Jak se zbavit delta-homes?

Zpráva

ritterqa · #1 Příspěvek od **ritterqa** » 12 čer 2014 09:39

Zdravím,
již kdysi se u mě objevilo delta-homes, nejak se mi ho podařilo zbavit (už ani nevím jak), jenže dnes po spuštění notebooku je tu zase. Nic jsem nestahovala, pouze se mi aktualizoval Firefox. Zároveň se mi nainstalovalo 337 games (odinstalovala jsem) a SupTab.

Prosím o radu, jak se toho zbavit.

#2 Příspěvek od **vyosek** » 12 čer 2014 11:26

Zdravim

Nerad vestim z kristalove koule, takze poprosim o log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786

ritterqa · #3 Příspěvek od **ritterqa** » 12 čer 2014 11:33

Jsem nevěděla, z jakého programu budete log potřebovat.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lucka at 2014-06-12 12:30:06
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 80 GB (27%) free of 292 GB
Total RAM: 3001 MB (9% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:30:20, on 12.6.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\FeedReader30\feedreader.exe
C:\Users\Lucka\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Users\Lucka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
C:\Program Files (x86)\Comodo\IceDragon\icedragon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Users\Lucka\AppData\Roaming\337Games\337Games.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Program Files (x86)\Comodo\IceDragon\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Program Files\trend micro\Lucka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts= ... 3924239242
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type ... earchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?type ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?type=hp&ts= ... 3924239242
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts= ... 3924239242
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.dosearches.com/web/?utm_s ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.dosearches.com/web/?utm_s ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?type=hp&ts= ... 3924239242
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [feedreader.exe] "C:\Program Files (x86)\FeedReader30\feedreader.exe"
O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Lucka\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Lucka\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Lucka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Lucka\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: COMODO IceDragon Update Service (IceDragonUpdater) - Unknown owner - C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IePlugin Services (IePluginServices) - Cherished Technololgy LIMITED - C:\ProgramData\IePluginServices\PluginService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wpm Service (Wpm) - Cherished Technololgy LIMITED - C:\ProgramData\WPM\wprotectmanager.exe

--
End of file - 13238 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\LSI SoftModem\agr64svc.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Windows\PLFSetI.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\FeedReader30\feedreader.exe"
"C:\Users\Lucka\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
"C:\Users\Lucka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe"
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\Apoint2K\HidFind.exe"
"Apntex.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
\??\C:\Windows\system32\conhost.exe "314399972-210335295368214705317186883185347646787457203015618926071935006134
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Comodo\IceDragon\icedragon.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
C:\ProgramData\WPM\wprotectmanager.exe -service
ctfmon.exe
"C:\Users\Lucka\AppData\Roaming\337Games\337Games.exe" -desktopnotify -shn="337 GAMES"
C:\ProgramData\IePluginServices\PluginService.exe -service
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://www.delta-homes.com/?type=sc&ts= ... 3924239242
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3496.80d98a0.262095930 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3496 "\\.\pipe\gecko-crash-server-pipe.3496" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe" --proxy-stub-channel=Flash2928.611EA378.4936 --host-broker-channel=Flash2928.611EA378.31162 --host-pid=2928 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe" --channel=4276.0034F13C.528209165 --proxy-stub-channel=Flash2928.611EA378.4936 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll" --host-npapi-version=27 --type=renderer
"C:\Program Files (x86)\Comodo\IceDragon\plugin-container.exe" --channel=2380.1e82c190.1526521809 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll" -greomni "C:\Program Files (x86)\Comodo\IceDragon\omni.ja" -appomni "C:\Program Files (x86)\Comodo\IceDragon\browser\omni.ja" -appdir "C:\Program Files (x86)\Comodo\IceDragon\browser" - 2380 plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe" --proxy-stub-channel=Flash6060.62928970.29540 --host-broker-channel=Flash6060.62928970.6344 --host-pid=6060 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe" --channel=3824.0030F6E4.504067796 --proxy-stub-channel=Flash6060.62928970.29540 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll" --host-npapi-version=27 --type=renderer
"C:\Windows\system32\calc.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE" /e
C:\Windows\splwow64.exe 8192
"C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Lucka\Desktop\The-Vampire-Diaries-3x01---The-Birthday.avi"
C:\Windows\system32\DllHost.exe /Processid:{49F171DD-B51A-40D3-9A6C-52D674CC729D}
C:\Windows\system32\DllHost.exe /Processid:{53362C64-A296-4F2D-A2F8-FD984D08340B}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe45_ Global\UsGthrCtrlFltPipeMssGthrPipe45 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\Lucka\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA1cf4916e24230ea.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\WinZipDriverUpdater_UPDATES.job - C:\Program Files (x86)\WinZip Driver Updater\winzipdu.exe -updatecheck

=========Mozilla firefox=========

ProfilePath - C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default

prefs.js - "browser.startup.homepage" - "http://www.delta-homes.com/?type=hp&ts= ... 3924239242"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll

C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\extensions\
faststartff@gmail.com
shortcutff@gmail.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
IETabPage Class - C:\Program Files (x86)\SupTab\SupTab.dll [2014-06-12 513648]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-20 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-20 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-05 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-08-12 165912]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-08-12 387608]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-08-12 365592]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-08-06 8060960]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-05-22 295936]
"PLFSetI"=C:\Windows\PLFSetI.exe [2008-07-29 200704]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-09-12 5618456]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"AdobeBridge"= []
"feedreader.exe"=C:\Program Files (x86)\FeedReader30\feedreader.exe [2009-03-29 2058240]
"NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]
"EA Core"=C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent []
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2014-03-22 3588952]
"BitTorrent"=C:\Users\Lucka\AppData\Roaming\BitTorrent\BitTorrent.exe [2014-05-25 1242704]
"Spotify Web Helper"=C:\Users\Lucka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-06-06 1176632]
"Spotify"=C:\Users\Lucka\AppData\Roaming\Spotify\spotify.exe [2014-06-06 6170168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mwlDaemon]
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [2009-08-07 349480]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"EgisTecLiveUpdate"=C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [2009-08-04 199464]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2009-08-27 1194504]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []
"Family Tree Builder Update"=C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2013-12-09 2532864]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-07-29 258560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-06-12 12:30:09 ----D---- C:\Program Files\trend micro
2014-06-12 12:30:06 ----D---- C:\rsit
2014-06-12 10:17:51 ----D---- C:\Users\Lucka\AppData\Roaming\337Games
2014-06-12 10:17:50 ----D---- C:\ProgramData\IePluginServices
2014-06-12 10:17:48 ----D---- C:\Users\Lucka\AppData\Roaming\SupTab
2014-06-11 19:47:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-06-11 07:03:29 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-06-11 07:03:29 ----A---- C:\Windows\system32\usp10.dll
2014-06-11 07:03:27 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-06-11 07:03:27 ----A---- C:\Windows\system32\drivers\netio.sys
2014-06-11 07:03:27 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-06-11 07:03:26 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2014-06-11 07:03:26 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-06-11 07:03:26 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-06-11 07:03:26 ----A---- C:\Windows\system32\msxml6r.dll
2014-06-11 07:03:26 ----A---- C:\Windows\system32\msxml6.dll
2014-06-11 07:03:26 ----A---- C:\Windows\system32\msxml3.dll
2014-06-11 07:03:25 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-06-11 07:03:25 ----A---- C:\Windows\system32\msxml3r.dll
2014-06-11 07:03:24 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-06-11 07:03:24 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-06-11 07:03:23 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-06-11 07:03:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-06-11 07:03:23 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-06-11 07:03:23 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-06-11 07:03:23 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-06-11 07:03:23 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-06-11 07:03:23 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 07:03:23 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-06-11 07:03:21 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-06-11 07:03:21 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-06-11 07:03:21 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-06-11 07:03:21 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-06-11 07:03:21 ----A---- C:\Windows\system32\urlmon.dll
2014-06-11 07:03:21 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 07:03:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-06-11 07:03:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-06-11 07:03:20 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-06-11 07:03:20 ----A---- C:\Windows\system32\msfeeds.dll
2014-06-11 07:03:20 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-06-11 07:03:20 ----A---- C:\Windows\system32\dxtmsft.dll
2014-06-11 07:03:19 ----A---- C:\Windows\system32\iesetup.dll
2014-06-11 07:03:19 ----A---- C:\Windows\system32\ie4uinit.exe
2014-06-11 07:03:18 ----A---- C:\Windows\system32\iertutil.dll
2014-06-11 07:03:17 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-06-11 07:03:17 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-06-11 07:03:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-06-11 07:03:17 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-06-11 07:03:17 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-06-11 07:03:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-06-11 07:03:17 ----A---- C:\Windows\system32\jsproxy.dll
2014-06-11 07:03:17 ----A---- C:\Windows\system32\iernonce.dll
2014-06-11 07:03:16 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-06-11 07:03:16 ----A---- C:\Windows\system32\ieui.dll
2014-06-11 07:03:16 ----A---- C:\Windows\system32\dxtrans.dll
2014-06-11 07:03:15 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-06-11 07:03:15 ----A---- C:\Windows\system32\mshtmled.dll
2014-06-11 07:03:15 ----A---- C:\Windows\system32\ieframe.dll
2014-06-11 07:03:14 ----A---- C:\Windows\system32\vbscript.dll
2014-06-11 07:03:14 ----A---- C:\Windows\system32\jscript9diag.dll
2014-06-11 07:03:14 ----A---- C:\Windows\system32\jscript9.dll
2014-06-11 07:03:14 ----A---- C:\Windows\system32\ieUnatt.exe
2014-06-11 07:03:14 ----A---- C:\Windows\system32\ieapfltr.dll
2014-06-11 07:03:13 ----A---- C:\Windows\system32\wininet.dll
2014-06-11 07:03:13 ----A---- C:\Windows\system32\msrating.dll
2014-06-11 07:03:12 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 07:03:12 ----A---- C:\Windows\system32\mshtml.dll
2014-06-07 13:56:45 ----D---- C:\Program Files\McAfee Security Scan
2014-06-06 15:55:10 ----D---- C:\Users\Lucka\AppData\Roaming\Spotify
2014-06-02 20:31:48 ----D---- C:\Users\Lucka\AppData\Roaming\AIMP3
2014-06-02 20:31:16 ----D---- C:\Program Files (x86)\AIMP3
2014-06-02 19:42:05 ----D---- C:\ProgramData\Last.fm
2014-06-02 19:37:13 ----D---- C:\Program Files (x86)\Last.fm
2014-06-02 19:37:04 ----A---- C:\Windows\SYSWOW64\certsentry.dll
2014-06-02 19:37:04 ----A---- C:\Windows\system32\certsentry.dll
2014-05-15 10:27:26 ----A---- C:\Windows\system32\shell32.dll
2014-05-15 10:27:24 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-15 10:26:26 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-15 10:26:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-15 10:26:24 ----A---- C:\Windows\system32\kerberos.dll
2014-05-15 10:26:23 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-15 10:26:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-15 10:26:22 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-15 10:26:22 ----A---- C:\Windows\system32\winlogon.exe
2014-05-15 10:26:22 ----A---- C:\Windows\system32\objsel.dll
2014-05-15 10:26:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-15 10:26:22 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-15 10:26:20 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-15 10:26:20 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-15 10:26:20 ----A---- C:\Windows\system32\wdigest.dll
2014-05-15 10:26:20 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-15 10:26:20 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-15 10:26:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-15 10:26:19 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-15 10:26:18 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-15 10:26:18 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-15 10:26:18 ----A---- C:\Windows\system32\schannel.dll
2014-05-15 10:26:18 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-15 10:26:18 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-15 10:26:18 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-15 10:26:18 ----A---- C:\Windows\system32\adprovider.dll
2014-05-15 10:26:17 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-15 10:26:17 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-15 10:26:17 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-15 10:26:17 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-15 10:26:17 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-15 10:26:17 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-15 10:26:17 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-15 10:26:16 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-15 10:26:16 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-15 10:26:16 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-15 10:26:16 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-15 10:26:16 ----A---- C:\Windows\system32\sspicli.dll
2014-05-15 10:26:16 ----A---- C:\Windows\system32\lsass.exe
2014-05-15 10:26:16 ----A---- C:\Windows\system32\credssp.dll
2014-05-15 10:26:15 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-15 10:26:15 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-15 10:26:15 ----A---- C:\Windows\system32\secur32.dll
2014-05-13 20:05:50 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe

======List of files/folders modified in the last 1 month======

2014-06-12 12:30:09 ----RD---- C:\Program Files
2014-06-12 12:30:01 ----D---- C:\Windows\temp
2014-06-12 12:28:32 ----D---- C:\Users\Lucka\AppData\Roaming\BitTorrent
2014-06-12 10:25:54 ----A---- C:\Windows\wininit.ini
2014-06-12 10:17:51 ----D---- C:\Program Files (x86)\SupTab
2014-06-12 10:17:50 ----HD---- C:\ProgramData
2014-06-12 10:16:15 ----D---- C:\ProgramData\WPM
2014-06-12 10:12:15 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-12 10:12:01 ----RD---- C:\Program Files (x86)
2014-06-12 10:11:38 ----D---- C:\Program Files (x86)\Origin
2014-06-12 10:08:55 ----D---- C:\Users\Lucka\AppData\Roaming\newnext.me
2014-06-12 10:08:22 ----D---- C:\Windows\winsxs
2014-06-12 10:08:22 ----D---- C:\Windows\system32\config
2014-06-12 10:06:28 ----D---- C:\Windows\SysWOW64
2014-06-12 10:06:28 ----D---- C:\Windows\System32
2014-06-12 10:06:27 ----D---- C:\Windows\system32\drivers
2014-06-12 10:06:26 ----D---- C:\Program Files\Internet Explorer
2014-06-12 10:06:25 ----D---- C:\Windows\SYSWOW64\en-US
2014-06-12 10:06:24 ----D---- C:\Windows\system32\en-US
2014-06-12 10:06:24 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-11 23:06:01 ----D---- C:\Windows\system32\MRT
2014-06-11 23:05:54 ----A---- C:\Windows\system32\MRT.exe
2014-06-11 23:05:47 ----SHD---- C:\Windows\Installer
2014-06-11 23:05:45 ----D---- C:\ProgramData\Microsoft Help
2014-06-11 23:00:59 ----SHD---- C:\System Volume Information
2014-06-11 15:51:10 ----D---- C:\Users\Lucka\AppData\Roaming\vlc
2014-06-11 07:01:45 ----D---- C:\Windows\system32\catroot2
2014-06-11 07:01:45 ----D---- C:\Windows\system32\catroot
2014-06-07 13:57:11 ----D---- C:\ProgramData\McAfee Security Scan
2014-06-03 12:53:51 ----D---- C:\Windows\Prefetch
2014-06-02 19:42:05 ----D---- C:\Program Files (x86)\Windows Media Player
2014-06-02 19:36:35 ----D---- C:\Program Files (x86)\Comodo
2014-06-02 19:34:15 ----D---- C:\Windows\inf
2014-05-28 16:20:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-20 21:02:20 ----D---- C:\Windows\rescache
2014-05-16 13:15:31 ----D---- C:\Windows\Microsoft.NET
2014-05-16 13:15:19 ----RSD---- C:\Windows\assembly
2014-05-16 11:39:01 ----D---- C:\Windows\system32\cs-CZ
2014-05-15 20:50:27 ----D---- C:\Program Files (x86)\Common Files
2014-05-14 22:45:37 ----D---- C:\Windows\debug
2014-05-14 08:26:27 ----D---- C:\Windows
2014-05-13 20:06:00 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-16 62136]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-05 408600]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-11-05 283200]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-16 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-16 168256]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-16 44120]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-16 220232]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-04-07 1208320]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-05-25 243760]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-07-09 1484800]
R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-07-29 7345632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2009-05-26 138752]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2009-06-20 317480]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-02 98344]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-07-02 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 35104]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-02 21160]
S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-06-05 216064]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-03-28 16896]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-17 864032]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-05-27 2139328]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-09-12 1337752]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-05 354840]
R2 IceDragonUpdater;COMODO IceDragon Update Service; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [2013-12-19 1821384]
R2 IePluginServices;IePlugin Services; C:\ProgramData\IePluginServices\PluginService.exe [2014-06-12 761968]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 Wpm;Wpm Service; C:\ProgramData\WPM\wprotectmanager.exe [2014-06-11 540304]
S2 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-07 311592]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-30 111616]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-11 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-10-19 1255736]

-----------------EOF-----------------

#4 Příspěvek od **vyosek** » 12 čer 2014 11:37

Nic se nedeje, ja si reknu

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

ritterqa · #5 Příspěvek od **ritterqa** » 12 čer 2014 11:56

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Lucka on źt 12.06.2014 at 12:44:19,72
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\nextlive
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2168297920-202002444-308054462-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\esafe"
Successfully deleted: [Folder] "C:\ProgramData\partner"
Successfully deleted: [Folder] "C:\Users\Lucka\AppData\Roaming\goforfiles"
Successfully deleted: [Folder] "C:\Users\Lucka\AppData\Roaming\isafe"
Successfully deleted: [Folder] "C:\Users\Lucka\AppData\Roaming\newnext.me"
Successfully deleted: [Folder] "C:\Program Files (x86)\isafe"
Successfully deleted: [Folder] "C:\Users\Lucka\AppData\Roaming\microsoft\windows\start menu\programs\mobogenie"

~~~ FireFox

Successfully deleted the following from C:\Users\Lucka\AppData\Roaming\mozilla\firefox\profiles\w1c9u7qz.default\prefs.js

user_pref("browser.newtab.url", "hxxp://www.delta-homes.com/newtab/?type=nt&ts= ... 3924239242");
user_pref("browser.search.defaultenginename", "delta-homes");
user_pref("browser.search.selectedEngine", "delta-homes");
user_pref("browser.startup.homepage", "hxxp://www.delta-homes.com/?type=hp&ts=1402560 ... 3924239242");
Emptied folder: C:\Users\Lucka\AppData\Roaming\mozilla\firefox\profiles\w1c9u7qz.default\minidumps [56 files]

~~~ Chrome

Successfully deleted: [Folder] C:\Users\Lucka\appdata\local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 12.06.2014 at 12:56:10,39
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#6 Příspěvek od **vyosek** » 12 čer 2014 12:01

Jeste poprosim o AdwCleaner

ritterqa · #7 Příspěvek od **ritterqa** » 12 čer 2014 12:02

# AdwCleaner v3.212 - Report created 12/06/2014 at 12:58:51
# Updated 05/06/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Lucka - LUCKA-PC
# Running from : C:\Users\Lucka\Downloads\adwcleaner_3.212.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : IePluginServices
Service Deleted : Wpm

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\IePluginService
Folder Deleted : C:\ProgramData\IePluginServices
Folder Deleted : C:\ProgramData\WPM
Folder Deleted : C:\Program Files (x86)\SupTab
Folder Deleted : C:\Program Files (x86)\WinZipper
Folder Deleted : C:\Users\Lucka\AppData\Local\genienext
Folder Deleted : C:\Users\Lucka\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Lucka\AppData\Roaming\337Games
Folder Deleted : C:\Users\Lucka\AppData\Roaming\eCyber
Folder Deleted : C:\Users\Lucka\AppData\Roaming\SupTab
Folder Deleted : C:\Users\Lucka\AppData\Roaming\WinZipper
Folder Deleted : C:\Users\Lucka\Documents\Mobogenie
Folder Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo
Folder Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
File Deleted : C:\Users\Lucka\daemonprocess.txt
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\delta-homes.xml
File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx
File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx
File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ifohbjbgfchkkfhphahclmkpgejiplfo_0.localstorage
File Deleted : C:\Windows\System32\Tasks\GoforFilesUpdate

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Public\Desktop\Mozilla Firefox.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\Lucka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Lucka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\Lucka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Key Deleted : HKCU\Software\GoforFiles
Key Deleted : HKLM\Software\delta-homesSoftware
Key Deleted : HKLM\Software\dosearchessoftware
Key Deleted : HKLM\Software\GoforFiles
Key Deleted : HKLM\Software\SupDp
Key Deleted : HKLM\Software\SupTab
Key Deleted : HKLM\Software\supWPM
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SupTab

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17126

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v30.0 (cs)

[ File : C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\prefs.js ]

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.delta-homes.com/web/?type=ds&ts=1402560987&from=wpm0612&uid=WDCXWD3200BEVT-22ZCT0_WD-WX80A993924239242&q={searchTerms}
Deleted [Startup_urls] : hxxp://www.delta-homes.com/?type=hp&ts=1402560 ... 3924239242
Deleted [Homepage] : hxxp://www.delta-homes.com/?type=hp&ts=1402560 ... 3924239242
Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
Deleted [Extension] : ifohbjbgfchkkfhphahclmkpgejiplfo
Deleted [Extension] : ogfjmhfnldnajmfaofeiaepghjenbgjo
Deleted [Extension] : pelmeidfhdlhlbjimpabfcbnnojbboma

*************************

AdwCleaner[R0].txt - [9139 octets] - [12/06/2014 12:57:38]
AdwCleaner[S0].txt - [6653 octets] - [12/06/2014 12:58:51]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6713 octets] ##########

#8 Příspěvek od **vyosek** » 12 čer 2014 12:19

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

ritterqa · #9 Příspěvek od **ritterqa** » 12 čer 2014 13:11

Zoek.exe v5.0.0.0 Updated 02-June-2014
Tool run by Lucka on źt 12.06.2014 at 13:50:40,98.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Lucka\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

12.6.2014 13:51:32 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\Lucka\AppData\Roaming\Comodo\IceDragon\Profiles\8nx963o3.default\prefs.js:
user_pref("browser.startup.homepage", "http://risingcities.cz/");
user_pref("browser.search.defaultenginename", "Yahoo");
user_pref("keyword.URL", "");

Added to C:\Users\Lucka\AppData\Roaming\Comodo\IceDragon\Profiles\8nx963o3.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

Deleted from C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\prefs.js:

Added to C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\prefs.js:

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Dragon\shell\open\command]
@="C:\\Program Files (x86)\\Comodo\\Dragon\\dragon.exe"

==== Deleting Files \ Folders ======================

C:\Users\Lucka\.android deleted
C:\PROGRA~2\WinZip Driver Updater deleted
C:\Users\Lucka\AppData\Local\cache deleted
C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\slidebar.crx deleted
C:\Windows\wininit.ini deleted
C:\Windows\tasks\WinZipDriverUpdater_UPDATES.job deleted
C:\windows\SysNative\tasks\WinZipDriverUpdater_UPDATES deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"shortcutff@gmail.com"="C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\extensions\shortcutff@gmail.com" [12.06.2014 10:17]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{e4f94d1e-2f53-401e-8885-681602c0ddd8}"="C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi" [04.04.2014 12:36]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Lucka\AppData\Roaming\Comodo\IceDragon\Profiles\8nx963o3.default
- DragAndDrop - C:\Program Files (x86)\Comodo\IceDragon\browser\extensions\DnD@comodo.com

ProfilePath: C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default
- Fast Start - %ProfilePath%\extensions\faststartff@gmail.com
- shortcut - %ProfilePath%\extensions\shortcutff@gmail.com
- Adblock Plus Pop-up Addon - %ProfilePath%\extensions\adblockpopups@jessehakanen.net.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default
A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash
65C1D9F74004E775F9A8598476ABE5EE - C:\Users\Lucka\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
ainbkicbloikcngphmjfpjdemblcojdd - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\slidebar.crx[]

Comodo Drag&Drop Service - Lucka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo
Comodo Web Inspector - Lucka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn
PrivDog - Lucka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
Comodo Media Downloader - Lucka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo

==== Chrome Fix ======================

C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainbkicbloikcngphmjfpjdemblcojdd deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Unknown Url="Not_Found"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"

==== Reset Google Chrome ======================

C:\Users\Lucka\AppData\Local\Comodo\Dragon\User Data\Default\Preferences was reset successfully
C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Lucka\AppData\Local\Comodo\Dragon\User Data\Default\Web Data was reset successfully
C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2168297920-202002444-308054462-1000\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ainbkicbloikcngphmjfpjdemblcojdd deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lucka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lucka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Lucka\AppData\Local\Mozilla\Firefox\Profiles\1oel4acu.default-1393483306825\Cache emptied successfully
C:\Users\Lucka\AppData\Local\Mozilla\Firefox\Profiles\w1c9u7qz.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Lucka\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully
C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=122 folders=44 18011352 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Lucka\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Lucka\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on źt 12.06.2014 at 14:08:56,29 ======================

#10 Příspěvek od **vyosek** » 12 čer 2014 15:56

Tak jeste docistime zbytecky, poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

ritterqa · #11 Příspěvek od **ritterqa** » 12 čer 2014 16:41

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-06-2014 01
Ran by Lucka (administrator) on LUCKA-PC on 12-06-2014 17:36:41
Running from C:\Users\Lucka\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
() C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
() C:\Windows\PLFSetI.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files (x86)\FeedReader30\feedreader.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(BitTorrent Inc.) C:\Users\Lucka\AppData\Roaming\BitTorrent\BitTorrent.exe
(Spotify Ltd) C:\Users\Lucka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(MyHeritage) C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
(COMODO Security Solutions) C:\Program Files (x86)\Comodo\IceDragon\icedragon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(forum.viry.cz) C:\Users\Lucka\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-06] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [295936 2009-05-22] (Alps Electric Co., Ltd.)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2008-07-29] ()
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EgisTecLiveUpdate] => C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1194504 2009-08-27] (Dritek System Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2532864 2013-12-09] (MyHeritage)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-10-19] (Microsoft Corporation)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [feedreader.exe] => C:\Program Files (x86)\FeedReader30\feedreader.exe [2058240 2009-03-29] ()
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3588952 2014-03-22] (Electronic Arts)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [BitTorrent] => C:\Users\Lucka\AppData\Roaming\BitTorrent\BitTorrent.exe [1242704 2014-05-25] (BitTorrent Inc.)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [Spotify Web Helper] => C:\Users\Lucka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-06] (Spotify Ltd)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [Spotify] => C:\Users\Lucka\AppData\Roaming\Spotify\spotify.exe [6170168 2014-06-06] (Spotify Ltd)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\MountPoints2: {ab4ace25-3b44-11e3-853d-00262d5e32e3} - F:\LaunchU3.exe -a
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100

FireFox:
========
FF ProfilePath: C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8064.0206 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lucka\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Fast Start - C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\Extensions\faststartff@gmail.com [2014-06-12]
FF Extension: shortcut - C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\Extensions\shortcutff@gmail.com [2014-06-12]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\Extensions\adblockpopups@jessehakanen.net.xpi [2014-04-05]
FF Extension: Adblock Plus - C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-02]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-10-19]
FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\extensions\faststartff@gmail.com
FF Extension: Fast Start - C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\extensions\faststartff@gmail.com [2014-06-12]
FF HKLM-x32\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\extensions\shortcutff@gmail.com
FF Extension: shortcut - C:\Users\Lucka\AppData\Roaming\Mozilla\Firefox\Profiles\w1c9u7qz.default\extensions\shortcutff@gmail.com [2014-06-12]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-10-19]
FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Google Wallet) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-17]

==================== Services (Whitelisted) =================

R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 IceDragonUpdater; C:\Program Files (x86)\Comodo\IceDragon\icedragon_updater.exe [1821384 2013-12-19] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S2 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [311592 2009-08-07] (Egis Technology Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]

==================== Drivers (Whitelisted) ====================

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-11-05] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-16] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-16] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-16] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-16] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-16] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-16] (ESET)
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-06-12 17:36 - 2014-06-12 17:38 - 00014938 _____ () C:\Users\Lucka\Desktop\FRST.txt
2014-06-12 17:36 - 2014-06-12 17:36 - 00000000 ____D () C:\FRST
2014-06-12 17:34 - 2014-06-12 17:34 - 00112640 _____ (forum.viry.cz) C:\Users\Lucka\Desktop\FRSTLauncher.exe
2014-06-12 17:33 - 2014-06-12 17:34 - 02081792 _____ (Farbar) C:\Users\Lucka\Desktop\FRST64.exe
2014-06-12 15:58 - 2014-06-12 16:15 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E16.720p.HDTV.x264-2HD[rarbg]
2014-06-12 14:07 - 2014-06-12 17:38 - 00000000 ____D () C:\Users\Lucka\AppData\Local\Temp
2014-06-12 14:07 - 2014-06-12 14:07 - 00000000 ____D () C:\Users\Default\AppData\Local\Temp
2014-06-12 14:07 - 2014-06-12 14:07 - 00000000 ____D () C:\Users\Default User\AppData\Local\Temp
2014-06-12 14:07 - 2014-06-12 13:50 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-12 13:51 - 2014-06-12 14:08 - 00011714 _____ () C:\zoek-results.log
2014-06-12 13:48 - 2014-06-12 14:04 - 00000000 ____D () C:\zoek_backup
2014-06-12 13:48 - 2014-06-12 13:48 - 01285120 _____ () C:\Users\Lucka\Desktop\zoek.exe
2014-06-12 12:58 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-12 12:57 - 2014-06-12 12:59 - 00000000 ____D () C:\AdwCleaner
2014-06-12 12:57 - 2014-06-12 12:57 - 01333465 _____ () C:\Users\Lucka\Downloads\adwcleaner_3.212.exe
2014-06-12 12:56 - 2014-06-12 12:56 - 00003825 _____ () C:\Users\Lucka\Desktop\JRT.txt
2014-06-12 12:43 - 2014-06-12 12:43 - 01016261 _____ (Thisisu) C:\Users\Lucka\Downloads\JRT.exe
2014-06-12 12:43 - 2014-06-12 12:43 - 00000000 ____D () C:\Windows\ERUNT
2014-06-12 12:30 - 2014-06-12 12:30 - 00000000 ____D () C:\rsit
2014-06-12 12:30 - 2014-06-12 12:30 - 00000000 ____D () C:\Program Files\trend micro
2014-06-12 10:46 - 2014-06-12 10:46 - 07198767 _____ () C:\Users\Lucka\Desktop\bookmarks-2014-06-12.json
2014-06-11 21:57 - 2014-06-12 10:30 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E22.HDTV.x264-NoGRP[rartv]
2014-06-11 21:56 - 2014-06-12 10:14 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E17.720p.HDTV.x264-2HD[rarbg]
2014-06-11 21:23 - 2014-06-12 10:21 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E21.720p.HDTV.x264-2HD[rarbg]
2014-06-11 19:47 - 2014-06-11 19:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-11 16:21 - 2014-06-11 21:57 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E04.PDTV.x264-RTA[rarbg]
2014-06-11 11:45 - 2014-06-11 12:06 - 368052224 _____ () C:\Users\Lucka\Desktop\The-Vampire-Diaries-3x05-(CZ-tit.HDTV)-by-Nezka.avi
2014-06-11 11:22 - 2014-06-11 11:43 - 368064512 _____ () C:\Users\Lucka\Desktop\The-Vampire-Diaries-3x04-(CZ-tit.HDTV)-by-Nezka.avi
2014-06-11 10:41 - 2014-06-11 11:19 - 366997504 _____ () C:\Users\Lucka\Desktop\The-Vampire-Diaries-3x03---The-End-of-the-Affair-(titulky)-cz.avi
2014-06-11 10:15 - 2014-06-11 10:36 - 367022080 _____ () C:\Users\Lucka\Desktop\Upíří-deníky-(The-Vampire-diaries)-3x02-CZ-titulky.avi
2014-06-11 10:01 - 2014-06-12 10:25 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E18.HDTV.x264-2HD[rarbg]
2014-06-11 09:53 - 2014-06-11 16:50 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E02.PDTV.x264-RTA[rarbg]
2014-06-11 09:26 - 2014-06-11 17:21 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E03.PDTV.x264-RTA[rarbg]
2014-06-11 09:20 - 2014-06-11 20:46 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E21.HDTV.x264-2HD[rarbg]
2014-06-11 09:17 - 2014-06-11 21:39 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E01.PDTV.x264-RTA[rarbg]
2014-06-11 09:14 - 2014-06-12 11:53 - 382030608 _____ () C:\Users\Lucka\Desktop\The.Voice.S06E20.HDTV.x264-Poke[rarbg].mp4
2014-06-11 09:12 - 2014-06-12 16:27 - 717367881 ____R () C:\Users\Lucka\Desktop\The.Voice.S06E19.HDTV.x264-Poke[rarbg].mp4
2014-06-11 09:01 - 2014-06-11 20:34 - 547275729 _____ () C:\Users\Lucka\Desktop\The.Voice.AU.S03E16.PDTV.x264.Hector.mp4
2014-06-11 09:01 - 2014-06-11 14:35 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E15.PDTV.x264-FQM[rarbg]
2014-06-11 07:03 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 07:03 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 07:03 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 07:03 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 07:03 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-11 07:03 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 07:03 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-11 07:03 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 07:03 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 07:03 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-11 07:03 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-11 07:03 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-11 07:03 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-11 07:03 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 07:03 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 07:03 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 07:03 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 07:03 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 07:03 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 07:03 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 07:03 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 07:03 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-11 07:03 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 07:03 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 07:03 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-11 07:03 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 07:03 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 07:03 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 07:03 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 07:03 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-11 07:03 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 07:03 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-11 07:03 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-11 07:03 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-11 07:03 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 07:03 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 07:03 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-11 07:03 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 07:03 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 07:03 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 07:03 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 07:03 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 07:03 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 07:03 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-11 07:03 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 07:03 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 07:03 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 07:03 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 07:03 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 07:03 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 07:03 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-11 07:03 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-11 07:03 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-11 07:03 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 07:03 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 07:03 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 07:03 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-11 07:03 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 07:03 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-11 07:03 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-11 07:03 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 07:03 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 07:03 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 07:03 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 07:03 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-06-08 20:42 - 2014-06-09 11:34 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E05.PDTV.x264-RTA[rarbg]
2014-06-08 19:02 - 2014-06-08 21:41 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E06.PDTV.x264-RTA[rarbg]
2014-06-08 10:33 - 2014-06-09 11:39 - 00000000 ____D () C:\Users\Lucka\Downloads\The.Voice.S06E24.720p.HDTV.x264-2HD[rarbg]
2014-06-07 13:57 - 2014-06-07 13:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-06-07 13:56 - 2014-06-07 13:56 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-06-07 12:34 - 2014-06-08 10:12 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E23.720p.HDTV.x264-2HD[rarbg]
2014-06-07 12:33 - 2014-06-08 10:02 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E07.PDTV.x264-RTA[rarbg]
2014-06-07 08:07 - 2014-06-09 15:35 - 673650013 _____ () C:\Users\Lucka\Desktop\The.Voice.AU.S03E14.PDTV.x264.Hector.mp4
2014-06-06 21:45 - 2014-06-11 20:28 - 00002493 _____ () C:\Users\Lucka\Desktop\the script.txt
2014-06-06 16:05 - 2014-06-06 18:01 - 00000000 ____D () C:\Users\Lucka\AppData\Local\Spotify
2014-06-06 16:04 - 2014-06-07 07:58 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E08.PDTV.x264-RTA[rarbg]
2014-06-06 15:56 - 2014-06-06 15:56 - 00001795 _____ () C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-06-06 15:55 - 2014-06-12 14:27 - 00000000 ____D () C:\Users\Lucka\AppData\Roaming\Spotify
2014-06-06 14:53 - 2014-06-07 08:07 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E09.PDTV.x264-RTA[rarbg]
2014-06-06 14:33 - 2014-06-07 08:05 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E10.PDTV.x264-RTA[rarbg]
2014-06-06 14:26 - 2014-06-07 08:08 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E25.HDTV.x264-2HD[rarbg]
2014-06-06 14:14 - 2014-06-07 08:00 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E27.Live.Finale.720p.HDTV.x264-2HD[rarbg]
2014-06-06 14:07 - 2014-06-06 14:12 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E26.Final.Performances.Recap.720p.HDTV.x264-2HD[rarbg]
2014-06-02 20:31 - 2014-06-02 20:35 - 00000000 ____D () C:\Users\Lucka\AppData\Roaming\AIMP3
2014-06-02 20:31 - 2014-06-02 20:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2014-06-02 20:31 - 2014-06-02 20:31 - 00000000 ____D () C:\Program Files (x86)\AIMP3
2014-06-02 19:42 - 2014-06-02 19:42 - 00000000 ____D () C:\ProgramData\Last.fm
2014-06-02 19:38 - 2014-06-02 19:38 - 00001120 _____ () C:\Users\Public\Desktop\Comodo Dragon.lnk
2014-06-02 19:37 - 2014-06-05 15:32 - 00000000 ____D () C:\Users\Lucka\AppData\Local\Last.fm
2014-06-02 19:37 - 2014-06-02 19:37 - 00057096 _____ (COMODO CA Limited) C:\Windows\system32\certsentry.dll
2014-06-02 19:37 - 2014-06-02 19:37 - 00048392 _____ (COMODO CA Limited) C:\Windows\SysWOW64\certsentry.dll
2014-06-02 19:37 - 2014-06-02 19:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Last.fm
2014-06-02 19:37 - 2014-06-02 19:37 - 00000000 ____D () C:\Program Files (x86)\Last.fm
2014-06-02 19:34 - 2014-06-02 19:34 - 00001190 _____ () C:\Users\Public\Desktop\aTube Catcher.lnk
2014-06-02 19:33 - 2014-06-02 19:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2014-06-02 19:28 - 2014-06-02 19:28 - 00000000 _____ () C:\Users\Lucka\Desktop\The Script We Cry lyrics[59].part
2014-05-31 22:54 - 2014-06-11 10:20 - 00000637 _____ () C:\Users\Lucka\Desktop\hfrsh.txt
2014-05-31 16:10 - 2014-06-01 09:25 - 00000000 ____D () C:\Users\Lucka\Downloads\[ http://www.Torrenting.com ] - The.Voice.UK.S03E12.720p.HDTV.x264-C4TV
2014-05-30 11:26 - 2014-05-31 08:50 - 00000000 ____D () C:\Users\Lucka\Desktop\[ http://www.Torrenting.com ] - The.Voice.UK.S02E15.Final.720p.HDTV.x264-C4TV
2014-05-30 10:55 - 2014-05-31 08:42 - 00000000 ____D () C:\Users\Lucka\Desktop\[ http://www.Torrenting.com ] - The.Voice.UK.S02E11.720p.HDTV.x264-C4TV
2014-05-25 19:00 - 2014-05-25 19:00 - 00000875 _____ () C:\Users\Lucka\Desktop\BitTorrent.lnk
2014-05-25 19:00 - 2014-05-25 19:00 - 00000855 _____ () C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2014-05-25 14:59 - 2014-06-12 12:45 - 00018002 _____ () C:\Users\Lucka\Desktop\Stavební plán (Automaticky uloženo).xlsx
2014-05-24 17:49 - 2014-05-24 17:49 - 00000032 _____ () C:\Users\Lucka\Desktop\twitter.txt
2014-05-22 08:12 - 2012-01-03 21:42 - 00000000 ____D () C:\Users\Lucka\Desktop\jPvocabulary-3.2
2014-05-18 21:52 - 2014-05-22 20:25 - 00000286 _____ () C:\Users\Lucka\Desktop\g.txt
2014-05-17 10:33 - 2014-05-17 11:29 - 00000000 ___RD () C:\Users\Lucka\Desktop\ESPAÑOL
2014-05-17 10:19 - 2014-05-17 10:27 - 00000000 ___RD () C:\Users\Lucka\Desktop\BOOKS
2014-05-15 10:27 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-15 10:27 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-15 10:26 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-15 10:26 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-15 10:26 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-15 10:26 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-15 10:26 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-15 10:26 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-15 10:26 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-15 10:26 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-15 10:26 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-15 10:26 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-15 10:26 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-15 10:26 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-15 10:26 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-15 10:26 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-15 10:26 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-15 10:26 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-15 10:26 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-15 10:26 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-15 10:26 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-15 10:26 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-15 10:26 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-15 10:26 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-15 10:26 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-15 10:26 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-15 10:26 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-15 10:26 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 10:26 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 10:26 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-15 10:26 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-15 10:26 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-14 08:26 - 2014-06-12 14:08 - 00001712 _____ () C:\Windows\PFRO.log
2014-05-13 20:05 - 2014-05-13 20:05 - 17938608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe

==================== One Month Modified Files and Folders =======

2014-06-12 17:38 - 2014-06-12 17:36 - 00014938 _____ () C:\Users\Lucka\Desktop\FRST.txt
2014-06-12 17:38 - 2014-06-12 14:07 - 00000000 ____D () C:\Users\Lucka\AppData\Local\Temp
2014-06-12 17:38 - 2013-10-22 08:51 - 00000000 ____D () C:\Users\Lucka\AppData\Roaming\BitTorrent
2014-06-12 17:36 - 2014-06-12 17:36 - 00000000 ____D () C:\FRST
2014-06-12 17:34 - 2014-06-12 17:34 - 00112640 _____ (forum.viry.cz) C:\Users\Lucka\Desktop\FRSTLauncher.exe
2014-06-12 17:34 - 2014-06-12 17:33 - 02081792 _____ (Farbar) C:\Users\Lucka\Desktop\FRST64.exe
2014-06-12 17:25 - 2014-03-26 19:14 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf4916e24230ea.job
2014-06-12 17:13 - 2013-10-20 13:51 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-12 17:12 - 2013-12-26 00:31 - 00000000 ____D () C:\Users\Lucka\AppData\Roaming\vlc
2014-06-12 16:27 - 2014-06-11 09:12 - 717367881 ____R () C:\Users\Lucka\Desktop\The.Voice.S06E19.HDTV.x264-Poke[rarbg].mp4
2014-06-12 16:15 - 2014-06-12 15:58 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E16.720p.HDTV.x264-2HD[rarbg]
2014-06-12 14:58 - 2014-04-17 09:24 - 00006900 _____ () C:\Windows\setupact.log
2014-06-12 14:30 - 2009-07-14 06:45 - 00017600 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-12 14:30 - 2009-07-14 06:45 - 00017600 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-12 14:27 - 2014-06-06 15:55 - 00000000 ____D () C:\Users\Lucka\AppData\Roaming\Spotify
2014-06-12 14:21 - 2013-10-19 00:28 - 01287447 _____ () C:\Windows\WindowsUpdate.log
2014-06-12 14:09 - 2014-03-22 08:09 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-12 14:08 - 2014-06-12 13:51 - 00011714 _____ () C:\zoek-results.log
2014-06-12 14:08 - 2014-05-14 08:26 - 00001712 _____ () C:\Windows\PFRO.log
2014-06-12 14:08 - 2013-10-19 00:52 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-12 14:08 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-12 14:07 - 2014-06-12 14:07 - 00000000 ____D () C:\Users\Default\AppData\Local\Temp
2014-06-12 14:07 - 2014-06-12 14:07 - 00000000 ____D () C:\Users\Default User\AppData\Local\Temp
2014-06-12 14:04 - 2014-06-12 13:48 - 00000000 ____D () C:\zoek_backup
2014-06-12 14:02 - 2013-10-18 22:58 - 00000000 ____D () C:\Users\Lucka
2014-06-12 13:50 - 2014-06-12 14:07 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-12 13:48 - 2014-06-12 13:48 - 01285120 _____ () C:\Users\Lucka\Desktop\zoek.exe
2014-06-12 13:47 - 2013-10-27 23:16 - 00000000 ___RD () C:\Users\Lucka\Desktop\FILMS
2014-06-12 13:00 - 2013-10-19 19:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-12 12:59 - 2014-06-12 12:57 - 00000000 ____D () C:\AdwCleaner
2014-06-12 12:59 - 2013-10-19 19:57 - 00001065 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-12 12:59 - 2013-10-19 19:57 - 00001053 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-12 12:59 - 2013-10-19 00:53 - 00001290 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-12 12:59 - 2013-10-19 00:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-06-12 12:59 - 2013-10-18 23:01 - 00000973 _____ () C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-12 12:57 - 2014-06-12 12:57 - 01333465 _____ () C:\Users\Lucka\Downloads\adwcleaner_3.212.exe
2014-06-12 12:56 - 2014-06-12 12:56 - 00003825 _____ () C:\Users\Lucka\Desktop\JRT.txt
2014-06-12 12:45 - 2014-05-25 14:59 - 00018002 _____ () C:\Users\Lucka\Desktop\Stavební plán (Automaticky uloženo).xlsx
2014-06-12 12:43 - 2014-06-12 12:43 - 01016261 _____ (Thisisu) C:\Users\Lucka\Downloads\JRT.exe
2014-06-12 12:43 - 2014-06-12 12:43 - 00000000 ____D () C:\Windows\ERUNT
2014-06-12 12:30 - 2014-06-12 12:30 - 00000000 ____D () C:\rsit
2014-06-12 12:30 - 2014-06-12 12:30 - 00000000 ____D () C:\Program Files\trend micro
2014-06-12 11:53 - 2014-06-11 09:14 - 382030608 _____ () C:\Users\Lucka\Desktop\The.Voice.S06E20.HDTV.x264-Poke[rarbg].mp4
2014-06-12 10:46 - 2014-06-12 10:46 - 07198767 _____ () C:\Users\Lucka\Desktop\bookmarks-2014-06-12.json
2014-06-12 10:30 - 2014-06-11 21:57 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E22.HDTV.x264-NoGRP[rartv]
2014-06-12 10:25 - 2014-06-11 10:01 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E18.HDTV.x264-2HD[rarbg]
2014-06-12 10:21 - 2014-06-11 21:23 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E21.720p.HDTV.x264-2HD[rarbg]
2014-06-12 10:14 - 2014-06-11 21:56 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E17.720p.HDTV.x264-2HD[rarbg]
2014-06-11 23:09 - 2013-10-19 10:20 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-11 23:05 - 2013-10-19 10:19 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 23:05 - 2009-08-22 10:35 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-11 21:57 - 2014-06-11 16:21 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E04.PDTV.x264-RTA[rarbg]
2014-06-11 21:39 - 2014-06-11 09:17 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E01.PDTV.x264-RTA[rarbg]
2014-06-11 20:46 - 2014-06-11 09:20 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E21.HDTV.x264-2HD[rarbg]
2014-06-11 20:34 - 2014-06-11 09:01 - 547275729 _____ () C:\Users\Lucka\Desktop\The.Voice.AU.S03E16.PDTV.x264.Hector.mp4
2014-06-11 20:28 - 2014-06-06 21:45 - 00002493 _____ () C:\Users\Lucka\Desktop\the script.txt
2014-06-11 19:48 - 2014-06-11 19:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-11 17:21 - 2014-06-11 09:26 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E03.PDTV.x264-RTA[rarbg]
2014-06-11 16:50 - 2014-06-11 09:53 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E02.PDTV.x264-RTA[rarbg]
2014-06-11 14:35 - 2014-06-11 09:01 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E15.PDTV.x264-FQM[rarbg]
2014-06-11 12:06 - 2014-06-11 11:45 - 368052224 _____ () C:\Users\Lucka\Desktop\The-Vampire-Diaries-3x05-(CZ-tit.HDTV)-by-Nezka.avi
2014-06-11 11:43 - 2014-06-11 11:22 - 368064512 _____ () C:\Users\Lucka\Desktop\The-Vampire-Diaries-3x04-(CZ-tit.HDTV)-by-Nezka.avi
2014-06-11 11:19 - 2014-06-11 10:41 - 366997504 _____ () C:\Users\Lucka\Desktop\The-Vampire-Diaries-3x03---The-End-of-the-Affair-(titulky)-cz.avi
2014-06-11 10:36 - 2014-06-11 10:15 - 367022080 _____ () C:\Users\Lucka\Desktop\Upíří-deníky-(The-Vampire-diaries)-3x02-CZ-titulky.avi
2014-06-11 10:20 - 2014-05-31 22:54 - 00000637 _____ () C:\Users\Lucka\Desktop\hfrsh.txt
2014-06-09 15:35 - 2014-06-07 08:07 - 673650013 _____ () C:\Users\Lucka\Desktop\The.Voice.AU.S03E14.PDTV.x264.Hector.mp4
2014-06-09 11:39 - 2014-06-08 10:33 - 00000000 ____D () C:\Users\Lucka\Downloads\The.Voice.S06E24.720p.HDTV.x264-2HD[rarbg]
2014-06-09 11:34 - 2014-06-08 20:42 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E05.PDTV.x264-RTA[rarbg]
2014-06-08 21:41 - 2014-06-08 19:02 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E06.PDTV.x264-RTA[rarbg]
2014-06-08 16:37 - 2014-01-18 23:25 - 00000132 _____ () C:\Users\Lucka\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2014-06-08 10:26 - 2013-10-29 09:27 - 00000000 ___RD () C:\Users\Lucka\Desktop\RISING CITIES
2014-06-08 10:12 - 2014-06-07 12:34 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E23.720p.HDTV.x264-2HD[rarbg]
2014-06-08 10:02 - 2014-06-07 12:33 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E07.PDTV.x264-RTA[rarbg]
2014-06-07 19:12 - 2014-04-05 19:03 - 00000131 _____ () C:\Users\Lucka\Desktop\w.txt
2014-06-07 13:57 - 2014-06-07 13:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-06-07 13:57 - 2013-10-20 13:51 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-06-07 13:56 - 2014-06-07 13:56 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-06-07 13:56 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-06-07 11:59 - 2013-12-30 13:29 - 00000000 ___RD () C:\Users\Lucka\Desktop\BLOG
2014-06-07 08:08 - 2014-06-06 14:26 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E25.HDTV.x264-2HD[rarbg]
2014-06-07 08:07 - 2014-06-06 14:53 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E09.PDTV.x264-RTA[rarbg]
2014-06-07 08:05 - 2014-06-06 14:33 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E10.PDTV.x264-RTA[rarbg]
2014-06-07 08:00 - 2014-06-06 14:14 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E27.Live.Finale.720p.HDTV.x264-2HD[rarbg]
2014-06-07 07:58 - 2014-06-06 16:04 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.AU.S03E08.PDTV.x264-RTA[rarbg]
2014-06-07 07:57 - 2009-07-14 07:08 - 00032630 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-06-06 18:01 - 2014-06-06 16:05 - 00000000 ____D () C:\Users\Lucka\AppData\Local\Spotify
2014-06-06 15:56 - 2014-06-06 15:56 - 00001795 _____ () C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-06-06 14:12 - 2014-06-06 14:07 - 00000000 ____D () C:\Users\Lucka\Desktop\The.Voice.S06E26.Final.Performances.Recap.720p.HDTV.x264-2HD[rarbg]
2014-06-05 15:32 - 2014-06-02 19:37 - 00000000 ____D () C:\Users\Lucka\AppData\Local\Last.fm
2014-06-02 20:35 - 2014-06-02 20:31 - 00000000 ____D () C:\Users\Lucka\AppData\Roaming\AIMP3
2014-06-02 20:31 - 2014-06-02 20:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2014-06-02 20:31 - 2014-06-02 20:31 - 00000000 ____D () C:\Program Files (x86)\AIMP3
2014-06-02 19:42 - 2014-06-02 19:42 - 00000000 ____D () C:\ProgramData\Last.fm
2014-06-02 19:38 - 2014-06-02 19:38 - 00001120 _____ () C:\Users\Public\Desktop\Comodo Dragon.lnk
2014-06-02 19:38 - 2013-12-23 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2014-06-02 19:37 - 2014-06-02 19:37 - 00057096 _____ (COMODO CA Limited) C:\Windows\system32\certsentry.dll
2014-06-02 19:37 - 2014-06-02 19:37 - 00048392 _____ (COMODO CA Limited) C:\Windows\SysWOW64\certsentry.dll
2014-06-02 19:37 - 2014-06-02 19:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Last.fm
2014-06-02 19:37 - 2014-06-02 19:37 - 00000000 ____D () C:\Program Files (x86)\Last.fm
2014-06-02 19:37 - 2013-12-23 21:04 - 00000000 ____D () C:\Users\Lucka\AppData\Local\Comodo
2014-06-02 19:36 - 2013-12-23 21:03 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-06-02 19:34 - 2014-06-02 19:34 - 00001190 _____ () C:\Users\Public\Desktop\aTube Catcher.lnk
2014-06-02 19:33 - 2014-06-02 19:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2014-06-02 19:28 - 2014-06-02 19:28 - 00000000 _____ () C:\Users\Lucka\Desktop\The Script We Cry lyrics[59].part
2014-06-01 09:25 - 2014-05-31 16:10 - 00000000 ____D () C:\Users\Lucka\Downloads\[ http://www.Torrenting.com ] - The.Voice.UK.S03E12.720p.HDTV.x264-C4TV
2014-05-31 08:50 - 2014-05-30 11:26 - 00000000 ____D () C:\Users\Lucka\Desktop\[ http://www.Torrenting.com ] - The.Voice.UK.S02E15.Final.720p.HDTV.x264-C4TV
2014-05-31 08:42 - 2014-05-30 10:55 - 00000000 ____D () C:\Users\Lucka\Desktop\[ http://www.Torrenting.com ] - The.Voice.UK.S02E11.720p.HDTV.x264-C4TV
2014-05-30 12:21 - 2014-06-11 07:03 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-11 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-11 07:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-11 07:03 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-11 07:03 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:39 - 2014-06-11 07:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:38 - 2014-06-11 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-11 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-11 07:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-11 07:03 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-11 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-11 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-11 07:03 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-11 07:03 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-11 07:03 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-11 07:03 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-11 07:03 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-11 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-11 07:03 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-11 07:03 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-11 07:03 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-11 07:03 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-11 07:03 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-11 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-11 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:38 - 2014-06-11 07:03 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-11 07:03 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-11 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-11 07:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-11 07:03 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-11 07:03 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-11 07:03 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-11 07:03 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-11 07:03 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-11 07:03 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-11 07:03 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-11 07:03 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-11 07:03 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-11 07:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-11 07:03 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-11 07:03 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-11 07:03 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-11 07:03 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-11 07:03 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-11 07:03 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-11 07:03 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-11 07:03 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-11 07:03 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-11 07:03 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-11 07:03 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-11 07:03 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 09:13 - 2014-06-11 07:03 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-28 16:20 - 2013-10-19 08:48 - 00622660 _____ () C:\Windows\system32\perfh005.dat
2014-05-28 16:20 - 2013-10-19 08:48 - 00118810 _____ () C:\Windows\system32\perfc005.dat
2014-05-28 16:20 - 2009-07-14 07:13 - 01445734 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-25 19:00 - 2014-05-25 19:00 - 00000875 _____ () C:\Users\Lucka\Desktop\BitTorrent.lnk
2014-05-25 19:00 - 2014-05-25 19:00 - 00000855 _____ () C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2014-05-24 17:49 - 2014-05-24 17:49 - 00000032 _____ () C:\Users\Lucka\Desktop\twitter.txt
2014-05-22 20:25 - 2014-05-18 21:52 - 00000286 _____ () C:\Users\Lucka\Desktop\g.txt
2014-05-20 21:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-18 12:53 - 2014-05-09 18:29 - 00000000 ___RD () C:\Users\Lucka\Desktop\POSTCROSSING
2014-05-18 11:25 - 2014-02-22 11:47 - 00000000 ___RD () C:\Users\Lucka\Desktop\FOLDER ICONS
2014-05-18 09:40 - 2014-04-24 18:09 - 00000000 ___RD () C:\Users\Lucka\Desktop\TURBOFIRE
2014-05-18 09:36 - 2014-04-14 20:10 - 00000000 ___RD () C:\Users\Lucka\Desktop\PHOTOS
2014-05-17 11:29 - 2014-05-17 10:33 - 00000000 ___RD () C:\Users\Lucka\Desktop\ESPAÑOL
2014-05-17 10:27 - 2014-05-17 10:19 - 00000000 ___RD () C:\Users\Lucka\Desktop\BOOKS
2014-05-16 11:41 - 2013-10-18 23:01 - 00000000 ___RD () C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-16 11:41 - 2013-10-18 23:01 - 00000000 ___RD () C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-13 20:06 - 2013-10-20 13:51 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-13 20:06 - 2013-10-20 13:51 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-13 20:06 - 2013-10-20 13:51 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 20:05 - 2014-05-13 20:05 - 17938608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf4916e24230ea.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Lucka\Desktop" je 133505 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mwlDaemon
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#12 Příspěvek od **vyosek** » 12 čer 2014 21:49

Odintalujte McAfee Security Scan a Comodo IceDragon

Ta velikost plochy tez neni OK, zkuste z plochy odstranit velke soubory a data - na plose maji byt defakto jen zastupci. Data presunte primo nekam na disk a na plochu si dejte jen zastupce

Velikost slozky "C:\Users\Lucka\Desktop" je 133505 MB.

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EgisTecLiveUpdate] => C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-10-19] (Microsoft Corporation)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [feedreader.exe] => C:\Program Files (x86)\FeedReader30\feedreader.exe [2058240 2009-03-29] ()
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3588952 2014-03-22] (Electronic Arts)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [BitTorrent] => C:\Users\Lucka\AppData\Roaming\BitTorrent\BitTorrent.exe [1242704 2014-05-25] (BitTorrent Inc.)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [Spotify Web Helper] => C:\Users\Lucka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-06] (Spotify Ltd)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\Run: [Spotify] => C:\Users\Lucka\AppData\Roaming\Spotify\spotify.exe [6170168 2014-06-06] (Spotify Ltd)
HKU\S-1-5-21-2168297920-202002444-308054462-1000\...\MountPoints2: {ab4ace25-3b44-11e3-853d-00262d5e32e3} - F:\LaunchU3.exe -a
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.

2014-06-12 17:34 - 2014-06-12 17:34 - 00112640 _____ (forum.viry.cz) C:\Users\Lucka\Desktop\FRSTLauncher.exe
2014-06-12 14:07 - 2014-06-12 13:50 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-12 13:51 - 2014-06-12 14:08 - 00011714 _____ () C:\zoek-results.log
2014-06-12 13:48 - 2014-06-12 14:04 - 00000000 ____D () C:\zoek_backup
2014-06-12 13:48 - 2014-06-12 13:48 - 01285120 _____ () C:\Users\Lucka\Desktop\zoek.exe
2014-06-12 12:58 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-12 12:57 - 2014-06-12 12:59 - 00000000 ____D () C:\AdwCleaner
2014-06-12 12:57 - 2014-06-12 12:57 - 01333465 _____ () C:\Users\Lucka\Downloads\adwcleaner_3.212.exe
2014-06-12 12:56 - 2014-06-12 12:56 - 00003825 _____ () C:\Users\Lucka\Desktop\JRT.txt
2014-06-12 12:43 - 2014-06-12 12:43 - 01016261 _____ (Thisisu) C:\Users\Lucka\Downloads\JRT.exe
2014-06-12 12:43 - 2014-06-12 12:43 - 00000000 ____D () C:\Windows\ERUNT
2014-06-12 12:30 - 2014-06-12 12:30 - 00000000 ____D () C:\rsit
2014-06-12 12:30 - 2014-06-12 12:30 - 00000000 ____D () C:\Program Files\trend micro
2014-06-07 13:57 - 2014-06-07 13:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-06-07 13:57 - 2013-10-20 13:51 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-06-07 13:56 - 2014-06-07 13:56 - 00000000 ____D () C:\Program Files\McAfee Security Scan

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf4916e24230ea.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Hosts:
End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

VIRY.CZ

Jak se zbavit delta-homes?

Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?

Re: Jak se zbavit delta-homes?