BrowserProtect
Folder Deleted : C:\Users\Doma\AppData\Local\FilesFrog Update Checker
Folder Deleted : C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
File Deleted : C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\.bdc
Key Deleted : HKLM\SOFTWARE\Classes\.bgl
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKCU\Software\Somoto
Key Deleted : HKCU\Software\torch
Key Deleted : HKLM\Software\torch
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16518
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
-\\ Mozilla Firefox v18.0.1 (cs)
[ File : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\a3398kgk.default-1391787944038\prefs.js ]
*************************
AdwCleaner[R0].txt - [4055 octets] - [10/02/2014 19:12:10]
AdwCleaner[R1].txt - [4115 octets] - [10/02/2014 19:19:42]
AdwCleaner[R2].txt - [4175 octets] - [12/02/2014 14:24:51]
AdwCleaner[S0].txt - [4013 octets] - [12/02/2014 14:25:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4073 octets] ##########
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Doma - DOMA-PC
# Running from : C:\Users\Doma\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
[#] Folder Deleted : C:\ProgramData\BitGuard
[#] Folder Deleted : C:\ProgramData\Browser Manager
[#] Folder Deleted : C:\ProgramData\BrowserProtect
Folder Deleted : C:\Users\Doma\AppData\Local\FilesFrog Update Checker
Folder Deleted : C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
File Deleted : C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\.bdc
Key Deleted : HKLM\SOFTWARE\Classes\.bgl
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}
Key Deleted : HKCU\Software\Somoto
Key Deleted : HKCU\Software\torch
Key Deleted : HKLM\Software\torch
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16518
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
-\\ Mozilla Firefox v18.0.1 (cs)
[ File : C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\a3398kgk.default-1391787944038\prefs.js ]
*************************
AdwCleaner[R0].txt - [4055 octets] - [10/02/2014 19:12:10]
AdwCleaner[R1].txt - [4115 octets] - [10/02/2014 19:19:42]
AdwCleaner[R2].txt - [4175 octets] - [12/02/2014 14:24:51]
AdwCleaner[S0].txt - [4013 octets] - [12/02/2014 14:25:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4073 octets] ##########
Přispějete na provoz fóra?