Dobrý den,
našel AVG rezident. a uklidil do trezoru. Projel jsem ještě Malwarebytes, ten našel ještě nějaký klíč a také uklidil. Nyní je to z pohledu avg a MWB v pořádku. PC se chová bez problémů standardně, přesto prosím o preventivní kontrolu.
Děkuji.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-06-2014
Ran by Libor (administrator) on TOSHIBA on 23-06-2014 09:51:18
Running from C:\Users\Libor\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneLauncher.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(Společnost TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(TOSHIBA CORPORATION.) C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe
(forum.viry.cz) C:\Users\Libor\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2052392 2010-03-10] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [896032 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [Toshiba TEMPRO] => C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1546720 2011-02-10] (Toshiba Europe GmbH)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [705368 2010-02-23] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] => C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [35672 2010-03-03] (TOSHIBA Corporation)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-24] (CANON INC.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [566184 2010-09-28] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [52600 2009-03-09] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [570680 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [915320 2010-05-10] (TOSHIBA Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [TWebCamera] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2010-02-24] (TOSHIBA CORPORATION.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-04-23] (Apple Inc.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411952 2014-01-21] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [599328 2010-03-24] (Sony Corporation)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScanUtility] => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [206240 2010-08-24] (CANON INC.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-276332642-1909207443-117345979-1007\...\Run: [] => [X]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Monitor.lnk
ShortcutTarget: Bluetooth Monitor.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Monitor\BtMon2.exe (TOSHIBA CORPORATION)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/?clid=2
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.10 192.168.1.1 192.168.33.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-01-07]
Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-18]
CHR Extension: (Disk Google) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-18]
CHR Extension: (YouTube) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-18]
CHR Extension: (Vyhledávání Google) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-18]
CHR Extension: (Peněženka Google) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-18]
CHR Extension: (Gmail) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-18]
CHR HKLM-x32\...\Chrome\Extension: [jfmdaolnolkfdaaahjbgjeknmcdaalog] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha280\ch\WebexpEnhancedV1alpha280.crx [2013-11-18]
==================== Services (Whitelisted) =================
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-11-20] (AVG Technologies CZ, s.r.o.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112080 2011-02-10] (Toshiba Europe GmbH)
==================== Drivers (Whitelisted) ====================
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2014-04-15] (AVG Technologies CZ, s.r.o.)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-23 09:51 - 2014-06-23 09:51 - 00015665 _____ () C:\Users\Libor\Desktop\FRST.txt
2014-06-23 09:50 - 2014-06-23 09:51 - 00000000 ____D () C:\FRST
2014-06-23 09:43 - 2014-06-23 09:43 - 02082816 _____ (Farbar) C:\Users\Libor\Desktop\FRST64.exe
2014-06-23 09:37 - 2014-06-23 09:37 - 00112640 _____ (forum.viry.cz) C:\Users\Libor\Desktop\FRSTLauncher.exe
2014-06-23 09:33 - 2014-06-23 09:33 - 00415744 _____ (Farbar) C:\Users\Libor\Desktop\FSS.exe
2014-06-19 18:47 - 2014-06-19 18:47 - 00794080 _____ () C:\Users\Klárka\Downloads\Hvezdy-nam-nepraly---John-Green.mobi
2014-06-12 15:34 - 2014-06-12 15:34 - 00000000 ____D () C:\Users\Libor\AppData\Local\Adobe
2014-06-11 18:57 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 18:57 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 18:57 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 18:57 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 18:57 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-11 18:57 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 18:57 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-11 18:57 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 18:57 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 18:57 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-11 18:57 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-11 18:57 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-11 18:57 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-11 18:57 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 18:57 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 18:57 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 18:57 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 18:57 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 18:57 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 18:57 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 18:57 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 18:57 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-11 18:57 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 18:57 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 18:57 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-11 18:57 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 18:57 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 18:57 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 18:57 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 18:57 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-11 18:57 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 18:57 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-11 18:57 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-11 18:57 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-11 18:57 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 18:57 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 18:57 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-11 18:57 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 18:57 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 18:57 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 18:57 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 18:57 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 18:57 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 18:57 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-11 18:57 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 18:57 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 18:57 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 18:57 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 18:57 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 18:57 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 18:57 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-11 18:57 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-11 18:57 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-11 18:57 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-11 18:57 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-11 18:57 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 18:57 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 18:57 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 18:57 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-11 18:57 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 18:57 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-11 18:57 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-11 18:57 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 18:57 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 18:57 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 18:57 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-10 20:37 - 2014-06-10 20:37 - 00006724 _____ () C:\Users\Klárka\Downloads\Okruhy pro ekologii.odt
2014-05-28 20:01 - 2014-05-28 20:01 - 03010003 _____ () C:\Users\Klárka\Downloads\ZB_Z-6_pohori.notebook
2014-05-28 11:44 - 2014-05-28 11:44 - 00000000 ____D () C:\Users\Libor\AppData\Local\Skype
==================== One Month Modified Files and Folders =======
2014-06-23 09:51 - 2014-06-23 09:51 - 00015665 _____ () C:\Users\Libor\Desktop\FRST.txt
2014-06-23 09:51 - 2014-06-23 09:50 - 00000000 ____D () C:\FRST
2014-06-23 09:44 - 2014-02-21 23:26 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-23 09:43 - 2014-06-23 09:43 - 02082816 _____ (Farbar) C:\Users\Libor\Desktop\FRST64.exe
2014-06-23 09:37 - 2014-06-23 09:37 - 00112640 _____ (forum.viry.cz) C:\Users\Libor\Desktop\FRSTLauncher.exe
2014-06-23 09:33 - 2014-06-23 09:33 - 00415744 _____ (Farbar) C:\Users\Libor\Desktop\FSS.exe
2014-06-23 09:18 - 2014-02-21 23:26 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-23 09:17 - 2013-07-03 09:05 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-23 09:14 - 2013-07-02 22:59 - 01465380 _____ () C:\Windows\WindowsUpdate.log
2014-06-23 08:14 - 2009-07-14 06:45 - 00030064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-23 08:14 - 2009-07-14 06:45 - 00030064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-23 08:12 - 2013-07-03 09:41 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-23 08:07 - 2014-05-06 18:51 - 00018015 _____ () C:\Windows\setupact.log
2014-06-23 08:07 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-21 08:06 - 2013-10-26 19:53 - 00000000 ____D () C:\Users\Klárka\Documents\blbinky
2014-06-19 18:47 - 2014-06-19 18:47 - 00794080 _____ () C:\Users\Klárka\Downloads\Hvezdy-nam-nepraly---John-Green.mobi
2014-06-16 19:51 - 2012-10-23 18:13 - 00000000 ____D () C:\Users\Klárka\Documents\Škola
2014-06-16 13:56 - 2014-04-18 10:46 - 00000000 ____D () C:\Users\Public\Documents\Tenis
2014-06-15 21:21 - 2013-07-09 17:58 - 00000000 ____D () C:\Users\Klárka\AppData\Roaming\Skype
2014-06-15 17:31 - 2011-04-12 10:34 - 00672370 _____ () C:\Windows\system32\perfh005.dat
2014-06-15 17:31 - 2011-04-12 10:34 - 00142934 _____ () C:\Windows\system32\perfc005.dat
2014-06-15 17:31 - 2009-07-14 07:13 - 01593142 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-12 15:34 - 2014-06-12 15:34 - 00000000 ____D () C:\Users\Libor\AppData\Local\Adobe
2014-06-12 14:41 - 2013-12-16 16:21 - 00000000 ____D () C:\Users\Libor\AppData\Local\Apple Computer
2014-06-12 09:08 - 2013-12-03 18:14 - 00000000 ____D () C:\Users\Mamka\AppData\Roaming\vlc
2014-06-12 08:05 - 2013-12-16 15:32 - 00000000 ____D () C:\Users\Libor\AppData\Roaming\vlc
2014-06-12 07:47 - 2014-01-11 12:30 - 00002190 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-12 07:14 - 2013-07-03 09:05 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-12 07:14 - 2013-07-03 09:05 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-12 07:14 - 2013-07-03 09:05 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-11 19:25 - 2013-07-29 14:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-11 19:21 - 2013-07-04 14:17 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 19:20 - 2013-07-03 09:24 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-10 20:37 - 2014-06-10 20:37 - 00006724 _____ () C:\Users\Klárka\Downloads\Okruhy pro ekologii.odt
2014-06-01 16:33 - 2013-12-29 18:39 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-05-31 18:03 - 2013-07-03 09:17 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-31 18:03 - 2013-07-03 09:16 - 00000000 ____D () C:\ProgramData\Skype
2014-05-30 12:21 - 2014-06-11 18:57 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-11 18:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-11 18:57 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-11 18:57 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-11 18:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:39 - 2014-06-11 18:57 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:38 - 2014-06-11 18:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-11 18:57 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-11 18:57 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-11 18:57 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-11 18:57 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-11 18:57 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-11 18:57 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-11 18:57 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-11 18:57 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-11 18:57 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-11 18:57 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-11 18:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-11 18:57 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-11 18:57 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-11 18:57 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-11 18:57 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-11 18:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-11 18:57 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-11 18:57 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:38 - 2014-06-11 18:57 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-11 18:57 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-11 18:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-11 18:57 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-11 18:57 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-11 18:57 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-11 18:57 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-11 18:57 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-11 18:57 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-11 18:57 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-11 18:57 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-11 18:57 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-11 18:57 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-11 18:57 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-11 18:57 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-11 18:57 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-11 18:57 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-11 18:57 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-11 18:57 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-11 18:57 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-11 18:57 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-11 18:57 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-11 18:57 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-11 18:57 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-11 18:57 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-11 18:57 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 09:13 - 2014-06-11 18:57 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-28 20:01 - 2014-05-28 20:01 - 03010003 _____ () C:\Users\Klárka\Downloads\ZB_Z-6_pohori.notebook
2014-05-28 11:46 - 2013-11-26 18:20 - 00000000 ____D () C:\Users\Libor\AppData\Roaming\Skype
2014-05-28 11:44 - 2014-05-28 11:44 - 00000000 ____D () C:\Users\Libor\AppData\Local\Skype
2014-05-28 07:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
Some content of TEMP:
====================
C:\Users\Libor\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\Libor\AppData\Local\Temp\vlc-2.1.3-win32.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-01-05 10:16
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (WINDOWS) (Fixed) (Total:595.78 GB) (Free:335.51 GB) NTFS
Available physical RAM: 1903.44 MB
Total physical RAM: 3954.67 MB
Percentage of memory in use: 51%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 23728765)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=596 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: AVG AntiVirus Business Edition (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Business Edition (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Libor\Desktop" je 2 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
MalSign.Generic.8E1
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
MalSign.Generic.8E1
- Přílohy
-
- Addition.rar
- (7.84 KiB) Staženo 95 x
-
Rudy
- Site Admin
- Příspěvky: 119544
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: MalSign.Generic.8E1
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKU\S-1-5-21-276332642-1909207443-117345979-1007\...\Run: [] => [X]
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
c:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
CHR HKLM-x32\...\Chrome\Extension: [jfmdaolnolkfdaaahjbgjeknmcdaalog] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha280\ch\WebexpEnhancedV1alpha280.crx [2013-11-18]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Libor\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: MalSign.Generic.8E1
Zdravím zase po čase,
nedaří se mi. FRST hlásí, že nástroj a txt. soubor musí být v jedné složce na ploše. Přitom je tam mám. Vše na ploše a nechce si ho natáhnout. (not found "fixlist.txt.)
nedaří se mi. FRST hlásí, že nástroj a txt. soubor musí být v jedné složce na ploše. Přitom je tam mám. Vše na ploše a nechce si ho natáhnout. (not found "fixlist.txt.)
Re: MalSign.Generic.8E1
Tak už se mi to podařilo, nelíbila se mu přípona v názvu".txt."
tady je Fixlog:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 22-06-2014
Ran by Libor at 2014-06-24 10:26:48 Run:1
Running from C:\Users\Libor\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKU\S-1-5-21-276332642-1909207443-117345979-1007\...\Run: [] => [X]
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
c:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
CHR HKLM-x32\...\Chrome\Extension: [jfmdaolnolkfdaaahjbgjeknmcdaalog] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha280\ch\WebexpEnhancedV1alpha280.crx [2013-11-18]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Libor\AppData\Local\Temp
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Zune Launcher => value deleted successfully.
HKU\S-1-5-21-276332642-1909207443-117345979-1007\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}' => Key deleted successfully.
'HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}' => Key deleted successfully.
c:\Program Files (x86)\Google\Google Toolbar => Moved successfully.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}' => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value deleted successfully.
'HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}' => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value deleted successfully.
'HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}' => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => value deleted successfully.
'HKCR\CLSID\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F}'=> Key not found.
'HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File'=> Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
'HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File'=> Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jfmdaolnolkfdaaahjbgjeknmcdaalog' => Key deleted successfully.
"C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha280\ch\WebexpEnhancedV1alpha280.crx" => File/Directory not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
"C:\Users\Libor\AppData\Local\Temp" directory move:
C:\Users\Libor\AppData\Local\Temp\1115453.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\11239528.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\11362520.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1148806.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1177979.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\117952.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1206714.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1256588.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\126665604.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1302935.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\140338.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\14225075.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\14230598.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\143661.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\14807053.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\15781716.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\15918435.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\16269219.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\16645041.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\17104807.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\17245801.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\17954950.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\18021219.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1905505.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\19343515.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\19353842.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\19755639.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\20900202.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\216716.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\218307.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\22063283.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\228151.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\233159.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\23789934.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\24127676.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\24518645.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\24898430.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\2547808.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\25672320.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\273875.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\279226.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\28081147.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\2832681.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\2988183.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\3009930.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\3258486.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\346337.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\377818.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\403434.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\424478.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\4338512.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\4355079.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\4A36FD6D-A213-4B9C-85AF-F3620FC803AD.Diagnose.0.etl => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\546877.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\5598329.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\5869834.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\5870208.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\5913280.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\611726.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\6274765.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\64095849.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\671365.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\684688.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\772610.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\8033C16E-FC46-4789-961C-02238C3659AB.Diagnose.3.etl => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\82CCE09A-688E-4372-952A-9246CD222724.Repair.1.etl => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\82CCE09A-688E-4372-952A-9246CD222724.Verify.2.etl => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\844293.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\9088041.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\9263635.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\9642983.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\967674.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\AdobeARM.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\chrome_installer.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR1361.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR16E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR1FF5.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR23A6.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR23D7.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR2446.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR2669.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR27EA.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR289B.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR28BC.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR2C8C.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR2DD3.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR312D.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3350.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3929.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3AC0.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3E85.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3FA3.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR42AA.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR48E1.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR4E2E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR50F2.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR53D.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR5485.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR558E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR583D.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR5A13.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR60D8.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR669.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR69BA.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR6C79.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7277.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7290.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7407.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7A1E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7B27.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7BFB.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR8068.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR8786.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR8EA7.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR910A.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR9280.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR9887.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRA8B3.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRAC29.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRB876.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRBA80.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRBECD.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRC384.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRC3AC.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRC3FA.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRC9F2.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRCC72.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRCF54.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE050.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE197.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE1F5.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE563.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE96A.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVREB3.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVREB7E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRED8A.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRF00D.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRF886.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRF97B.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRFB63.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRFBB1.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRFFA7.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\DalMeasurementFile2.log => Moved successfully.
Could not move "C:\Users\Libor\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\Libor\AppData\Local\Temp\IpAdrSet.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\LuUpdater.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSEventMessages.dll => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\PDFCreatorUninstall.txt => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\qtsingleapp-NokiaO-b889-1-lockfile => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\TWAIN.LOG => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Twain001.Mtx => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Twunk001.MTX => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Twunk002.MTX => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\vlc-2.1.3-win32.exe => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog01.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog02.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog03.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog04.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog05.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog06.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog07.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog08.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog09.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog10.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog11.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog12.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog13.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog14.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog15.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog16.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog17.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog18.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog19.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmsetup.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~2684.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~2B54.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~53F.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~58AB.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~7677.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~8CA6.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~A3FC.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~AA81.bat => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~AA81.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~B5F6.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~C909.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~CBD6.bat => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~CBD6.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DF52C9EA4DEF159FC6.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DF564EFDBDDF7D9B81.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DF62004C51EC8D3546.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DF6F1F23D9E378AB6B.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DFD771C94864B8F2B7.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DFED626F6ECD43DFC7.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DFFD6CA06B3568E849.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~F410.bat => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~F410.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~FB.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\{D5878294-C113-43c5-A24F-FC333C52015A}\D5878294-C113-43c5-A24F-FC333C52015A.xml => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\{73424974-3058-4e1f-8F27-8684EBBC69C6}\http\cache_30a4ddc54b01bd64dee649161b494ef2054fdc57.cache => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\{73424974-3058-4e1f-8F27-8684EBBC69C6}\http\cache_d1dcf55885d1bc17a475c9ad6beef4934f4ed689.cache => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\{73424974-3058-4e1f-8F27-8684EBBC69C6}\http\cache_e2339c93a34ffafa2a07461eb346c54744cf0c55.cache => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{2a7b19e9-d346-454c-9c7d-5a3343c3106f}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{46296ac0-586e-4019-b72a-0015748a26dc}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{4cca4db6-09c6-4bd4-9f45-f0fcac5b1b98}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{6f10af26-612b-44bc-bdc1-9ae63f7a2392}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{752c1991-4ff0-498a-8696-0b90bf997ca5}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf415360900000027421a81619d1ba5.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf415360900000027421a81fccf9d2b.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3605900e3c.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3605a53385.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa360a87f2ce.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36104323cc.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa361135931e.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa361619384f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3616b80dce.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa361b3223ee.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa362145d8df.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3623fba128.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3636e95914.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36393f702a.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa363c4a622f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3643ff234a.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa364ad22476.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3651ed5064.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa365435184e.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3654cab57c.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa365812cb2e.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3664aefc82.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3668505b1f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3669b3c8a9.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3676bc8fac.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa367cad909f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa367ce25b20.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa367d494ba8.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36817dfda9.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3683a3b645.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3687797e99.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa368c671590.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36907837d0.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3694c798a7.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa369c614773.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36ae052d7f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36b0b21a9c.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36b3a7cda0.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36b53bc5dc.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36b5fd8c68.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36bb12a3d2.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36c6d70d31.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36ce01af1d.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36d0017ef1.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36d17da1fa.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36d4c57e1f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36d5cbfc75.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36dc13dc33.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36deada5c4.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36e1a5b8e0.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36e3b696c7.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36e58dbaf6.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36f7d1f622.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Excel8.0\ShockwaveFlashObjects.exd => Moved successfully.
Could not move "C:\Users\Libor\AppData\Local\Temp" directory. => Scheduled to move on reboot.
tady je Fixlog:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 22-06-2014
Ran by Libor at 2014-06-24 10:26:48 Run:1
Running from C:\Users\Libor\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKU\S-1-5-21-276332642-1909207443-117345979-1007\...\Run: [] => [X]
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
c:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
CHR HKLM-x32\...\Chrome\Extension: [jfmdaolnolkfdaaahjbgjeknmcdaalog] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha280\ch\WebexpEnhancedV1alpha280.crx [2013-11-18]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Libor\AppData\Local\Temp
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Zune Launcher => value deleted successfully.
HKU\S-1-5-21-276332642-1909207443-117345979-1007\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}' => Key deleted successfully.
'HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}' => Key deleted successfully.
c:\Program Files (x86)\Google\Google Toolbar => Moved successfully.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}' => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value deleted successfully.
'HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}' => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value deleted successfully.
'HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}' => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => value deleted successfully.
'HKCR\CLSID\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F}'=> Key not found.
'HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File'=> Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
'HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File'=> Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jfmdaolnolkfdaaahjbgjeknmcdaalog' => Key deleted successfully.
"C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha280\ch\WebexpEnhancedV1alpha280.crx" => File/Directory not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
"C:\Users\Libor\AppData\Local\Temp" directory move:
C:\Users\Libor\AppData\Local\Temp\1115453.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\11239528.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\11362520.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1148806.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1177979.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\117952.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1206714.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1256588.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\126665604.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1302935.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\140338.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\14225075.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\14230598.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\143661.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\14807053.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\15781716.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\15918435.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\16269219.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\16645041.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\17104807.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\17245801.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\17954950.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\18021219.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\1905505.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\19343515.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\19353842.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\19755639.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\20900202.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\216716.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\218307.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\22063283.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\228151.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\233159.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\23789934.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\24127676.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\24518645.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\24898430.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\2547808.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\25672320.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\273875.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\279226.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\28081147.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\2832681.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\2988183.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\3009930.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\3258486.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\346337.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\377818.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\403434.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\424478.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\4338512.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\4355079.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\4A36FD6D-A213-4B9C-85AF-F3620FC803AD.Diagnose.0.etl => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\546877.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\5598329.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\5869834.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\5870208.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\5913280.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\611726.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\6274765.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\64095849.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\671365.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\684688.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\772610.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\8033C16E-FC46-4789-961C-02238C3659AB.Diagnose.3.etl => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\82CCE09A-688E-4372-952A-9246CD222724.Repair.1.etl => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\82CCE09A-688E-4372-952A-9246CD222724.Verify.2.etl => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\844293.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\9088041.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\9263635.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\9642983.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\967674.od => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\AdobeARM.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\chrome_installer.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR1361.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR16E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR1FF5.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR23A6.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR23D7.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR2446.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR2669.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR27EA.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR289B.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR28BC.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR2C8C.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR2DD3.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR312D.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3350.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3929.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3AC0.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3E85.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR3FA3.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR42AA.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR48E1.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR4E2E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR50F2.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR53D.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR5485.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR558E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR583D.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR5A13.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR60D8.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR669.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR69BA.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR6C79.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7277.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7290.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7407.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7A1E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7B27.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR7BFB.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR8068.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR8786.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR8EA7.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR910A.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR9280.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVR9887.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRA8B3.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRAC29.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRB876.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRBA80.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRBECD.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRC384.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRC3AC.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRC3FA.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRC9F2.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRCC72.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRCF54.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE050.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE197.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE1F5.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE563.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRE96A.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVREB3.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVREB7E.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRED8A.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRF00D.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRF886.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRF97B.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRFB63.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRFBB1.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\CVRFFA7.tmp.cvr => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\DalMeasurementFile2.log => Moved successfully.
Could not move "C:\Users\Libor\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\Libor\AppData\Local\Temp\IpAdrSet.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\LuUpdater.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSEventMessages.dll => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\PDFCreatorUninstall.txt => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\qtsingleapp-NokiaO-b889-1-lockfile => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\TWAIN.LOG => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Twain001.Mtx => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Twunk001.MTX => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Twunk002.MTX => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\vlc-2.1.3-win32.exe => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog01.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog02.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog03.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog04.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog05.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog06.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog07.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog08.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog09.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog10.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog11.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog12.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog13.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog14.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog15.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog16.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog17.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog18.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmplog19.sqm => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\wmsetup.log => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~2684.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~2B54.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~53F.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~58AB.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~7677.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~8CA6.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~A3FC.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~AA81.bat => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~AA81.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~B5F6.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~C909.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~CBD6.bat => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~CBD6.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DF52C9EA4DEF159FC6.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DF564EFDBDDF7D9B81.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DF62004C51EC8D3546.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DF6F1F23D9E378AB6B.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DFD771C94864B8F2B7.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DFED626F6ECD43DFC7.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~DFFD6CA06B3568E849.TMP => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~F410.bat => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~F410.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\~FB.tmp => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\{D5878294-C113-43c5-A24F-FC333C52015A}\D5878294-C113-43c5-A24F-FC333C52015A.xml => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\{73424974-3058-4e1f-8F27-8684EBBC69C6}\http\cache_30a4ddc54b01bd64dee649161b494ef2054fdc57.cache => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\{73424974-3058-4e1f-8F27-8684EBBC69C6}\http\cache_d1dcf55885d1bc17a475c9ad6beef4934f4ed689.cache => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\{73424974-3058-4e1f-8F27-8684EBBC69C6}\http\cache_e2339c93a34ffafa2a07461eb346c54744cf0c55.cache => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{2a7b19e9-d346-454c-9c7d-5a3343c3106f}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{46296ac0-586e-4019-b72a-0015748a26dc}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{4cca4db6-09c6-4bd4-9f45-f0fcac5b1b98}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{6f10af26-612b-44bc-bdc1-9ae63f7a2392}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\NOSPoster\{752c1991-4ff0-498a-8696-0b90bf997ca5}.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf415360900000027421a81619d1ba5.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf415360900000027421a81fccf9d2b.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3605900e3c.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3605a53385.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa360a87f2ce.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36104323cc.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa361135931e.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa361619384f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3616b80dce.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa361b3223ee.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa362145d8df.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3623fba128.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3636e95914.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36393f702a.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa363c4a622f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3643ff234a.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa364ad22476.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3651ed5064.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa365435184e.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3654cab57c.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa365812cb2e.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3664aefc82.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3668505b1f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3669b3c8a9.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3676bc8fac.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa367cad909f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa367ce25b20.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa367d494ba8.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36817dfda9.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3683a3b645.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3687797e99.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa368c671590.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36907837d0.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa3694c798a7.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa369c614773.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36ae052d7f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36b0b21a9c.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36b3a7cda0.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36b53bc5dc.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36b5fd8c68.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36bb12a3d2.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36c6d70d31.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36ce01af1d.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36d0017ef1.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36d17da1fa.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36d4c57e1f.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36d5cbfc75.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36dc13dc33.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36deada5c4.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36e1a5b8e0.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36e3b696c7.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36e58dbaf6.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Nokia Suite Thumbnail Cache\3cf4153609000000d46baa36f7d1f622.jpg => Moved successfully.
C:\Users\Libor\AppData\Local\Temp\Excel8.0\ShockwaveFlashObjects.exd => Moved successfully.
Could not move "C:\Users\Libor\AppData\Local\Temp" directory. => Scheduled to move on reboot.
-
Rudy
- Site Admin
- Příspěvky: 119544
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: MalSign.Generic.8E1
Ano, musí být v jednom adresáři. Je jedno, jestli na ploše, nebo v jiném.Libas píše:Zdravím zase po čase,
nedaří se mi. FRST hlásí, že nástroj a txt. soubor musí být v jedné složce na ploše. Přitom je tam mám. Vše na ploše a nechce si ho natáhnout. (not found "fixlist.txt.)
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: MalSign.Generic.8E1
Žádné problémy, PC se chová normálně, chtěl jsem jen s Vaší laskavou pomocí ověřit, zdali nechytili nějaký sajrajt. Při procházení webu totiž vyskočila tato hrozba: " MalSign.Generic.8E1". Rezident. AVG ho uklidil, MWB taky. Proto jsem raději preventivně požádal o kontrolu, zdali tam díky tomu nemám nějakou havěť. Takže DÍKY!!!
Jo, co s aplikací FRST? Stačí hodit do koše, nebo je třeba po ní uklidit jiným způsobem? AVG se nelíbí a otravuje.
Jo, co s aplikací FRST? Stačí hodit do koše, nebo je třeba po ní uklidit jiným způsobem? AVG se nelíbí a otravuje.
-
Rudy
- Site Admin
- Příspěvky: 119544
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: MalSign.Generic.8E1
FRST a vše, co vytvořil, normálně smažte. AVG není zrovna AV, které bychom doporučovali. Vyberte si zde: http://forum.viry.cz/viewforum.php?f=29 . Osobně bych doporučil buď Avast, nbo Aviru.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: MalSign.Generic.8E1
Díky za Váš čas a pomoc, mějte se fajn.
-
Rudy
- Site Admin
- Příspěvky: 119544
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: MalSign.Generic.8E1
Vy též a nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?