poslední dobou jsem si všiml rapidního zpomalení PC. Mám taky problém s programem tzv: webssearch.com, který mi nejde z počítače odinstalovat. Zasílám log z RSIT a následdně z adwcleaneru:
RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Radek at 2014-10-17 19:05:07
Microsoft Windows 8.1 Service Pack 1
System drive C: has 578 GB (62%) free of 931 GB
Total RAM: 3914 MB (50% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:05:11, on 17. 10. 2014
Platform: Unknown Windows (WinNT 6.02.1008 SP1)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Users\Radek\AppData\Local\Akamai\netsession_win.exe
C:\Users\Radek\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
C:\Program Files\trend micro\Radek.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... NKRJ5NKRJ5
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?typ ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?typ ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... NKRJ5NKRJ5
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: HulaToo - {ab65caf0-fc3b-40f8-8b88-6d096a48f659} - C:\Program Files (x86)\HulaToo\HulaToobho.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Radek\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [RGSC] C:\Program Files\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\SupTab\SEARCH~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: IePlugin Services (IePluginServices) - Cherished Technololgy LIMITED - C:\ProgramData\IePluginServices\PluginService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update HulaToo - Unknown owner - C:\Program Files (x86)\HulaToo\updateHulaToo.exe
O23 - Service: Util HulaToo - Unknown owner - C:\Program Files (x86)\HulaToo\bin\utilHulaToo.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect Secure Mobility Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12471 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\ProgramData\IePluginServices\PluginService.exe -service
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
dashost.exe {ab3e6c0d-a6ae-4366-b8743ba760ba3408}
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\HulaToo\updateHulaToo.exe"
"C:\Program Files (x86)\HulaToo\bin\utilHulaToo.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe"
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
taskhostex.exe
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\System32\igfxtray.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Dolby PCEE4\pcee4.exe" -autostart
"C:\Users\Radek\AppData\Local\Akamai\netsession_win.exe"
"C:/Users/Radek/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe"
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://istart.webssearches.com/?type=sc ... NKRJ5NKRJ5
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=5556.ff92890.595934877 "C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 5556 "\\.\pipe\gecko-crash-server-pipe.5556" plugin
"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe" --proxy-stub-channel=Flash4840.67773FA8.18438 --host-broker-channel=Flash4840.67773FA8.25053 --host-pid=4840 --host-npapi-version=27 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_15_0_0_189.dll"
"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe" --channel=1916.0052F4D0.1378775885 --proxy-stub-channel=Flash4840.67773FA8.18438 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_15_0_0_189.dll" --host-npapi-version=27 --type=renderer
"C:\WINDOWS\system32\mspaint.exe"
taskeng.exe {2F1F3052-8423-4FF0-8227-984597C86750}
"C:\Programy\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default
prefs.js - "browser.startup.homepage" - "http://istart.webssearches.com/?type=hp ... NKRJ5NKRJ5"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default\extensions\
5a6bf058-b978-4b84-a2ec-6f5462cfccb2@10120365-d3c0-4ec9-8624-5fac2592d0df.com
faststartff@gmail.com
iactgk-ja@p-xbyifoy.co.uk
n-zyj@ywrybi-.com
sitefinder@sitefinder.com
wle_0pl5a@ieolq-uiqg.com
yuerw@taqgsgsk.co.uk
{db615d8a-b766-4397-9ef1-0eeaf684d8da}
C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default\searchplugins\
buenosearch.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{63145F74-26EA-0CD6-A156-25F00B16939F}]
BlockThEAds - C:\ProgramData\BlockThEAds\MybqgOcx8.x64.dll [2014-02-12 475136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28 66688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-18 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
IETabPage Class - C:\Program Files (x86)\SupTab\SupTab.dll [2014-07-10 515464]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-20 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-18 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ab65caf0-fc3b-40f8-8b88-6d096a48f659}]
HulaToo - C:\Program Files (x86)\HulaToo\HulaToobho.dll [2014-07-10 249624]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-20 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-01-30 13267016]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-01-18 1276488]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2014-07-25 1283136]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-07-25 2403104]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-25 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-25 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-25 770520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=C:\Users\Radek\AppData\Local\Akamai\netsession_win.exe [2014-04-17 4672920]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"RGSC"=C:\Program Files\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-18 4085896]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"Cisco AnyConnect Secure Mobility Agent for Windows"=C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2013-12-13 707472]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\SupTab\SEARCH~2.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-25 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-10-17 18:16:52 ----D---- C:\rsit
2014-10-17 18:16:52 ----D---- C:\Program Files\trend micro
2014-10-17 11:30:24 ----D---- C:\ProgramData\McAfee Security Scan
2014-10-17 11:30:22 ----D---- C:\Program Files (x86)\McAfee Security Scan
2014-10-15 11:16:43 ----D---- C:\Program Files\PyScripter
2014-10-15 10:50:38 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-10-15 10:50:38 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-10-15 10:50:35 ----A---- C:\WINDOWS\system32\winbici.dll
2014-10-15 10:50:23 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-10-15 10:50:22 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-10-15 10:50:21 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-10-15 10:50:19 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-10-15 10:50:18 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-10-15 10:50:18 ----A---- C:\WINDOWS\system32\msi.dll
2014-10-15 10:50:18 ----A---- C:\WINDOWS\system32\authui.dll
2014-10-15 10:50:18 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-10-15 10:50:06 ----A---- C:\WINDOWS\system32\shell32.dll
2014-10-15 10:50:04 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-10-15 10:50:02 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-10-15 10:50:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-10-15 10:50:00 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-10-15 10:50:00 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-10-15 10:49:59 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-10-15 10:49:58 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-10-15 10:49:57 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-10-15 10:49:56 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-10-15 10:49:56 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-10-15 10:49:55 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-10-15 10:49:55 ----A---- C:\WINDOWS\system32\propsys.dll
2014-10-15 10:49:54 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-10-15 10:49:54 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-10-15 10:49:54 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-10-15 10:49:53 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-10-15 10:49:53 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-10-15 10:49:53 ----A---- C:\WINDOWS\system32\Wldap32.dll
2014-10-15 10:49:52 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2014-10-15 10:49:52 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-10-15 10:49:52 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-10-15 10:49:50 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-10-15 10:49:50 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-10-15 10:49:50 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-10-15 10:49:49 ----A---- C:\WINDOWS\system32\pcsvDevice.dll
2014-10-15 10:49:49 ----A---- C:\WINDOWS\system32\httpprxm.dll
2014-10-15 10:49:49 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-10-15 10:49:48 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-10-15 10:49:48 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-10-15 10:49:48 ----A---- C:\WINDOWS\system32\ProximityService.dll
2014-10-15 10:49:48 ----A---- C:\WINDOWS\system32\adhsvc.dll
2014-10-15 10:49:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-15 10:49:46 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-15 10:48:37 ----A---- C:\WINDOWS\system32\win32k.sys
2014-10-15 10:47:37 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-10-15 10:47:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-10-15 10:47:15 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-10-15 10:47:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-10-15 10:47:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-10-15 10:47:06 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-10-15 10:47:04 ----A---- C:\WINDOWS\system32\wininet.dll
2014-10-15 10:47:04 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-10-15 10:47:03 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-10-15 10:47:03 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-10-15 10:47:03 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-10-15 10:47:01 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-10-15 10:47:01 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-10-15 10:46:59 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-10-15 10:46:58 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-10-15 10:46:58 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-10-15 10:46:57 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-10-15 10:46:56 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-10-15 10:46:54 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-10-15 10:46:54 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-10-15 10:46:54 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-10-15 10:46:54 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-10-15 10:46:54 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-10-15 10:46:54 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-10-15 10:46:53 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-10-15 10:46:53 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-10-15 10:46:53 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-10-15 10:46:52 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-10-15 10:43:53 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-10-15 10:43:52 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-10-15 10:43:52 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-10-15 10:43:52 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-10-15 10:43:51 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-10-15 10:43:51 ----A---- C:\WINDOWS\system32\wups2.dll
2014-10-15 10:43:51 ----A---- C:\WINDOWS\system32\wups.dll
2014-10-15 10:43:51 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-10-15 10:43:50 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-10-15 10:43:50 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-10-15 10:43:50 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-10-15 10:43:50 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-10-15 10:43:49 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-10-15 10:43:49 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-10-15 10:43:07 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-10-15 10:43:07 ----A---- C:\WINDOWS\system32\packager.dll
2014-10-15 10:37:50 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2014-10-15 10:37:50 ----A---- C:\WINDOWS\system32\rastls.dll
2014-10-15 10:35:33 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2014-10-14 19:20:26 ----D---- C:\Program Files (x86)\PyScripter
2014-10-13 14:24:22 ----D---- C:\Users\Radek\AppData\Roaming\PyScripter
2014-10-13 13:22:35 ----A---- C:\autoexec.bat
2014-10-13 13:22:10 ----D---- C:\Program Files\Enigma Software Group
2014-10-13 13:21:12 ----D---- C:\WINDOWS\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-10-04 13:42:55 ----D---- C:\FIFA 15
2014-10-03 14:58:28 ----D---- C:\OVB
2014-10-01 12:05:56 ----D---- C:\Games
2014-09-24 23:22:00 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2014-10-17 19:02:03 ----D---- C:\WINDOWS\system32\sru
2014-10-17 18:53:43 ----D---- C:\WINDOWS\Temp
2014-10-17 18:51:29 ----D---- C:\WINDOWS\Prefetch
2014-10-17 18:39:02 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-10-17 18:36:05 ----D---- C:\Windows
2014-10-17 18:32:42 ----D---- C:\WINDOWS\Inf
2014-10-17 18:32:37 ----D---- C:\WINDOWS\SoftwareDistribution
2014-10-17 18:32:37 ----D---- C:\WINDOWS\debug
2014-10-17 18:26:37 ----D---- C:\Programy
2014-10-17 18:16:52 ----D---- C:\Program Files
2014-10-17 17:25:08 ----D---- C:\Hudba
2014-10-17 16:54:25 ----D---- C:\WINDOWS\system32\config
2014-10-17 16:52:24 ----D---- C:\WINDOWS\Microsoft.NET
2014-10-17 16:52:20 ----RSD---- C:\WINDOWS\assembly
2014-10-17 16:51:15 ----D---- C:\WINDOWS\system32\DriverStore
2014-10-17 16:39:25 ----D---- C:\Users\Radek\AppData\Roaming\Audacity
2014-10-17 14:43:01 ----D---- C:\WINDOWS\WinSxS
2014-10-17 14:38:08 ----SHD---- C:\System Volume Information
2014-10-17 11:30:24 ----HD---- C:\ProgramData
2014-10-17 11:30:22 ----RD---- C:\Program Files (x86)
2014-10-17 11:19:53 ----RD---- C:\WINDOWS\ToastData
2014-10-17 11:19:52 ----D---- C:\WINDOWS\WinStore
2014-10-17 11:19:52 ----D---- C:\WINDOWS\SysWOW64
2014-10-17 11:19:51 ----RD---- C:\WINDOWS\System32
2014-10-17 11:19:51 ----D---- C:\WINDOWS\system32\drivers
2014-10-17 11:19:50 ----D---- C:\WINDOWS\MediaViewer
2014-10-17 11:19:50 ----D---- C:\WINDOWS\FileManager
2014-10-17 11:19:50 ----D---- C:\WINDOWS\Camera
2014-10-17 11:19:49 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-10-17 11:19:49 ----D---- C:\Program Files\Internet Explorer
2014-10-17 11:19:49 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-17 11:19:48 ----D---- C:\WINDOWS\system32\cs-CZ
2014-10-17 00:45:16 ----D---- C:\WINDOWS\system32\catroot
2014-10-16 20:00:30 ----D---- C:\WINDOWS\CbsTemp
2014-10-16 19:56:36 ----D---- C:\WINDOWS\system32\MRT
2014-10-16 19:46:54 ----A---- C:\WINDOWS\system32\MRT.exe
2014-10-16 19:46:37 ----SD---- C:\WINDOWS\system32\CompatTel
2014-10-15 10:36:48 ----SHD---- C:\WINDOWS\Installer
2014-10-15 10:36:44 ----D---- C:\ProgramData\Microsoft Help
2014-10-15 10:11:56 ----D---- C:\WINDOWS\system32\catroot2
2014-10-14 01:04:48 ----D---- C:\WINDOWS\system32\NDF
2014-10-13 23:51:03 ----D---- C:\Hry
2014-10-13 23:50:27 ----D---- C:\WINDOWS\Tasks
2014-10-13 23:50:27 ----D---- C:\WINDOWS\system32\Tasks
2014-10-13 21:43:50 ----SD---- C:\Users\Radek\AppData\Roaming\Microsoft
2014-10-13 13:21:08 ----D---- C:\Program Files (x86)\Common Files
2014-10-13 13:01:16 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-12 16:54:06 ----D---- C:\WINDOWS\AppReadiness
2014-10-12 01:42:09 ----D---- C:\Users\Radek\AppData\Roaming\vlc
2014-10-11 21:42:09 ----D---- C:\Users\Radek\AppData\Roaming\uTorrent
2014-10-10 19:15:53 ----HD---- C:\Program Files\WindowsApps
2014-10-09 21:54:41 ----D---- C:\Filmy
2014-10-07 23:27:23 ----D---- C:\WINDOWS\Minidump
2014-10-07 19:51:09 ----D---- C:\ProgramData\Origin
2014-10-04 12:37:38 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-02 19:46:56 ----D---- C:\WINDOWS\rescache
2014-09-30 00:45:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-08-18 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-08-18 224896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2014-07-02 32544]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-08-18 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-08-18 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-08-18 427360]
R1 dtsoftbus01;@oem3.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-08-14 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-08-18 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-08-18 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-08-18 92008]
R3 AthBTPort;@oem10.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-28 89168]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 BTATH_A2DP;@oem9.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-28 346192]
R3 btath_avdt;@oem9.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-28 115280]
R3 BTATH_BUS;@oem6.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-01-28 34384]
R3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-28 179432]
R3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-28 77464]
R3 BTATH_RCP;@oem17.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-28 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2013-01-28 581200]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-25 4221440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-01-30 3311944]
R3 IntcDAud;@oem20.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem28.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-27 27032]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem23.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-07-02 12866008]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-07-25 20256]
R3 nvvad_WaveExtensible;@oem39.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 Ps2Kb2Hid;@oem24.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-10-09 26736]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 acsock;acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [2013-12-13 112496]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem36.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 ETD;@oem3.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-12-07 331664]
S3 intaud_WaveExtensible;@oem27.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 RSPCIESTOR;@oem2.inf,%Rts5208%;Realtek PCIE CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPStor.sys [2012-08-03 340112]
S3 ssudmdm;@oem37.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2013-08-22 33280]
S3 vpnva;@oem16.inf,%VPNVA64_Desc%;Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64; C:\WINDOWS\system32\DRIVERS\vpnva64-6.sys [2013-10-10 52080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2013-01-28 227456]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-08-18 50344]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2013-02-20 2615368]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-24 2457232]
R2 IePluginServices;IePlugin Services; C:\ProgramData\IePluginServices\PluginService.exe [2014-07-10 759688]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-17 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 276864]
R2 NAUpdate;Nero Update; c:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-07-25 1720608]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-07-25 18956064]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-07-02 935368]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-10-09 93296]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 364416]
R2 Update HulaToo;Update HulaToo; C:\Program Files (x86)\HulaToo\updateHulaToo.exe [2014-07-10 319256]
R2 Util HulaToo;Util HulaToo; C:\Program Files (x86)\HulaToo\bin\utilHulaToo.exe [2014-07-10 319256]
R2 vpnagent;Cisco AnyConnect Secure Mobility Agent; C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [2013-12-13 560528]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2013-03-16 662088]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-21 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-17 267440]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-25 279000]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-11-16 469648]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2014-03-03 1074480]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-21 116648]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe [2012-09-05 234776]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-24 114288]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
-----------------EOF-----------------
Adwcleaner_4.000:
# AdwCleaner v4.000 - Report created 17/10/2014 at 19:14:50
# Updated 12/10/2014 by Xplode
# Database : 2014-10-17.9
# Operating System : Windows 8.1 Service Pack 1 (64 bits)
# Username : Radek - RADEK
# Running from : C:\Programy\adwcleaner_4.000.exe
# Option : Scan
***** [ Services ] *****
Service Found : IePluginServices
Service Found : Update HulaToo
Service Found : Util HulaToo
Service Found : {2635ac50-5488-40bf-9bfd-accb158f8f3f}w64
***** [ Files / Folders ] *****
File Found : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\webssearches.xml
File Found : C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default\Extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}.xpi
File Found : C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default\invalidprefs.js
File Found : C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default\searchplugins\buenosearch.xml
File Found : C:\WINDOWS\System32\\drivers\{2635ac50-5488-40bf-9bfd-accb158f8f3f}w64.sys
File Found : C:\WINDOWS\SysWOW64\hfpapi.dll
Folder Found : C:\Program Files (x86)\globalUpdate
Folder Found : C:\Program Files (x86)\GS-Enabler
Folder Found : C:\Program Files (x86)\HulaToo
Folder Found : C:\Program Files (x86)\save net
Folder Found : C:\Program Files (x86)\SimilarSites
Folder Found : C:\Program Files (x86)\SupTab
Folder Found : C:\Program Files (x86)\sw-booster
Folder Found : C:\Program Files (x86)\YoutubeAdblocker
Folder Found : C:\Program Files\Enigma Software Group
Folder Found : C:\ProgramData\IePluginServices
Folder Found : C:\ProgramData\save net
Folder Found : C:\ProgramData\SoftWarehouse
Folder Found : C:\ProgramData\WindowsMangerProtect
Folder Found : C:\ProgramData\YoutubeAdblocker
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\Administrator\AppData\Local\torch
Folder Found : C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\ASPNET\AppData\Local\torch
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\Guest\AppData\Local\torch
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnidfighlohpdipkdhflalamalahpchd
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhejagijiajlgolknllmipmheiemgcbc
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Found : C:\Users\Radek\AppData\Local\globalUpdate
Folder Found : C:\Users\Radek\AppData\Local\PackageAware
Folder Found : C:\Users\Radek\AppData\Local\torch
Folder Found : C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default\Extensions\faststartff@gmail.com
Folder Found : C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default\Extensions\iactgk-ja@p-xbyifoy.co.uk
Folder Found : C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default\Extensions\n-zyj@ywrybi-.com
Folder Found : C:\Users\Radek\AppData\Roaming\Mozilla\Firefox\Profiles\85ha3ezc.default\Extensions\sitefinder@sitefinder.com
Folder Found : C:\Users\Radek\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Radek\AppData\Roaming\SimilarSites
Folder Found : C:\Users\Radek\AppData\Roaming\webssearches
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~1.DLL
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~2.DLL
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\GlobalUpdate
Key Found : HKCU\Software\HulaToo
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AB65CAF0-FC3B-40F8-8B88-6D096A48F659}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AB65CAF0-FC3B-40F8-8B88-6D096A48F659}
Key Found : HKCU\Software\Optimizer Pro
Key Found : HKCU\Software\RegisteredApplicationsEx
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\GlobalUpdate
Key Found : [x64] HKCU\Software\HulaToo
Key Found : [x64] HKCU\Software\InstallCore
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKCU\Software\Optimizer Pro
Key Found : [x64] HKCU\Software\RegisteredApplicationsEx
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AB65CAF0-FC3B-40F8-8B88-6D096A48F659}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{32C53681-8E69-4659-8320-7422685BD486}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{596EAA89-F3D2-4174-9BD9-F7D79C744CDA}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Found : HKLM\SOFTWARE\HulaToo
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB65CAF0-FC3B-40F8-8B88-6D096A48F659}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{d0e87c27}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{e81a9dc1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7DD5E91C-3864-77EC-7635-D14910C2A03E}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7DD5E91C-3864-77EC-7635-D14910C2A03E}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webssearches uninstall
Key Found : HKLM\SOFTWARE\SupDp
Key Found : HKLM\SOFTWARE\SupTab
Key Found : HKLM\SOFTWARE\supWindowsMangerProtect
Key Found : HKLM\SOFTWARE\supWPM
Key Found : HKLM\SOFTWARE\webssearchesSoftware
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{32C53681-8E69-4659-8320-7422685BD486}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : [x64] HKLM\SOFTWARE\EnigmaSoftwareGroup
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17344
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://istart.webssearches.com/web/?type=ds&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5&q={searchTerms}
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://istart.webssearches.com/?type=hp&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?type=ds&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5&q={searchTerms}
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://istart.webssearches.com/web/?type=ds&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5&q={searchTerms}
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://istart.webssearches.com/?type=hp&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?type=ds&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5&q={searchTerms}
-\\ Mozilla Firefox v32.0.3 (x86 cs)
[85ha3ezc.default] - Line Found : user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");
[85ha3ezc.default] - Line Found : user_pref("browser.startup.homepage", "hxxp://istart.webssearches.com/?type=hp&ts=1405025363&from=amt&uid=WDCXWD10JPVX-22JC3T0_WD-WXD1E63NKRJ5NKRJ5");
[85ha3ezc.default] - Line Found : user_pref("extensions.KKgTE.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorobo.n[...]
[85ha3ezc.default] - Line Found : user_pref("extensions.KKgTE.url", "hxxp://sweetdiaryset.info/sync2/?q=hfZ9ofq7BNnMCyVUojw4rTkMg708BNmGWj8deShGheDUojw9rdnFrjwGqdrHqShIC7n0rjnEpdsFrjnGpjnEtNhVCT94tMVKhd97pdg8qHsGpdU7rdC7pjYGqHYHtNqHhd[...]
[85ha3ezc.default] - Line Found : user_pref("extensions.RxTgcq4lW1O.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumo[...]
[85ha3ezc.default] - Line Found : user_pref("extensions.XVSBwGaPBAt.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumo[...]
[85ha3ezc.default] - Line Found : user_pref("extensions.a5a6bf058b9784b84a2ec6f5462cfccb210120365d3c04ec986245fac2592d0dfcom51390.51390.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.admin", false);
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.aflt", "babsst");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.appId", "{37EB75F2-7392-4DBE-B5AD-147EC6D7BF5F}");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.autoRvrt", "false");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.bbDpng", "15");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.cntry", "CZ");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.dfltLng", "cs");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.excTlbr", false);
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.ffxUnstlRst", true);
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.hdrMd5", "C0191BBFEF8503E9B68716A23E068B90");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.id", "ee7bec8200000000000016db303d683a");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.instlDay", "16225");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.instlRef", "sst");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.lastB", "hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrI ... 3&tsp=5268");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.lastVrsnTs", "1.8.28.721:06:07");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.newTab", false);
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.prdct", "buenosearch");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.prtnrId", "buenosearch");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.rvrt", "false");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.sg", "tzb");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.smplGrp", "none");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.tb_url", "hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 3&tsp=5268");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.tlbrId", "base");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.tlbrSrchUrl", "hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 3&tsp=5268");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.vrsn", "1.8.28.7");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.vrsnTs", "1.8.28.721:06:07");
[85ha3ezc.default] - Line Found : user_pref("extensions.buenosearch.vrsni", "1.8.28.7");
[85ha3ezc.default] - Line Found : user_pref("extensions.crossrider.bic", "146684624e7a1c7629ac6971b76bed13");
[85ha3ezc.default] - Line Found : user_pref("extensions.quick_start.enable_search1", false);
[85ha3ezc.default] - Line Found : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
[85ha3ezc.default] - Line Found : user_pref("extensions.tbhVhgjwWNE4.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sum[...]
-\\ Google Chrome v35.0.1916.114
Found [Search Provider] : hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 3&tsp=5268
*************************
AdwCleaner[R0].txt - [20470 octets] - [17/10/2014 19:08:00]
AdwCleaner[R1].txt - [20293 octets] - [17/10/2014 19:14:50]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [20354 octets] ##########
Děkuji za rady.
Odinstalujte McAfee Security Scan
Přispějete na provoz fóra?