Preventívka + oprava

[bondasko]

Zdravím Vás. Mám taký problém. Keď zapnem Firefox a načítam hocijakú stránku, tak po kliknutí mi vyhadzuje nejakú reklamu a neviem ako to zrušiť. Robí to iba raz, ale zakaždým keď načítavam stránku.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by bondasko (administrator) on DOMA on 29-03-2014 10:52:25
Running from C:\Users\bondasko\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
() C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5119600 2012-05-11] (VIA)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-03-25] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\...\MountPoints2: {a9341bf5-9a48-11e3-8ccb-902b34550f7e} - O:\LGAutoRun.exe

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
BHO: HQ-Video-Pro-1.4 - {11111111-1111-1111-1111-110511291120} - C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho64.dll (HQ-Video)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: YoutubeAdblocker - {D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508} - C:\Program Files (x86)\YoutubeAdblocker\WP4RV.x64.dll ()
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: HQ-Video-Pro-1.4 - {11111111-1111-1111-1111-110511291120} - C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho.dll (HQ-Video)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: YoutubeAdblocker - {D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508} - C:\Program Files (x86)\YoutubeAdblocker\WP4RV.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21

FireFox:
========
FF ProfilePath: C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default
FF user.js: detected! => C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\user.js
FF Homepage: http://www.google.sk
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 - C:\Program Files (x86)\Sony\Media Go\npmediago.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: sony.com/MediaGoDetector - C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: YoutubeAdblocker - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\ea1wqvjq@dxeiyudeue.edu [2013-11-03]
FF Extension: HQ-Video-Pro-1.4 - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com [2014-03-10]
FF Extension: Download keeper - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\wrqjxxll@zzabkoqx.edu [2013-11-03]
FF Extension: Seznam lištička - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-03-05]
FF Extension: Youtube MP3 Converter - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\2conv@hotger.com.xpi [2013-02-01]
FF Extension: Youtube Downloader - Media Downloader - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\paulsaintuzb@gmail.com.xpi [2014-02-20]
FF Extension: YouTube to MP3 - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\youtube2mp3@mondayx.de.xpi [2013-02-01]
FF Extension: Best Video Downloader 2 - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{170503FA-3349-4F17-BC86-001888A5C8E2}.xpi [2014-02-20]
FF Extension: Download YouTube Videos as MP4 - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-02-20]
FF Extension: Firefox - C:\Program Files (x86)\Mozilla Firefox\extensions\firefox@firefox.sk [2014-03-29]
FF Extension: Firefox.sk - SearchSuggest (Test) - C:\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk [2014-03-29]
FF Extension: Firefox.sk - UrlBox - C:\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk [2014-03-29]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-12-01]
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013-08-25]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-12-01]

Chrome:
=======
CHR HomePage: hxxp://www.google.sk/
CHR Extension: (Angry Birds) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-02-21]
CHR Extension: (YouTube) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-21]
CHR Extension: (Hľadať v Google) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-21]
CHR Extension: (Mapy Google) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-02-21]
CHR Extension: (Kontrola pošty Google) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-02-21]
CHR Extension: (Peňaženka Google) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Gmail) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-21]

==================== Services (Whitelisted) =================

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-03-25] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109048 2014-03-25] (AVAST Software)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
S3 MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [53337 2005-11-24] (Sony Corporation)
S3 PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [53337 2005-11-24] (Sony Corporation)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-06-18] ()
R2 Správce výběru OS; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2156952 2011-12-12] ()
S3 SPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [69718 2005-11-24] (Sony Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-05-04] (VIA Technologies, Inc.)
S2 BrowserDefendert; C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe [X]

==================== Drivers (Whitelisted) ====================

S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2012-07-03] (Google Inc)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 AndNetDiag2; C:\Windows\System32\DRIVERS\lgandnetdiag264.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-03-25] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-03-25] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [445304 2014-03-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-03-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-03-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-03-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-03-25] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [84816 2014-03-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208928 2014-03-25] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-03-05] (Disc Soft Ltd)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-29 10:52 - 2014-03-29 10:52 - 00016768 _____ () C:\Users\bondasko\Desktop\FRST.txt
2014-03-29 10:52 - 2014-03-29 10:52 - 00000000 ____D () C:\FRST
2014-03-29 10:48 - 2014-03-29 10:47 - 00935175 _____ () C:\Users\bondasko\Desktop\RSITx64.exe
2014-03-29 10:48 - 2014-03-29 10:47 - 00688992 _____ (Swearware) C:\Users\bondasko\Desktop\dds.exe
2014-03-29 10:48 - 2014-03-29 10:46 - 02157056 _____ (Farbar) C:\Users\bondasko\Desktop\FRST64.exe
2014-03-29 09:09 - 2014-03-29 10:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-26 05:22 - 2014-03-29 08:13 - 00000336 _____ () C:\Windows\setupact.log
2014-03-26 05:22 - 2014-03-26 05:22 - 00000320 _____ () C:\Windows\PFRO.log
2014-03-26 05:22 - 2014-03-26 05:22 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-25 22:42 - 2014-03-25 22:42 - 00445304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-03-25 22:42 - 2014-03-25 22:42 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-18 21:37 - 2014-03-18 21:37 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skype
2014-03-13 05:07 - 2014-03-01 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 05:07 - 2014-03-01 06:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-13 05:07 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 05:07 - 2014-03-01 05:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-13 05:07 - 2014-03-01 05:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-13 05:07 - 2014-03-01 05:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 05:07 - 2014-03-01 05:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-13 05:07 - 2014-03-01 05:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 05:07 - 2014-03-01 05:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-13 05:07 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-13 05:07 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-13 05:07 - 2014-03-01 05:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-13 05:07 - 2014-03-01 04:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-13 05:07 - 2014-03-01 04:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-13 05:07 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-13 05:07 - 2014-03-01 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-13 05:07 - 2014-03-01 04:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-13 05:07 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 05:07 - 2014-03-01 04:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-13 05:07 - 2014-03-01 04:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-13 05:07 - 2014-03-01 04:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-13 05:07 - 2014-03-01 04:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 05:07 - 2014-03-01 04:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-13 05:07 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-13 05:07 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-13 05:07 - 2014-03-01 04:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-13 05:07 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-13 05:07 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 05:07 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-13 05:07 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-13 05:07 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-13 05:07 - 2014-02-07 02:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 05:07 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 05:07 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-13 05:07 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-13 05:06 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 05:06 - 2014-03-01 05:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 05:06 - 2014-03-01 05:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-13 05:06 - 2014-03-01 05:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-13 05:06 - 2014-03-01 05:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-13 05:06 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 05:06 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 05:06 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 05:06 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-13 05:06 - 2014-02-04 03:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-13 05:06 - 2014-02-04 03:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 05:06 - 2014-02-04 03:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-13 05:06 - 2014-02-04 03:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-06 03:38 - 2014-01-09 03:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-03-06 03:38 - 2014-01-03 23:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-03-05 10:07 - 2014-03-05 10:07 - 00000000 ____D () C:\Users\bondasko\AppData\Local\Skype
2014-03-05 10:00 - 2014-03-29 09:41 - 00845523 _____ () C:\Windows\WindowsUpdate.log
2014-03-05 09:55 - 2014-03-05 09:55 - 00001167 _____ () C:\Users\bondasko\Desktop\Format Factory.lnk
2014-03-05 09:55 - 2014-03-05 09:55 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-03-05 09:50 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-03-05 09:50 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-05 09:50 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-05 09:50 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-03-05 09:50 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-03-05 09:50 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-03-05 09:50 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-03-05 09:50 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-03-05 09:50 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-03-05 09:50 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-03-05 09:50 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-03-05 09:50 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-03-05 09:50 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-03-05 09:50 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-03-05 09:50 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-03-05 09:50 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-03-05 09:50 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-03-05 09:50 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-03-05 09:50 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-03-05 09:50 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-03-05 09:50 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-03-05 09:50 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-03-05 09:50 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-03-05 09:50 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-03-05 09:50 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-03-05 09:49 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-03-05 09:49 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-03-05 09:44 - 2014-03-05 09:44 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\MPC-HC
2014-03-05 09:43 - 2014-03-05 09:43 - 00000000 ____D () C:\Program Files\MPC-HC
2014-03-05 09:34 - 2014-03-29 09:39 - 00002598 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job
2014-03-05 09:34 - 2014-03-29 09:34 - 00001500 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job
2014-03-05 09:34 - 2014-03-29 09:34 - 00001398 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-enabler.job
2014-03-05 09:34 - 2014-03-05 09:51 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Seznam.cz
2014-03-05 09:34 - 2014-03-05 09:34 - 00004530 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-codedownloader
2014-03-05 09:34 - 2014-03-05 09:34 - 00004428 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-enabler
2014-03-05 09:34 - 2014-03-05 09:34 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-03-05 09:34 - 2014-03-05 09:34 - 00000000 ____D () C:\Program Files (x86)\HQ-Video-Pro-1.4
2014-03-05 09:33 - 2014-03-05 09:33 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-03-05 09:33 - 2014-03-05 09:33 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite

==================== One Month Modified Files and Folders =======

2014-03-29 10:52 - 2014-03-29 10:52 - 00016768 _____ () C:\Users\bondasko\Desktop\FRST.txt
2014-03-29 10:52 - 2014-03-29 10:52 - 00000000 ____D () C:\FRST
2014-03-29 10:49 - 2014-03-29 09:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 10:49 - 2012-12-27 13:00 - 00000000 ____D () C:\Users\bondasko\AppData\Local\CrashDumps
2014-03-29 10:48 - 2012-12-01 11:38 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\uTorrent
2014-03-29 10:47 - 2014-03-29 10:48 - 00935175 _____ () C:\Users\bondasko\Desktop\RSITx64.exe
2014-03-29 10:47 - 2014-03-29 10:48 - 00688992 _____ (Swearware) C:\Users\bondasko\Desktop\dds.exe
2014-03-29 10:46 - 2014-03-29 10:48 - 02157056 _____ (Farbar) C:\Users\bondasko\Desktop\FRST64.exe
2014-03-29 10:36 - 2013-10-08 13:52 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-29 09:58 - 2013-09-17 20:18 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-29 09:41 - 2014-03-05 10:00 - 00845523 _____ () C:\Windows\WindowsUpdate.log
2014-03-29 09:39 - 2014-03-05 09:34 - 00002598 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job
2014-03-29 09:34 - 2014-03-05 09:34 - 00001500 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job
2014-03-29 09:34 - 2014-03-05 09:34 - 00001398 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-enabler.job
2014-03-29 08:36 - 2013-10-08 13:52 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-29 08:31 - 2012-11-30 21:57 - 00003932 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-29 08:31 - 2012-11-30 21:57 - 00003680 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-29 08:20 - 2009-07-14 05:45 - 00022080 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-29 08:20 - 2009-07-14 05:45 - 00022080 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-29 08:19 - 2009-07-14 06:13 - 00800542 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-29 08:13 - 2014-03-26 05:22 - 00000336 _____ () C:\Windows\setupact.log
2014-03-29 08:13 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-27 21:12 - 2012-11-30 22:27 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Skype
2014-03-26 19:56 - 2012-12-01 11:31 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Winamp
2014-03-26 15:31 - 2012-12-01 13:18 - 00000000 ___RD () C:\Users\bondasko\Desktop\Antivirus & Cistenie
2014-03-26 05:22 - 2014-03-26 05:22 - 00000320 _____ () C:\Windows\PFRO.log
2014-03-26 05:22 - 2014-03-26 05:22 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-25 22:42 - 2014-03-25 22:42 - 00445304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-03-25 22:42 - 2014-03-25 22:42 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-25 22:42 - 2013-12-18 10:09 - 00084816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-03-25 22:42 - 2013-10-27 09:24 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00208928 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-03-25 22:42 - 2012-11-30 22:06 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-03-25 22:42 - 2012-11-30 22:06 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-03-25 08:59 - 2012-11-30 23:09 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Media Player Classic
2014-03-23 12:20 - 2012-12-23 18:59 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\vlc
2014-03-18 21:38 - 2013-08-15 02:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-18 21:38 - 2012-11-30 22:16 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-18 21:37 - 2014-03-18 21:37 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skype
2014-03-13 16:39 - 2009-07-14 05:45 - 00414232 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-13 06:03 - 2012-11-30 23:05 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-12 12:58 - 2012-12-01 11:15 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 12:58 - 2012-12-01 11:15 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-12 12:58 - 2012-12-01 11:15 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-09 15:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-03-06 11:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-03-06 11:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-03-05 10:10 - 2012-12-01 13:14 - 00000000 ___RD () C:\Users\bondasko\Desktop\Programy
2014-03-05 10:10 - 2012-12-01 13:13 - 00000000 ___RD () C:\Users\bondasko\Desktop\Nepouzivane odkazy
2014-03-05 10:07 - 2014-03-05 10:07 - 00000000 ____D () C:\Users\bondasko\AppData\Local\Skype
2014-03-05 10:07 - 2012-11-30 22:27 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-05 10:07 - 2012-11-30 22:27 - 00000000 ____D () C:\ProgramData\Skype
2014-03-05 10:06 - 2013-01-03 19:34 - 00000000 ____D () C:\Users\bondasko\Documents\Readon Player
2014-03-05 10:00 - 2012-12-27 21:26 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\TS3Client
2014-03-05 09:56 - 2012-12-21 18:11 - 00000000 ____D () C:\Program Files\Defraggler
2014-03-05 09:55 - 2014-03-05 09:55 - 00001167 _____ () C:\Users\bondasko\Desktop\Format Factory.lnk
2014-03-05 09:55 - 2014-03-05 09:55 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-03-05 09:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-03-05 09:51 - 2014-03-05 09:34 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Seznam.cz
2014-03-05 09:51 - 2012-12-27 11:52 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\EurekaLog
2014-03-05 09:48 - 2012-12-01 11:10 - 00001234 _____ () C:\Users\Public\Desktop\NET Radio Rekorder.lnk
2014-03-05 09:44 - 2014-03-05 09:44 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\MPC-HC
2014-03-05 09:43 - 2014-03-05 09:43 - 00000000 ____D () C:\Program Files\MPC-HC
2014-03-05 09:39 - 2012-12-01 11:31 - 00000000 ____D () C:\Program Files (x86)\Winamp
2014-03-05 09:36 - 2012-12-01 11:25 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-03-05 09:34 - 2014-03-05 09:34 - 00004530 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-codedownloader
2014-03-05 09:34 - 2014-03-05 09:34 - 00004428 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-enabler
2014-03-05 09:34 - 2014-03-05 09:34 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-03-05 09:34 - 2014-03-05 09:34 - 00000000 ____D () C:\Program Files (x86)\HQ-Video-Pro-1.4
2014-03-05 09:33 - 2014-03-05 09:33 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-03-05 09:33 - 2014-03-05 09:33 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-03-05 09:32 - 2013-04-01 23:10 - 00000000 ____D () C:\Program Files\Speccy
2014-03-05 09:32 - 2012-11-30 22:21 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-01 07:05 - 2014-03-13 05:06 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-01 06:17 - 2014-03-13 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-01 06:16 - 2014-03-13 05:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-01 05:58 - 2014-03-13 05:07 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-01 05:52 - 2014-03-13 05:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-01 05:51 - 2014-03-13 05:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-01 05:42 - 2014-03-13 05:07 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-01 05:40 - 2014-03-13 05:07 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-01 05:37 - 2014-03-13 05:07 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-01 05:33 - 2014-03-13 05:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-01 05:33 - 2014-03-13 05:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-01 05:32 - 2014-03-13 05:06 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-01 05:30 - 2014-03-13 05:07 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-01 05:23 - 2014-03-13 05:06 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-01 05:17 - 2014-03-13 05:07 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-01 05:11 - 2014-03-13 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-01 05:02 - 2014-03-13 05:06 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-01 04:54 - 2014-03-13 05:06 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-01 04:52 - 2014-03-13 05:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-01 04:51 - 2014-03-13 05:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-01 04:47 - 2014-03-13 05:07 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-01 04:43 - 2014-03-13 05:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-01 04:43 - 2014-03-13 05:07 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-01 04:42 - 2014-03-13 05:07 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-01 04:40 - 2014-03-13 05:07 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-01 04:38 - 2014-03-13 05:07 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-01 04:37 - 2014-03-13 05:07 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-01 04:35 - 2014-03-13 05:07 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-01 04:18 - 2014-03-13 05:06 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-01 04:16 - 2014-03-13 05:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-01 04:14 - 2014-03-13 05:07 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-01 04:10 - 2014-03-13 05:06 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-01 04:03 - 2014-03-13 05:07 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-01 04:00 - 2014-03-13 05:07 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-01 03:57 - 2014-03-13 05:07 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-01 03:38 - 2014-03-13 05:07 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-01 03:32 - 2014-03-13 05:07 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-01 03:27 - 2014-03-13 05:07 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-01 03:25 - 2014-03-13 05:07 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-01 03:25 - 2014-03-13 05:06 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-27 22:06 - 2012-11-30 23:48 - 00784408 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-21 18:20

==================== End Of Log ============================


Logfile of random's system information tool 1.09 (written by random/random)
Run by bondasko at 2014-03-29 10:54:31
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 39 GB (45%) free of 86 GB
Total RAM: 8154 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:54:33, on 29. 3. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\bondasko.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: CrossriderApp0052920 - {11111111-1111-1111-1111-110511291120} - C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: YoutubeAdblocker - {D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508} - C:\Program Files (x86)\YoutubeAdblocker\WP4RV.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: BrowserDefendert - Unknown owner - C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10552 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\Windows\Explorer.EXE
taskeng.exe {A6DD751C-556C-4D5D-9024-DC93DDA90F9C}
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\svchost.exe -k HPService
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-28852dde-2097-4dff-90c4-1bfb1d5e3515 -SystemEventPortName:HostProcess-568acec8-77f5-41de-b56e-84a38eebd875 -IoCancelEventPortName:HostProcess-b64ac9b2-85c0-4171-bbcb-8c9abda5d62a -NonStateChangingEventPortName:HostProcess-cb62feba-8003-4859-a793-4dced87eab06 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:cca67597-2c83-4d10-a403-ebe7d7a9f2e6 -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4028.0.861348004\24220239" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27 --gpu-vendor-id=0x1002 --gpu-device-id=0x683d --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=9.12.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Control/EmbeddedSearch/Group2 pct:10b stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4028.8.1148732418\148253744" /prefetch:673131151
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\System32\svchost.exe -k WerSvcGroup
notepad "C:\Users\bondasko\Desktop\FRST.txt"
"C:\Users\bondasko\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\HQ-Video-Pro-1.4-codedownloader.job
C:\Windows\tasks\HQ-Video-Pro-1.4-enabler.job
C:\Windows\tasks\HQ-Video-Pro-1.4-firefoxinstaller.job

=========Mozilla firefox=========

ProfilePath - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "www.google.sk"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nullsoft.com/winampDetector;version=1]
"Description"=Winamp Detector
"Path"=C:\Program Files (x86)\Winamp Detect\npwachk.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\Sony\Media Go\npmediago.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.77 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.17.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
firefox@firefox.sk
searchsuggest@firefox.sk
urlbox@firefox.sk

C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll

C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\extensions\
ea1wqvjq@dxeiyudeue.edu
f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com
wrqjxxll@zzabkoqx.edu
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511291120}]
HQ-Video-Pro-1.4 - C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho64.dll [2014-03-05 673792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-06 551840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508}]
YoutubeAdblocker - C:\Program Files (x86)\YoutubeAdblocker\WP4RV.x64.dll [2013-11-03 407552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-06 209824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511291120}]
HQ-Video-Pro-1.4 - C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho.dll [2014-03-05 501760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508}]
YoutubeAdblocker - C:\Program Files (x86)\YoutubeAdblocker\WP4RV.dll [2012-11-03 371712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-05-11 5119600]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-03-27 291608]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-03-25 3854640]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-03-29 10:54:31 ----D---- C:\rsit
2014-03-29 10:52:14 ----D---- C:\FRST
2014-03-29 09:09:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-03-25 22:42:08 ----A---- C:\Windows\avastSS.scr
2014-03-25 22:42:06 ----A---- C:\Windows\system32\drivers\aswNdisFlt.sys
2014-03-13 05:07:03 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-03-13 05:07:03 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-03-13 05:07:03 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-03-13 05:07:03 ----A---- C:\Windows\system32\wwansvc.dll
2014-03-13 05:07:03 ----A---- C:\Windows\system32\win32k.sys
2014-03-13 05:07:03 ----A---- C:\Windows\system32\wer.dll
2014-03-13 05:07:03 ----A---- C:\Windows\system32\iertutil.dll
2014-03-13 05:07:03 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-03-13 05:07:02 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-03-13 05:07:02 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-03-13 05:07:02 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-03-13 05:07:02 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-03-13 05:07:02 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-03-13 05:07:02 ----A---- C:\Windows\system32\iernonce.dll
2014-03-13 05:07:01 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-03-13 05:07:01 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-03-13 05:07:01 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-03-13 05:07:01 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-03-13 05:07:01 ----A---- C:\Windows\system32\urlmon.dll
2014-03-13 05:07:01 ----A---- C:\Windows\system32\msfeeds.dll
2014-03-13 05:07:01 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-03-13 05:07:01 ----A---- C:\Windows\system32\ie4uinit.exe
2014-03-13 05:07:00 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-03-13 05:07:00 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-03-13 05:07:00 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-03-13 05:07:00 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-03-13 05:07:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-03-13 05:07:00 ----A---- C:\Windows\system32\jsproxy.dll
2014-03-13 05:07:00 ----A---- C:\Windows\system32\ieui.dll
2014-03-13 05:07:00 ----A---- C:\Windows\system32\iesetup.dll
2014-03-13 05:07:00 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-03-13 05:06:59 ----A---- C:\Windows\system32\wininet.dll
2014-03-13 05:06:59 ----A---- C:\Windows\system32\jscript9diag.dll
2014-03-13 05:06:59 ----A---- C:\Windows\system32\jscript9.dll
2014-03-13 05:06:59 ----A---- C:\Windows\system32\ieUnatt.exe
2014-03-13 05:06:59 ----A---- C:\Windows\system32\ieframe.dll
2014-03-13 05:06:59 ----A---- C:\Windows\system32\ieapfltr.dll
2014-03-13 05:06:58 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-13 05:06:58 ----A---- C:\Windows\system32\msrating.dll
2014-03-13 05:06:58 ----A---- C:\Windows\system32\mshtml.dll
2014-03-13 05:06:09 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-03-13 05:06:09 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-03-13 05:06:09 ----A---- C:\Windows\system32\qedit.dll
2014-03-13 05:06:08 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-03-06 03:38:01 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-03-06 03:38:01 ----A---- C:\Windows\system32\mstscax.dll
2014-03-05 09:50:22 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-03-05 09:50:20 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-05 09:50:20 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-05 09:50:20 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-03-05 09:50:19 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-03-05 09:50:19 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-03-05 09:50:19 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-03-05 09:50:19 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-03-05 09:50:19 ----A---- C:\Windows\system32\wksprtPS.dll
2014-03-05 09:50:19 ----A---- C:\Windows\system32\wksprt.exe
2014-03-05 09:50:19 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-03-05 09:50:19 ----A---- C:\Windows\system32\tsgqec.dll
2014-03-05 09:50:19 ----A---- C:\Windows\system32\mstsc.exe
2014-03-05 09:50:19 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-03-05 09:50:18 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-03-05 09:50:18 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-03-05 09:50:13 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-03-05 09:50:12 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2014-03-05 09:50:12 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-03-05 09:50:11 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2014-03-05 09:50:11 ----A---- C:\Windows\system32\rdpudd.dll
2014-03-05 09:50:11 ----A---- C:\Windows\system32\rdpendp_winip.dll
2014-03-05 09:50:10 ----A---- C:\Windows\system32\rdpcorets.dll
2014-03-05 09:50:01 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-03-05 09:50:01 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-03-05 09:49:59 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-03-05 09:49:59 ----A---- C:\Windows\system32\qdvd.dll
2014-03-05 09:44:13 ----D---- C:\Users\bondasko\AppData\Roaming\MPC-HC
2014-03-05 09:43:53 ----D---- C:\Program Files\MPC-HC
2014-03-05 09:34:40 ----D---- C:\Program Files (x86)\Seznam.cz
2014-03-05 09:34:25 ----D---- C:\Users\bondasko\AppData\Roaming\Seznam.cz
2014-03-05 09:34:13 ----D---- C:\Program Files (x86)\HQ-Video-Pro-1.4
2014-03-05 09:33:50 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2014-03-05 09:33:47 ----D---- C:\Program Files (x86)\DAEMON Tools Lite

======List of files/folders modified in the last 1 month======

2014-03-29 10:54:33 ----D---- C:\Program Files\trend micro
2014-03-29 10:54:32 ----D---- C:\Windows\Temp
2014-03-29 10:52:42 ----D---- C:\Windows
2014-03-29 10:49:24 ----D---- C:\Program Files (x86)
2014-03-29 10:48:11 ----D---- C:\Users\bondasko\AppData\Roaming\uTorrent
2014-03-29 09:03:05 ----D---- C:\Windows\system32\config
2014-03-29 08:36:01 ----SHD---- C:\Windows\Installer
2014-03-29 08:36:00 ----HD---- C:\Config.Msi
2014-03-29 08:23:31 ----SHD---- C:\System Volume Information
2014-03-29 08:19:00 ----D---- C:\Windows\System32
2014-03-29 08:19:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-03-29 08:18:59 ----D---- C:\Windows\inf
2014-03-29 08:15:08 ----A---- C:\Windows\SYSWOW64\log.txt
2014-03-27 21:12:18 ----D---- C:\Users\bondasko\AppData\Roaming\Skype
2014-03-26 19:56:41 ----D---- C:\Users\bondasko\AppData\Roaming\Winamp
2014-03-26 05:22:39 ----D---- C:\Windows\system32\drivers
2014-03-25 22:42:41 ----D---- C:\Windows\system32\DriverStore
2014-03-25 22:42:41 ----D---- C:\Windows\system32\catroot
2014-03-25 22:42:10 ----D---- C:\Windows\system32\Tasks
2014-03-25 22:42:08 ----A---- C:\Windows\system32\aswBoot.exe
2014-03-25 08:59:22 ----D---- C:\Users\bondasko\AppData\Roaming\Media Player Classic
2014-03-25 08:05:37 ----D---- C:\Windows\debug
2014-03-23 12:20:29 ----D---- C:\Users\bondasko\AppData\Roaming\vlc
2014-03-18 21:38:47 ----D---- C:\Windows\system32\MRT
2014-03-18 21:38:07 ----A---- C:\Windows\system32\MRT.exe
2014-03-13 16:39:53 ----D---- C:\Windows\winsxs
2014-03-13 16:39:39 ----D---- C:\Windows\SysWOW64
2014-03-13 16:39:39 ----D---- C:\Program Files\Internet Explorer
2014-03-13 16:39:39 ----D---- C:\Program Files (x86)\Internet Explorer
2014-03-13 06:03:50 ----D---- C:\ProgramData\Microsoft Help
2014-03-13 05:06:04 ----D---- C:\Windows\system32\catroot2
2014-03-12 12:58:04 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-03-09 15:30:57 ----D---- C:\Windows\rescache
2014-03-06 11:05:33 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-03-06 11:05:33 ----D---- C:\Windows\system32\sk-SK
2014-03-05 10:07:17 ----RD---- C:\Program Files (x86)\Skype
2014-03-05 10:07:17 ----D---- C:\ProgramData\Skype
2014-03-05 10:07:17 ----D---- C:\Program Files (x86)\Common Files
2014-03-05 10:01:43 ----D---- C:\Windows\SoftwareDistribution
2014-03-05 10:00:49 ----D---- C:\Users\bondasko\AppData\Roaming\TS3Client
2014-03-05 09:56:03 ----D---- C:\Program Files\Defraggler
2014-03-05 09:55:37 ----D---- C:\Windows\SYSWOW64\wbem
2014-03-05 09:55:37 ----D---- C:\Windows\SYSWOW64\en-US
2014-03-05 09:55:37 ----D---- C:\Windows\system32\wbem
2014-03-05 09:55:37 ----D---- C:\Windows\system32\en-US
2014-03-05 09:55:37 ----D---- C:\Windows\system32\drivers\en-US
2014-03-05 09:55:37 ----D---- C:\Windows\PolicyDefinitions
2014-03-05 09:51:10 ----D---- C:\Users\bondasko\AppData\Roaming\EurekaLog
2014-03-05 09:51:00 ----AD---- C:\ProgramData\TEMP
2014-03-05 09:43:53 ----RD---- C:\Program Files
2014-03-05 09:39:14 ----D---- C:\Program Files (x86)\Winamp
2014-03-05 09:36:53 ----D---- C:\Program Files (x86)\JDownloader
2014-03-05 09:34:21 ----D---- C:\Windows\Tasks
2014-03-05 09:32:48 ----D---- C:\Program Files\Speccy
2014-03-05 09:32:09 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswNdisFlt;Avast! Firewall Driver; C:\Windows\system32\DRIVERS\aswNdisFlt.sys [2014-03-25 445304]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-03-25 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-03-25 208928]
R0 fltsrv;Acronis Storage Filter Management; C:\Windows\system32\DRIVERS\fltsrv.sys [2012-12-01 132704]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-03-27 19224]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2012-12-01 310368]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 21616]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2014-03-25 28184]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-03-25 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-03-25 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-03-25 423240]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-03-05 283064]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-03-25 79184]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 552960]
R3 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-03-25 84816]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-03-27 356632]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-03-27 789272]
R3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 30208]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-08-11 104560]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-05-04 2196592]
S3 andnetadb;ADB Interface DriverNet; C:\Windows\System32\Drivers\lgandnetadb.sys [2012-07-03 31744]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2012-07-03 29184]
S3 AndNetDiag2;LGE AndroidNet For Diagnostics Port; C:\Windows\system32\DRIVERS\lgandnetdiag264.sys [2012-07-03 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2012-07-03 36352]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2012-12-02 14448]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2012-12-02 27760]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 WinUsb;Sony sa0107 ADB Interface; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 240640]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-03-25 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-03-25 109048]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-08 607456]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2011-12-16 161560]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-12-16 277784]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-06-18 76888]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2011-12-12 2156952]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-02-17 4915040]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-16 363800]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-05-04 27760]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 BrowserDefendert;BrowserDefendert; C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-30 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12 257928]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-30 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 111616]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2005-11-24 53337]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2005-11-24 53337]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 SPTISRV;Sony SPTI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [2005-11-24 69718]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-01-07 569768]
S3 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2007-05-03 74656]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-30 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[bondasko]

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.16521 BrowserJavaVersion: 10.51.2
Run by bondasko at 10:56:13 on 2014-03-29
#Option Extended Search is enabled.
#Option Whitelisting is disabled.
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.8154.6169 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus *Enabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\PDF Architect\HelperService.exe
C:\Program Files (x86)\PDF Architect\ConversionService.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\viakaraokesrv.exe
C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\system32\svchost.exe -k HPService
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uLocal Page = C:\Windows\System32\blank.htm
uSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
mStart Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
mDefault_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
uURLSearchHooks: Microsoft Url Search Hook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll
mWinlogon: Shell = explorer.exe
mWinlogon: Userinit = userinit.exe,
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: HQ-Video-Pro-1.4: {11111111-1111-1111-1111-110511291120} - C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho.dll
BHO: PDF Architect Helper: {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: YoutubeAdblocker: {D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508} - C:\Program Files (x86)\YoutubeAdblocker\WP4RV.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-Explorer: ForceActiveDesktopOn = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableInstallerDetection = dword:1
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableSecureUIAPaths = dword:1
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: EnableVirtualization = dword:1
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: ValidateAdminCodeSignatures = dword:0
mPolicies-System: dontdisplaylastusername = dword:0
mPolicies-System: scforceoption = dword:0
mPolicies-System: shutdownwithoutlogon = dword:1
mPolicies-System: undockwithoutlogon = dword:1
mPolicies-System: FilterAdministratorToken = dword:0
mPolicies-System: EnableLinkedConnections = dword:1
IE: E&xportovať do programu Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
LSP: %SystemRoot%\system32\mswsock.dll
TCP: NameServer = 195.34.133.21 212.186.211.21
TCP: Interfaces\{63F31B18-1709-434F-B47A-1ED131F14D45} : DHCPNameServer = 195.34.133.21 212.186.211.21
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
SecurityProviders: SecurityProviders = credssp.dll
LSA: Authentication Packages = msv1_0
LSA: Notification Packages = scecli
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg pku2u
SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 winsrv:ConServerDllInitialization,2 sxssrv,4
mASetup: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\System32\unregmp2.exe /ShowWMP
mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\Windows\System32\regsvr32.exe /s /n /i:/UserInstall C:\Windows\System32\themeui.dll
mASetup: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\System32\cmd.exe /D /C start C:\Windows\System32\ie4uinit.exe -ClearIconCache
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "C:\Program Files (x86)\Windows Mail\WinMail.exe" OCInstallUserConfigOE
mASetup: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\Windows\System32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
mASetup: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\shell32.dll
x64-mStart Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
x64-mLocal Page = C:\Windows\System32\blank.htm
x64-mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
x64-mDefault_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
x64-mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
x64-mWinlogon: Shell = explorer.exe
x64-mWinlogon: Userinit = C:\Windows\System32\userinit.exe,
x64-BHO: HQ-Video-Pro-1.4: {11111111-1111-1111-1111-110511291120} - C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho64.dll
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: YoutubeAdblocker: {D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508} - C:\Program Files (x86)\YoutubeAdblocker\WP4RV.x64.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
x64-Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll
x64-Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll
x64-Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
x64-Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll
x64-Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - <orphaned>
x64-Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
x64-Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll
x64-Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
x64-mASetup: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\System32\unregmp2.exe /ShowWMP
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\Windows\System32\regsvr32.exe /s /n /i:/UserInstall C:\Windows\System32\themeui.dll
x64-mASetup: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\System32\cmd.exe /D /C start C:\Windows\System32\ie4uinit.exe -ClearIconCache
x64-mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "C:\Program Files (x86)\Windows Mail\WinMail.exe" OCInstallUserConfigOE
x64-mASetup: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\Windows\System32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
x64-mASetup: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\shell32.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\
FF - prefs.js: browser.startup.homepage - www.google.sk
FF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\browser\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dll
FF - plugin: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
FF - plugin: C:\Program Files (x86)\Winamp Detect\npwachk.dll
FF - plugin: C:\Windows\System32\Wat\npWatWeb.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll
FF - ExtSQL: 2012-11-30 23:01; {972ce4c6-7e08-4474-a285-3208198ce6fd}; C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - ExtSQL: 2012-12-01 11:37; FFPDFArchitectConverter@pdfarchitect.com; C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF - ExtSQL: 2012-12-01 15:14; smartwebprinting@hp.com; C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF - ExtSQL: 2013-02-01 14:44; 2conv@hotger.com; C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\extensions\2conv@hotger.com.xpi
FF - ExtSQL: 2013-02-01 16:18; youtube2mp3@mondayx.de; C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\extensions\youtube2mp3@mondayx.de.xpi
FF - ExtSQL: 2013-11-03 18:09; wrqjxxll@zzabkoqx.edu; C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\extensions\wrqjxxll@zzabkoqx.edu
FF - ExtSQL: 2013-11-03 18:09; ea1wqvjq@dxeiyudeue.edu; C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\extensions\ea1wqvjq@dxeiyudeue.edu
FF - ExtSQL: !HIDDEN! 2012-12-01 15:14; smartwebprinting@hp.com; C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
============= SERVICES / DRIVERS ===============
.
R0 ACPI;Microsoft ACPI Driver;C:\Windows\System32\drivers\acpi.sys [2010-11-21 334208]
R0 amdxata;amdxata;C:\Windows\System32\drivers\amdxata.sys [2012-11-30 27008]
R0 aswNdisFlt;Avast! Firewall Driver;C:\Windows\System32\drivers\aswNdisFlt.sys [2014-3-25 445304]
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-10-27 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-10-27 208928]
R0 atapi;IDE Channel;C:\Windows\System32\drivers\atapi.sys [2009-7-14 24128]
R0 CLFS;Common Log (CLFS);C:\Windows\System32\clfs.sys [2009-7-14 367696]
R0 CNG;CNG;C:\Windows\System32\drivers\cng.sys [2013-11-13 458712]
R0 Disk;Disk Driver;C:\Windows\System32\drivers\disk.sys [2009-7-14 73280]
R0 FileInfo;File Information FS MiniFilter;C:\Windows\System32\drivers\fileinfo.sys [2009-7-14 70224]
R0 FltMgr;FltMgr;C:\Windows\System32\drivers\fltMgr.sys [2010-11-21 289664]
R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2012-12-1 132704]
R0 fvevol;Bitlocker Drive Encryption Filter Driver;C:\Windows\System32\drivers\fvevol.sys [2013-4-10 223752]
R0 hwpolicy;Hardware Policy Driver;C:\Windows\System32\drivers\hwpolicy.sys [2010-11-21 14720]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0;C:\Windows\System32\drivers\iusb3hcs.sys [2012-12-1 19224]
R0 KSecDD;KSecDD;C:\Windows\System32\drivers\ksecdd.sys [2013-11-13 95680]
R0 KSecPkg;KSecPkg;C:\Windows\System32\drivers\ksecpkg.sys [2013-11-13 154560]
R0 mountmgr;Mount Point Manager;C:\Windows\System32\drivers\mountmgr.sys [2010-11-21 94592]
R0 msisadrv;msisadrv;C:\Windows\System32\drivers\msisadrv.sys [2009-7-14 15424]
R0 Mup;Mup;C:\Windows\System32\drivers\mup.sys [2009-7-14 60496]
R0 NDIS;NDIS System Driver;C:\Windows\System32\drivers\ndis.sys [2012-11-30 950128]
R0 partmgr;Partition Manager;C:\Windows\System32\drivers\partmgr.sys [2012-11-30 75120]
R0 pci;PCI Bus Driver;C:\Windows\System32\drivers\pci.sys [2010-11-21 184704]
R0 pciide;pciide;C:\Windows\System32\drivers\pciide.sys [2009-7-14 12352]
R0 pcw;Performance Counters for Windows Driver;C:\Windows\System32\drivers\pcw.sys [2009-7-14 50768]
R0 rdyboost;ReadyBoost;C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 snapman;Acronis Snapshots Manager;C:\Windows\System32\drivers\snapman.sys [2012-12-1 310368]
R0 spldr;Security Processor Loader Driver;C:\Windows\System32\drivers\spldr.sys [2009-7-13 19008]
R0 Tcpip;Ovládač protokolu TCP/IP;C:\Windows\System32\drivers\tcpip.sys [2013-10-8 1903552]
R0 vdrvroot;Microsoft Virtual Drive Enumerator Driver;C:\Windows\System32\drivers\vdrvroot.sys [2009-7-14 36432]
R0 volmgr;Volume Manager Driver;C:\Windows\System32\drivers\volmgr.sys [2010-11-21 71552]
R0 volmgrx;Dynamic Volume Manager;C:\Windows\System32\drivers\volmgrx.sys [2010-11-21 363392]
R0 volsnap;Storage volumes;C:\Windows\System32\drivers\volsnap.sys [2010-11-21 295808]
R0 Wdf01000;Kernel Mode Driver Frameworks service;C:\Windows\System32\drivers\Wdf01000.sys [2013-10-8 785624]
R1 AFD;Ancillary Function Driver for Winsock;C:\Windows\System32\drivers\afd.sys [2013-11-13 497152]
R1 AppleCharger;AppleCharger;C:\Windows\System32\drivers\AppleCharger.sys [2012-12-27 21616]
R1 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2013-10-27 28184]
R1 aswRdr;aswRdr;C:\Windows\System32\drivers\aswRdr2.sys [2013-10-27 93568]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-10-27 1039096]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2013-10-27 423240]
R1 Beep;Beep;C:\Windows\System32\drivers\beep.sys [2009-7-14 6656]
R1 blbdrive;blbdrive;C:\Windows\System32\drivers\blbdrive.sys [2009-7-14 45056]
R1 cdrom;CD-ROM Driver;C:\Windows\System32\drivers\cdrom.sys [2010-11-21 147456]
R1 DfsC;DFS Namespace Client Driver;C:\Windows\System32\drivers\dfsc.sys [2010-11-21 102400]
R1 discache;System Attribute Cache;C:\Windows\System32\drivers\discache.sys [2009-7-14 40448]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2014-3-5 283064]
R1 Msfs;Msfs;C:\Windows\System32\drivers\msfs.sys [2009-7-14 26112]
R1 mssmbios;Microsoft System Management BIOS Driver;C:\Windows\System32\drivers\mssmbios.sys [2009-7-14 32320]
R1 NetBIOS;NetBIOS Interface;C:\Windows\System32\drivers\netbios.sys [2009-7-14 44544]
R1 NetBT;NetBT;C:\Windows\System32\drivers\netbt.sys [2010-11-21 261632]
R1 Npfs;Npfs;C:\Windows\System32\drivers\npfs.sys [2009-7-14 44032]
R1 nsiproxy;NSI proxy service driver.;C:\Windows\System32\drivers\nsiproxy.sys [2009-7-14 24576]
R1 Null;Null;C:\Windows\System32\drivers\null.sys [2009-7-14 6144]
R1 Psched;QoS Packet Scheduler;C:\Windows\System32\drivers\pacer.sys [2010-11-21 131584]
R1 rdbss;Redirected Buffering Sub Sysytem;C:\Windows\System32\drivers\rdbss.sys [2010-11-21 309248]
R1 RDPCDD;RDPCDD;C:\Windows\System32\drivers\RDPCDD.sys [2009-7-14 7680]
R1 RDPENCDD;RDP Encoder Mirror Driver;C:\Windows\System32\drivers\RDPENCDD.sys [2009-7-14 7680]
R1 RDPREFMP;Reflector Display Driver used to gain access to graphics data;C:\Windows\System32\drivers\RDPREFMP.sys [2009-7-14 8192]
R1 Serial;Serial port driver;C:\Windows\System32\drivers\serial.sys [2009-7-14 94208]
R1 tdx;Sieťový vstupno-výstupný ovládač staršej verzie na podporu zariadení TDI;C:\Windows\System32\drivers\tdx.sys [2010-11-21 119296]
R1 TermDD;Terminal Device Driver;C:\Windows\System32\drivers\termdd.sys [2010-11-21 63360]
R1 VgaSave;VgaSave;C:\Windows\System32\drivers\vga.sys [2009-7-14 29184]
R1 Wanarpv6;Remote Access IPv6 ARP Driver;C:\Windows\System32\drivers\wanarp.sys [2010-11-21 88576]
R1 WfpLwf;WFP Lightweight Filter;C:\Windows\System32\drivers\wfplwf.sys [2009-7-14 12800]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-19 240640]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-10-27 79184]
R2 AudioEndpointBuilder;Windows Audio Endpoint Builder;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 AudioSrv;Windows Audio;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-3-25 50344]
R2 avast! Firewall;avast! Firewall;C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-3-25 109048]
R2 BFE;Base Filtering Engine;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
R2 BITS;Background Intelligent Transfer Service;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 CryptSvc;Cryptographic Services;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 DcomLaunch;DCOM Server Process Launcher;C:\Windows\System32\svchost.exe -k DcomLaunch [2009-7-14 27136]
R2 Dhcp;DHCP Client;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 Dnscache;DNS Client;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 DPS;Diagnostic Policy Service;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
R2 eventlog;Windows Event Log;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 EventSystem;COM+ Event System;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R2 FontCache;Windows Font Cache Service;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R2 gpsvc;Klient skupinovej politiky;C:\Windows\System32\svchost.exe -k GPSvcGroup [2009-7-14 27136]
R2 hpqddsvc;HP CUE DeviceDiscovery Service;C:\Windows\System32\svchost.exe -k hpdevmgmt [2009-7-14 27136]
R2 HPSLPSVC;HP Network Devices Support;C:\Windows\System32\svchost.exe -k HPService [2009-7-14 27136]
R2 IKEEXT;IKE and AuthIP IPsec Keying Modules;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-8 607456]
R2 iphlpsvc;IP Helper;C:\Windows\System32\svchost.exe -k NetSvcs [2009-7-14 27136]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-11-30 161560]
R2 LanmanServer;Server;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 LanmanWorkstation;Workstation;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver;C:\Windows\System32\drivers\lltdio.sys [2009-7-14 60928]
R2 lmhosts;TCP/IP NetBIOS Helper;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 LMS;Intel(R) Management and Security Application Local Management Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-11-30 277784]
R2 luafv;UAC File Virtualization;C:\Windows\System32\drivers\luafv.sys [2009-7-14 113152]
R2 MpsSvc;Brána Windows Firewall;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
R2 Net Driver HPZ12;Net Driver HPZ12;C:\Windows\System32\svchost.exe -k HPZ12 [2009-7-14 27136]
R2 NlaSvc;Network Location Awareness;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 nsi;Network Store Interface Service;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R2 PcaSvc;Program Compatibility Assistant Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 PDF Architect Helper Service;PDF Architect Helper Service;C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-4-8 1320496]
R2 PDF Architect Service;PDF Architect Service;C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-4-8 799280]
R2 PEAUTH;PEAUTH;C:\Windows\System32\drivers\PEAuth.sys [2009-7-14 651264]
R2 PlugPlay;Plug and Play;C:\Windows\System32\svchost.exe -k DcomLaunch [2009-7-14 27136]
R2 Pml Driver HPZ12;Pml Driver HPZ12;C:\Windows\System32\svchost.exe -k HPZ12 [2009-7-14 27136]
R2 PnkBstrA;PnkBstrA;C:\Windows\System32\PnkBstrA.exe --> C:\Windows\System32\PnkBstrA.exe [?]
R2 Power;Power;C:\Windows\System32\svchost.exe -k DcomLaunch [2009-7-14 27136]
R2 ProfSvc;User Profile Service;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 RpcEptMapper;RPC Endpoint Mapper;C:\Windows\System32\svchost.exe -k RPCSS [2009-7-14 27136]
R2 RpcSs;Remote Procedure Call (RPC);C:\Windows\System32\svchost.exe -k rpcss [2009-7-14 27136]
R2 rspndr;Link-Layer Topology Discovery Responder;C:\Windows\System32\drivers\rspndr.sys [2009-7-14 76800]
R2 SamSs;Security Accounts Manager;C:\Windows\System32\lsass.exe [2013-11-13 30720]
R2 secdrv;Security Driver;C:\Windows\System32\drivers\secdrv.sys [2009-7-14 23040]
R2 SENS;System Event Notification Service;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 ShellHWDetection;Rozpoznávanie hardvéru;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 Schedule;Plánovač úloh;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 Spooler;Print Spooler;C:\Windows\System32\spoolsv.exe [2012-11-30 559104]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis;C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2011-12-12 2156952]
R2 stisvc;Načítavanie obrázkov (WIA);C:\Windows\System32\svchost.exe -k imgsvc [2009-7-14 27136]
R2 tcpipreg;TCP/IP Registry Compatibility;C:\Windows\System32\drivers\tcpipreg.sys [2012-11-30 45568]
R2 TeamViewer9;TeamViewer 9;C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-16 4915040]
R2 Themes;Themes;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 TrkWks;Distributed Link Tracking Client;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-11-30 363800]
R2 UxSms;Správca relácie Správcu okien na pracovnej ploche;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\System32\ViakaraokeSrv.exe [2012-12-1 27760]
R2 WinDefend;Windows Defender;C:\Windows\System32\svchost.exe -k secsvcs [2009-7-14 27136]
R2 Winmgmt;Windows Management Instrumentation;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 WMPNetworkSvc;Windows Media Player - služba zdieľania v sieti;C:\Program Files\Windows Media Player\wmpnetwk.exe [2010-11-21 1525248]
R2 wscsvc;Security Center;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 WSearch;Windows Search;C:\Windows\System32\SearchIndexer.exe [2012-11-30 591872]
R2 wuauserv;Windows Update;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 AeLookupSvc;Application Experience;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 amdkmdag;amdkmdag;C:\Windows\System32\drivers\atikmdag.sys [2012-12-19 11278336]
R3 amdkmdap;amdkmdap;C:\Windows\System32\drivers\atikmpag.sys [2012-12-19 552960]
R3 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2013-12-18 84816]
R3 AsyncMac;RAS Asynchronous Media Driver;C:\Windows\System32\drivers\asyncmac.sys [2009-7-14 23040]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-11-6 96256]
R3 bowser;Browser Support Driver;C:\Windows\System32\drivers\bowser.sys [2012-11-30 90624]
R3 Browser;Computer Browser;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 CompositeBus;Composite Bus Enumerator Driver;C:\Windows\System32\drivers\CompositeBus.sys [2010-11-21 38912]
R3 DXGKrnl;LDDM Graphics Subsystem;C:\Windows\System32\drivers\dxgkrnl.sys [2013-10-8 983488]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio;C:\Windows\System32\drivers\hdaudbus.sys [2010-11-21 122368]
R3 hidserv;Prístup k zariadeniu s rozhraním HID;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R3 HidUsb;Microsoft HID Class Driver;C:\Windows\System32\drivers\hidusb.sys [2010-11-21 30208]
R3 hpqcxs08;hpqcxs08;C:\Windows\System32\svchost.exe -k hpdevmgmt [2009-7-14 27136]
R3 HTTP;HTTP;C:\Windows\System32\drivers\http.sys [2010-11-21 753664]
R3 intelppm;Intel Processor Driver;C:\Windows\System32\drivers\intelppm.sys [2009-7-14 62464]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0;C:\Windows\System32\drivers\iusb3hub.sys [2012-12-1 356632]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible;C:\Windows\System32\drivers\iusb3xhc.sys [2012-12-1 789272]
R3 kbdclass;Keyboard Class Driver;C:\Windows\System32\drivers\kbdclass.sys [2009-7-14 50768]
R3 kbdhid;Keyboard HID Driver;C:\Windows\System32\drivers\kbdhid.sys [2010-11-21 33280]
R3 KMWDFILTER;HIDServiceDesc;C:\Windows\System32\drivers\KMWDFILTER.sys [2009-4-29 30208]
R3 ksthunk;Kernel Streaming Thunks;C:\Windows\System32\drivers\ksthunk.sys [2009-7-14 20992]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2012-12-1 104560]
R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\System32\drivers\HECIx64.sys [2012-12-1 60184]
R3 monitor;Microsoft Monitor Class Function Driver Service;C:\Windows\System32\drivers\monitor.sys [2009-7-14 30208]
R3 mouclass;Mouse Class Driver;C:\Windows\System32\drivers\mouclass.sys [2009-7-14 49216]
R3 mouhid;Mouse HID Driver;C:\Windows\System32\drivers\mouhid.sys [2009-7-14 31232]
R3 mpsdrv;Ovládač overenia brány Windows Firewall;C:\Windows\System32\drivers\mpsdrv.sys [2009-7-14 77312]
R3 mrxsmb;SMB MiniRedirector Wrapper and Engine;C:\Windows\System32\drivers\mrxsmb.sys [2012-11-30 158208]
R3 mrxsmb10;SMB 1.x MiniRedirector;C:\Windows\System32\drivers\mrxsmb10.sys [2012-11-30 288768]
R3 mrxsmb20;SMB 2.0 MiniRedirector;C:\Windows\System32\drivers\mrxsmb20.sys [2012-11-30 128000]
R3 NdisTapi;Remote Access NDIS TAPI Driver;C:\Windows\System32\drivers\ndistapi.sys [2009-7-14 24064]
R3 NdisWan;Remote Access NDIS WAN Driver;C:\Windows\System32\drivers\ndiswan.sys [2010-11-21 164352]
R3 NDProxy;NDIS Proxy;C:\Windows\System32\drivers\ndproxy.sys [2010-11-21 57856]
R3 Netman;Sieťové pripojenia;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R3 netprofm;Network List Service;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 Ntfs;Ntfs;C:\Windows\System32\drivers\ntfs.sys [2013-4-24 1656680]
R3 Parport;Parallel port driver;C:\Windows\System32\drivers\parport.sys [2009-7-14 97280]
R3 PptpMiniport;WAN Miniport (PPTP);C:\Windows\System32\drivers\raspptp.sys [2010-11-21 111104]
R3 ProtectedStorage;Protected Storage;C:\Windows\System32\lsass.exe [2013-11-13 30720]
R3 RasAgileVpn;WAN Miniport (IKEv2);C:\Windows\System32\drivers\agilevpn.sys [2009-7-14 60416]
R3 Rasl2tp;WAN Miniport (L2TP);C:\Windows\System32\drivers\rasl2tp.sys [2010-11-21 129536]
R3 RasPppoe;Remote Access PPPOE Driver;C:\Windows\System32\drivers\raspppoe.sys [2009-7-14 92672]
R3 RasSstp;WAN Miniport (SSTP);C:\Windows\System32\drivers\rassstp.sys [2009-7-14 83968]
R3 Serenum;Serenum Filter Driver;C:\Windows\System32\drivers\serenum.sys [2009-7-14 23552]
R3 srv;Server SMB 1.xxx Driver;C:\Windows\System32\drivers\srv.sys [2012-11-30 467456]
R3 srv2;Server SMB 2.xxx Driver;C:\Windows\System32\drivers\srv2.sys [2012-11-30 410112]
R3 srvnet;srvnet;C:\Windows\System32\drivers\srvnet.sys [2012-11-30 168448]
R3 SSDPSRV;SSDP Discovery;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
R3 swenum;Software Bus Driver;C:\Windows\System32\drivers\swenum.sys [2009-7-14 12496]
R3 swprv;Microsoft Software Shadow Copy Provider;C:\Windows\System32\svchost.exe -k swprv [2009-7-14 27136]
R3 tunnel;Microsoft Tunnel Miniport Adapter Driver;C:\Windows\System32\drivers\tunnel.sys [2010-11-21 125440]
R3 umbus;UMBus Enumerator Driver;C:\Windows\System32\drivers\umbus.sys [2010-11-21 48640]
R3 upnphost;UPnP Device Host;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
R3 usbaudio;USB Audio Driver (WDM);C:\Windows\System32\drivers\USBAUDIO.sys [2013-10-8 109824]
R3 usbccgp;Microsoft USB Generic Parent Driver;C:\Windows\System32\drivers\usbccgp.sys [2014-1-15 99840]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver;C:\Windows\System32\drivers\usbehci.sys [2014-1-15 53248]
R3 usbhub;Microsoft USB Standard Hub Driver;C:\Windows\System32\drivers\usbhub.sys [2014-1-15 343040]
R3 USBSTOR;USB Mass Storage Driver;C:\Windows\System32\drivers\USBSTOR.SYS [2012-11-30 91648]
R3 usbvideo;USB Video Device (WDM);C:\Windows\System32\drivers\usbvideo.sys [2013-10-8 185344]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2012-12-1 2196592]
R3 WdiServiceHost;Diagnostic Service Host;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 WinHttpAutoProxySvc;WinHTTP Web Proxy Auto-Discovery Service;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 WPDBusEnum;Portable Device Enumerator Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R3 WudfPf;User Mode Driver Frameworks Platform Driver;C:\Windows\System32\drivers\WUDFPf.sys [2012-11-30 87040]
R3 WUDFRd;WUDFRd;C:\Windows\System32\drivers\WUDFRd.sys [2012-11-30 198656]
R3 wudfsvc;Windows Driver Foundation - User-mode Driver Framework;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S2 BrowserDefendert;BrowserDefendert;C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe --> C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 gupdate;Služba Google Update (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-30 116648]
S2 MMCSS;Multimedia Class Scheduler;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 sppsvc;Software Protection;C:\Windows\System32\sppsvc.exe [2010-11-21 3524608]
S3 1394ohci;1394 OHCI Compliant Host Controller;C:\Windows\System32\drivers\1394ohci.sys [2010-11-21 229888]
S3 AcpiPmi;ACPI Power Meter Driver;C:\Windows\System32\drivers\acpipmi.sys [2010-11-21 12800]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-1 257928]
S3 adp94xx;adp94xx;C:\Windows\System32\drivers\adp94xx.sys [2009-6-10 491088]
S3 adpahci;adpahci;C:\Windows\System32\drivers\adpahci.sys [2009-7-13 339536]
S3 adpu320;adpu320;C:\Windows\System32\drivers\adpu320.sys [2009-7-13 182864]
S3 agp440;Intel AGP Bus Filter;C:\Windows\System32\drivers\AGP440.sys [2009-7-14 61008]
S3 ALG;Application Layer Gateway Service;C:\Windows\System32\alg.exe [2009-7-14 79360]
S3 aliide;aliide;C:\Windows\System32\drivers\aliide.sys [2009-7-14 15440]
S3 amdide;amdide;C:\Windows\System32\drivers\amdide.sys [2009-7-14 15440]
S3 AmdK8;AMD K8 Processor Driver;C:\Windows\System32\drivers\amdk8.sys [2009-7-14 64512]
S3 AmdPPM;AMD Processor Driver;C:\Windows\System32\drivers\amdppm.sys [2009-7-14 60928]
S3 amdsata;amdsata;C:\Windows\System32\drivers\amdsata.sys [2012-11-30 107904]
S3 amdsbs;amdsbs;C:\Windows\System32\drivers\amdsbs.sys [2009-6-10 194128]
S3 andnetadb;ADB Interface DriverNet;C:\Windows\System32\drivers\lgandnetadb.sys [2012-7-3 31744]
S3 AndNetDiag;LGE AndroidNet USB Serial Port;C:\Windows\System32\drivers\lgandnetdiag64.sys [2012-7-3 29184]
S3 AndNetDiag2;LGE AndroidNet For Diagnostics Port;C:\Windows\System32\drivers\lgandnetdiag264.sys [2012-7-3 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem;C:\Windows\System32\drivers\lgandnetmodem64.sys [2012-7-3 36352]
S3 AppID;AppID Driver;C:\Windows\System32\drivers\appid.sys [2010-11-21 61440]
S3 AppIDSvc;Application Identity;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 Appinfo;Application Information;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?]
S3 arc;arc;C:\Windows\System32\drivers\arc.sys [2009-7-13 87632]
S3 arcsas;arcsas;C:\Windows\System32\drivers\arcsas.sys [2009-7-13 97856]
S3 AxInstSV;ActiveX Installer (AxInstSV);C:\Windows\System32\svchost.exe -k AxInstSVGroup [2009-7-14 27136]
S3 b06bdrv;Broadcom NetXtreme II VBD;C:\Windows\System32\drivers\bxvbda.sys [2009-6-10 468480]
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\b57nd60a.sys [2009-6-10 270848]
S3 BDESVC;BitLocker Drive Encryption Service;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver;C:\Windows\System32\drivers\BrFiltLo.sys [2009-7-14 18432]
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver;C:\Windows\System32\drivers\BrFiltUp.sys [2009-7-14 8704]
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM);C:\Windows\System32\drivers\BrSerId.sys [2009-7-14 286720]
S3 BrSerWdm;Brother WDM Serial driver;C:\Windows\System32\drivers\BrSerWdm.sys [2009-7-14 47104]
S3 BrUsbMdm;Brother MFC USB Fax Only Modem;C:\Windows\System32\drivers\BrUsbMdm.sys [2009-7-14 14976]
S3 BrUsbSer;Brother MFC USB Serial WDM Driver;C:\Windows\System32\drivers\BrUsbSer.sys [2009-7-14 14720]
S3 BTHMODEM;Bluetooth Serial Communications Driver;C:\Windows\System32\drivers\bthmodem.sys [2009-7-14 72192]
S3 bthserv;Bluetooth Support Service;C:\Windows\System32\svchost.exe -k bthsvcs [2009-7-14 27136]
S3 CertPropSvc;Šírenie certifikátu;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 circlass;Consumer IR Devices;C:\Windows\System32\drivers\circlass.sys [2009-7-14 45568]
S3 CmBatt;Microsoft ACPI Control Method Battery Driver;C:\Windows\System32\drivers\CmBatt.sys [2009-7-14 17664]
S3 cmdide;cmdide;C:\Windows\System32\drivers\cmdide.sys [2009-7-14 17488]
S3 Compbatt;Compbatt;C:\Windows\System32\drivers\compbatt.sys [2009-7-14 21584]
S3 COMSysApp;COM+ System Application;C:\Windows\System32\dllhost.exe [2009-7-14 9728]
S3 defragsvc;Defragmentácia disku;C:\Windows\System32\svchost.exe -k defragsvc [2009-7-14 27136]
S3 dot3svc;Wired AutoConfig;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 Dot4;MS IEEE-1284.4 Driver;C:\Windows\System32\drivers\Dot4.sys [2009-7-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4;C:\Windows\System32\drivers\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter;C:\Windows\System32\drivers\Dot4usb.sys [2009-7-14 43008]
S3 drmkaud;Microsoft Trusted Audio Drivers;C:\Windows\System32\drivers\drmkaud.sys [2009-7-14 5632]
S3 EapHost;Extensible Authentication Protocol;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;C:\Windows\System32\drivers\evbda.sys [2009-6-10 3286016]
S3 EFS;Encrypting File System (EFS);C:\Windows\System32\lsass.exe [2013-11-13 30720]
S3 ehRecvr;Windows Media Center Receiver Service;C:\Windows\ehome\ehrecvr.exe [2010-11-21 696832]
S3 ehSched;Windows Media Center Scheduler Service;C:\Windows\ehome\ehsched.exe [2009-7-14 127488]
S3 elxstor;elxstor;C:\Windows\System32\drivers\elxstor.sys [2009-6-10 530496]
S3 ErrDev;Microsoft Hardware Error Device Driver;C:\Windows\System32\drivers\errdev.sys [2009-7-14 9728]
S3 exfat;exFAT File System Driver;C:\Windows\System32\drivers\exfat.sys [2009-7-14 195072]
S3 fastfat;FAT12/16/32 File System Driver;C:\Windows\System32\drivers\fastfat.sys [2009-7-14 204800]
S3 Fax;Fax;C:\Windows\System32\FXSSVC.exe [2010-11-21 689152]
S3 fdc;Floppy Disk Controller Driver;C:\Windows\System32\drivers\fdc.sys [2009-7-14 29696]
S3 fdPHost;Function Discovery Provider Host;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 FDResPub;Function Discovery Resource Publication;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 Filetrace;Filetrace;C:\Windows\System32\drivers\filetrace.sys [2009-7-14 34304]
S3 flpydisk;Floppy Disk Driver;C:\Windows\System32\drivers\flpydisk.sys [2009-7-14 24576]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0;C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe [2010-11-21 42856]
S3 FsDepends;File System Dependency Minifilter;C:\Windows\System32\drivers\fsdepends.sys [2009-7-14 55376]
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms;C:\Windows\System32\drivers\GAGP30KX.SYS [2009-7-14 65088]
S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\System32\drivers\ggflt.sys [2012-12-2 14448]
S3 ggsemc;SEMC USB Flash Driver;C:\Windows\System32\drivers\ggsemc.sys [2012-12-2 27760]
S3 gupdatem;Služba Google Update (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-30 116648]
S3 hcw85cir;Hauppauge Consumer Infrared Receiver;C:\Windows\System32\drivers\hcw85cir.sys [2009-7-13 31232]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service;C:\Windows\System32\drivers\HdAudio.sys [2010-11-21 350208]
S3 HidBatt;HID UPS Battery Driver;C:\Windows\System32\drivers\hidbatt.sys [2009-7-14 26624]
S3 HidBth;Microsoft Bluetooth HID Miniport;C:\Windows\System32\drivers\hidbth.sys [2009-7-14 100864]
S3 HidIr;Microsoft Infrared HID Driver;C:\Windows\System32\drivers\hidir.sys [2009-7-14 46592]
S3 hkmsvc;Health Key and Certificate Management;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 HomeGroupListener;HomeGroup Listener;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 HomeGroupProvider;HomeGroup Provider;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
S3 HpSAMD;HpSAMD;C:\Windows\System32\drivers\HpSAMD.sys [2010-11-21 78720]
S3 i8042prt;i8042 Keyboard and PS/2 Mouse Port Driver;C:\Windows\System32\drivers\i8042prt.sys [2009-7-14 105472]
S3 iaStorV;Intel RAID Controller Windows 7;C:\Windows\System32\drivers\iaStorV.sys [2012-11-30 410496]
S3 idsvc;Windows CardSpace;C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [2010-11-21 856400]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-3-13 111616]
S3 iirsp;iirsp;C:\Windows\System32\drivers\iirsp.sys [2009-7-13 44112]
S3 intelide;intelide;C:\Windows\System32\drivers\intelide.sys [2009-7-14 16960]
S3 IPBusEnum;PnP-X IP Bus Enumerator;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 IpFilterDriver;IP Traffic Filter Driver;C:\Windows\System32\drivers\ipfltdrv.sys [2010-11-21 82944]
S3 IPMIDRV;IPMIDRV;C:\Windows\System32\drivers\IPMIDrv.sys [2010-11-21 78848]
S3 IPNAT;IP Network Address Translator;C:\Windows\System32\drivers\ipnat.sys [2009-7-14 116224]
S3 IRENUM;IR Bus Enumerator;C:\Windows\System32\drivers\irenum.sys [2009-7-14 17920]
S3 isapnp;isapnp;C:\Windows\System32\drivers\isapnp.sys [2009-7-14 20544]
S3 iScsiPrt;iScsiPort Driver;C:\Windows\System32\drivers\msiscsi.sys [2010-11-21 273792]
S3 KeyIso;CNG Key Isolation;C:\Windows\System32\lsass.exe [2013-11-13 30720]
S3 KtmRm;KtmRm for Distributed Transaction Coordinator;C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation [2009-7-14 27136]
S3 lltdsvc;Mapovač zisťovania topológie úrovne vrstvy prepojení;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 LSI_FC;LSI_FC;C:\Windows\System32\drivers\lsi_fc.sys [2009-7-13 114752]
S3 LSI_SAS;LSI_SAS;C:\Windows\System32\drivers\lsi_sas.sys [2009-7-13 106560]
S3 LSI_SAS2;LSI_SAS2;C:\Windows\System32\drivers\lsi_sas2.sys [2009-7-13 65600]
S3 LSI_SCSI;LSI_SCSI;C:\Windows\System32\drivers\lsi_scsi.sys [2009-7-13 115776]
S3 megasas;megasas;C:\Windows\System32\drivers\megasas.sys [2009-6-10 35392]
S3 MegaSR;MegaSR;C:\Windows\System32\drivers\MegaSR.sys [2009-7-13 284736]
S3 Modem;Modem;C:\Windows\System32\drivers\modem.sys [2009-7-14 40448]
S3 mpio;mpio;C:\Windows\System32\drivers\mpio.sys [2010-11-21 155008]
S3 MRxDAV;WebDav Client Redirector Driver;C:\Windows\System32\drivers\mrxdav.sys [2013-10-8 140800]
S3 msahci;msahci;C:\Windows\System32\drivers\msahci.sys [2010-11-21 31104]
S3 MSCSPTISRV;MSCSPTISRV;C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2005-11-24 53337]
S3 msdsm;msdsm;C:\Windows\System32\drivers\msdsm.sys [2010-11-21 140672]
S3 MSDTC;Distributed Transaction Coordinator;C:\Windows\System32\msdtc.exe [2009-7-14 141824]
S3 mshidkmdf;Pass-through HID to KMDF Filter Driver;C:\Windows\System32\drivers\mshidkmdf.sys [2009-7-14 8192]
S3 MSiSCSI;Microsoft iSCSI Initiator Service;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 msiserver;Inštalátor systému Windows;C:\Windows\System32\msiexec.exe [2010-11-21 128000]
S3 MSKSSRV;Microsoft Streaming Service Proxy;C:\Windows\System32\drivers\mskssrv.sys [2009-7-14 11136]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy;C:\Windows\System32\drivers\mspclock.sys [2009-7-14 7168]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy;C:\Windows\System32\drivers\mspqm.sys [2009-7-14 6784]
S3 MsRPC;MsRPC;C:\Windows\System32\drivers\msrpc.sys [2010-11-21 366976]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter;C:\Windows\System32\drivers\mstee.sys [2009-7-14 8064]
S3 MTConfig;Microsoft Input Configuration Driver;C:\Windows\System32\drivers\MTConfig.sys [2009-7-14 15360]
S3 napagent;Network Access Protection Agent;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 NativeWifiP;NativeWiFi Filter;C:\Windows\System32\drivers\nwifi.sys [2009-7-14 318976]
S3 NdisCap;NDIS Capture LightWeight Filter;C:\Windows\System32\drivers\ndiscap.sys [2009-7-14 35328]
S3 Ndisuio;NDIS Usermode I/O Protocol;C:\Windows\System32\drivers\ndisuio.sys [2010-11-21 56832]
S3 Netlogon;Netlogon;C:\Windows\System32\lsass.exe [2013-11-13 30720]
S3 nfrd960;nfrd960;C:\Windows\System32\drivers\nfrd960.sys [2009-7-13 51264]
S3 nv_agp;NVIDIA nForce AGP Bus Filter;C:\Windows\System32\drivers\NV_AGP.SYS [2009-7-14 122960]
S3 nvraid;nvraid;C:\Windows\System32\drivers\nvraid.sys [2012-11-30 148352]
S3 nvstor;nvstor;C:\Windows\System32\drivers\nvstor.sys [2012-11-30 166272]
S3 odserv;Microsoft Office Diagnostics Service;C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\ODSERV.EXE [2011-7-20 440696]
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy);C:\Windows\System32\drivers\ohci1394.sys [2009-7-14 72832]
S3 ose;Office Source Engine;C:\Program Files (x86)\Common Files\microsoft shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 p2pimsvc;Peer Networking Identity Manager;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 p2psvc;Peer Networking Grouping;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 PACSPTISVR;PACSPTISVR;C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2005-11-24 53337]
S3 pcmcia;pcmcia;C:\Windows\System32\drivers\pcmcia.sys [2009-7-14 220752]
S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2009-7-14 20992]
S3 pla;Performance Logs & Alerts;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
S3 PNRPAutoReg;PNRP Machine Name Publication Service;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 PNRPsvc;Peer Name Resolution Protocol;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 PolicyAgent;IPsec Policy Agent;C:\Windows\System32\svchost.exe -k NetworkServiceNetworkRestricted [2009-7-14 27136]
S3 Processor;Processor Driver;C:\Windows\System32\drivers\processr.sys [2009-7-14 60416]
S3 ql2300;ql2300;C:\Windows\System32\drivers\ql2300.sys [2009-6-10 1524816]
S3 ql40xx;ql40xx;C:\Windows\System32\drivers\ql40xx.sys [2009-7-13 128592]
S3 QWAVE;Quality Windows Audio Video Experience;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 QWAVEdrv;QWAVE driver;C:\Windows\System32\drivers\qwavedrv.sys [2009-7-14 46592]
S3 RasAcd;Remote Access Auto Connection Driver;C:\Windows\System32\drivers\rasacd.sys [2009-7-14 14848]
S3 RasAuto;Remote Access Auto Connection Manager;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 RasMan;Remote Access Connection Manager;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 rdpbus;Remote Desktop Device Redirector Bus Driver;C:\Windows\System32\drivers\rdpbus.sys [2009-7-14 24064]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-3-5 19456]
S3 RDPWD;RDP Winstation Driver;C:\Windows\System32\drivers\rdpwd.sys [2012-11-30 210944]
S3 RemoteRegistry;Remote Registry;C:\Windows\System32\svchost.exe -k regsvc [2009-7-14 27136]
S3 RpcLocator;Remote Procedure Call (RPC) Locator;C:\Windows\System32\Locator.exe [2009-7-14 10240]
S3 sbp2port;sbp2port;C:\Windows\System32\drivers\sbp2port.sys [2010-11-21 103808]
S3 SCardSvr;Smart Card;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 scfilter;Smart card PnP Class Filter Driver;C:\Windows\System32\drivers\scfilter.sys [2010-11-21 29696]
S3 SCPolicySvc;Politika vybratia karty Smart Card;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 SDRSVC;Windows Zálohovanie;C:\Windows\System32\svchost.exe -k SDRSVC [2009-7-14 27136]
S3 seclogon;Sekundárne prihlasovanie;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 SensrSvc;Adaptive Brightness;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 sermouse;Serial Mouse Driver;C:\Windows\System32\drivers\sermouse.sys [2009-7-14 26624]
S3 SessionEnv;Remote Desktop Configuration;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 sffdisk;SFF Storage Class Driver;C:\Windows\System32\drivers\sffdisk.sys [2009-7-14 14336]
S3 sffp_mmc;SFF Storage Protocol Driver for MMC;C:\Windows\System32\drivers\sffp_mmc.sys [2009-7-14 13824]
S3 sffp_sd;SFF Storage Protocol Driver for SDBus;C:\Windows\System32\drivers\sffp_sd.sys [2010-11-21 14336]
S3 sfloppy;High-Capacity Floppy Disk Drive;C:\Windows\System32\drivers\sfloppy.sys [2009-7-14 16896]
S3 SiSRaid2;SiSRaid2;C:\Windows\System32\drivers\sisraid2.sys [2009-6-10 43584]
S3 SiSRaid4;SiSRaid4;C:\Windows\System32\drivers\sisraid4.sys [2009-7-13 80464]
S3 Smb;Protokol TCP/IP orientovaný na správy a protokol TCP/IPv6 (relácia SMB);C:\Windows\System32\drivers\smb.sys [2009-7-14 93184]
S3 SNMPTRAP;SNMP Trap;C:\Windows\System32\snmptrap.exe [2009-7-14 14336]
S3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-12-2 155824]
S3 sppuinotify;Oznamovacia služba SPP;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 SPTISRV;Sony SPTI Service;C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [2005-11-24 69718]
S3 SstpSvc;Secure Socket Tunneling Protocol Service;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 Steam Client Service;Steam Client Service;C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-12-1 569768]
S3 stexstor;stexstor;C:\Windows\System32\drivers\stexstor.sys [2009-7-13 24656]
S3 stllssvr;stllssvr;C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2007-5-3 74656]
S3 SysMain;Rýchle načítanie;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TabletInputService;Tablet PC Input Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TapiSrv;Telefonovanie;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 TBS;TPM Base Services;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 TCPIP6;Microsoft IPv6 Protocol Driver;C:\Windows\System32\drivers\tcpip.sys [2013-10-8 1903552]
S3 TDPIPE;TDPIPE;C:\Windows\System32\drivers\tdpipe.sys [2009-7-14 15872]
S3 TDTCP;TDTCP;C:\Windows\System32\drivers\tdtcp.sys [2012-11-30 23552]
S3 TermService;Remote Desktop Services;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 THREADORDER;Thread Ordering Server;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 TrustedInstaller;Windows Modules Installer;C:\Windows\servicing\TrustedInstaller.exe [2010-11-21 194048]
S3 tssecsrv;Remote Desktop Services Security Filter Driver;C:\Windows\System32\drivers\tssecsrv.sys [2013-8-14 39936]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-3-5 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2014-3-5 30208]
S3 uagp35;Microsoft AGPv3.5 Filter;C:\Windows\System32\drivers\UAGP35.SYS [2009-7-14 64080]
S3 UI0Detect;Interactive Services Detection;C:\Windows\System32\UI0Detect.exe [2009-7-14 40960]
S3 uliagpkx;Uli AGP Bus Filter;C:\Windows\System32\drivers\ULIAGPKX.SYS [2009-7-14 64592]
S3 UmPass;Microsoft UMPass Driver;C:\Windows\System32\drivers\umpass.sys [2009-7-14 9728]
S3 usbcir;eHome Infrared Receiver (USBCIR);C:\Windows\System32\drivers\usbcir.sys [2013-10-8 100864]
S3 usbohci;Microsoft USB Open Host Controller Miniport Driver;C:\Windows\System32\drivers\usbohci.sys [2014-1-15 25600]
S3 usbprint;Microsoft USB PRINTER Class;C:\Windows\System32\drivers\usbprint.sys [2009-7-14 25088]
S3 usbscan;USB Scanner Driver;C:\Windows\System32\drivers\usbscan.sys [2013-10-8 42496]
S3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver;C:\Windows\System32\drivers\usbuhci.sys [2014-1-15 30720]
S3 VaultSvc;Správca poverení;C:\Windows\System32\lsass.exe [2013-11-13 30720]
S3 vds;Virtual Disk;C:\Windows\System32\vds.exe [2010-11-21 533504]
S3 vga;vga;C:\Windows\System32\drivers\vgapnp.sys [2009-7-14 29184]
S3 vhdmp;vhdmp;C:\Windows\System32\drivers\vhdmp.sys [2010-11-21 215936]
S3 viaide;viaide;C:\Windows\System32\drivers\viaide.sys [2009-7-14 17488]
S3 vsmraid;vsmraid;C:\Windows\System32\drivers\vsmraid.sys [2009-6-10 161872]
S3 VSS;Volume Shadow Copy;C:\Windows\System32\VSSVC.exe [2010-11-21 1600512]
S3 vwifibus;Virtual WiFi Bus Driver;C:\Windows\System32\drivers\vwifibus.sys [2009-7-14 24576]
S3 W32Time;Windows Time;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 WacomPen;Wacom Serial Pen HID Driver;C:\Windows\System32\drivers\wacompen.sys [2009-7-14 27776]
S3 WANARP;Remote Access IP ARP Driver;C:\Windows\System32\drivers\wanarp.sys [2010-11-21 88576]
S3 WatAdminSvc;Služba Windows Activation Technologies;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-11-30 1255736]
S3 wbengine;Block Level Backup Engine Service;C:\Windows\System32\wbengine.exe [2010-11-21 1504256]
S3 WbioSrvc;Windows Biometric Service;C:\Windows\System32\svchost.exe -k WbioSvcGroup [2009-7-14 27136]
S3 wcncsvc;Windows Connect Now - Config Registrar;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 WcsPlugInService;Windows Color System;C:\Windows\System32\svchost.exe -k wcssvc [2009-7-14 27136]
S3 Wd;Wd;C:\Windows\System32\drivers\wd.sys [2009-7-14 21056]
S3 WdiSystemHost;Diagnostic System Host;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 WebClient;WebClient;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 Wecsvc;Windows Event Collector;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 wercplsupport;Problem Reports and Solutions Control Panel Support;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 WerSvc;Windows Error Reporting Service;C:\Windows\System32\svchost.exe -k WerSvcGroup [2009-7-14 27136]
S3 WIMMount;WIMMount;C:\Windows\System32\drivers\wimmount.sys [2009-7-14 22096]
S3 WinRM;Windows Remote Management (WS-Management);C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 WinUsb;Sony sa0107 ADB Interface;C:\Windows\System32\drivers\winusb.sys [2010-11-21 41984]
S3 Wlansvc;WLAN AutoConfig;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 WmiAcpi;Microsoft Windows Management Interface for ACPI;C:\Windows\System32\drivers\wmiacpi.sys [2009-7-14 14336]
S3 wmiApSrv;WMI Performance Adapter;C:\Windows\System32\wbem\WmiApSrv.exe [2009-7-14 203264]
S3 WPCSvc;Parental Controls;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
S3 WwanSvc;WWAN AutoConfig;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
S4 aspnet_state;ASP.NET State Service;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-9-11 51808]
S4 cdfs;CD/DVD File System Reader;C:\Windows\System32\drivers\cdfs.sys [2009-7-14 92160]
S4 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86;C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-7-13 66384]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-7-13 89920]
S4 crcdisk;Crcdisk Filter Driver;C:\Windows\System32\drivers\crcdisk.sys [2009-7-14 24144]
S4 Mcx2Svc;Služba Media Center Extender;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S4 NetMsmqActivator;Net.Msmq Listener Adapter;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-9-11 139856]
S4 NetPipeActivator;Net.Pipe Listener Adapter;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-9-11 139856]
S4 NetTcpActivator;Net.Tcp Listener Adapter;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-9-11 139856]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-9-11 139856]
S4 RemoteAccess;Routing and Remote Access;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S4 SharedAccess;Internet Connection Sharing (ICS);C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S4 udfs;udfs;C:\Windows\System32\drivers\udfs.sys [2010-11-21 328192]
S4 ws2ifsl;Winsock IFS Driver;C:\Windows\System32\drivers\ws2ifsl.sys [2009-7-14 21504]
.
=============== File Associations ===============
.
FileExt: .bat: batfile="%1" %*
FileExt: .cmd: cmdfile="%1" %*
FileExt: .com: comfile="%1" %*
FileExt: .exe: exefile="%1" %*
FileExt: .pif: piffile="%1" %*
FileExt: .scr: scrfile="%1" /S
FileExt: .reg: regfile=regedit.exe "%1"
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1
FileExt: .chm: chm.file="C:\Windows\hh.exe" %1
FileExt: .ini: inifile=C:\Windows\System32\NOTEPAD.EXE %1
FileExt: .inf: inffile=C:\Windows\System32\NOTEPAD.EXE %1
ShellExec: DTLite.exe: open="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" "%1"
ShellExec: ehshell.exe: open="C:\Windows\eHome\ehshell.exe" "%1"
ShellExec: iexplore.exe: open="C:\Program Files\Internet Explorer\iexplore.exe" %1
ShellExec: mpc-hc.exe: Open="C:\Program Files (x86)\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe" "%1"
ShellExec: mspaint.exe: edit="C:\Windows\System32\mspaint.exe" "%1"
ShellExec: notepad.exe: edit=C:\Windows\System32\NOTEPAD.EXE %1
ShellExec: notepad.exe: open=C:\Windows\System32\NOTEPAD.EXE %1
ShellExec: ois.exe: Edit=C:\PROGRA~2\MICROS~1\Office12\OIS.EXE /shellEdit "%1"
ShellExec: ois.exe: Open=C:\PROGRA~2\MICROS~1\Office12\OIS.EXE /shellOpen "%1"
ShellExec: ois.exe: Preview=C:\PROGRA~2\MICROS~1\Office12\OIS.EXE /shellPreview "%1"
ShellExec: photoviewer.dll: open=C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
ShellExec: photoviewer.dll: print=C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
ShellExec: uTorrent.exe: open="C:\Program Files (x86)\uTorrent\uTorrent.exe" "%1"
ShellExec: winamp.exe: Enqueue="C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1"
ShellExec: winamp.exe: ListBookmark="C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1"
ShellExec: winamp.exe: open="C:\Program Files (x86)\Winamp\winamp.exe" "%1"
ShellExec: winamp.exe: Play="C:\Program Files (x86)\Winamp\winamp.exe" "%1"
ShellExec: vlc.exe: Open="C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file "%1"
ShellExec: winamp.exe: Enqueue="C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1"
ShellExec: winamp.exe: ListBookmark="C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1"
ShellExec: winamp.exe: open="C:\Program Files (x86)\Winamp\winamp.exe" "%1"
ShellExec: winamp.exe: Play="C:\Program Files (x86)\Winamp\winamp.exe" "%1"
ShellExec: WinRAR.exe: open="C:\Program Files\WinRAR\WinRAR.exe" "%1"
ShellExec: Winword.exe: edit="C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE" /n /dde
ShellExec: wmplayer.exe: open="C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Open "%L"
ShellExec: wmplayer.exe: play="C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Play "%L"
ShellExec: wordpad.exe: open="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1"
.
=============== Created Last 60 ================
.
2014-03-29 09:54:31 -------- d-----w- C:\rsit
2014-03-29 09:52:14 -------- d-----w- C:\FRST
2014-03-29 08:09:25 93808 ----a-w- C:\Program Files (x86)\Mozilla Firefox\webapprt-stub.exe
2014-03-29 08:09:25 92784 ----a-w- C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
2014-03-29 08:09:25 879424 ----a-w- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
2014-03-29 08:09:25 770384 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
2014-03-29 08:09:25 75376 ----a-w- C:\Program Files (x86)\Mozilla Firefox\breakpadinjector.dll
2014-03-29 08:09:25 647280 ----a-w- C:\Program Files (x86)\Mozilla Firefox\libGLESv2.dll
2014-03-29 08:09:25 5779568 ----a-w- C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
2014-03-29 08:09:25 53360 ----a-w- C:\Program Files (x86)\Mozilla Firefox\libEGL.dll
2014-03-29 08:09:25 46704 ----a-w- C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
2014-03-29 08:09:25 421200 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
2014-03-29 08:09:25 398960 ----a-w- C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll
2014-03-29 08:09:25 3642480 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-03-29 08:09:25 307824 ----a-w- C:\Program Files (x86)\Mozilla Firefox\freebl3.dll
2014-03-29 08:09:25 28272 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugin-hang-ui.exe
2014-03-29 08:09:25 276592 ----a-w- C:\Program Files (x86)\Mozilla Firefox\updater.exe
2014-03-29 08:09:25 275568 ----a-w- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
2014-03-29 08:09:25 23186032 ----a-w- C:\Program Files (x86)\Mozilla Firefox\xul.dll
2014-03-29 08:09:25 225656 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2014-03-29 08:09:25 2106216 ----a-w- C:\Program Files (x86)\Mozilla Firefox\D3DCompiler_43.dll
2014-03-29 08:09:25 20080 ----a-w- C:\Program Files (x86)\Mozilla Firefox\AccessibleMarshal.dll
2014-03-29 08:09:25 194552 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
2014-03-29 08:09:25 18544 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
2014-03-29 08:09:25 1791600 ----a-w- C:\Program Files (x86)\Mozilla Firefox\nss3.dll
2014-03-29 08:09:25 170960 ----a-w- C:\Program Files (x86)\Mozilla Firefox\webapp-uninstaller.exe
2014-03-29 08:09:25 17008 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll
2014-03-29 08:09:25 152688 ----a-w- C:\Program Files (x86)\Mozilla Firefox\softokn3.dll
2014-03-29 08:09:25 142448 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
2014-03-29 08:09:25 119408 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice.exe
2014-03-29 08:09:25 117360 ----a-w- C:\Program Files (x86)\Mozilla Firefox\crashreporter.exe
2014-03-29 08:09:25 -------- d-----w- C:\Program Files (x86)\Mozilla Firefox
2014-03-29 07:55:11 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{14CADD9C-714C-4E2E-B1D5-4F6C5734FEBE}\offreg.dll
2014-03-29 07:23:32 10521840 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{14CADD9C-714C-4E2E-B1D5-4F6C5734FEBE}\mpengine.dll
2014-03-25 21:42:08 43152 ----a-w- C:\Windows\avastSS.scr
2014-03-25 21:42:06 445304 ----a-w- C:\Windows\System32\drivers\aswNdisFlt.sys
2014-03-13 04:07:03 484864 ----a-w- C:\Windows\System32\wer.dll
2014-03-13 04:07:03 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-03-13 04:07:03 381440 ----a-w- C:\Windows\SysWow64\wer.dll
2014-03-13 04:07:03 32768 ----a-w- C:\Windows\SysWow64\iernonce.dll
2014-03-13 04:07:03 3156480 ----a-w- C:\Windows\System32\win32k.sys
2014-03-13 04:07:03 2765824 ----a-w- C:\Windows\System32\iertutil.dll
2014-03-13 04:07:03 228864 ----a-w- C:\Windows\System32\wwansvc.dll
2014-03-13 04:07:03 2168320 ----a-w- C:\Windows\SysWow64\iertutil.dll
2014-03-13 04:07:03 184320 ----a-w- C:\Program Files (x86)\Internet Explorer\F12Tools.dll
2014-03-13 04:07:02 999936 ----a-w- C:\Program Files (x86)\Internet Explorer\networkinspection.dll
2014-03-13 04:07:02 808152 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-03-13 04:07:02 806104 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2014-03-13 04:07:02 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-03-13 04:07:02 524288 ----a-w- C:\Windows\SysWow64\msfeeds.dll
2014-03-13 04:07:02 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-03-13 04:07:02 33792 ----a-w- C:\Windows\System32\iernonce.dll
2014-03-13 04:07:02 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-03-13 04:07:02 271360 ----a-w- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
2014-03-13 04:07:02 251392 ----a-w- C:\Program Files (x86)\Internet Explorer\IEShims.dll
2014-03-13 04:07:02 17074688 ----a-w- C:\Windows\SysWow64\mshtml.dll
2014-03-13 04:07:02 1156096 ----a-w- C:\Windows\SysWow64\urlmon.dll
2014-03-13 04:07:01 7211520 ----a-w- C:\Program Files\Internet Explorer\F12Resources.dll
2014-03-13 04:07:01 627200 ----a-w- C:\Windows\System32\msfeeds.dll
2014-03-13 04:07:01 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-03-13 04:07:01 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-03-13 04:07:01 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-03-13 04:07:01 440832 ----a-w- C:\Windows\SysWow64\ieui.dll
2014-03-13 04:07:01 43008 ----a-w- C:\Windows\SysWow64\jsproxy.dll
2014-03-13 04:07:01 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-03-13 04:07:01 259072 ----a-w- C:\Program Files\Internet Explorer\F12Tools.dll
2014-03-13 04:07:01 218624 ----a-w- C:\Windows\System32\ie4uinit.exe
2014-03-13 04:07:01 1964032 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-03-13 04:07:01 1393664 ----a-w- C:\Windows\System32\urlmon.dll
2014-03-13 04:07:01 1127424 ----a-w- C:\Program Files\Internet Explorer\networkinspection.dll
2014-03-13 04:07:01 11266048 ----a-w- C:\Windows\SysWow64\ieframe.dll
2014-03-13 04:07:00 722432 ----a-w- C:\Program Files\Internet Explorer\ieproxy.dll
2014-03-13 04:07:00 703488 ----a-w- C:\Windows\SysWow64\ieapfltr.dll
2014-03-13 04:07:00 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-03-13 04:07:00 574976 ----a-w- C:\Windows\System32\ieui.dll
2014-03-13 04:07:00 53760 ----a-w- C:\Windows\System32\jsproxy.dll
2014-03-13 04:07:00 482816 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe
2014-03-13 04:07:00 4244480 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-03-13 04:07:00 235224 ----a-w- C:\Program Files (x86)\Internet Explorer\sqmapi.dll
2014-03-13 04:07:00 2041856 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-03-13 04:07:00 1837056 ----a-w- C:\Program Files\Internet Explorer\MemoryAnalyzer.dll
2014-03-13 04:07:00 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-03-13 04:07:00 1739776 ----a-w- C:\Program Files\Internet Explorer\F12.dll
2014-03-13 04:07:00 164864 ----a-w- C:\Windows\SysWow64\msrating.dll
2014-03-13 04:07:00 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-03-13 04:07:00 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-03-13 04:06:59 817664 ----a-w- C:\Windows\System32\ieapfltr.dll
2014-03-13 04:06:59 708608 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-03-13 04:06:59 5768704 ----a-w- C:\Windows\System32\jscript9.dll
2014-03-13 04:06:59 353280 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
2014-03-13 04:06:59 2334208 ----a-w- C:\Windows\System32\wininet.dll
2014-03-13 04:06:59 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-03-13 04:06:59 13051904 ----a-w- C:\Windows\System32\ieframe.dll
2014-03-13 04:06:58 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-03-13 04:06:58 293080 ----a-w- C:\Program Files\Internet Explorer\sqmapi.dll
2014-03-13 04:06:58 23133696 ----a-w- C:\Windows\System32\mshtml.dll
2014-03-13 04:06:58 195584 ----a-w- C:\Windows\System32\msrating.dll
2014-03-13 04:06:09 624128 ----a-w- C:\Windows\System32\qedit.dll
2014-03-13 04:06:09 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2014-03-13 04:06:09 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2014-03-13 04:06:08 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2014-03-06 02:38:01 6574592 ----a-w- C:\Windows\System32\mstscax.dll
2014-03-06 02:38:01 5694464 ----a-w- C:\Windows\SysWow64\mstscax.dll
2014-03-05 09:07:21 -------- d-----w- C:\Users\bondasko\AppData\Local\Skype
2014-03-05 09:07:17 -------- d-----w- C:\Program Files (x86)\Common Files\Skype
2014-03-05 08:50:22 44544 ----a-w- C:\Windows\System32\TsUsbGDCoInstaller.dll
2014-03-05 08:50:21 3072 ----a-w- C:\Windows\System32\drivers\en-US\tsusbflt.sys.mui
2014-03-05 08:50:20 56832 ----a-w- C:\Windows\System32\drivers\TsUsbFlt.sys
2014-03-05 08:50:20 13824 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-05 08:50:20 12800 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-05 08:50:19 83968 ----a-w- C:\Windows\System32\TSWbPrxy.exe
2014-03-05 08:50:19 62976 ----a-w- C:\Windows\System32\tsgqec.dll
2014-03-05 08:50:19 56832 ----a-w- C:\Windows\System32\MsRdpWebAccess.dll
2014-03-05 08:50:19 53248 ----a-w- C:\Windows\SysWow64\tsgqec.dll
2014-03-05 08:50:19 50176 ----a-w- C:\Windows\SysWow64\MsRdpWebAccess.dll
2014-03-05 08:50:19 420864 ----a-w- C:\Windows\System32\wksprt.exe
2014-03-05 08:50:19 18944 ----a-w- C:\Windows\System32\wksprtPS.dll
2014-03-05 08:50:19 17920 ----a-w- C:\Windows\SysWow64\wksprtPS.dll
2014-03-05 08:50:19 1147392 ----a-w- C:\Windows\System32\mstsc.exe
2014-03-05 08:50:19 1068544 ----a-w- C:\Windows\SysWow64\mstsc.exe
2014-03-05 08:50:18 855552 ----a-w- C:\Windows\SysWow64\rdvidcrl.dll
2014-03-05 08:50:18 1057280 ----a-w- C:\Windows\System32\rdvidcrl.dll
2014-03-05 08:50:13 15360 ----a-w- C:\Windows\System32\RdpGroupPolicyExtension.dll
2014-03-05 08:50:12 30208 ----a-w- C:\Windows\System32\drivers\TsUsbGD.sys
2014-03-05 08:50:12 19456 ----a-w- C:\Windows\System32\drivers\rdpvideominiport.sys
2014-03-05 08:50:11 243200 ----a-w- C:\Windows\System32\rdpudd.dll
2014-03-05 08:50:11 228864 ----a-w- C:\Windows\System32\rdpendp_winip.dll
2014-03-05 08:50:11 192000 ----a-w- C:\Windows\SysWow64\rdpendp_winip.dll
2014-03-05 08:50:10 3174912 ----a-w- C:\Windows\System32\rdpcorets.dll
2014-03-05 08:50:01 792576 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll
2014-03-05 08:50:01 1030144 ----a-w- C:\Windows\System32\TSWorkspace.dll
2014-03-05 08:49:59 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll
2014-03-05 08:49:59 366592 ----a-w- C:\Windows\System32\qdvd.dll
2014-03-05 08:44:13 -------- d-----w- C:\Users\bondasko\AppData\Roaming\MPC-HC
2014-03-05 08:43:53 -------- d-----w- C:\Program Files\MPC-HC
2014-03-05 08:34:40 -------- d-----w- C:\Program Files (x86)\Seznam.cz
2014-03-05 08:34:25 -------- d-----w- C:\Users\bondasko\AppData\Roaming\Seznam.cz
2014-03-05 08:34:13 -------- d-----w- C:\Program Files (x86)\HQ-Video-Pro-1.4
2014-03-05 08:33:50 283064 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
2014-03-05 08:33:47 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2014-02-27 05:04:38 -------- d-----w- C:\Windows\Migration
2014-02-20 16:23:05 -------- d-----w- C:\Program Files (x86)\LG Electronics
2014-02-15 07:26:01 548864 ----a-w- C:\Windows\System32\vbscript.dll
2014-02-15 07:26:01 454656 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-02-14 04:36:51 1882112 ----a-w- C:\Windows\System32\msxml3.dll
2014-02-14 04:36:50 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2014-02-14 04:36:50 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2014-02-14 04:36:50 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2014-02-14 04:36:48 87040 ----a-w- C:\Windows\SysWow64\secproc_ssp_isv.dll
2014-02-14 04:36:48 87040 ----a-w- C:\Windows\SysWow64\secproc_ssp.dll
2014-02-14 04:36:48 658432 ----a-w- C:\Windows\System32\RMActivate_isv.exe
2014-02-14 04:36:48 626176 ----a-w- C:\Windows\System32\RMActivate.exe
2014-02-14 04:36:48 594944 ----a-w- C:\Windows\SysWow64\RMActivate_isv.exe
2014-02-14 04:36:48 572416 ----a-w- C:\Windows\SysWow64\RMActivate.exe
2014-02-14 04:36:48 553984 ----a-w- C:\Windows\System32\RMActivate_ssp.exe
2014-02-14 04:36:48 552960 ----a-w- C:\Windows\System32\RMActivate_ssp_isv.exe
2014-02-14 04:36:48 528384 ----a-w- C:\Windows\System32\msdrm.dll
2014-02-14 04:36:48 510976 ----a-w- C:\Windows\SysWow64\RMActivate_ssp.exe
2014-02-14 04:36:48 508928 ----a-w- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
2014-02-14 04:36:48 488448 ----a-w- C:\Windows\System32\secproc.dll
2014-02-14 04:36:48 485888 ----a-w- C:\Windows\System32\secproc_isv.dll
2014-02-14 04:36:48 428032 ----a-w- C:\Windows\SysWow64\secproc.dll
2014-02-14 04:36:48 423936 ----a-w- C:\Windows\SysWow64\secproc_isv.dll
2014-02-14 04:36:48 390144 ----a-w- C:\Windows\SysWow64\msdrm.dll
2014-02-14 04:36:48 123392 ----a-w- C:\Windows\System32\secproc_ssp_isv.dll
2014-02-14 04:36:48 123392 ----a-w- C:\Windows\System32\secproc_ssp.dll
2014-02-14 04:36:47 3928064 ----a-w- C:\Windows\System32\d2d1.dll
2014-02-14 04:36:47 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2014-02-14 04:36:47 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll
2014-02-14 04:36:47 1987584 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2014-02-10 12:28:19 -------- d-----w- C:\Program Files (x86)\Easy Duplicate Finder
2014-02-05 21:10:43 -------- d-----w- C:\ProgramData\Oracle
2014-02-05 21:10:39 -------- d-----w- C:\Program Files (x86)\Common Files\Java
2014-02-05 21:10:38 264616 ----a-w- C:\Windows\SysWow64\javaws.exe
.
==================== Find6M ====================
.
2014-03-25 21:42:08 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2014-03-25 21:42:08 84816 ----a-w- C:\Windows\System32\drivers\aswstm.sys
2014-03-25 21:42:08 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2014-03-25 21:42:08 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2014-03-25 21:42:08 423240 ----a-w- C:\Windows\System32\drivers\aswsp.sys
2014-03-25 21:42:08 334648 ----a-w- C:\Windows\System32\aswBoot.exe
2014-03-25 21:42:08 208928 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2014-03-25 21:42:08 1039096 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2014-03-25 21:42:07 28184 ----a-w- C:\Windows\System32\drivers\aswKbd.sys
2014-03-18 20:38:07 90015360 ----a-w- C:\Windows\System32\MRT.exe
2014-03-12 11:58:04 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-03-12 11:58:04 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-12-18 20:09:39 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-12-18 20:04:09 175016 ----a-w- C:\Windows\SysWow64\javaw.exe
2013-12-18 20:03:46 174504 ----a-w- C:\Windows\SysWow64\java.exe
2013-12-18 06:13:56 270496 ------w- C:\Windows\System32\MpSigStub.exe
2013-11-27 01:41:37 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-11-27 01:41:15 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-11-27 01:41:11 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-11-27 01:41:11 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-11-27 01:41:09 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2013-11-27 01:41:06 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-11-27 01:41:03 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2013-11-26 11:40:00 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2013-11-23 18:26:20 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2013-11-23 17:47:34 465920 ----a-w- C:\Windows\System32\WMPhoto.dll
2013-11-12 02:23:09 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-11-12 02:07:29 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-10-30 07:19:14 35328 ----a-w- C:\Windows\SysWow64\COMCT332.oca
2013-10-30 07:19:14 29184 ----a-w- C:\Windows\SysWow64\msinet.oca
2013-10-30 02:32:01 335360 ----a-w- C:\Windows\System32\msieftp.dll
2013-10-30 02:19:52 301568 ----a-w- C:\Windows\SysWow64\msieftp.dll
2013-10-19 02:18:57 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2013-10-19 01:36:59 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2013-10-14 17:41:56 131232 ----a-w- C:\Windows\System32\drivers\aswFW.sys
2013-10-14 17:00:00 28368 ----a-w- C:\Windows\System32\IEUDINIT.EXE
2013-10-12 02:32:04 150016 ----a-w- C:\Windows\System32\wshom.ocx
2013-10-12 02:31:04 202752 ----a-w- C:\Windows\System32\scrrun.dll
2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2013-10-12 02:04:36 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx
2013-10-12 02:03:31 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll
2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2013-10-12 01:33:39 156160 ----a-w- C:\Windows\System32\cscript.exe
2013-10-12 01:33:26 168960 ----a-w- C:\Windows\System32\wscript.exe
2013-10-12 01:15:48 141824 ----a-w- C:\Windows\SysWow64\wscript.exe
2013-10-12 01:15:48 126976 ----a-w- C:\Windows\SysWow64\cscript.exe
2013-10-05 20:25:35 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2013-10-05 19:57:25 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-10-04 02:28:31 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2013-10-04 02:25:17 197120 ----a-w- C:\Windows\System32\credui.dll
2013-10-04 02:24:49 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-10-04 02:16:30 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys
2013-10-04 01:58:50 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56:25 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2013-10-04 01:56:00 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2013-10-04 01:36:04 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2013-10-03 02:23:48 404480 ----a-w- C:\Windows\System32\gdi32.dll
2013-10-03 02:00:44 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2002-08-06 04:44:28 562176 ----a-w- C:\Program Files (x86)\Vypinac.exe
2002-05-27 08:25:12 295424 ----a-w- C:\Program Files (x86)\SubtitleToolCZ.exe
.
============= FINISH: 10:56:22,65 ===============

[vyosek]

Zdravim

Priste staci jen jeden log - oni ukazi defakto to stejne, jen jinym zpusobem

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[bondasko]

Ospravedlňujem sa, nevedel som.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 7 Home Premium x64
Ran by bondasko on so 29. 03. 2014 at 11:09:46,90
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] browserdefendert
Successfully deleted: [Service] browserdefendert



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\livesupport
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smarttweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1717893368-2303346206-3624378862-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasmancs
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0052920.BHO
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0052920.BHO.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0052920.Sandbox
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0052920.Sandbox.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110511291120}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220522292220}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550555295520}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660566296620}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440544294420}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{11111111-1111-1111-1111-110511291120}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{22222222-2222-2222-2222-220522292220}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550555295520}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660566296620}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440544294420}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0052920.BHO
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0052920.BHO.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0052920.Sandbox
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0052920.Sandbox.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550555295520}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660566296620}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440544294420}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550555295520}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660566296620}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440544294420}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511291120}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\ammyy"
Successfully deleted: [Folder] "C:\ProgramData\youtubeadblocker"
Successfully deleted: [Folder] "C:\Users\bondasko\AppData\Roaming\getrighttogo"
Successfully deleted: [Folder] "C:\Users\bondasko\AppData\Roaming\newnext.me"
Successfully deleted: [Folder] "C:\Users\bondasko\appdata\local\genienext"
Successfully deleted: [Folder] "C:\Users\bondasko\appdata\local\mobogenie"
Successfully deleted: [Folder] "C:\Users\bondasko\appdata\local\swvupdater"
Successfully deleted: [Folder] "C:\Program Files (x86)\mobogenie"
Successfully deleted: [Folder] "C:\Program Files (x86)\optimizer pro"
Successfully deleted: [Folder] "C:\Program Files (x86)\youtubeadblocker"



~~~ FireFox

Successfully deleted: [File] C:\Users\bondasko\AppData\Roaming\mozilla\firefox\profiles\lmldlavy.default\user.js
Successfully deleted the following from C:\Users\bondasko\AppData\Roaming\mozilla\firefox\profiles\lmldlavy.default\prefs.js

user_pref("extensions.crossrider.bic", "14491636d68dc7b8f855352a185b5e00");
Emptied folder: C:\Users\bondasko\AppData\Roaming\mozilla\firefox\profiles\lmldlavy.default\minidumps [106 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 29. 03. 2014 at 11:14:29,96
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


# AdwCleaner v3.022 - Report created 29/03/2014 at 11:16:16
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : bondasko - DOMA
# Running from : C:\Users\bondasko\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\QuickSet
Folder Deleted : C:\ProgramData\Download keeper
Folder Deleted : C:\Program Files (x86)\ExpressFiles
Folder Deleted : C:\Program Files (x86)\Kozaka
Folder Deleted : C:\Program Files (x86)\HQ-Video-Pro-1.4
Folder Deleted : C:\Program Files (x86)\Download keeper
Folder Deleted : C:\Users\bondasko\AppData\Roaming\ExpressFiles
Folder Deleted : C:\Users\bondasko\Documents\Mobogenie
Folder Deleted : C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com
Folder Deleted : C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\ea1wqvjq@dxeiyudeue.edu
Folder Deleted : C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\wrqjxxll@zzabkoqx.edu
Folder Deleted : C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
File Deleted : C:\Windows\System32\Tasks\BrowserDefendert
File Deleted : C:\Windows\System32\Tasks\Express FilesUpdate
File Deleted : C:\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job
File Deleted : C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-codedownloader
File Deleted : C:\Windows\Tasks\HQ-Video-Pro-1.4-enabler.job
File Deleted : C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-enabler
File Deleted : C:\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job
File Deleted : C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-firefoxinstaller

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKCU\Software\5e53dfddb13ae949
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4d7fa28e-846d-41e9-838f-fc560cd261e4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85bf9d4f-b8bb-41eb-819d-e657b6d5ae4e}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4d7fa28e-846d-41e9-838f-fc560cd261e4}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85bf9d4f-b8bb-41eb-819d-e657b6d5ae4e}
Key Deleted : HKCU\Software\ExpressFiles
Key Deleted : HKCU\Software\AppDataLow\Software\HQ-Video-Pro-1.4
Key Deleted : HKLM\Software\ExpressFiles
Key Deleted : HKLM\Software\HQ-Video-Pro-1.4
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HQ-Video-Pro-1.4
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521


-\\ Mozilla Firefox v28.0 (sk)

[ File : C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\prefs.js ]

Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.InstallationThankYouPage", true);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.InstallationTime", 1394008450);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.active", true);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.addressbar", "NA");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.addressbarenhanced", "");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920_dbWasSet", true);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920_dbWasSet_FF25_FIX", true[...]
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.asyncdb.was_copied", "true");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.asyncdb_dbWasSet", true);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.asyncdb_dbWasSet_FF25_FIX", true);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.asyncinternaldb.was_copied", "true");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.asyncinternaldb_dbWasSet", true);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.asyncinternaldb_dbWasSet_FF25_FIX", true);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.backgroundver", 1);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.certdomaininstaller", "");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.changeprevious", false);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie.InstallationTime.value", "%221394008450%22");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie.InstallerParams.value", "%7B%22source_id%22%3A%22001186%22%2C%22sub_id%22%3A%220%22%2C%22uz[...]
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie._GPL_aoi.value", "%221394629473%22");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie._GPL_parent_zoneid.value", "%22535170%22");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie.iframe-exists.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie.iframe-exists.value", "true");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie.jw_token.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.cookie.jw_token.value", "%2249de1682-d061-998e-ee96-cf86ec7a702a%22");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.description", "HQ Videos is an add-on for your Internet browser that enhances your online experien[...]
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.domain", "");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.enablesearch", false);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.homepage", "");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.iframe", false);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.InstallerIdentifiers.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.InstallerIdentifiers.value", "%7B%22installer_bic%22%3A%2286160787571F4D4BACD1AAF983645[...]
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.InstallerParams.value", "%7B%22source_id%22%3A%22001186%22%2C%22sub_id%22%3A%220%22%2C%[...]
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.InstallerParamsCache.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.InstallerParamsCache.value", "%7B%22source_id%22%3A%22001186%22%2C%22sub_id%22%3A%220%2[...]
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.InstallerUserIdentifiersCache.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.InstallerUserIdentifiersCache.value", "%7B%22installer_bic%22%3A%2286160787571F4D4BACD1[...]
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_appVer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_appVer.value", "30");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_lastVersion.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_lastVersion.value", "1");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_meta.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_meta.value", "%7B%7D");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_nextCheck.expiration", "Sat Mar 29 2014 14:14:04 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_nextCheck.value", "true");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_queue.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_queue.value", "%7B%7D");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_remote_resources.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.Resources_remote_resources.value", "%7B%22remoteId%22%3A0%7D");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.__defualt_browser__.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.__defualt_browser__.value", "%22ch%22");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.installer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.installer.value", "%7B%22InstallerIdentifiers%22%3A%7B%22installer_bic%22%3A%2286160787[...]
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.monetization_plugin_bundledUrls.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.monetization_plugin_bundledWithHash.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.monetization_plugin_bundledWithHash.value", "null");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.monetization_plugin_notBundledArr_.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.internaldb.monetization_plugin_notBundledArr_.value", "%5B%5D");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.lastDailyReport", "1396077243684");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.lastUpdate", "1396077244010");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.manifesturl", "");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.name", "HQ-Video-Pro-1.4");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.newtab", "");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.opensearch", "");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.pluginsurl", "hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/apps/52920/plugins/094/ff/plugins.json");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.pluginsversion", 27);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.publisher", "HQ-Video");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.searchstatus", 0);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.setnewtab", false);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.thankyou", "");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.updateinterval", 360);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.52920.ver", 30);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.FilesValidatorDueTime", "1396077302818");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.apps", "52920");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.bic", "14491636d68dc7b8f855352a185b5e00");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.cid", 52920);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.firstrun", false);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.hadappinstalled", true);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.installationdate", 1394008616);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.modetype", "production");
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.reportInstall", true);
Line Deleted : user_pref("extensions.af6b78e0508194914a9b153baf8fa3cd85f1a7616ab874cb2b56e1218d848ce49com52920.statsDailyCounter", 52);

-\\ Google Chrome v33.0.1750.154

[ File : C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R3].txt - [21280 octets] - [29/03/2014 11:14:51]
AdwCleaner[S1].txt - [20088 octets] - [29/03/2014 11:16:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [20149 octets] ##########

[vyosek]

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;
  emptyalltemp;
  resethosts;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[bondasko]

Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by bondasko on so 29. 03. 2014 at 11:25:50,75.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\bondasko\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

29. 3. 2014 11:26:15 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1717893368-2303346206-3624378862-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110511291120} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511291120} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\prefs.js:
user_pref("browser.startup.homepage", "www.google.sk");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default

user.js not found
---- Lines FFPDFArchitectConverter@pdfarchitect.com modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"smartwebprinting@hp.com\":{\"descriptor\":\"C:\\\\Program Files (
---- FireFox user.js and prefs.js backups ----

prefs_201429.03._1132_.backup

==== Deleting Files \ Folders ======================

C:\Users\bondasko\AppData\LocalLow\{D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508} deleted
C:\Users\bondasko\AppData\Local\Packages\windows_ie_ac_001\AC\{D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508} deleted
C:\Users\bondasko\daemonprocess.txt deleted
C:\Users\bondasko\.android deleted
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\channel-prefs.js deleted
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~3\InstallMate deleted
C:\Users\bondasko\AppData\Local\avgchrome deleted
C:\Users\bondasko\AppData\Local\cache deleted
C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\CT1750559 deleted
"C:\PROGRA~3\53a3e879a8d39904\{4820778D-AB0D-6D18-C316-52A6A0E1D507}" deleted
"C:\PROGRA~3\53a3e879a8d39904\{4820778D-AB0D-6D18-C316-52A6A0E1D507}.old" deleted
"C:\PROGRA~3\53a3e879a8d39904\{C1A27135-69EB-8D44-7358-34727DD7B820}" deleted
"C:\PROGRA~3\53a3e879a8d39904\{C1A27135-69EB-8D44-7358-34727DD7B820}.old" deleted
"C:\PROGRA~3\53a3e879a8d39904\{E32743D3-5789-6E4F-3998-06FB87C9214B}" deleted
"C:\PROGRA~3\53a3e879a8d39904" deleted
"C:\Users\bondasko\AppData\Roaming\HiMD" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"FFPDFArchitectConverter@pdfarchitect.com"=hex(2):43,00,3a,00,5c,00,50,00,72,\ []
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [01. 12. 2012 15:14]

==== Firefox Extensions ======================

ProfilePath: C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default
- Youtube MP3 Converter - %ProfilePath%\extensions\2conv@hotger.com.xpi
- Youtube Downloader - Media Downloader - %ProfilePath%\extensions\paulsaintuzb@gmail.com.xpi
- YouTube to MP3 - %ProfilePath%\extensions\youtube2mp3@mondayx.de.xpi
- Best Video Downloader 2 - %ProfilePath%\extensions\{170503FA-3349-4F17-BC86-001888A5C8E2}.xpi
- Download YouTube Videos as MP4 - %ProfilePath%\extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Firefox - %AppDir%\extensions\firefox@firefox.sk
- Firefox.sk - SearchSuggest Test - %AppDir%\extensions\searchsuggest@firefox.sk
- Firefox.sk - UrlBox - %AppDir%\extensions\urlbox@firefox.sk
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default
95812430959AE88CDD0301AB3A71913B - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll - Shockwave Flash
87132527E2256CF6683A18C4EB34DD3B - C:\Windows\system32\Wat\npWatWeb.dll - Windows Activation Technologies


==== Chrome Look ======================

Angry Birds - bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"

==== Reset Google Chrome ======================

C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\FFPDFArchitectConverter@pdfarchitect.com deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\bondasko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\bondasko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\bondasko\AppData\Local\Mozilla\Firefox\Profiles\lmldlavy.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=148 folders=32 1811900 bytes)

==== Empty Temp Folders ======================

C:\Users\bondasko\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\bondasko\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on so 29. 03. 2014 at 11:36:17,03 ======================

[vyosek]

Dejte novy log z FRST

[bondasko]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by bondasko (administrator) on DOMA on 29-03-2014 11:40:00
Running from C:\Users\bondasko\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
() C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5119600 2012-05-11] (VIA)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-03-25] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\...\MountPoints2: {a9341bf5-9a48-11e3-8ccb-902b34550f7e} - O:\LGAutoRun.exe

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: YoutubeAdblocker - {D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508} - C:\Program Files (x86)\YoutubeAdblocker\WP4RV.x64.dll No File
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21

FireFox:
========
FF ProfilePath: C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 - C:\Program Files (x86)\Sony\Media Go\npmediago.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: sony.com/MediaGoDetector - C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: Youtube MP3 Converter - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\2conv@hotger.com.xpi [2013-02-01]
FF Extension: Youtube Downloader - Media Downloader - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\paulsaintuzb@gmail.com.xpi [2014-02-20]
FF Extension: YouTube to MP3 - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\youtube2mp3@mondayx.de.xpi [2013-02-01]
FF Extension: Best Video Downloader 2 - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{170503FA-3349-4F17-BC86-001888A5C8E2}.xpi [2014-02-20]
FF Extension: Download YouTube Videos as MP4 - C:\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-02-20]
FF Extension: Firefox - C:\Program Files (x86)\Mozilla Firefox\extensions\firefox@firefox.sk [2014-03-29]
FF Extension: Firefox.sk - SearchSuggest (Test) - C:\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk [2014-03-29]
FF Extension: Firefox.sk - UrlBox - C:\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk [2014-03-29]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-12-01]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-12-01]

Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-29]
CHR Extension: (Disk Google) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-29]
CHR Extension: (YouTube) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-21]
CHR Extension: (Hľadať v Google) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-21]
CHR Extension: (Peňaženka Google) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Gmail) - C:\Users\bondasko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-21]

==================== Services (Whitelisted) =================

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-03-25] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109048 2014-03-25] (AVAST Software)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
S3 MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [53337 2005-11-24] (Sony Corporation)
S3 PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [53337 2005-11-24] (Sony Corporation)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-06-18] ()
R2 Správce výběru OS; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2156952 2011-12-12] ()
S3 SPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [69718 2005-11-24] (Sony Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-05-04] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2012-07-03] (Google Inc)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 AndNetDiag2; C:\Windows\System32\DRIVERS\lgandnetdiag264.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-03-25] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-03-25] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [445304 2014-03-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-03-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-03-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-03-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-03-25] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [84816 2014-03-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208928 2014-03-25] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-03-05] (Disc Soft Ltd)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-29 11:34 - 2014-03-29 11:25 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-29 11:26 - 2014-03-29 11:36 - 00010056 _____ () C:\zoek-results.log
2014-03-29 11:25 - 2014-03-29 11:32 - 00000000 ____D () C:\zoek_backup
2014-03-29 11:25 - 2014-03-29 11:25 - 01285120 _____ () C:\Users\bondasko\Desktop\zoek.exe
2014-03-29 11:14 - 2014-03-29 11:16 - 00000000 ____D () C:\AdwCleaner
2014-03-29 11:14 - 2014-03-29 11:14 - 00005946 _____ () C:\Users\bondasko\Desktop\JRT.txt
2014-03-29 11:09 - 2014-03-29 11:09 - 00000000 ____D () C:\Windows\ERUNT
2014-03-29 11:08 - 2014-03-29 11:07 - 01950720 _____ () C:\Users\bondasko\Desktop\adwcleaner.exe
2014-03-29 11:08 - 2014-03-29 11:07 - 01038974 _____ (Thisisu) C:\Users\bondasko\Desktop\JRT.exe
2014-03-29 10:56 - 2014-03-29 10:56 - 01194994 _____ () C:\Users\bondasko\Desktop\attach.txt
2014-03-29 10:56 - 2014-03-29 10:56 - 00084388 _____ () C:\Users\bondasko\Desktop\dds.txt
2014-03-29 10:54 - 2014-03-29 10:54 - 00000000 ____D () C:\rsit
2014-03-29 10:53 - 2014-03-29 10:53 - 00010991 _____ () C:\Users\bondasko\Desktop\Addition.rar
2014-03-29 10:52 - 2014-03-29 11:40 - 00015422 _____ () C:\Users\bondasko\Desktop\FRST.txt
2014-03-29 10:52 - 2014-03-29 11:40 - 00000000 ____D () C:\FRST
2014-03-29 10:52 - 2014-03-29 10:52 - 00039638 _____ () C:\Users\bondasko\Desktop\Addition.txt
2014-03-29 10:48 - 2014-03-29 10:47 - 00935175 _____ () C:\Users\bondasko\Desktop\RSITx64.exe
2014-03-29 10:48 - 2014-03-29 10:47 - 00688992 ____R (Swearware) C:\Users\bondasko\Desktop\dds.exe
2014-03-29 10:48 - 2014-03-29 10:46 - 02157056 _____ (Farbar) C:\Users\bondasko\Desktop\FRST64.exe
2014-03-29 09:09 - 2014-03-29 10:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-26 05:22 - 2014-03-29 11:36 - 00000658 _____ () C:\Windows\PFRO.log
2014-03-26 05:22 - 2014-03-29 11:36 - 00000448 _____ () C:\Windows\setupact.log
2014-03-26 05:22 - 2014-03-26 05:22 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-25 22:42 - 2014-03-25 22:42 - 00445304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-03-25 22:42 - 2014-03-25 22:42 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-18 21:37 - 2014-03-18 21:37 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skype
2014-03-13 05:07 - 2014-03-01 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 05:07 - 2014-03-01 06:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-13 05:07 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 05:07 - 2014-03-01 05:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-13 05:07 - 2014-03-01 05:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-13 05:07 - 2014-03-01 05:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 05:07 - 2014-03-01 05:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-13 05:07 - 2014-03-01 05:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 05:07 - 2014-03-01 05:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-13 05:07 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-13 05:07 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-13 05:07 - 2014-03-01 05:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-13 05:07 - 2014-03-01 04:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-13 05:07 - 2014-03-01 04:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-13 05:07 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-13 05:07 - 2014-03-01 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-13 05:07 - 2014-03-01 04:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-13 05:07 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 05:07 - 2014-03-01 04:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-13 05:07 - 2014-03-01 04:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-13 05:07 - 2014-03-01 04:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-13 05:07 - 2014-03-01 04:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 05:07 - 2014-03-01 04:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-13 05:07 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-13 05:07 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-13 05:07 - 2014-03-01 04:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-13 05:07 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-13 05:07 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 05:07 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-13 05:07 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-13 05:07 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-13 05:07 - 2014-02-07 02:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 05:07 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 05:07 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-13 05:07 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-13 05:06 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 05:06 - 2014-03-01 05:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 05:06 - 2014-03-01 05:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-13 05:06 - 2014-03-01 05:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-13 05:06 - 2014-03-01 05:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-13 05:06 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 05:06 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 05:06 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 05:06 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-13 05:06 - 2014-02-04 03:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-13 05:06 - 2014-02-04 03:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 05:06 - 2014-02-04 03:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-13 05:06 - 2014-02-04 03:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-06 03:38 - 2014-01-09 03:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-03-06 03:38 - 2014-01-03 23:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-03-05 10:07 - 2014-03-05 10:07 - 00000000 ____D () C:\Users\bondasko\AppData\Local\Skype
2014-03-05 10:00 - 2014-03-29 11:39 - 00864174 _____ () C:\Windows\WindowsUpdate.log
2014-03-05 09:55 - 2014-03-05 09:55 - 00001167 _____ () C:\Users\bondasko\Desktop\Format Factory.lnk
2014-03-05 09:55 - 2014-03-05 09:55 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-03-05 09:50 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-03-05 09:50 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-05 09:50 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-05 09:50 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-03-05 09:50 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-03-05 09:50 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-03-05 09:50 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-03-05 09:50 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-03-05 09:50 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-03-05 09:50 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-03-05 09:50 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-03-05 09:50 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-03-05 09:50 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-03-05 09:50 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-03-05 09:50 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-03-05 09:50 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-03-05 09:50 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-03-05 09:50 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-03-05 09:50 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-03-05 09:50 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-03-05 09:50 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-03-05 09:50 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-03-05 09:50 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-03-05 09:50 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-03-05 09:50 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-03-05 09:49 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-03-05 09:49 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-03-05 09:44 - 2014-03-05 09:44 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\MPC-HC
2014-03-05 09:43 - 2014-03-05 09:43 - 00000000 ____D () C:\Program Files\MPC-HC
2014-03-05 09:34 - 2014-03-05 09:51 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Seznam.cz
2014-03-05 09:34 - 2014-03-05 09:34 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-03-05 09:33 - 2014-03-05 09:33 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-03-05 09:33 - 2014-03-05 09:33 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite

==================== One Month Modified Files and Folders =======

2014-03-29 11:40 - 2014-03-29 10:52 - 00015422 _____ () C:\Users\bondasko\Desktop\FRST.txt
2014-03-29 11:40 - 2014-03-29 10:52 - 00000000 ____D () C:\FRST
2014-03-29 11:39 - 2014-03-05 10:00 - 00864174 _____ () C:\Windows\WindowsUpdate.log
2014-03-29 11:36 - 2014-03-29 11:26 - 00010056 _____ () C:\zoek-results.log
2014-03-29 11:36 - 2014-03-26 05:22 - 00000658 _____ () C:\Windows\PFRO.log
2014-03-29 11:36 - 2014-03-26 05:22 - 00000448 _____ () C:\Windows\setupact.log
2014-03-29 11:36 - 2013-10-08 13:52 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-29 11:36 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-29 11:32 - 2014-03-29 11:25 - 00000000 ____D () C:\zoek_backup
2014-03-29 11:32 - 2012-12-01 04:40 - 00000000 ____D () C:\Users\bondasko
2014-03-29 11:25 - 2014-03-29 11:34 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-29 11:25 - 2014-03-29 11:25 - 01285120 _____ () C:\Users\bondasko\Desktop\zoek.exe
2014-03-29 11:24 - 2009-07-14 05:45 - 00022080 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-29 11:24 - 2009-07-14 05:45 - 00022080 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-29 11:21 - 2009-07-14 06:13 - 00800542 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-29 11:16 - 2014-03-29 11:14 - 00000000 ____D () C:\AdwCleaner
2014-03-29 11:14 - 2014-03-29 11:14 - 00005946 _____ () C:\Users\bondasko\Desktop\JRT.txt
2014-03-29 11:09 - 2014-03-29 11:09 - 00000000 ____D () C:\Windows\ERUNT
2014-03-29 11:09 - 2012-12-01 11:38 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\uTorrent
2014-03-29 11:07 - 2014-03-29 11:08 - 01950720 _____ () C:\Users\bondasko\Desktop\adwcleaner.exe
2014-03-29 11:07 - 2014-03-29 11:08 - 01038974 _____ (Thisisu) C:\Users\bondasko\Desktop\JRT.exe
2014-03-29 10:58 - 2013-09-17 20:18 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-29 10:56 - 2014-03-29 10:56 - 01194994 _____ () C:\Users\bondasko\Desktop\attach.txt
2014-03-29 10:56 - 2014-03-29 10:56 - 00084388 _____ () C:\Users\bondasko\Desktop\dds.txt
2014-03-29 10:54 - 2014-03-29 10:54 - 00000000 ____D () C:\rsit
2014-03-29 10:54 - 2012-12-10 12:16 - 00000000 ____D () C:\Program Files\trend micro
2014-03-29 10:53 - 2014-03-29 10:53 - 00010991 _____ () C:\Users\bondasko\Desktop\Addition.rar
2014-03-29 10:52 - 2014-03-29 10:52 - 00039638 _____ () C:\Users\bondasko\Desktop\Addition.txt
2014-03-29 10:49 - 2014-03-29 09:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 10:49 - 2012-12-27 13:00 - 00000000 ____D () C:\Users\bondasko\AppData\Local\CrashDumps
2014-03-29 10:47 - 2014-03-29 10:48 - 00935175 _____ () C:\Users\bondasko\Desktop\RSITx64.exe
2014-03-29 10:47 - 2014-03-29 10:48 - 00688992 ____R (Swearware) C:\Users\bondasko\Desktop\dds.exe
2014-03-29 10:46 - 2014-03-29 10:48 - 02157056 _____ (Farbar) C:\Users\bondasko\Desktop\FRST64.exe
2014-03-29 10:36 - 2013-10-08 13:52 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-29 08:31 - 2012-11-30 21:57 - 00003932 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-29 08:31 - 2012-11-30 21:57 - 00003680 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-27 21:12 - 2012-11-30 22:27 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Skype
2014-03-26 19:56 - 2012-12-01 11:31 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Winamp
2014-03-26 15:31 - 2012-12-01 13:18 - 00000000 ___RD () C:\Users\bondasko\Desktop\Antivirus & Cistenie
2014-03-26 05:22 - 2014-03-26 05:22 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-25 22:42 - 2014-03-25 22:42 - 00445304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-03-25 22:42 - 2014-03-25 22:42 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-03-25 22:42 - 2013-12-18 10:09 - 00084816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-03-25 22:42 - 2013-10-27 09:24 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00208928 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-03-25 22:42 - 2013-10-27 09:19 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-03-25 22:42 - 2012-11-30 22:06 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-03-25 22:42 - 2012-11-30 22:06 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-03-25 08:59 - 2012-11-30 23:09 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Media Player Classic
2014-03-23 12:20 - 2012-12-23 18:59 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\vlc
2014-03-18 21:38 - 2013-08-15 02:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-18 21:38 - 2012-11-30 22:16 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-18 21:37 - 2014-03-18 21:37 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skype
2014-03-13 16:39 - 2009-07-14 05:45 - 00414232 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-13 06:03 - 2012-11-30 23:05 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-12 12:58 - 2012-12-01 11:15 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 12:58 - 2012-12-01 11:15 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-12 12:58 - 2012-12-01 11:15 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-09 15:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-03-06 11:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-03-06 11:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-03-05 10:10 - 2012-12-01 13:14 - 00000000 ___RD () C:\Users\bondasko\Desktop\Programy
2014-03-05 10:10 - 2012-12-01 13:13 - 00000000 ___RD () C:\Users\bondasko\Desktop\Nepouzivane odkazy
2014-03-05 10:07 - 2014-03-05 10:07 - 00000000 ____D () C:\Users\bondasko\AppData\Local\Skype
2014-03-05 10:07 - 2012-11-30 22:27 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-05 10:07 - 2012-11-30 22:27 - 00000000 ____D () C:\ProgramData\Skype
2014-03-05 10:06 - 2013-01-03 19:34 - 00000000 ____D () C:\Users\bondasko\Documents\Readon Player
2014-03-05 10:00 - 2012-12-27 21:26 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\TS3Client
2014-03-05 09:56 - 2012-12-21 18:11 - 00000000 ____D () C:\Program Files\Defraggler
2014-03-05 09:55 - 2014-03-05 09:55 - 00001167 _____ () C:\Users\bondasko\Desktop\Format Factory.lnk
2014-03-05 09:55 - 2014-03-05 09:55 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-03-05 09:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-03-05 09:51 - 2014-03-05 09:34 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\Seznam.cz
2014-03-05 09:51 - 2012-12-27 11:52 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\EurekaLog
2014-03-05 09:48 - 2012-12-01 11:10 - 00001234 _____ () C:\Users\Public\Desktop\NET Radio Rekorder.lnk
2014-03-05 09:44 - 2014-03-05 09:44 - 00000000 ____D () C:\Users\bondasko\AppData\Roaming\MPC-HC
2014-03-05 09:43 - 2014-03-05 09:43 - 00000000 ____D () C:\Program Files\MPC-HC
2014-03-05 09:39 - 2012-12-01 11:31 - 00000000 ____D () C:\Program Files (x86)\Winamp
2014-03-05 09:36 - 2012-12-01 11:25 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-03-05 09:34 - 2014-03-05 09:34 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-03-05 09:33 - 2014-03-05 09:33 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-03-05 09:33 - 2014-03-05 09:33 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-03-05 09:32 - 2013-04-01 23:10 - 00000000 ____D () C:\Program Files\Speccy
2014-03-05 09:32 - 2012-11-30 22:21 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-01 07:05 - 2014-03-13 05:06 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-01 06:17 - 2014-03-13 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-01 06:16 - 2014-03-13 05:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-01 05:58 - 2014-03-13 05:07 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-01 05:52 - 2014-03-13 05:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-01 05:51 - 2014-03-13 05:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-01 05:42 - 2014-03-13 05:07 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-01 05:40 - 2014-03-13 05:07 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-01 05:37 - 2014-03-13 05:07 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-01 05:33 - 2014-03-13 05:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-01 05:33 - 2014-03-13 05:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-01 05:32 - 2014-03-13 05:06 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-01 05:30 - 2014-03-13 05:07 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-01 05:23 - 2014-03-13 05:06 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-01 05:17 - 2014-03-13 05:07 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-01 05:11 - 2014-03-13 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-01 05:02 - 2014-03-13 05:06 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-01 04:54 - 2014-03-13 05:06 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-01 04:52 - 2014-03-13 05:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-01 04:51 - 2014-03-13 05:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-01 04:47 - 2014-03-13 05:07 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-01 04:43 - 2014-03-13 05:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-01 04:43 - 2014-03-13 05:07 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-01 04:42 - 2014-03-13 05:07 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-01 04:40 - 2014-03-13 05:07 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-01 04:38 - 2014-03-13 05:07 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-01 04:37 - 2014-03-13 05:07 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-01 04:35 - 2014-03-13 05:07 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-01 04:18 - 2014-03-13 05:06 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-01 04:16 - 2014-03-13 05:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-01 04:14 - 2014-03-13 05:07 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-01 04:10 - 2014-03-13 05:06 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-01 04:03 - 2014-03-13 05:07 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-01 04:00 - 2014-03-13 05:07 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-01 03:57 - 2014-03-13 05:07 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-01 03:38 - 2014-03-13 05:07 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-01 03:32 - 2014-03-13 05:07 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-01 03:27 - 2014-03-13 05:07 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-01 03:25 - 2014-03-13 05:07 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-01 03:25 - 2014-03-13 05:06 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-27 22:06 - 2012-11-30 23:48 - 00784408 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-21 18:20

==================== End Of Log ============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
  HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
  HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
  HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\...\MountPoints2: {a9341bf5-9a48-11e3-8ccb-902b34550f7e} - O:\LGAutoRun.exe
  
  SearchScopes: HKLM - DefaultScope value is missing.
  SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
  SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
  
  FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
  FF Extension: Firefox.sk - SearchSuggest (Test) - C:\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk [2014-03-29]
  FF Extension: Firefox.sk - UrlBox - C:\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk [2014-03-29]
  
  2014-03-29 11:34 - 2014-03-29 11:25 - 00024064 _____ () C:\Windows\zoek-delete.exe
  2014-03-29 11:26 - 2014-03-29 11:36 - 00010056 _____ () C:\zoek-results.log
  2014-03-29 11:25 - 2014-03-29 11:32 - 00000000 ____D () C:\zoek_backup
  2014-03-29 11:25 - 2014-03-29 11:25 - 01285120 _____ () C:\Users\bondasko\Desktop\zoek.exe
  2014-03-29 11:14 - 2014-03-29 11:16 - 00000000 ____D () C:\AdwCleaner
  2014-03-29 11:14 - 2014-03-29 11:14 - 00005946 _____ () C:\Users\bondasko\Desktop\JRT.txt
  2014-03-29 11:09 - 2014-03-29 11:09 - 00000000 ____D () C:\Windows\ERUNT
  2014-03-29 11:08 - 2014-03-29 11:07 - 01950720 _____ () C:\Users\bondasko\Desktop\adwcleaner.exe
  2014-03-29 11:08 - 2014-03-29 11:07 - 01038974 _____ (Thisisu) C:\Users\bondasko\Desktop\JRT.exe
  2014-03-29 10:56 - 2014-03-29 10:56 - 01194994 _____ () C:\Users\bondasko\Desktop\attach.txt
  2014-03-29 10:56 - 2014-03-29 10:56 - 00084388 _____ () C:\Users\bondasko\Desktop\dds.txt
  2014-03-29 10:54 - 2014-03-29 10:54 - 00000000 ____D () C:\rsit
  2014-03-29 10:53 - 2014-03-29 10:53 - 00010991 _____ () C:\Users\bondasko\Desktop\Addition.rar
  2014-03-29 10:52 - 2014-03-29 11:40 - 00015422 _____ () C:\Users\bondasko\Desktop\FRST.txt
  2014-03-29 10:52 - 2014-03-29 11:40 - 00000000 ____D () C:\FRST
  2014-03-29 10:52 - 2014-03-29 10:52 - 00039638 _____ () C:\Users\bondasko\Desktop\Addition.txt
  2014-03-29 10:48 - 2014-03-29 10:47 - 00935175 _____ () C:\Users\bondasko\Desktop\RSITx64.exe
  2014-03-29 10:48 - 2014-03-29 10:47 - 00688992 ____R (Swearware) C:\Users\bondasko\Desktop\dds.exe
  C:\Windows\tasks\Adobe Flash Player Updater.job
  C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  C:\Windows\tasks\HQ-Video-Pro-1.4-codedownloader.job
  C:\Windows\tasks\HQ-Video-Pro-1.4-enabler.job
  C:\Windows\tasks\HQ-Video-Pro-1.4-firefoxinstaller.job
  
  Hosts:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[bondasko]

Dobre ráno želám

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by bondasko at 2014-03-30 08:20:03 Run:1
Running from C:\Users\bondasko\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\...\MountPoints2: {a9341bf5-9a48-11e3-8ccb-902b34550f7e} - O:\LGAutoRun.exe

SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}

FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Extension: Firefox.sk - SearchSuggest (Test) - C:\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk [2014-03-29]
FF Extension: Firefox.sk - UrlBox - C:\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk [2014-03-29]

2014-03-29 11:34 - 2014-03-29 11:25 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-29 11:26 - 2014-03-29 11:36 - 00010056 _____ () C:\zoek-results.log
2014-03-29 11:25 - 2014-03-29 11:32 - 00000000 ____D () C:\zoek_backup
2014-03-29 11:25 - 2014-03-29 11:25 - 01285120 _____ () C:\Users\bondasko\Desktop\zoek.exe
2014-03-29 11:14 - 2014-03-29 11:16 - 00000000 ____D () C:\AdwCleaner
2014-03-29 11:14 - 2014-03-29 11:14 - 00005946 _____ () C:\Users\bondasko\Desktop\JRT.txt
2014-03-29 11:09 - 2014-03-29 11:09 - 00000000 ____D () C:\Windows\ERUNT
2014-03-29 11:08 - 2014-03-29 11:07 - 01950720 _____ () C:\Users\bondasko\Desktop\adwcleaner.exe
2014-03-29 11:08 - 2014-03-29 11:07 - 01038974 _____ (Thisisu) C:\Users\bondasko\Desktop\JRT.exe
2014-03-29 10:56 - 2014-03-29 10:56 - 01194994 _____ () C:\Users\bondasko\Desktop\attach.txt
2014-03-29 10:56 - 2014-03-29 10:56 - 00084388 _____ () C:\Users\bondasko\Desktop\dds.txt
2014-03-29 10:54 - 2014-03-29 10:54 - 00000000 ____D () C:\rsit
2014-03-29 10:53 - 2014-03-29 10:53 - 00010991 _____ () C:\Users\bondasko\Desktop\Addition.rar
2014-03-29 10:52 - 2014-03-29 11:40 - 00015422 _____ () C:\Users\bondasko\Desktop\FRST.txt
2014-03-29 10:52 - 2014-03-29 11:40 - 00000000 ____D () C:\FRST
2014-03-29 10:52 - 2014-03-29 10:52 - 00039638 _____ () C:\Users\bondasko\Desktop\Addition.txt
2014-03-29 10:48 - 2014-03-29 10:47 - 00935175 _____ () C:\Users\bondasko\Desktop\RSITx64.exe
2014-03-29 10:48 - 2014-03-29 10:47 - 00688992 ____R (Swearware) C:\Users\bondasko\Desktop\dds.exe
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\HQ-Video-Pro-1.4-codedownloader.job
C:\Windows\tasks\HQ-Video-Pro-1.4-enabler.job
C:\Windows\tasks\HQ-Video-Pro-1.4-firefoxinstaller.job

Hosts:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKU\S-1-5-21-1717893368-2303346206-3624378862-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9341bf5-9a48-11e3-8ccb-902b34550f7e} => Key deleted successfully.
HKCR\CLSID\{a9341bf5-9a48-11e3-8ccb-902b34550f7e} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@Nero.com/KM => Key deleted successfully.
C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\bondasko\Desktop\zoek.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\bondasko\Desktop\JRT.txt => Moved successfully.
C:\Windows\ERUNT => Moved successfully.
C:\Users\bondasko\Desktop\adwcleaner.exe => Moved successfully.
C:\Users\bondasko\Desktop\JRT.exe => Moved successfully.
C:\Users\bondasko\Desktop\attach.txt => Moved successfully.
C:\Users\bondasko\Desktop\dds.txt => Moved successfully.
C:\rsit => Moved successfully.
C:\Users\bondasko\Desktop\Addition.rar => Moved successfully.
C:\Users\bondasko\Desktop\FRST.txt => Moved successfully.

"C:\FRST" directory move:

C:\FRST\users00 => Moved successfully.
C:\FRST\Quarantine\C\zoek-results.log.xBAD => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~2_Mozilla Firefox_defaults_preferences_channel-prefs.js.vir => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~2_Mozilla Firefox_defaults_preferences_pref.js.vir => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_prefs_201429.03._1132_.backup.vir => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_daemonprocess.txt.vir => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\restore.txt => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.1000082.currentList => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.1000082.localStations => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.1000082.nowPlaying => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.1000082.publisherStations => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.128520273115419467.search.selectedEngineId => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.128520273115419467.search.settings => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.AlertService => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.AlertsInfoData => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.appOptions => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.cookiesRepo => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.NotificationSettings => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.NOTIFICATION_ID.alert_login_service => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.NOTIFICATION_ID.notifications_serviceMap => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.searchProtectorData => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559.skin => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_appsMetadata => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_appTrackingFirstTime => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_gottenAppsContextMenu => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_login => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_otherAppsContextMenu => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_searchAPI => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_serviceMap => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_toolbarContextMenu => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_toolbarSettings => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_10.10.27.6.serviceLayer_services_translation => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_appsMetadata => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_appTrackingFirstTime => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_gottenAppsContextMenu => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_login => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_otherAppsContextMenu => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_searchAPI => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_serviceMap => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_toolbarContextMenu => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_toolbarSettings => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\CT1750559_RAW.serviceLayer_services_translation => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\uninstallData => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\uninstallUrl => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_59_175_CT1750559_Images_634557624398258531.png => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_59_175_CT1750559_images_634571297250081251_24PX.png => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_59_175_CT1750559_images_634593767955696458_24PX.png => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_59_175_CT1750559_images_634593826325289055_24PX.png => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_BankImages_Facebook_Facebook.png => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_images_ClientImages_radio.gif => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_Images_ClientResources_mini_browser.gif => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_images_searchengines_search_icon.gif => Moved successfully.
Could not move "C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_MarketPlace_27_580_2760e0b4-18bf-4506-b490-68675d529580_Appearance_634162503573491253_24x24.png" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_MarketPlace_81_28e_816147d9-d2b0-4dc7-b220-fb7ea1b1228e_Appearance_634726106907093173.png" => Scheduled to move on reboot.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_Packages_windows_ie_ac_001_AC_{D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508}\YoutubeAdblocker.2.5.dat => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\f\26gk0kgo.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\f\39nrp0ao.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\f\fj7qiq0o.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\e\1lm9i5ln.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\e\9bnshwin.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\d\18vkjgem.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\d\1irpnmim.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\d\3hmmcnwm.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\b\2683lelk.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\a\1gktm9pz.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\a\2iduv9jz.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\a\3fqi80lj.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\a\4tzhsucz.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\a\tn96d5yz.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\9\201enju9.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\9\n7gsbkoi.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\8\17sntrqx.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\8\1nrxxith.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\8\1szhqm9h.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\8\1tnrn7dx.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\8\1u3rukb8.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\8\23q6bsnh.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\8\2o00rkoh.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\8\3qqtzc1h.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\7\1l5u41jg.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\7\1mdqew17.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\7\2bs28gjg.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\7\2bt9zzjw.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\7\2e9sygow.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\7\3uju33x7.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\7\aabysarg.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\7\jxksezww.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\6\228jewp6.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\6\3a8mfk2v.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\5\31up9p35.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\5\3auxirle.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\5\3tdftxfe.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\4\1ibw2ept.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\4\1u4imsyt.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\4\2yz97zcd.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\4\39vudmv4.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\4\3syju2o4.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\3\1m3o09u3.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\3\30tdc2xs.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\3\3l2zg19s.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\3\xirgems3.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\2\20t318q2.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\2\2inel7t2.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\2\3ptrm7s2.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\2\3sdofzpr.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\2\b12dl97b.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\1\14vg1dqq.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\1\26bj7pta.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\1\28cxfqoq.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\1\hdlcfcy1.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_cache\data7\0\34bq6u60.d => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Local_avgchrome\avgp => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_LocalLow_{D4E8AB41-4CC7-3E56-B7DD-C2D694ADF508}\YoutubeAdblocker.2.5.dat => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_.android\adbkey => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_.android\adbkey.pub => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\1.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\3.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\4.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\4_2.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\4_3.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\5.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\6.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\6_1.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\6_1_0.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\6_1_3.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\6_1_4.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\6_1_5.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\6_2.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\6_2_1.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\6_3.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\7.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\5ED16699\cfg\7_2.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\1.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\3.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\4.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\4_1.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\4_2.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\4_3.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\4_3_1.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\5.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\6.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\6_1.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\6_1_3.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\6_2.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_InstallMate\2A7E9FE5\cfg\6_2_1.ini => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_53a3e879a8d39904\{4820778D-AB0D-6D18-C316-52A6A0E1D507} => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_53a3e879a8d39904\{4820778D-AB0D-6D18-C316-52A6A0E1D507}.old => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_53a3e879a8d39904\{C1A27135-69EB-8D44-7358-34727DD7B820} => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_53a3e879a8d39904\{C1A27135-69EB-8D44-7358-34727DD7B820}.old => Moved successfully.
C:\FRST\Quarantine\C\zoek_backup\C_PROGRA~3_53a3e879a8d39904\{E32743D3-5789-6E4F-3998-06FB87C9214B} => Moved successfully.
C:\FRST\Quarantine\C\Windows\zoek-delete.exe.xBAD => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\BCD => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\DEFAULT => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\ERDNT.CON => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\ERDNT.EXE => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\ERDNT.INF => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\ERDNTDOS.LOC => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\ERDNTWIN.LOC => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\SAM => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\SECURITY => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\SOFTWARE => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\SYSTEM => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\Users\00000002\UsrClass.dat => Moved successfully.
C:\FRST\Quarantine\C\Windows\ERUNT\JRT\Users\00000001\ntuser.dat => Moved successfully.
C:\FRST\Quarantine\C\Users\bondasko\Desktop\Addition.rar.xBAD => Moved successfully.
C:\FRST\Quarantine\C\Users\bondasko\Desktop\adwcleaner.exe.xBAD => Moved successfully.
C:\FRST\Quarantine\C\Users\bondasko\Desktop\attach.txt.xBAD => Moved successfully.
C:\FRST\Quarantine\C\Users\bondasko\Desktop\dds.txt.xBAD => Moved successfully.
C:\FRST\Quarantine\C\Users\bondasko\Desktop\FRST.txt.xBAD => Moved successfully.
C:\FRST\Quarantine\C\Users\bondasko\Desktop\JRT.exe.xBAD => Moved successfully.
C:\FRST\Quarantine\C\Users\bondasko\Desktop\JRT.txt.xBAD => Moved successfully.
C:\FRST\Quarantine\C\Users\bondasko\Desktop\zoek.exe.xBAD => Moved successfully.
C:\FRST\Quarantine\C\rsit\info.txt => Moved successfully.
C:\FRST\Quarantine\C\rsit\log.txt => Moved successfully.
C:\FRST\Quarantine\C\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL.xBAD => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk\bootstrap.js => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk\chrome.manifest => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk\install.rdf => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk\chrome\content\ad.js => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk\chrome\content\global.js => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk\chrome\content\urlbox.css => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk\chrome\content\urlbox.js => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\urlbox@firefox.sk\chrome\content\urlbox.xul => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk\bootstrap.js => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk\chrome.manifest => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk\install.rdf => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk\chrome\content\ad.js => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk\chrome\content\global.js => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk\chrome\content\searchsuggest.css => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk\chrome\content\searchsuggest.js => Moved successfully.
C:\FRST\Quarantine\C\Program Files (x86)\Mozilla Firefox\extensions\searchsuggest@firefox.sk\chrome\content\searchsuggest.xul => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\AdwCleaner[R3].txt => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\AdwCleaner[S1].txt => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\Quarantine.txt => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Windows\Tasks\HQ-Video-Pro-1.4-enabler.job.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Windows\System32\Tasks\BrowserDefendert.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Windows\System32\Tasks\Express FilesUpdate.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Windows\System32\Tasks\HQ-Video-Pro-1.4-codedownloader.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Windows\System32\Tasks\HQ-Video-Pro-1.4-enabler.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Windows\System32\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome.manifest.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\distribution.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\install.rdf.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\foxcubService.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\master.cfg.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK\classmaker.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK\components.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK\isignals.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK\main.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK\object.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK\request.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK\signals.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\baseManager.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\config.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\create.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\email.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\install.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\logger.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\register.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\speedDial.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\bookmarks.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\consoleLog.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\fileLog.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\parentLog.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\preferenceMerger.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\searchModules.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\uninstall.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\windowLog.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\abstractAccount.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\checkCompute.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\imapAccount.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\imapReader.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\mailParser.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\offAccount.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\pop3Account.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\pop3Reader.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\scriptParser.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\seznamAccount.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email\sockedReader.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\baseObserver.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\baseResponseAnswer.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\crc32.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\encoding.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\fileReader.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\fileWriter.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\functions.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\FXBPrefObserver.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\logInterface.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\md5.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\parentheses.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\preferenceObserver.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\preferences.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\preferencesContainer.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\RPCInterface.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes\windowHelper.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\foxcub.jar.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\wrqjxxll@zzabkoqx.edu\bootstrap.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\wrqjxxll@zzabkoqx.edu\chrome.manifest.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\wrqjxxll@zzabkoqx.edu\install.rdf.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome.manifest.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\install.rdf.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\button1.png.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\button2.png.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\button3.png.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\button4.png.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\button5.png.vir => Moved successfully.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\crossrider_statusbar.png.vir" => Scheduled to move on reboot.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\icon128.png.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\icon16.png.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\icon24.png.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\icon48.png.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\panelarrow-up.png.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\popup.html.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\skin.css.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\update.css.vir => Moved successfully.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\locale\en-US\translations.dtd.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\manifest.xml.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins.json.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\userCode\background.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\userCode\extension.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\102_dealply_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\103_intext_5_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\104_jollywallet_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\119_similar_web_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\123_intext_adv_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\13_CrossriderAppUtils.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\14_CrossriderUtils.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\155_ibario_pops_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\16_FFAppAPIWrapper.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\177_crossriderDashboard.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\179_revizer_p_dynamic_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\17_jQuery.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\180_bpo_serp_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\182_openUrl.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\183_tabsWrapper.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\184_noproblemppc_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\190_pops_5_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\191_ciuvo_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\195_icm_convertmedia_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\1_base.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\207_dbWrapper.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\21_debug.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\220_icm_base_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\221_icm_downloads_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\223_imonomy_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\226_set_campaign_id_m.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\22_resources.js.vir" => Scheduled to move on reboot.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\231_revizer_ws_dynamic_2_m.js.vir not found.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\246_setup.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\28_initializer.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\47_resources_background.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\4_jquery_1_7_1.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\64_appApiMessage.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\72_appApiValidation.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\78_CrossriderInfo.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\7_hooks.js.vir" => Scheduled to move on reboot.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\91_monetizationLoader.js.js.vir not found.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\93_superfish_no_coupons_m.js.vir not found.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\98_omniCommands.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\9_search_engine_hook.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\defaults\preferences\prefs.js.vir" => Scheduled to move on reboot.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api.js.vir => Moved successfully.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\background.html.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\baseObject.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\browser.xul.vir" => Scheduled to move on reboot.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\dialog.js.vir => Moved successfully.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\ffCoreFilesIndex.txt.vir" => Scheduled to move on reboot.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\main.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\options.js.vir => Moved successfully.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\options.xul.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\platformVersion.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\search_dialog.xul.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\addressBarChangeObserver.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\console.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\consts.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\delegate.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\extensionDataStore.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\folderIOWrapper.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\httpObserver.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\IDBWrapper.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\installer.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\logFile.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\prefs.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\progressListenerObserver.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\registry.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\reloadObserver.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\reports.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\requestObject.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\searchSettings.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\uninstallObserver.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\updateManager.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\utils.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\xhr.js.vir" => Scheduled to move on reboot.

[bondasko]

Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\asyncDB.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\background.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\browserAction.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\contextMenu.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\dbManager.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\dom_bg.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\fileManager.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\firefox.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\firefoxNotifications.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\firefoxOmnibox.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\message.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\pageAction.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\request.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\tabs.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\webRequest.js.vir" => Scheduled to move on reboot.
Could not move "C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\windowsMessagingHandler.js.vir" => Scheduled to move on reboot.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\ea1wqvjq@dxeiyudeue.edu\bootstrap.js.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\ea1wqvjq@dxeiyudeue.edu\chrome.manifest.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\ea1wqvjq@dxeiyudeue.edu\install.rdf.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\ExpressFiles\blacklist.dat.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\52920.crx.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\52920.xpi.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\background.html.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bg.exe.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho.dll.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho64.dll.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-codedownloader.exe.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-enabler.exe.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-firefoxinstaller.exe.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4.ico.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\Installer.log.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\Uninstall.exe.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\HQ-Video-Pro-1.4\utils.exe.vir => Moved successfully.
C:\FRST\Quarantine\C\AdwCleaner\Backup\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\prefs_29_03_2014_11_16_26.js => Moved successfully.
C:\FRST\Logs\Addition.txt => Moved successfully.
C:\FRST\Logs\Addition_29-03-2014_11-40-15.txt => Moved successfully.
C:\FRST\Logs\ct => Moved successfully.
C:\FRST\Logs\FRST_29-03-2014_10-52-57.txt => Moved successfully.
C:\FRST\Logs\FRST_29-03-2014_11-40-27.txt => Moved successfully.
C:\FRST\Hives\BCD => Moved successfully.
C:\FRST\Hives\DEFAULT => Moved successfully.
C:\FRST\Hives\ERDNT.CON => Moved successfully.
C:\FRST\Hives\ERDNT.EXE => Moved successfully.
C:\FRST\Hives\ERDNT.INF => Moved successfully.
C:\FRST\Hives\ERDNTDOS.LOC => Moved successfully.
C:\FRST\Hives\ERDNTWIN.LOC => Moved successfully.
C:\FRST\Hives\SAM => Moved successfully.
C:\FRST\Hives\SECURITY => Moved successfully.
C:\FRST\Hives\SOFTWARE => Moved successfully.
C:\FRST\Hives\SYSTEM => Moved successfully.
C:\FRST\Hives\Users\00000002\UsrClass.dat => Moved successfully.
C:\FRST\Hives\Users\00000001\ntuser.dat => Moved successfully.
Could not move "C:\FRST" directory. => Scheduled to move on reboot.

C:\Users\bondasko\Desktop\Addition.txt => Moved successfully.
C:\Users\bondasko\Desktop\RSITx64.exe => Moved successfully.
C:\Users\bondasko\Desktop\dds.exe => Moved successfully.
C:\Windows\tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
"C:\Windows\tasks\HQ-Video-Pro-1.4-codedownloader.job" => File/Directory not found.
"C:\Windows\tasks\HQ-Video-Pro-1.4-enabler.job" => File/Directory not found.
"C:\Windows\tasks\HQ-Video-Pro-1.4-firefoxinstaller.job" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-03-30 08:21:20)<=

"C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_MarketPlace_27_580_2760e0b4-18bf-4506-b490-68675d529580_Appearance_634162503573491253_24x24.png" => File could not move.
"C:\FRST\Quarantine\C\zoek_backup\C_Users_bondasko_AppData_Roaming_Mozilla_Firefox_Profiles_lmldlavy.default_CT1750559\toolbarImages\http___storage_conduit_com_MarketPlace_81_28e_816147d9-d2b0-4dc7-b220-fb7ea1b1228e_Appearance_634726106907093173.png" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\skin\crossrider_statusbar.png.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\locale\en-US\translations.dtd.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\manifest.xml.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins.json.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\userCode\background.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\userCode\extension.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\102_dealply_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\103_intext_5_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\104_jollywallet_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\119_similar_web_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\123_intext_adv_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\13_CrossriderAppUtils.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\14_CrossriderUtils.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\155_ibario_pops_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\16_FFAppAPIWrapper.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\177_crossriderDashboard.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\179_revizer_p_dynamic_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\17_jQuery.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\180_bpo_serp_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\182_openUrl.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\183_tabsWrapper.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\184_noproblemppc_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\190_pops_5_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\191_ciuvo_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\195_icm_convertmedia_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\1_base.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\207_dbWrapper.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\21_debug.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\220_icm_base_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\221_icm_downloads_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\223_imonomy_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\226_set_campaign_id_m.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\22_resources.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\246_setup.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\28_initializer.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\47_resources_background.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\4_jquery_1_7_1.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\64_appApiMessage.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\72_appApiValidation.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\78_CrossriderInfo.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\7_hooks.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\98_omniCommands.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\extensionData\plugins\9_search_engine_hook.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\defaults\preferences\prefs.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\background.html.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\baseObject.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\browser.xul.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\ffCoreFilesIndex.txt.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\options.xul.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\platformVersion.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\search_dialog.xul.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\addressBarChangeObserver.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\console.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\consts.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\delegate.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\extensionDataStore.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\folderIOWrapper.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\httpObserver.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\IDBWrapper.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\installer.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\logFile.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\prefs.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\progressListenerObserver.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\registry.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\reloadObserver.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\reports.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\requestObject.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\searchSettings.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\uninstallObserver.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\updateManager.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\utils.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\core\xhr.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\asyncDB.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\background.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\browserAction.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\contextMenu.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\dbManager.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\dom_bg.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\fileManager.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\firefox.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\firefoxNotifications.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\firefoxOmnibox.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\message.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\pageAction.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\request.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\tabs.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\webRequest.js.vir" => File could not move.
"C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\bondasko\AppData\Roaming\Mozilla\Firefox\Profiles\lmldlavy.default\Extensions\f6b78e05-0819-4914-a9b1-53baf8fa3cd8@5f1a7616-ab87-4cb2-b56e-1218d848ce49.com\chrome\content\api\windowsMessagingHandler.js.vir" => File could not move.
"C:\FRST" => Directory could not move.

==== End of Fixlog ====

[vyosek]

Jak se chova PC??

[bondasko]

už včera to prestalo po oprave, som veľmi vďačný , ask je to všetko môžte lock a ešte raz vďaka za túúúto stránku a za Vašu pomoc .

[vyosek]

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

[bondasko]

Všetko prebehlo v poriadku, až pri spustení programu TFC mi raz padol systém, druhykrát zamrzol a až pri tretom spustení všetko vyčistilo.