Kontrola logu. 4jádro jede na 50 % v nečinosti

Zpráva

taurus255 · #1 Příspěvek od **taurus255** » 07 dub 2014 10:43

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Michele (administrator) on MICHELE-PC on 07-04-2014 11:43:24
Running from C:\Users\Michele\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
() c:\programdata\softwarehouse\gs.enabler\GS.Enabler.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
(http://yourfiledownloader.com) C:\Program Files (x86)\YourFileDownloader Updater\YourFileUpdater.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 4\Integrator.exe
() C:\Users\Michele\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Michele\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
() C:\Program Files (x86)\VLC Player GPU+\GPULog.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel Corporation) C:\Windows\system32\IProsetMonitor.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(ePlayWorks, Inc.) C:\Program Files (x86)\ePlayWorks\AVStreamer\PoSrv.exe
(ePlayWorks Co., Ltd.) C:\Program Files (x86)\ePlayWorks\AVStreamer\PoAgent.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\GreyGray\updateGreyGray.exe
() C:\Program Files (x86)\GreyGray\bin\utilGreyGray.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AVG) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
() C:\Windows\explorer_1.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Users\Michele\Desktop\Stahovani\RSITx64.exe
(forum.viry.cz) C:\Users\Michele\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11545192 2010-11-02] (Realtek Semiconductor)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1356240 2013-07-18] (Microsoft Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [606024 2013-09-19] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [GPULoader] - C:\Program Files (x86)\VLC Player GPU+\GPULog.exe [1303776 2013-12-13] ()
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-02] (Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-1048441034-508376767-185308242-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912 2011-08-02] (DT Soft Ltd)
HKU\S-1-5-21-1048441034-508376767-185308242-1000\...\Run: [uTorrent] - C:\Program Files (x86)\uTorrent\uTorrent.exe [641400 2011-09-21] (BitTorrent, Inc.)
HKU\S-1-5-21-1048441034-508376767-185308242-1000\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-1048441034-508376767-185308242-1000\...\Run: [cz.seznam.software.autoupdate] - C:\Users\Michele\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1048441034-508376767-185308242-1000\...\Run: [cz.seznam.software.szndesktop] - C:\Users\Michele\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-1048441034-508376767-185308242-1000\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Michele\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-1048441034-508376767-185308242-1000\...\Run: [test] - C:\Windows\bat_starter.exe [9216 2014-01-09] ()
HKU\S-1-5-21-1048441034-508376767-185308242-1000\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2011-03-09] (AMD)
HKU\S-1-5-21-1048441034-508376767-185308242-1000\...\MountPoints2: {6d004ecd-dfda-11e0-a7f3-f46d04b01055} - F:\AutoRunCD.exe
AppInit_DLLs: C:\PROGRA~3\ASSIST~1\ASSIST~2.DLL => C:\ProgramData\Assistant\Assistant_x64.dll [4146688 2014-04-02] ()
AppInit_DLLs-x32: c:\progra~3\assist~1\assist~1.dll => C:\ProgramData\Assistant\Assistant.dll [4288512 2014-04-02] ()
IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO\utorrent.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.ph ... &ch_id=osd
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.glarysoft.com/?src=iehome
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=16194
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.glarysoft.com/?src=iehome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchsunmy.info/?pid= ... Z&unqvl=45
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://www.searchqu.com/web?src=ieb&app ... earchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKLM-x32 - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://www.searchqu.com/web?src=ieb&app ... earchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchsunmy.info/?l=1& ... Z&unqvl=45
SearchScopes: HKLM-x32 - {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = http://isearch.glarysoft.com/?q={search ... c=iesearch
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?sr ... 6D04B01055}
SearchScopes: HKCU - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchsunmy.info/?l=1& ... Z&unqvl=45
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.dalesearch.com/?q={searchTer ... 0&tsp=4998
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKCU - {1FFD0CAD-D866-4A42-BA69-A62A8958AE5B} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKCU - {3446F9BD-6A95-4438-9E6F-209658891CD9} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKCU - {34FA5B75-F08E-44E4-A1CA-5905A82CB942} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
SearchScopes: HKCU - {53E89ED7-103A-408B-917E-D1CD1BEBC935} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://search.icq.com/search/results.ph ... &ch_id=osd
SearchScopes: HKCU - {7D82393D-1EDA-42F5-8D39-3F12CE0CCB7E} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://www.searchqu.com/web?src=ieb&app ... earchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://dts.search-results.com/sr?src=ie ... earchTerms}
SearchScopes: HKCU - {ABA7EDE6-AE52-4A62-99FD-83E7E0F8A864} URL = http://websearch.ask.com/redirect?clien ... B7C818EF53
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchsunmy.info/?l=1& ... Z&unqvl=45
SearchScopes: HKCU - {BE9654C9-9D79-42ec-B55A-3CAEB12DBF58} URL = http://www.icq.com/search/results.php?q ... &ch_id=osd
SearchScopes: HKCU - {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = http://isearch.glarysoft.com/?q={search ... c=iesearch
SearchScopes: HKCU - {CAF65FCF-44DA-4768-90F0-27836F3ABD39} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKCU - {D9630D55-49A8-4AB4-8F63-678EC1FE5871} URL = http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKCU - {DFFEFC86-6459-4123-976E-96C468BBD637} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?sr ... 6D04B01055}
SearchScopes: HKCU - {EF338EFB-2DA9-4C71-847A-2F353C46F5F2} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKCU - {F05D1B44-CC7F-4894-A49C-C7300007F5DC} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
BHO: Happye2Save - {269A65E1-3D43-A06D-89B8-1F28B355D95D} - C:\ProgramData\Happye2Save\iMv4V.x64.dll ()
BHO: greuatsiaveer - {5FA163A7-5F31-C010-258A-143F7CE43059} - C:\Program Files (x86)\greuatsiaveer\oUWo.x64.dll ()
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: UTubeNoAdS - {B3D65F6A-6D79-D8CA-D69E-FFB86EBEA39E} - C:\ProgramData\UTubeNoAdS\DWzLLuplk.x64.dll ()
BHO: greatsavErr - {CB0C26B4-AB22-53C6-8C14-4EF536239BD5} - C:\Program Files (x86)\greatsavErr\4rhB0.x64.dll ()
BHO: SNT - {E3B334F0-C0E9-F435-C8E6-736A9C456A93} - C:\Program Files (x86)\SNT\H7oJ8U5nA.x64.dll ()
BHO: YoutubeAdblocker - {F39CAA4B-0BAB-0848-6C18-F45661AA438F} - C:\Program Files (x86)\YoutubeAdblocker\_lF26PGNg.x64.dll ()
BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No File
BHO: SNT - {FBB75A19-06D2-3A41-7AEF-0D33EE62360E} - C:\Program Files (x86)\SNT\bqRmxu.x64.dll ()
BHO-x32: Happye2Save - {269A65E1-3D43-A06D-89B8-1F28B355D95D} - C:\ProgramData\Happye2Save\iMv4V.dll ()
BHO-x32: GreyGray - {5cb21133-55d7-4b7a-9c69-4352006c5d37} - C:\Program Files (x86)\GreyGray\GreyGrayBHO.dll (GreyGray)
BHO-x32: GreyGray - {ae60e6ed-49dd-4099-8b5e-386a4908d5d5} - C:\Program Files (x86)\GreyGray\GreyGrayBHO.dll (GreyGray)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Media Watch - {c36efb44-81fd-476e-b8a2-428f31d71a00} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home905\ie\MediaWatchV1home905.dll ()
Toolbar: HKLM - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
Toolbar: HKLM - No Name - !{95B7759C-8C7F-4BF1-B163-73684A933233} - No File
Toolbar: HKLM-x32 - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - No File
Toolbar: HKLM-x32 - No Name - !{95B7759C-8C7F-4BF1-B163-73684A933233} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 85.193.0.8 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220
FF user.js: detected! => C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\user.js
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @eximion.com/KalydoPlayer - C:\Users\Michele\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll (Eximion B.V.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Michele\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Battlefield Heroes Updater - C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\Extensions\battlefieldheroespatcher@ea.com [2014-01-23]
FF Extension: Battlefield Play4Free - C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\Extensions\battlefieldplay4free@ea.com [2014-04-04]
FF Extension: YouTube Unblocker - C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\Extensions\youtubeunblocker@unblocker.yt [2014-02-09]
FF Extension: Mark Ads Sites In Search - C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\Extensions\jid1-LGBwZ7tVjRcfIg@jetpack.xpi [2014-01-12]
FF Extension: YouTube High Definition - C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-02-09]
FF Extension: Adblock Plus - C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-15]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-03-03]
FF HKLM-x32\...\Firefox\Extensions: [ext@WebexpEnhancedV1alpha5514.net] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha5514\ff
FF Extension: Webexp Enhanced - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha5514\ff [2014-01-03]
FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta842.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta842\ff
FF Extension: Video Player - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta842\ff [2014-01-10]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaPlayerV1alpha2.net] - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha2\ff
FF Extension: Media Player - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha2\ff [2014-01-30]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewerV1alpha21.net] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff
FF Extension: Media Viewer - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff [2014-02-23]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha2305.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff [2014-02-28]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha81.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff [2014-03-15]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home905.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home905\ff
FF Extension: Media Watch - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home905\ff [2014-03-23]

Chrome:
=======
CHR HomePage: https://www.google.cz/
CHR Extension: (Media Viewer) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdgpfjiojofoleepldloihlojgldfand [2014-02-23]
CHR Extension: (Media Watch) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\eibjmljhlcpainepmgedlnppghmigain [2014-03-23]
CHR Extension: (AdBlock Premium) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj [2014-01-10]
CHR Extension: (YTTBoOokMeark) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpdjlppcghhcgipcboedhebbnapddajc [2014-01-09]
CHR Extension: (UKON00C4008CENA PODPORA: Virtu00C300A1ln00C300AD kl00C300A1vesnice (od spole00C4008Dnosti Google)) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpphfcjpaldmedbbomcdhgonmhjngfig [2014-01-10]
CHR Extension: (Fix Cleaner) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\njeicbdoddkeedpdhlcjncealfhflhml [2014-01-10]
CHR Extension: (Pen011B017Eenka Google) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (UTubeNoAdS) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\obikpplhmpmfnmndmbegcmcnfpcnnhbn [2014-01-31]
CHR Extension: (Battlefield Play4Free) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2014-01-11]
CHR Extension: (Media View) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcakkpdafbmmjmicdmmjpfcbdcjfhegb [2014-03-15]
CHR HKLM-x32\...\Chrome\Extension: [cdgpfjiojofoleepldloihlojgldfand] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ch\MediaViewerV1alpha21.crx [2014-02-23]
CHR HKLM-x32\...\Chrome\Extension: [ceiapeodjfjcbfkfkfbdpgbhbgiidjdb] - C:\Program Files (x86)\GreyGray\ceiapeodjfjcbfkfkfbdpgbhbgiidjdb.crx [2014-02-28]
CHR HKLM-x32\...\Chrome\Extension: [dklmmacmhbidolfcijdhknacmdimgfah] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta842\ch\VideoPlayerV3beta842.crx [2014-01-08]
CHR HKLM-x32\...\Chrome\Extension: [eibjmljhlcpainepmgedlnppghmigain] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home905\ch\MediaWatchV1home905.crx [2014-03-20]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]
CHR HKLM-x32\...\Chrome\Extension: [nkcakejdghnaocjokiohjbglgngidgbg] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha5514\ch\WebexpEnhancedV1alpha5514.crx [2013-12-20]
CHR HKLM-x32\...\Chrome\Extension: [omhceofeplgolgifooncnecciillkofc] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ch\MediaViewV1alpha2305.crx [2014-02-26]
CHR HKLM-x32\...\Chrome\Extension: [pcakkpdafbmmjmicdmmjpfcbdcjfhegb] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ch\MediaViewV1alpha81.crx [2014-02-26]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 699fd52f; C:\ProgramData\Assistant\AssistantSvc.dll [177488 2014-04-02] ()
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [918144 2010-11-03] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-09-19] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-09-19] (BlueStack Systems, Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2013-07-18] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-07-18] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-11-02] ()
R2 PoSrv1; C:\Program Files (x86)\ePlayWorks\AVStreamer\PoSrv.exe [148224 2013-02-07] (ePlayWorks, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2103096 2013-12-18] (TuneUp Software)
R2 Update GreyGray; C:\Program Files (x86)\GreyGray\updateGreyGray.exe [350488 2014-04-04] ()
R2 Util GreyGray; C:\Program Files (x86)\GreyGray\bin\utilGreyGray.exe [350488 2014-04-04] ()

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
S3 BlueletAudio; No ImagePath
S3 BlueletSCOAudio; No ImagePath
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17088 2013-12-23] (Glarysoft Ltd)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-09-19] (BlueStack Systems)
S3 BT; No ImagePath
S3 Btcsrusb; No ImagePath
S0 BTHidEnum; No ImagePath
S0 BTHidMgr; No ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [270912 2012-02-15] (DT Soft Ltd)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2014-01-23] ()
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-02-12] (Anchorfree Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-08-21] (TuneUp Software)
S3 VComm; No ImagePath
S3 VcommMgr; No ImagePath
S3 WinRing0_1_2_0; No ImagePath
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-04-07 11:43 - 2014-04-07 11:43 - 00027888 _____ () C:\Users\Michele\Desktop\FRST.txt
2014-04-07 11:43 - 2014-04-07 11:43 - 00000000 ____D () C:\FRST
2014-04-07 11:42 - 2014-04-07 11:42 - 00112640 _____ (forum.viry.cz) C:\Users\Michele\Desktop\FRSTLauncher.exe
2014-04-07 11:41 - 2014-04-07 11:41 - 02157056 _____ (Farbar) C:\Users\Michele\Desktop\FRST64.exe
2014-04-07 11:39 - 2014-04-07 11:39 - 00832273 _____ () C:\Users\Michele\Desktop\RSITx64.exe
2014-04-07 11:39 - 2014-04-07 11:39 - 00000000 ____D () C:\rsit
2014-04-07 11:39 - 2014-04-07 11:39 - 00000000 ____D () C:\Program Files\trend micro
2014-04-06 18:01 - 2014-04-06 18:01 - 00000000 ____D () C:\Users\Michele\AppData\Local\Macromedia
2014-04-06 17:37 - 2014-04-06 17:37 - 00000000 ____D () C:\Download
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\ATI
2014-04-06 17:29 - 2014-04-06 17:29 - 00003524 _____ () C:\Windows\PFRO.log
2014-04-06 17:29 - 2014-04-06 17:29 - 00000000 ____D () C:\Users\Michele\AppData\Local\uTorrent
2014-04-06 17:18 - 2014-04-07 09:08 - 00000280 _____ () C:\Windows\setupact.log
2014-04-06 17:18 - 2014-04-06 17:18 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-06 17:17 - 2013-12-18 11:01 - 00043320 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-04-06 17:17 - 2013-12-18 11:01 - 00036152 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-04-06 17:16 - 2014-04-06 17:16 - 00002220 _____ () C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk
2014-04-06 17:16 - 2014-04-06 17:16 - 00002194 _____ () C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-04-06 17:16 - 2013-12-18 11:01 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-04-06 17:16 - 2013-12-18 11:01 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-04-06 17:16 - 2013-12-18 11:01 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-04-06 17:15 - 2014-04-06 17:17 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-04-06 17:13 - 2014-04-06 17:23 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-04-05 19:38 - 2014-04-05 19:38 - 00890430 _____ (PDAwin) C:\Users\Michele\Downloads\TVremote57.exe
2014-04-01 07:07 - 2014-04-01 07:07 - 00003140 _____ () C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2014-04-01 07:07 - 2014-04-01 07:07 - 00000000 ____D () C:\Program Files (x86)\YourFileDownloader Updater
2014-03-31 18:31 - 2014-03-31 18:31 - 00000000 ____D () C:\Users\Michele\Desktop\Rakim - The Archive Live Lost And Found (2008)
2014-03-29 19:50 - 2014-01-23 05:21 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-03-29 19:50 - 2014-01-23 05:21 - 00108800 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2014-03-29 15:44 - 2014-03-29 15:45 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\DownloadManager
2014-03-29 15:13 - 2014-03-29 15:46 - 00000000 ____D () C:\Users\Michele\AppData\Local\SOTI
2014-03-29 01:16 - 2014-04-03 18:41 - 00000000 ____D () C:\Users\Michele\Desktop\nože
2014-03-24 18:13 - 2014-03-24 18:13 - 00017232 ____H () C:\Users\Michele\Desktop\Asterix.E.I.Vichinghi.iTALiAN.DVDRip.XviD-A-TeaM.O.R.AVI.mta
2014-03-24 18:13 - 2014-03-24 18:13 - 00014637 ____H () C:\Users\Michele\Desktop\ruac3.AVI.mta
2014-03-23 21:19 - 2014-04-02 15:25 - 00000000 ____D () C:\ProgramData\Assistant
2014-03-23 00:18 - 2014-03-23 00:18 - 00000000 ____D () C:\Program Files (x86)\MediaWatchV1
2014-03-09 15:52 - 2014-03-09 15:52 - 00002036 _____ () C:\Users\Public\Desktop\Samsung AllShare.lnk
2014-03-09 15:52 - 2014-03-09 15:52 - 00000000 ____D () C:\AllShare

==================== One Month Modified Files and Folders =======

2014-04-07 11:43 - 2014-04-07 11:43 - 00027888 _____ () C:\Users\Michele\Desktop\FRST.txt
2014-04-07 11:43 - 2014-04-07 11:43 - 00000000 ____D () C:\FRST
2014-04-07 11:42 - 2014-04-07 11:42 - 00112640 _____ (forum.viry.cz) C:\Users\Michele\Desktop\FRSTLauncher.exe
2014-04-07 11:42 - 2011-09-15 20:45 - 00000000 ___RD () C:\Users\Michele\Desktop\Stahovani
2014-04-07 11:41 - 2014-04-07 11:41 - 02157056 _____ (Farbar) C:\Users\Michele\Desktop\FRST64.exe
2014-04-07 11:39 - 2014-04-07 11:39 - 00832273 _____ () C:\Users\Michele\Desktop\RSITx64.exe
2014-04-07 11:39 - 2014-04-07 11:39 - 00000000 ____D () C:\rsit
2014-04-07 11:39 - 2014-04-07 11:39 - 00000000 ____D () C:\Program Files\trend micro
2014-04-07 10:56 - 2011-09-15 22:42 - 00000954 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-07 10:51 - 2012-09-08 14:26 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-07 09:16 - 2009-07-14 06:45 - 00019712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-07 09:16 - 2009-07-14 06:45 - 00019712 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-07 09:13 - 2013-12-18 16:38 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\Seznam.cz
2014-04-07 09:13 - 2011-09-16 00:40 - 02046439 _____ () C:\Windows\WindowsUpdate.log
2014-04-07 09:10 - 2013-12-18 16:39 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\newnext.me
2014-04-07 09:09 - 2013-12-29 23:52 - 00000332 _____ () C:\Windows\Tasks\GlaryInitialize 4.job
2014-04-07 09:09 - 2013-12-29 23:52 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 4
2014-04-07 09:08 - 2014-04-06 17:18 - 00000280 _____ () C:\Windows\setupact.log
2014-04-07 09:08 - 2014-01-09 21:46 - 00000464 ____H () C:\Windows\Tasks\GS.Enabler-S-926685765.job
2014-04-07 09:08 - 2013-12-18 16:37 - 00000364 _____ () C:\Windows\Tasks\AmiUpdXp.job
2014-04-07 09:08 - 2011-09-15 22:42 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-07 09:08 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-06 20:53 - 2011-09-15 21:50 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\Skype
2014-04-06 19:30 - 2009-07-14 17:18 - 03130370 _____ () C:\Windows\system32\perfh005.dat
2014-04-06 19:30 - 2009-07-14 17:18 - 00976700 _____ () C:\Windows\system32\perfc005.dat
2014-04-06 19:30 - 2009-07-14 07:13 - 00006216 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-06 18:01 - 2014-04-06 18:01 - 00000000 ____D () C:\Users\Michele\AppData\Local\Macromedia
2014-04-06 18:00 - 2011-09-20 23:48 - 01032256 _____ () C:\Windows\PE_Rom.dll
2014-04-06 17:44 - 2009-07-14 07:08 - 00032548 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-06 17:37 - 2014-04-06 17:37 - 00000000 ____D () C:\Download
2014-04-06 17:37 - 2011-09-23 01:43 - 00000000 ____D () C:\ProgramData\Nero
2014-04-06 17:35 - 2011-09-16 00:18 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\uTorrent
2014-04-06 17:30 - 2014-04-06 17:30 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\ATI
2014-04-06 17:29 - 2014-04-06 17:29 - 00003524 _____ () C:\Windows\PFRO.log
2014-04-06 17:29 - 2014-04-06 17:29 - 00000000 ____D () C:\Users\Michele\AppData\Local\uTorrent
2014-04-06 17:29 - 2011-09-15 22:42 - 00000000 ____D () C:\Program Files (x86)\Google
2014-04-06 17:24 - 2012-05-07 19:47 - 00003694 _____ () C:\Windows\System32\Tasks\Adobe online update program
2014-04-06 17:24 - 2011-09-22 02:02 - 00003704 _____ () C:\Windows\System32\Tasks\Java Update Scheduler
2014-04-06 17:23 - 2014-04-06 17:13 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-04-06 17:23 - 2013-08-12 20:30 - 00000000 __SHD () C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2014-04-06 17:23 - 2012-10-10 10:03 - 00000000 __SHD () C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2014-04-06 17:23 - 2012-09-01 18:24 - 00000000 __SHD () C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-04-06 17:23 - 2011-09-22 01:35 - 00000000 __SHD () C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2014-04-06 17:23 - 2011-09-17 01:59 - 00000000 ____D () C:\Users\Michele\AppData\Local\Downloaded Installations
2014-04-06 17:18 - 2014-04-06 17:18 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-06 17:18 - 2011-09-22 01:35 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-04-06 17:17 - 2014-04-06 17:15 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-04-06 17:17 - 2011-09-16 01:38 - 00003986 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DD2C6B39-18CA-49A3-85ED-0DDFCC04CB3D}
2014-04-06 17:16 - 2014-04-06 17:16 - 00002220 _____ () C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk
2014-04-06 17:16 - 2014-04-06 17:16 - 00002194 _____ () C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-04-06 17:16 - 2011-09-22 01:35 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\TuneUp Software
2014-04-06 17:16 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-04-06 17:11 - 2011-09-15 22:42 - 00000000 ____D () C:\Users\Michele\AppData\Local\Google
2014-04-06 17:09 - 2011-09-15 20:21 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\Mozilla
2014-04-06 17:08 - 2013-12-18 16:39 - 00000000 ____D () C:\Users\Michele\AppData\Local\Mobogenie
2014-04-06 17:08 - 2013-10-08 16:21 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\PDF Software
2014-04-06 17:08 - 2013-09-20 15:33 - 00000000 ____D () C:\Users\Michele\AppData\Local\Urban Trial Freestyle
2014-04-06 17:08 - 2013-06-25 18:37 - 00000000 ____D () C:\ADCDA2
2014-04-06 17:08 - 2013-03-12 20:42 - 00000000 ____D () C:\Users\Michele\AppData\Local\JustRemotePhone
2014-04-06 17:08 - 2013-01-17 22:00 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\FreeCDRipper
2014-04-06 17:08 - 2012-11-14 02:43 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\wargaming.net
2014-04-06 17:08 - 2012-11-11 00:36 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\ArcSoft
2014-04-06 17:08 - 2012-11-06 20:15 - 00000000 ____D () C:\ProgramData\Origin
2014-04-06 17:08 - 2012-09-14 21:21 - 00000000 ____D () C:\Users\Michele\Documents\The KMPlayer
2014-04-06 17:08 - 2012-07-14 21:14 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-04-06 17:08 - 2012-07-01 00:45 - 00000000 ____D () C:\Users\Michele\AppData\Local\Facebook
2014-04-06 17:08 - 2012-06-04 00:13 - 00000000 ____D () C:\Users\Michele\Documents\Bluetooth
2014-04-06 17:08 - 2012-04-29 21:58 - 00000000 ____D () C:\Users\Michele\AppData\Local\PMB Files
2014-04-06 17:08 - 2012-02-15 17:43 - 00000000 ____D () C:\Users\Michele\AppData\Local\SKIDROW
2014-04-06 17:08 - 2012-01-07 01:02 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer
2014-04-06 17:08 - 2011-10-21 19:54 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-04-06 17:08 - 2011-10-18 18:05 - 00000000 ____D () C:\ProgramData\InstallMate
2014-04-06 17:08 - 2011-09-17 02:00 - 00000000 ____D () C:\Users\Michele\AppData\Local\Sony
2014-04-06 17:08 - 2011-09-15 20:12 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\Adobe
2014-04-06 17:08 - 2011-09-15 20:12 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-06 17:08 - 2011-09-15 06:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-06 17:08 - 2011-09-15 06:15 - 00000000 ____D () C:\Users\Michele
2014-04-06 17:08 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-04-05 19:38 - 2014-04-05 19:38 - 00890430 _____ (PDAwin) C:\Users\Michele\Downloads\TVremote57.exe
2014-04-03 18:41 - 2014-03-29 01:16 - 00000000 ____D () C:\Users\Michele\Desktop\nože
2014-04-02 15:25 - 2014-03-23 21:19 - 00000000 ____D () C:\ProgramData\Assistant
2014-04-01 17:41 - 2013-12-14 19:26 - 00352768 ___SH () C:\Users\Michele\Desktop\Thumbs.db
2014-04-01 07:07 - 2014-04-01 07:07 - 00003140 _____ () C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2014-04-01 07:07 - 2014-04-01 07:07 - 00000000 ____D () C:\Program Files (x86)\YourFileDownloader Updater
2014-03-31 18:31 - 2014-03-31 18:31 - 00000000 ____D () C:\Users\Michele\Desktop\Rakim - The Archive Live Lost And Found (2008)
2014-03-29 20:22 - 2013-01-20 18:59 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\Samsung
2014-03-29 20:22 - 2013-01-20 18:59 - 00000000 ____D () C:\ProgramData\Samsung
2014-03-29 15:46 - 2014-03-29 15:13 - 00000000 ____D () C:\Users\Michele\AppData\Local\SOTI
2014-03-29 15:45 - 2014-03-29 15:44 - 00000000 ____D () C:\Users\Michele\AppData\Roaming\DownloadManager
2014-03-29 15:38 - 2014-01-12 02:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-29 15:38 - 2013-07-07 00:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-24 18:13 - 2014-03-24 18:13 - 00017232 ____H () C:\Users\Michele\Desktop\Asterix.E.I.Vichinghi.iTALiAN.DVDRip.XviD-A-TeaM.O.R.AVI.mta
2014-03-24 18:13 - 2014-03-24 18:13 - 00014637 ____H () C:\Users\Michele\Desktop\ruac3.AVI.mta
2014-03-23 00:18 - 2014-03-23 00:18 - 00000000 ____D () C:\Program Files (x86)\MediaWatchV1
2014-03-23 00:18 - 2014-01-30 14:30 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-03-15 19:18 - 2014-02-28 11:16 - 00000000 ____D () C:\Program Files (x86)\MediaViewV1
2014-03-15 15:51 - 2011-09-15 21:50 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-12 16:51 - 2012-09-08 14:26 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 16:51 - 2012-09-08 14:26 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-12 16:51 - 2011-09-15 22:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-09 15:52 - 2014-03-09 15:52 - 00002036 _____ () C:\Users\Public\Desktop\Samsung AllShare.lnk
2014-03-09 15:52 - 2014-03-09 15:52 - 00000000 ____D () C:\AllShare
2014-03-09 15:51 - 2013-01-20 18:59 - 00000000 ____D () C:\Program Files (x86)\Samsung

Some content of TEMP:
====================
C:\Users\Michele\AppData\Local\Temp\~63.exe
C:\Users\Michele\AppData\Local\Temp\~80B8.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-04-06 13:02

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Nový svazek) (Fixed) (Total:149.05 GB) (Free:44.14 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: () (Fixed) (Total:233.76 GB) (Free:51.14 GB) NTFS

Available physical RAM: 13438.12 MB
Total physical RAM: 16360.97 MB
Percentage of memory in use: 17%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 234 GB) (Disk ID: EDC3EDC3)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: E07FE07F)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Michele\AppData\Local\SwvUpdater\Updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\GlaryInitialize 4.job => C:\Program Files (x86)\Glary Utilities 4\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GS.Enabler-S-926685765.job => c:\programdata\softwarehouse\gs.enabler\GS.Enabler.exe <==== ATTENTION

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Michele\Desktop" je 13973 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#2 Příspěvek od **Márty84** » 07 dub 2014 16:38

Zdravim

taurus255 píše:Velikost slozky "C:\Users\Michele\Desktop" je 13973 MB.

Vycistete plochu. Nemela by mit vic nez 200 - 300 MB.

Pozor na pouzivani TuneUp. Dokaze to nadelat poradnou paseku

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

taurus255 · #3 Příspěvek od **taurus255** » 07 dub 2014 22:12

# AdwCleaner v3.023 - Report created 07/04/2014 at 23:12:59
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Michele - MICHELE-PC
# Running from : C:\Users\Michele\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\SNT
Folder Deleted : C:\ProgramData\SoftWarehouse
Folder Deleted : C:\ProgramData\YoutubeAdblocker
Folder Deleted : C:\ProgramData\greatsavErr
[/!\] Not Deleted ( Junction ) : C:\ProgramData\greatsavErr
Folder Deleted : C:\ProgramData\greuatsiaveer
[/!\] Not Deleted ( Junction ) : C:\ProgramData\greuatsiaveer
[/!\] Not Deleted ( Junction ) : C:\ProgramData\YoutubeAdblocker
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Deleted : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Deleted : C:\Program Files (x86)\GreyGray
Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar
Folder Deleted : C:\Program Files (x86)\iLivid
Folder Deleted : C:\Program Files (x86)\MediaPlayerV1
Folder Deleted : C:\Program Files (x86)\MediaWatchV1
Folder Deleted : C:\Program Files (x86)\myfree codec
Folder Deleted : C:\Program Files (x86)\SNT
Folder Deleted : C:\Program Files (x86)\VideoPlayerV3
Folder Deleted : C:\Program Files (x86)\WebexpEnhancedV1
Folder Deleted : C:\Program Files (x86)\YoutubeAdblocker
Folder Deleted : C:\Program Files (x86)\greatsavErr
Folder Deleted : C:\Program Files (x86)\greuatsiaveer
Folder Deleted : C:\Users\Michele\AppData\Local\genienext
Folder Deleted : C:\Users\Michele\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\Michele\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Michele\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Michele\AppData\Local\torch
Folder Deleted : C:\Users\Michele\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Michele\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\Michele\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Michele\Documents\Optimizer Pro
Folder Deleted : C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\Extensions\battlefieldheroespatcher@ea.com
Folder Deleted : C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\Extensions\battlefieldplay4free@ea.com
Folder Deleted : C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\Extensions\youtubeunblocker@unblocker.yt
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\user.js
File Deleted : C:\Windows\Tasks\AmiUpdXp.job
File Deleted : C:\Windows\System32\Tasks\AmiUpdXp
File Deleted : C:\Windows\System32\Tasks\Your File Updater

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BandooCore.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Key Deleted : HKLM\SOFTWARE\Classes\BandooCore.BandooCore
Key Deleted : HKLM\SOFTWARE\Classes\BandooCore.BandooCore.1
Key Deleted : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr
Key Deleted : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr.1
Key Deleted : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr
Key Deleted : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr.1
Key Deleted : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr
Key Deleted : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\LiveSupport_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\livesupport_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Searchqu Toolbar uninstall_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Searchqu Toolbar uninstall_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluestacks-app-player_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bluestacks-app-player_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_genymotion_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_genymotion_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_nero-kwik-burn_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_nero-kwik-burn_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_pcsx2_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_pcsx2_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_samsung-kies_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_samsung-kies_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_youwave_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_youwave_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1301A8A5-3DFB-4731-A162-B357D00C9644}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{33CB14BC-58BB-4B3A-9877-7946A3F41BAE}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27F69C85-64E1-43CE-98B5-3C9F22FB408E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B543EF05-9758-464E-9F37-4C28525B4A4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BB76A90B-2B4C-4378-8506-9A2B6E16943C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C3AB94A4-BFD0-4BBA-A331-DE504F07D2DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6F43FA77-C18F-4D0C-9C7E-958876FE2061}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DF948646-8BF4-450E-A059-CF8A4E0FE2BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E96B49B0-E11F-48FC-984A-EEC29A4F57E1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32D47EA5-9473-4CAD-805D-9999F15D5AE2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7AF277D-1466-4A7B-93AF-B043984A5671}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{81F88FCF-3CB0-4D17-84E1-9A6CEDEE192A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6087829B-114F-42A1-A72B-B4AEDCEA4E5B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4E1D-BDD0-1E9C9B7799CC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F000001-DB8E-F89C-2FEC-49BF726F8C12}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4FDE-B055-AE7B0F4CF080}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BE9654C9-9D79-42EC-B55A-3CAEB12DBF58}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6F43FA77-C18F-4D0C-9C7E-958876FE2061}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DF948646-8BF4-450E-A059-CF8A4E0FE2BE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E96B49B0-E11F-48FC-984A-EEC29A4F57E1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4E1D-BDD0-1E9C9B7799CC}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F000001-DB8E-F89C-2FEC-49BF726F8C12}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4FDE-B055-AE7B0F4CF080}
Key Deleted : HKCU\Software\anchorfree
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\Default Tab
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\YourFileDownloader
Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKCU\Software\AppDataLow\Software\searchqutoolbar
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Bandoo
Key Deleted : HKLM\Software\Default Tab
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\Myfree Codec
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\YourFileDownloader
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CA41BB14-E67B-1653-C57B-5CA99418A866}
Key Deleted : [x64] HKLM\SOFTWARE\DataMngr

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7601.17514

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v28.0 (cs)

[ File : C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\su5sw63i.default-1389550717220\prefs.js ]

Line Deleted : user_pref("browser.newtabpage.pinned", "[{\"url\":\"hxxp://battlefield.play4free.com/en/\",\"title\":\"Battlefield Play4Free - Free FPS Online Action!\"},{\"url\":\"hxxp://www.noze-nuz.com/\",\"title\[...]
Line Deleted : user_pref("extensions.96P_Npvkhr3.scode", "(function(){try{var url=window.self.location.href;if(url.indexOf(\"acebook\")>-1||url.indexOf(\"txtlnkusaolp00000800\")>-1||url.indexOf(\"sumorobo\")>-1||url[...]
Line Deleted : user_pref("extensions.J9CGQKe.scode", "(function(){try{var url=window.self.location.href;if(url.indexOf(\"acebook\")>-1||url.indexOf(\"txtlnkusaolp00000800\")>-1||url.indexOf(\"sumorobo\")>-1||url.ind[...]

-\\ Google Chrome v32.0.1700.102

[ File : C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [26105 octets] - [07/04/2014 23:09:17]
AdwCleaner[S0].txt - [22995 octets] - [07/04/2014 23:12:59]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [23056 octets] ##########

#4 Příspěvek od **Márty84** » 08 dub 2014 06:12

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

taurus255 · #5 Příspěvek od **taurus255** » 08 dub 2014 08:01

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8.4.2014
Scan Time: 9:06:29
Logfile: log.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.08.01
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Michele

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 249714
Time Elapsed: 7 min, 40 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 55
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{269A65E1-3D43-A06D-89B8-1F28B355D95D}, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{269A65E1-3D43-A06D-89B8-1F28B355D95D}, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{269A65E1-3D43-A06D-89B8-1F28B355D95D}, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\HaPpY2Savee.HaPpY2Savee, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\HaPpY2Savee.HaPpY2Savee.2.5, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\HaPpY2Savee.HaPpY2Savee, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\HaPpY2Savee.HaPpY2Savee.2.5, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{269A65E1-3D43-A06D-89B8-1F28B355D95D}, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{269A65E1-3D43-A06D-89B8-1F28B355D95D}, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{269A65E1-3D43-A06D-89B8-1F28B355D95D}, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{269A65E1-3D43-A06D-89B8-1F28B355D95D}\INPROCSERVER32, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{B3D65F6A-6D79-D8CA-D69E-FFB86EBEA39E}, , [2bb6e3441665003649d079ca0ef3ae52],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B3D65F6A-6D79-D8CA-D69E-FFB86EBEA39E}, , [2bb6e3441665003649d079ca0ef3ae52],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-1048441034-508376767-185308242-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{B3D65F6A-6D79-D8CA-D69E-FFB86EBEA39E}, , [2bb6e3441665003649d079ca0ef3ae52],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-1048441034-508376767-185308242-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{B3D65F6A-6D79-D8CA-D69E-FFB86EBEA39E}, , [2bb6e3441665003649d079ca0ef3ae52],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{B3D65F6A-6D79-D8CA-D69E-FFB86EBEA39E}, , [2bb6e3441665003649d079ca0ef3ae52],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{B3D65F6A-6D79-D8CA-D69E-FFB86EBEA39E}\INPROCSERVER32, , [2bb6e3441665003649d079ca0ef3ae52],
PUP.Optional.ShoppingSuggestion.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{F6C07882-D703-4DD5-905A-2C4E815A5066}, , [fee38c9b9ddec96d9e4f8c8038caa25e],
PUP.Optional.ShoppingSuggestion.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{9186135C-5067-4BD3-A886-B0A533744D5D}, , [fee38c9b9ddec96d9e4f8c8038caa25e],
PUP.Optional.ShoppingSuggestion.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{2BFF5187-8BA1-4469-91B9-2FC1B6DD7F8C}, , [fee38c9b9ddec96d9e4f8c8038caa25e],
PUP.Optional.ShoppingSuggestion.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{2BFF5187-8BA1-4469-91B9-2FC1B6DD7F8C}, , [fee38c9b9ddec96d9e4f8c8038caa25e],
PUP.Optional.ShoppingSuggestion.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{9186135C-5067-4BD3-A886-B0A533744D5D}, , [fee38c9b9ddec96d9e4f8c8038caa25e],
PUP.Optional.ShoppingSuggestion.A, HKU\S-1-5-21-1048441034-508376767-185308242-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{F6C07882-D703-4DD5-905A-2C4E815A5066}, , [fee38c9b9ddec96d9e4f8c8038caa25e],
PUP.Optional.ShoppingSuggestion.A, HKU\S-1-5-21-1048441034-508376767-185308242-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{F6C07882-D703-4DD5-905A-2C4E815A5066}, , [fee38c9b9ddec96d9e4f8c8038caa25e],
PUP.Optional.SearchQu, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{99079A25-328F-4BD4-BE04-00955ACAA0A7}, , [b8299b8c502bb3837975937d82806799],
PUP.Optional.SearchQu, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{99079A25-328F-4BD4-BE04-00955ACAA0A7}, , [b8299b8c502bb3837975937d82806799],
PUP.Optional.Bandoo.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{9D717F81-9148-4F12-8568-69135F087DB0}, , [29b847e073082c0a06abb3907c869d63],
PUP.Optional.Bandoo.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{9D717F81-9148-4F12-8568-69135F087DB0}, , [29b847e073082c0a06abb3907c869d63],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{E957849A-94AC-6F46-4623-C31474E3C170}, , [d50ca186b7c43afc5dbcfa4900011ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C6E49138-C2CF-5337-D358-0734FD33EFB4}, , [17cae44387f4122424f5053e39c8847c],
PUP.Optional.GreyGray.A, HKLM\SOFTWARE\WOW6432NODE\GreyGray, , [994845e299e296a04b6ff09eeb18a957],
PUP.Optional.MediaPlayerAlpha.A, HKLM\SOFTWARE\WOW6432NODE\MediaPlayerV1alpha2, , [756c0225d1aa979fd62f0965887a8977],
PUP.Optional.MediaViewer.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewerV1alpha21, , [04dd998e8eed9f97fd2cfc6d8181ca36],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewV1alpha2305, , [af325bcc562580b692e21d4bfb07b749],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewV1alpha81, , [dc05bf68c2b93afc165ecd9b99697888],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\MediaWatchV1home905, , [da0769be4239fc3a36420a976d969a66],
PUP.Optional.Webexp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Webexp Enhanced, , [6978b6715a217bbbfccc7df30200d32d],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM, , [7f6248dfa9d240f602ebd3b4d1320df3],
PUP.Optional.Greygray.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update GreyGray, , [934e8d9ae09bca6cd98c8b0d7b889868],
PUP.Optional.GreyGray.A, HKU\S-1-5-21-1048441034-508376767-185308242-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GreyGray, , [4d9427002a518caa48715d3114ef1ae6],
PUP.Optional.MediaViewer.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MediaViewerV1alpha21, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MediaViewV1alpha2305, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MediaViewV1alpha81, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.GreyGray.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{5cb21133-55d7-4b7a-9c69-4352006c5d37}, , [9c45b07703781224bb767e9d9e666b95],
PUP.Optional.GreyGray.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5CB21133-55D7-4B7A-9C69-4352006C5D37}, , [9c45b07703781224bb767e9d9e666b95],
PUP.Optional.GreyGray.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{cd3cbbfe-097d-456e-84a4-b56783c9d2ae}, , [9c45b07703781224bb767e9d9e666b95],
PUP.Optional.GreyGray.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{D432E29F-104D-464D-B436-B7FAC6754B1A}, , [9c45b07703781224bb767e9d9e666b95],
PUP.Optional.GreyGray.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D432E29F-104D-464D-B436-B7FAC6754B1A}, , [9c45b07703781224bb767e9d9e666b95],
PUP.Optional.GreyGray.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{cd3cbbfe-097d-456e-84a4-b56783c9d2ae}, , [9c45b07703781224bb767e9d9e666b95],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{c36efb44-81fd-476e-b8a2-428f31d71a00}, , [15cce443512ac96ddf44f923c93b31cf],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C36EFB44-81FD-476E-B8A2-428F31D71A00}, , [15cce443512ac96ddf44f923c93b31cf],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{5f79705d-831c-4911-9200-8e64713d5041}, , [15cce443512ac96ddf44f923c93b31cf],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{126716E9-A9FA-4041-971A-7B0D98F532A6}, , [15cce443512ac96ddf44f923c93b31cf],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{126716E9-A9FA-4041-971A-7B0D98F532A6}, , [15cce443512ac96ddf44f923c93b31cf],
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{5f79705d-831c-4911-9200-8e64713d5041}, , [15cce443512ac96ddf44f923c93b31cf],

Registry Values: 9
Trojan.Agent.MNRGen, HKU\S-1-5-21-1048441034-508376767-185308242-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|test, C:\Windows\bat_starter.exe, , [934eef38f08b20163988e38449b9ae52]
PUP.Optional.WebExpEnhanced.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@WebexpEnhancedV1alpha5514.net, C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha5514\ff, , [3ba640e72f4c8aac9908c3aac0420bf5]
PUP.Optional.VideoPlayer.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@VideoPlayerV3beta842.net, C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta842\ff, , [f6eb86a1314ac571dfc2d29150b234cc]
PUP.Optional.MediaPlayerAlpha.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaPlayerV1alpha2.net, C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha2\ff, , [6d7413142a510b2b877fa6c8986af709]
PUP.Optional.MediaViewer.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaViewerV1alpha21.net, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff, , [25bc96915c1f78beb9711c4d26dc9967]
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaViewV1alpha2305.net, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff, , [4d9497905a21b581561fed7bce3419e7]
PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaViewV1alpha81.net, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff, , [c41d6fb89ae11521aec7cd9bd230ee12]
PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ext@MediaWatchV1home905.net, C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home905\ff, , [7b66ad7a2655a49233466d3449bacc34]
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM|simapp_id, {067FA67B-F9A3-11E0-9E60-F46D04B01055}, , [7f6248dfa9d240f602ebd3b4d1320df3]

Registry Data: 1
Trojan.SProtector, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, c:\progra~3\assist~1\assist~1.dll, Good: (), Bad: (c:\progra~3\assist~1\assist~1.dll),,[d809e14672095bdb24551d36f50cc43c]

Folders: 21
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ch, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\chrome, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\chrome\content, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\chrome\content\icons, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\chrome\content\icons\default, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ch, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\chrome, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\chrome\content, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\chrome\content\icons, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\chrome\content\icons\default, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ch, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\chrome, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\chrome\content, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\chrome\content\icons, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\chrome\content\icons\default, , [18c9a87f8dee5dd9eb03203ac83a13ed],

Files: 35
Trojan.SProtector, C:\ProgramData\Assistant\Assistant.dll, , [d809e14672095bdb24551d36f50cc43c],
PUP.Optional.MultiPlug.A, C:\ProgramData\Happye2Save\iMv4V.x64.dll, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, C:\ProgramData\Happye2Save\iMv4V.dll, , [a73a02256f0cf3433ddc45feec15e11f],
PUP.Optional.MultiPlug.A, C:\ProgramData\UTubeNoAdS\DWzLLuplk.x64.dll, , [2bb6e3441665003649d079ca0ef3ae52],
PUP.Optional.ShoppingSuggestion.A, C:\Users\Michele\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4\Shopping Suggestion.dll, , [fee38c9b9ddec96d9e4f8c8038caa25e],
Trojan.SProtector, C:\ProgramData\Assistant\AssistantSvc.dll, , [915043e41d5ed36387f384cfdf2259a7],
PUP.Optional.MultiPlug.A, C:\ProgramData\Happye2Save\iMv4V.exe, , [d50ca186b7c43afc5dbcfa4900011ce4],
PUP.Optional.MultiPlug.A, C:\ProgramData\UTubeNoAdS\DWzLLuplk.dll, , [e001e74075060b2b4dcc9da6669baf51],
PUP.Optional.MultiPlug.A, C:\ProgramData\UTubeNoAdS\DWzLLuplk.exe, , [17cae44387f4122424f5053e39c8847c],
PUP.Optional.BitCoinMiner, C:\Windows\explorer_2.exe, , [845daf783843e1553518a40c0300bf41],
Trojan.Agent.MNRGen, C:\Windows\bat_starter.exe, , [934eef38f08b20163988e38449b9ae52],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\uninstall.exe, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ch\MediaViewerV1alpha21.crx, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\chrome.manifest, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\install.rdf, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\chrome\content\ffMediaViewerV1alpha21.js, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\chrome\content\overlay.xul, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\chrome\content\icons\Thumbs.db, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaViewer.A, C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha21\ff\chrome\content\icons\default\MediaViewerV1alpha21_32.png, , [91502502fb803006328902583ec41be5],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\uninstall.exe, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ch\MediaViewV1alpha2305.crx, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\chrome.manifest, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\install.rdf, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\chrome\content\ffMediaViewV1alpha2305.js, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\chrome\content\overlay.xul, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\chrome\content\icons\Thumbs.db, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2305\ff\chrome\content\icons\default\MediaViewV1alpha2305_32.png, , [02df889fa9d238feac42aab0cf335da3],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\uninstall.exe, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ch\MediaViewV1alpha81.crx, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\chrome.manifest, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\install.rdf, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\chrome\content\ffMediaViewV1alpha81.js, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\chrome\content\overlay.xul, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\chrome\content\icons\Thumbs.db, , [18c9a87f8dee5dd9eb03203ac83a13ed],
PUP.Optional.MediaView.A, C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha81\ff\chrome\content\icons\default\MediaViewV1alpha81_32.png, , [18c9a87f8dee5dd9eb03203ac83a13ed],

Physical Sectors: 0
(No malicious items detected)

(end)

#6 Příspěvek od **Márty84** » 08 dub 2014 16:13

Pokud jste tak jeste neucinil, nechte nalezy odstranit. Po odstraneni a restartu pc test s MBAM zopakujte. Napiste, zda neco nasel. Podle toho zvolim dalsi postup.

taurus255 · #7 Příspěvek od **taurus255** » 08 dub 2014 22:33

Dobrý den zdá se že problem je vyřešen aktualně při nečinosti Cpu jede na 0,2% při zapnutí internetu vylitně měřák na 23 % .Ale během sekundy to ale zase klesne na 0,1 až 0,2 %. Prosím o radu jak chránit svůj pc před dalšímy utoky.Pokud možno free programy .ještě jednou děkuji zde zasilám ještě poslední log.

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8.4.2014
Scan Time: 23:33:11
Logfile: log.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.08.07
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Michele

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 249848
Time Elapsed: 7 min, 12 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

#8 Příspěvek od **Márty84** » 09 dub 2014 01:31

Radeji bych to jeste docistil.

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

Nic vas neochrani na 100% , ale zaklad je...
Aktualizovany system
Aktualizovany antivir
CCleaner na procisteni od smeti
Defraggler na defragmentaci disku

taurus255 · #9 Příspěvek od **taurus255** » 09 dub 2014 08:31

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Michele [Práva správce]
Mód : Kontrola -- Datum : 04/09/2014 09:36:26
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Michele\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> NALEZENO
[RUN][SUSP PATH] HKCU\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Michele\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> NALEZENO
[RUN][SUSP PATH] HKUS\S-1-5-21-1048441034-508376767-185308242-1000\[...]\Run : cz.seznam.software.autoupdate ("C:\Users\Michele\AppData\Roaming\Seznam.cz\szninstall.exe" -c [7]) -> NALEZENO
[RUN][SUSP PATH] HKUS\S-1-5-21-1048441034-508376767-185308242-1000\[...]\Run : cz.seznam.software.szndesktop ("C:\Users\Michele\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q [7]) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[APPINIT][SUSP PATH] HKLM\[...]\Windows : AppInit_DLLs (C:\PROGRA~3\ASSIST~1\ASSIST~2.DLL [-]) -> NALEZENO

¤¤¤ naplánované úlohy : 1 ¤¤¤
[V1][ROGUE ST] GS.Enabler-S-926685765.job : c:\programdata\softwarehouse\gs.enabler\GS.Enabler.exe - /schedule /profile "c:\programdata\softwarehouse\gs.enabler\926685765.ini" [x][x] -> NALEZENO

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD2500YS-01SHB1 ATA Device +++++
--- User ---
[MBR] 3cfc3a5941543a182f646025e95b9f64
[BSP] 4e8a79c29857c7dc98be3095241d3f17 : Empty MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 239366 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) MAXTOR STM3160815AS ATA Device +++++
--- User ---
[MBR] 7380eabbcd8568e4e873bbe6daa3f08d
[BSP] 7a92a69bc9bfe156c5a99b94a48ff794 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 152625 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04092014_093626.txt >>
RKreport[0]_S_04092014_093414.txt

#10 Příspěvek od **Márty84** » 09 dub 2014 08:35

Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.

taurus255 · #11 Příspěvek od **taurus255** » 09 dub 2014 08:41

Dobrý den

jako antivir použivám Microsoft security essential.
na havět T-cleaner a do nedavna i tune up který jsem na vaší radu odstranil.
pak tu mam Advanced WindowsCare V2 Personal , Glary Utilities 4
to jsou veškeré programy na čištění a ochranu.ted otazka stačí to.

taurus255 · #12 Příspěvek od **taurus255** » 09 dub 2014 08:46

ogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Michele [Práva správce]
Mód : Kontrola -- Datum : 04/09/2014 09:52:27
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD2500YS-01SHB1 ATA Device +++++
--- User ---
[MBR] 3cfc3a5941543a182f646025e95b9f64
[BSP] 4e8a79c29857c7dc98be3095241d3f17 : Empty MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 239366 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) MAXTOR STM3160815AS ATA Device +++++
--- User ---
[MBR] 7380eabbcd8568e4e873bbe6daa3f08d
[BSP] 7a92a69bc9bfe156c5a99b94a48ff794 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 152625 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04092014_095227.txt >>

#13 Příspěvek od **Márty84** » 09 dub 2014 09:02

Kde je druhy log z RK?

taurus255 píše:jako antivir použivám Microsoft security essential.
na havět T-cleaner a do nedavna i tune up který jsem na vaší radu odstranil.
pak tu mam Advanced WindowsCare V2 Personal , Glary Utilities 4
to jsou veškeré programy na čištění a ochranu.ted otazka stačí to.

MSE bych nahradil Avastem.
T-Cleaner neni na havet. Cisti jen zbytky nami pouzitych programku!!!
TuneUp je fajn, ale obcas udela hrubku a pc je zraly na format.
Advanced WindowsCare V2 Personal a Glary Utilities 4 neznam. Takze nemuzu hodnotit.

Ja preferuju Avast free, ADWCleaner a CCleaner. Tato kombinace se mi osvedcila nejvice a kam prijdu (pribuzni), tam ji davam

taurus255 · #14 Příspěvek od **taurus255** » 09 dub 2014 09:43

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Michele [Práva správce]
Mód : Oprava HOSTS -- Datum : 04/09/2014 10:48:44
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost

Dokončeno : << RKreport[0]_H_04092014_104844.txt >>
RKreport[0]_S_04092014_104817.txt

#15 Příspěvek od **Márty84** » 09 dub 2014 09:44

Dejte log z RSITx64 http://forum.viry.cz/viewtopic.php?f=30&t=130787

VIRY.CZ

Kontrola logu. 4jádro jede na 50 % v nečinosti

Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti

Re: Kontrola logu. 4jádro jede na 50 % v nečinosti