dobrý večer
potřeboval bych pomoct z vyskakovacíma oknama reklam. Nemůžu se jich zbavit.
přikládám log z RSIT
Logfile of random's system information tool 1.10 (written by random/random)
Run by admin at 2015-04-22 23:34:17
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 162 GB (68%) free of 238 GB
Total RAM: 2013 MB (50% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:34:24, on 22.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\system32\wuauclt.exe
C:\Users\admin\Desktop\RSIT.exe
C:\Program Files\trend micro\admin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... 1197611976
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... 1197611976
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files\CentrumczToolbar\IEToolbar.dll
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (file missing)
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files\CentrumczToolbar\IEToolbar.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Lišta Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files\CentrumczToolbar\IEToolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HPUsageTrackingLEDM] "C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files\HP\HP UT LEDM\"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [Google Update] "C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: C66f05C64.lnk = C:\ProgramData\{4343082d-3c09-4d9b-4343-3082d3c020b4}\C66f05C64.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - http://www.battlefieldheroes.com/static ... .203.0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files\CentrumczToolbar\IEToolbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: Hydrup - Software - C:\Program Files\Common Files\Hydrup\hydrup.exe
O23 - Service: IHProtect Service - Unknown owner - C:\Program Files\XTab\ProtectService.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SProtection - Unknown owner - C:\Program Files\Common Files\Umbrella\umbrella.exe (file missing)
O23 - Service: Update qualitink - Unknown owner - C:\Program Files\qualitink\updatequalitink.exe (file missing)
O23 - Service: Util qualitink - Unknown owner - C:\Program Files\qualitink\bin\utilqualitink.exe (file missing)
--
End of file - 8895 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job - C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job - C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\SaveSense.job - C:\Users\admin\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE /Check
C:\Windows\tasks\Torntv V6.0-chromeinstaller.job - C:\Program Files\Torntv V6.0\Torntv V6.0-chromeinstaller.exe /installcrx /agentregpath='Torntv V6.0' /extensionfilepath='C:\Program Files\Torntv V6.0\45960.crx' /appid=45960 /srcid='000686' /subid='0' /zdata='0' /bic=DA2AFDAF95A546879561A47CAC30D52BIE /verifier=924601ef2ef384a533aad68ae7db430a /installerversion=1_30_153 /installerfullversion=1.30.153.0 /installationtime=1384710109 /statsdomain=http://stats.srvstatsdata.com /errorsdomain=http://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=ahmilhmcinpmpohfoiccaplbhgelbnim /extensionversion=1.25.22 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC7jTNxL7h3FB/7RViD415XIgSs8u7OpVFlyS3MJgMtHVkPLpmLyt0lr1jUfjaFytjaPQSJYipB9zgxntsyN9pMFhVI3YuKm2jfCfBc0asZ2Ys4AhxagcKp/y0Ofkp8Rb4xe+gD4tDbDo436Q8GyehUWSHyrPtB4lODcQxHVZ+EzQIDAQAB /allusers /allprofiles /externallog=''
C:\Windows\tasks\Torntv V6.0-updater.job - C:\Program Files\Torntv V6.0\Torntv V6.0-updater.exe /runupdater /agentregpath='Torntv V6.0' /appid=45960 /srcid='000686' /subid='0' /zdata='0' /bic=DA2AFDAF95A546879561A47CAC30D52BIE /verifier=924601ef2ef384a533aad68ae7db430a /installerversion=1_30_153 /installationtime=1384710109 /statsdomain=http://stats.srvstatsdata.com /errorsdomain=http://errors.srvstatsdata.com /monetizationdomain=http://stats.syncstatsdata.com /geoserviceurl=http://ipgeoapi.com/ /updatejsondomain=http://update.srvstatsdata.com /updaterversion=2 /externallog=''
=========Mozilla firefox=========
ProfilePath - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
prefs.js - "browser.startup.homepage" - "http://search.gboxapp.com/"
prefs.js - "extensions.enabledItems" - "Cetrumcz@igeared:1.203.023.002, battlefieldheroespatcher@ea.com:5.0.110.0, wrc@avast.com:7.0.1426, toolbar@ask.com:3.15.15.100013, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13"
prefs.js - "keyword.URL" - "http://websearch.swellsearch.info/?pid= ... =84&l=1&q="
"Cetrumcz@igeared"=C:\Program Files\CentrumczToolbar\Firefox\Cetrumcz@igeared
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.17.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@VideoDownloadConverter_ScriptHelper.com/Plugin]
"Description"=VideoDownloadConverter_ScriptHelper Plugin
"Path"=C:\Program Files\VideoDownloadConverter\npVDCPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
NPOFF12.DLL
nppdf32.dll
C:\Program Files\Mozilla Firefox\searchplugins\
Cetrumcz_igeared.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
mall-cz.xml
mystartsearch.xml
SearchTheWeb.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\
2Yps@l.net
94q@6SRZ.com
battlefieldheroespatcher@ea.com
EY@W.org
f2dFACy@62.com
F@sbxo.net
I5@l4bWyf.net
L6zJs@aMg2.com
LMuMmBsh@N.org
N8uHtUy4M2@O.edu
QP7@Tx.org
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\searchplugins\
askcom.xml
WebSearch.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A}]
CentrumczToolbar BHO - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26 1286448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-28 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-28 170912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D5D47440-0750-463D-BAEF-A47D02414806} - Lišta Centrum.cz Toolbar - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26 1286448]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07 1003704]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-08-25 136216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-08-25 171032]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-08-25 170520]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"HPUsageTrackingLEDM"=C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe [2009-08-04 30264]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-06-24 1840424]
"Google Update"=C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-27 107912]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2011-08-29 3077528]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-02-28 18642024]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
C66f05C64.lnk - C:\ProgramData\{4343082d-3c09-4d9b-4343-3082d3c020b4}\C66f05C64.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-08-25 228864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-04-22 23:27:44 ----D---- C:\Program Files\trend micro
2015-04-22 23:27:42 ----D---- C:\rsit
2015-04-18 21:46:54 ----A---- C:\Windows\system32\FlashPlayerInstaller.exe
2015-04-18 17:45:30 ----A---- C:\Windows\system32\generaltel.dll
2015-04-18 17:45:30 ----A---- C:\Windows\system32\appraiser.dll
2015-04-18 17:45:30 ----A---- C:\Windows\system32\aeinv.dll
2015-04-18 17:45:30 ----A---- C:\Windows\system32\acmigration.dll
2015-04-18 17:45:29 ----A---- C:\Windows\system32\invagent.dll
2015-04-18 17:45:29 ----A---- C:\Windows\system32\devinv.dll
2015-04-18 17:45:28 ----A---- C:\Windows\system32\aepic.dll
2015-04-18 17:45:28 ----A---- C:\Windows\system32\aepdu.dll
2015-04-18 17:45:26 ----A---- C:\Windows\system32\clfsw32.dll
2015-04-18 17:45:26 ----A---- C:\Windows\system32\clfs.sys
2015-04-18 17:45:04 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-04-18 17:45:04 ----A---- C:\Windows\system32\ntdll.dll
2015-04-18 17:45:02 ----A---- C:\Windows\system32\schannel.dll
2015-04-18 17:45:02 ----A---- C:\Windows\system32\ntkrnlpa.exe
2015-04-18 17:45:02 ----A---- C:\Windows\system32\lsasrv.dll
2015-04-18 17:45:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-04-18 17:45:01 ----A---- C:\Windows\system32\srcore.dll
2015-04-18 17:45:01 ----A---- C:\Windows\system32\rstrui.exe
2015-04-18 17:45:01 ----A---- C:\Windows\system32\msv1_0.dll
2015-04-18 17:45:01 ----A---- C:\Windows\system32\kerberos.dll
2015-04-18 17:45:00 ----A---- C:\Windows\system32\wdigest.dll
2015-04-18 17:45:00 ----A---- C:\Windows\system32\TSpkg.dll
2015-04-18 17:45:00 ----A---- C:\Windows\system32\smss.exe
2015-04-18 17:45:00 ----A---- C:\Windows\system32\ncrypt.dll
2015-04-18 17:45:00 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-04-18 17:45:00 ----A---- C:\Windows\system32\auditpol.exe
2015-04-18 17:44:59 ----A---- C:\Windows\system32\sspisrv.dll
2015-04-18 17:44:59 ----A---- C:\Windows\system32\sspicli.dll
2015-04-18 17:44:59 ----A---- C:\Windows\system32\srclient.dll
2015-04-18 17:44:59 ----A---- C:\Windows\system32\secur32.dll
2015-04-18 17:44:59 ----A---- C:\Windows\system32\lsass.exe
2015-04-18 17:44:59 ----A---- C:\Windows\system32\csrsrv.dll
2015-04-18 17:44:59 ----A---- C:\Windows\system32\credssp.dll
2015-04-18 17:44:59 ----A---- C:\Windows\system32\apisetschema.dll
2015-04-18 17:44:58 ----A---- C:\Windows\system32\msobjs.dll
2015-04-18 17:44:58 ----A---- C:\Windows\system32\msaudite.dll
2015-04-18 17:44:58 ----A---- C:\Windows\system32\adtschema.dll
2015-04-18 17:42:56 ----A---- C:\Windows\system32\gdi32.dll
2015-04-18 17:42:52 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-18 17:42:52 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-04-18 17:42:52 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-04-18 17:42:51 ----A---- C:\Windows\system32\urlmon.dll
2015-04-18 17:42:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-18 17:42:51 ----A---- C:\Windows\system32\jsproxy.dll
2015-04-18 17:42:51 ----A---- C:\Windows\system32\jscript9diag.dll
2015-04-18 17:42:51 ----A---- C:\Windows\system32\ieUnatt.exe
2015-04-18 17:42:51 ----A---- C:\Windows\system32\iernonce.dll
2015-04-18 17:42:51 ----A---- C:\Windows\system32\iedkcs32.dll
2015-04-18 17:42:51 ----A---- C:\Windows\system32\ie4uinit.exe
2015-04-18 17:42:50 ----A---- C:\Windows\system32\msfeeds.dll
2015-04-18 17:42:50 ----A---- C:\Windows\system32\ieapfltr.dll
2015-04-18 17:42:50 ----A---- C:\Windows\system32\dxtmsft.dll
2015-04-18 17:42:49 ----A---- C:\Windows\system32\msrating.dll
2015-04-18 17:42:49 ----A---- C:\Windows\system32\iesetup.dll
2015-04-18 17:42:48 ----A---- C:\Windows\system32\wininet.dll
2015-04-18 17:42:48 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-04-18 17:42:47 ----A---- C:\Windows\system32\ieui.dll
2015-04-18 17:42:47 ----A---- C:\Windows\system32\ieframe.dll
2015-04-18 17:42:47 ----A---- C:\Windows\system32\dxtrans.dll
2015-04-18 17:42:46 ----A---- C:\Windows\system32\mshtmled.dll
2015-04-18 17:42:45 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-04-18 17:42:45 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-04-18 17:42:45 ----A---- C:\Windows\system32\iertutil.dll
2015-04-18 17:42:43 ----A---- C:\Windows\system32\vbscript.dll
2015-04-18 17:42:43 ----A---- C:\Windows\system32\mshtml.dll
2015-04-18 17:42:42 ----A---- C:\Windows\system32\jscript9.dll
2015-04-18 17:41:48 ----A---- C:\Windows\system32\wucltux.dll
2015-04-18 17:41:48 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-18 17:41:48 ----A---- C:\Windows\system32\wuapp.exe
2015-04-18 17:41:48 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-18 17:41:47 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-18 17:41:47 ----A---- C:\Windows\system32\wups2.dll
2015-04-18 17:41:47 ----A---- C:\Windows\system32\wups.dll
2015-04-18 17:41:47 ----A---- C:\Windows\system32\wudriver.dll
2015-04-18 17:41:47 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-18 17:41:47 ----A---- C:\Windows\system32\wuapi.dll
2015-04-18 17:41:47 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-18 17:41:34 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-18 17:40:43 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-18 17:40:43 ----A---- C:\Windows\system32\msxml3.dll
2015-04-16 21:17:58 ----D---- C:\ProgramData\Browser AdBlocker
2015-04-16 20:57:50 ----D---- C:\Program Files\PragmaSystem
2015-04-16 20:47:51 ----D---- C:\ProgramData\7efe698000021e3
2015-04-05 07:49:49 ----SD---- C:\Windows\system32\GWX
2015-03-29 10:28:57 ----D---- C:\Program Files\FindBesstDeal
2015-03-29 10:28:41 ----D---- C:\Program Files\DieGiSaver
2015-03-29 10:28:31 ----D---- C:\Program Files\DDealExparess
2015-03-27 13:43:46 ----D---- C:\Program Files\Common Files\Hydrup
======List of files/folders modified in the last 1 month======
2015-04-22 23:34:19 ----D---- C:\Windows\Temp
2015-04-22 23:33:55 ----D---- C:\Windows\Prefetch
2015-04-22 23:27:44 ----RD---- C:\Program Files
2015-04-22 23:22:55 ----SHD---- C:\System Volume Information
2015-04-22 23:16:48 ----D---- C:\Windows\system32\config
2015-04-22 23:16:17 ----RSD---- C:\Windows\assembly
2015-04-22 23:16:17 ----D---- C:\Windows\Microsoft.NET
2015-04-22 23:11:15 ----D---- C:\Windows\winsxs
2015-04-22 23:08:56 ----SD---- C:\Windows\system32\CompatTel
2015-04-22 23:08:56 ----D---- C:\Windows\system32\appraiser
2015-04-22 23:08:56 ----D---- C:\Windows\System32
2015-04-22 23:08:56 ----D---- C:\Windows\AppPatch
2015-04-22 23:08:55 ----D---- C:\Windows\system32\drivers
2015-04-22 23:08:55 ----D---- C:\Windows\system32\cs-CZ
2015-04-22 23:08:54 ----D---- C:\Windows\system32\en-US
2015-04-22 23:08:52 ----D---- C:\Program Files\Internet Explorer
2015-04-22 23:08:51 ----D---- C:\Windows\PolicyDefinitions
2015-04-18 21:57:23 ----SHD---- C:\Windows\Installer
2015-04-18 21:56:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-18 21:56:41 ----D---- C:\Windows\inf
2015-04-18 21:46:56 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-04-18 18:20:56 ----D---- C:\Windows\Tasks
2015-04-18 18:20:56 ----D---- C:\Windows\system32\wfp
2015-04-18 18:20:56 ----D---- C:\Windows\system32\DriverStore
2015-04-18 18:20:56 ----D---- C:\Windows\system32\catroot2
2015-04-18 18:20:56 ----D---- C:\Windows
2015-04-18 18:20:55 ----D---- C:\Windows\system32\CodeIntegrity
2015-04-18 18:20:54 ----D---- C:\Windows\rescache
2015-04-18 18:20:47 ----D---- C:\ProgramData\PMB Files
2015-04-18 18:20:47 ----D---- C:\ProgramData\McAfee Security Scan
2015-04-18 18:20:47 ----D---- C:\Program Files\Common Files\microsoft shared
2015-04-18 18:20:37 ----D---- C:\Windows\system32\wbem
2015-04-18 18:20:37 ----D---- C:\Windows\registration
2015-04-17 03:11:32 ----D---- C:\Windows\system32\MRT
2015-04-16 22:27:45 ----D---- C:\ProgramData\{ecb62cc3-ff3d-42cb-ecb6-62cc3ff3b30f}
2015-04-16 22:27:44 ----D---- C:\ProgramData\bcbibcengdodlhecnginendfoohecbmm
2015-04-16 22:27:44 ----D---- C:\ProgramData\{4343082d-3c09-4d9b-4343-3082d3c020b4}
2015-04-16 22:27:43 ----D---- C:\Program Files\youtubeadblocker
2015-04-16 22:27:41 ----D---- C:\Program Files\XTab
2015-04-16 22:27:36 ----D---- C:\Program Files\VideoDownloadConverter
2015-04-16 22:27:35 ----D---- C:\Program Files\UnnIDeeaLse
2015-04-16 22:27:33 ----D---- C:\Program Files\UniDeals
2015-04-16 22:27:31 ----D---- C:\Program Files\UniDDEAlsi
2015-04-16 22:27:29 ----D---- C:\Program Files\TornTV.com
2015-04-16 22:27:28 ----D---- C:\Program Files\Torntv V6.0
2015-04-16 22:27:24 ----D---- C:\Program Files\qualitink
2015-04-16 22:27:20 ----D---- C:\Program Files\Iminent
2015-04-16 22:27:06 ----D---- C:\Program Files\Common Files\Umbrella
2015-04-16 22:27:05 ----D---- C:\Program Files\cifFix
2015-04-16 22:27:03 ----D---- C:\Program Files\BestSaVeFaoRYou
2015-04-16 22:27:02 ----D---- C:\Program Files\50COOupons
2015-04-16 21:44:18 ----D---- C:\Users\admin\AppData\Roaming\Skype
2015-04-16 21:33:31 ----D---- C:\Windows\system32\Tasks
2015-04-16 21:33:28 ----D---- C:\Program Files\SaveSenseLive
2015-04-16 21:17:58 ----HD---- C:\ProgramData
2015-04-16 20:45:25 ----RD---- C:\Program Files\Skype
2015-04-15 21:15:40 ----D---- C:\Program Files\Google
2015-04-07 20:46:16 ----D---- C:\Stereo2015 v17
2015-04-05 07:50:12 ----D---- C:\Windows\Logs
2015-03-31 21:16:54 ----D---- C:\Stereo2013 v15
2015-03-29 10:29:00 ----D---- C:\ProgramData\17473188530667141286
2015-03-27 13:43:46 ----D---- C:\Program Files\Common Files
2015-03-26 10:47:27 ----D---- C:\Users\admin\AppData\Roaming\.minecraft
2015-03-24 22:49:07 ----D---- C:\ZALOHY
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-03-07 44376]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-11-17 242240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-08-25 9024512]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
S1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys []
S1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys []
S2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2010-03-06 17408]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [2009-06-24 136704]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2010-04-07 99896]
R2 Hydrup;Hydrup; C:\Program Files\Common Files\Hydrup\hydrup.exe [2015-03-27 266536]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2013-02-27 75136]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
S2 00eff4f8;PragmaSystem; c:\Program Files\PragmaSystem\PragmaSystem.dll,serv []
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-03-07 44768]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27 107912]
S2 IHProtect Service;IHProtect Service; C:\Program Files\XTab\ProtectService.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-28 161384]
S2 SProtection;SProtection; C:\Program Files\Common Files\Umbrella\umbrella.exe []
S2 Update qualitink;Update qualitink; C:\Program Files\qualitink\updatequalitink.exe []
S2 Util qualitink;Util qualitink; C:\Program Files\qualitink\bin\utilqualitink.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-18 267440]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27 107912]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-03-13 102912]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 235696]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-22 129976]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-01 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
vyskakovací okna
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: vyskakovací okna
Zdravim 
Odinstalujte V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).
Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm
Odinstalujte - McAfee Security Scan - adware z instalace Adobe Flash Playeru http://forum.viry.cz/viewtopic.php?p=1374437#p1374437
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose). Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Cleaning
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm
- spustte jako spravce
- do velkeho okna zkopirujte script uvedeny nize
- kliknete na Run script
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi
Kód: Vybrat vše
autoclean; emptyclsid; iedefaults; FFdefaults; CHRdefaults; emptyalltemp; resethosts;
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: vyskakovací okna
# AdwCleaner v4.201 - Log vytvořen 23/04/2015 v 12:22:01
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-22.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x86)
# Uživatelské jméno : admin - ADMIN-PC
# Spuštěno z : C:\Users\admin\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : IHProtect Service
[#] Služba Smazáno : SProtection
[#] Služba Smazáno : 00eff4f8
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\apn
Složka Smazáno : C:\ProgramData\Ask
Složka Smazáno : C:\ProgramData\Iminent
Složka Smazáno : C:\ProgramData\SaveSenseLive
Složka Smazáno : C:\ProgramData\IHProtectUpDate
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent
Složka Smazáno : C:\Program Files\Iminent
Složka Smazáno : C:\Program Files\SaveSenseLive
Složka Smazáno : C:\Program Files\TornTV.com
Složka Smazáno : C:\Program Files\VideoDownloadConverter
Složka Smazáno : C:\Program Files\XTab
Složka Smazáno : C:\Program Files\LibraryProc
Složka Smazáno : C:\Program Files\50COOupons
Složka Smazáno : C:\Program Files\AllSaveri
Složka Smazáno : C:\Program Files\BestSaVeFaoRYou
Složka Smazáno : C:\Program Files\BitSavier
Složka Smazáno : C:\Program Files\CheApMMe
Složka Smazáno : C:\Program Files\DDealExparess
Složka Smazáno : C:\Program Files\DieGiSaver
Složka Smazáno : C:\Program Files\DiscoUntExtensi
Složka Smazáno : C:\Program Files\FindBesstDeal
Složka Smazáno : C:\Program Files\FindBestDeAl
Složka Smazáno : C:\Program Files\Isaveer
Složka Smazáno : C:\Program Files\NewwSavoer
Složka Smazáno : C:\Program Files\SaverEEXtension
Složka Smazáno : C:\Program Files\SaverExteNsionn
Složka Smazáno : C:\Program Files\UniDDEAlsi
Složka Smazáno : C:\Program Files\UniDeailS
Složka Smazáno : C:\Program Files\UniDeals
Složka Smazáno : C:\Program Files\UniDEalss
Složka Smazáno : C:\Program Files\UnnIDeeaLse
Složka Smazáno : C:\Program Files\youtubeadblocker
Složka Smazáno : C:\Program Files\Common Files\Umbrella
Složka Smazáno : C:\Users\admin\AppData\Local\Temp\apn
Složka Smazáno : C:\Users\admin\AppData\Local\Temp\Iminent
Složka Smazáno : C:\Users\admin\AppData\Local\apn
Složka Smazáno : C:\Users\admin\AppData\Local\SaveSenseLive
Složka Smazáno : C:\Users\admin\AppData\Roaming\Iminent
Složka Smazáno : C:\Users\admin\AppData\Roaming\SaveSense
Složka Smazáno : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\2Yps@l.net
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\94q@6SRZ.com
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\EY@W.org
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\f2dFACy@62.com
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\F@sbxo.net
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\I5@l4bWyf.net
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\L6zJs@aMg2.com
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\LMuMmBsh@N.org
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\N8uHtUy4M2@O.edu
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\QP7@Tx.org
Složka Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\adldappccjhelkmbkpiibilgnnjakieg
Složka Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_khcceooakamlehbimaepcldnnlnkcmfk_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_adldappccjhelkmbkpiibilgnnjakieg_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\searchplugins\Askcom.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\searchplugins\mystartsearch.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\searchplugins\SearchTheWeb.xml
Soubor Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\searchplugins\WebSearch.xml
Soubor Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\user.js
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_searches.vi-view.com_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_searches.vi-view.com_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.search-plaza.info_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.search-plaza.info_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage-journal
***** [ Naplánované úlohy ] *****
Úloha Smazáno : SaveSense
Úloha Smazáno : Torntv V6.0-chromeinstaller
Úloha Smazáno : Torntv V6.0-updater
***** [ Zástupci ] *****
Zástupce Vyléčeno : C:\Users\Public\Desktop\Mozilla Firefox.lnk
Zástupce Vyléčeno : C:\Users\admin\Desktop\Google Chrome.lnk
Zástupce Vyléčeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\adldappccjhelkmbkpiibilgnnjakieg
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Klíč Smazáno : HKCU\Software\SIEN SA
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\esrv.iminentESrvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\esrv.iminentESrvc.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
Klíč Smazáno : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Klíč Smazáno : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Klíč Smazáno : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\VideoDownloadConverter.ScriptHelper
Klíč Smazáno : HKLM\SOFTWARE\Classes\VideoDownloadConverter.ScriptHelper.1
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@VideoDownloadConverter_ScriptHelper.com/Plugin
Klíč Smazáno : HKLM\SOFTWARE\605fe05f-12fd-fbcc-5dcd-4e06b5e10bef
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{eff4f8}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8A4E8BCB-5598-4CAF-9DEC-4D452760E28D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{99E71BF1-5F51-4AF9-830B-67015D59640D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3F97FDF1-DA2B-4579-AD3E-E46641F9DBAB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A220BAB5-C335-48BA-8A01-309FDA37446F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0416BDB0-AFB0-4464-952D-1EAB5047B8E6}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{385F1935-3784-48D0-A61F-6385493DED3C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{5563BEFE-3B03-43B1-8041-64A9745DAA56}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{318C7F13-3498-459E-BF35-12865E6D005C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{57B0DCF0-8B40-4449-8AA4-E297D6E779D4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{89310413-97E0-4F09-AA75-390A7F4D4918}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{C7405EEB-2E16-40FE-9E27-1F48CAAB15E1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{D553067B-6F4E-4F58-BF46-7ACDBBC50332}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{E06EED53-863A-446D-8F3C-617EC8F9870B}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A4E8BCB-5598-4CAF-9DEC-4D452760E28D}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D6F0AC3-0C2E-4E07-8FDA-11268AB51211}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3379E527-8FA3-403A-AA5D-92EBD0A8079A}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Klíč Smazáno : HKCU\Software\1ClickDownload
Klíč Smazáno : HKCU\Software\Iminent
Klíč Smazáno : HKCU\Software\InstalledBrowserExtensions
Klíč Smazáno : HKCU\Software\SaveSenseLive
Klíč Smazáno : HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Klíč Smazáno : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Klíč Smazáno : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Klíč Smazáno : HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Klíč Smazáno : HKLM\SOFTWARE\Iminent
Klíč Smazáno : HKLM\SOFTWARE\SaveSenseLive
Klíč Smazáno : HKLM\SOFTWARE\SupDp
Klíč Smazáno : HKLM\SOFTWARE\Umbrella
Klíč Smazáno : HKLM\SOFTWARE\VideoDownloadConverter
Klíč Smazáno : HKLM\SOFTWARE\mystartsearchSoftware
Klíč Smazáno : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Klíč Smazáno : HKLM\SOFTWARE\IHProtect
Klíč Smazáno : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Klíč Smazáno : HKU\.DEFAULT\Software\AskPartnerNetwork
Klíč Smazáno : HKU\.DEFAULT\Software\AskToolbar
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CF687AD3-80CD-431E-A50F-25DD8F9C96C3}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VideoDownloadConverter
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{11F6D5AB-263F-388E-74DE-E3DECD390E3F}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04D01B4BB24CCD043B69431CCABB1A34
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0702826FCAC36EE52AC0441EEEEE2170
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1198E28F40C3E185E9958608554D4253
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14C66209FCA938858B9729645C666684
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15A073601B9AEC3549BE4A9314794615
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F7C80F9CE5CDF44E9AADDC99402534C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\206AF45B775E3A445B3B2273827DA85F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\225C3CBCEB850204D860A6C7CC7724AF
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2310FC151CD4F185798FA0996B3524D7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\28572D2E2DE533256AC6B560EA573C22
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29C79786B109AC443B0DC7BFD61B1896
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ABB56EABB920EB59B04BDDD26A62083
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DABA02DFED47E352A2FA2EBDD6F6187
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\311567B4A9A002050BB9423FD73FB880
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\373FCED70D7F84E5FB5F3F7B76BEE024
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3BE992C130B235E53A2937391FDCA35B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3DA5F64B3483DE549947A9164ACBAD21
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3ED93605BB9B6635E9D0D86615AF31F1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4759B017032BA185F9BA6F7DBC95A2D4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A78ABCBB54E46E5482A3EE0AD66C39E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F9E947B6B895EB5A86757FC5D3DB862
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4FEEA83BF72B97E43A2DF0EE4BE4F261
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\509EC7EFB89B7D942997574AB14037A4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50A730A9A3A61BF5BA70CA8A3B7C133B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\51A95A1D4CDE4F958A9451FBB39BF54A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\536133807DE80465BA6CD0A9742B7DE5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5E25036E68895D45B95E72D1C3C58C74
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60ECC80C54085B141A40437A96CA2618
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60FD8CD5BE007315CA3B5C7E41F24017
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618E7D05458C4F257909ED9C8CDC0D66
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\621C21014D3C152529E2460FA6304EE3
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6241FF6F317CABD4EBBEE0DE9076BD94
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\636B9C23C79154B57AB561F39A139BFD
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65AAF0F0CB7F0B45F900FDF19CEAAF2B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6879A5E348601C45986308CA84958E94
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A6F3B7A9805E1F5492A1020EEDF2341
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B1F5D204E4EEB342A5AD1D7E60D61BF
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7005A2A4DCF9DD7548137AB17E3A3AF3
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\712EAF07EE73CC65C822CC3BAE3B2483
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75FF6D97AF9FC004A9521D4B83FA6321
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7947B301B2446E752A3FE06EAD7D26B5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7987CE52D13E16258B0E1E3DB1BB0974
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7BEED197C514FDA53901AE8DD8EF0891
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DFDCF03D46C34159BDE29FBDBF1ACF5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87EC9ACEAFE8ECD52A529663CD35213F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890F436B85B790A55A582B7307DA12CE
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C13DA6755F685B529615C8E92B3CA39
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D07CD9CB3E6BE652872BF06A1CCA782
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90841B1FC98200349925C88999866F17
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94194FDD4DF523E53A888D65722A135D
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95266D07D008D2E4E9B6F8E0DD15432A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4223BBC9438CAD49BBE10B4E344B1DD
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A72F23B1D745C27508518132197BC982
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A89E2B6FB14D8275DA63D075171DA184
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9C43CD4001E9E4518B274AF9A0EFDA9
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABA081CF7F19915FBB80B3BAF47CE63
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC2A0FFD0A1686D53A4E24D6E96949E4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5BDB2750259915D8442D4591A7717B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1A79C71D5DC1C150B76B6ED11195DFC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D497DB33974935488761F7C4C3D755
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B752EF3300008394886C402CC27B474F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B8C8BCC1206978D51A8B9EECBF806C53
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAD3576CEA646895B962F94754612791
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB4091512C8F4295E99CE2D061ED2020
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE6BBC9A31531F598794A62120B51C7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C19162788CA4D235E829F88E2F771567
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71F07DA356B66B5484A8E7F2ADEB7DC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C96AD15EE8E887B56BAF2136A9088503
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9E6B66ECC49D155888399C51D05C49E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA360F24F0B214744BE40657FDA0B727
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB13D869D7D092348847B7481BB59E27
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE85F265816AE2D4E9B73C3E207E679C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5389AEEA4A1E20428D045E86BCF643B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5B62BB7BC607FB539585E2B7B6AFD16
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB027F01D4D53765C8E4FBE7DB77E07E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC2EB492393411F5ABE8ED13C59FBF20
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDA2534BD056D1F44B6EC96AAA7F1F6E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDCA763D4C48A105086B4CCCEE78043F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEF7558C7CD27EF46AF802AFBE402675
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E05B987540A9E2849AAF9E5B06C27DA8
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E09F4A6B9D2A08B599AE9E38BFC93CD6
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E27B6535D0D94A24E91047C7D86F27BC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45D171E075A5425CBACF6631A45FA39
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E513C2076D90AD04F888BD762143F191
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8F4C985459564F5B8DCFF2B3C7EBD27
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E96E33222BAC06B57A1FA9D72951C945
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA46CE9007F70A5CAFA5F26E5DDEBE5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE43FF091A8714A599F33EF2533FB59A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE790015CF30DAA569960905FF1651A0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB44C47185BD304D80FDF5A4BBE8F54
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F214EB834D2EC474CA76C1CDE306CF3A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F25491036D0FA5D5FA6742F5742F151A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2E0D3DD9E5E4B74CA43BCE77815E287
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F4D1BA8B482D9734E943EE260A7ADEF2
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F6704141BAAF6884785EC6843143D6A7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7507D4D4C310125E9A22BD909A41FB6
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F79C21D785419125595AC59458A6142D
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA15C90F092A60F53A4E0F88CED02968
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA1CF130B3D58B553833ACB6BE8AFAD4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB0F1A18E4F0DBD509A42F4D4C05C02A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FD17ED194F1C2B457B4F6EF4AE8DEAF3
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DA786FCDC08E1345AF052DDF8C9693C
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\3DA786FCDC08E1345AF052DDF8C9693C
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\3DA786FCDC08E1345AF052DDF8C9693C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\adserver.iminent.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\iminent.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mystartsearch.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\search.iminent.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\vi-view.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.mystartsearch.com
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17728
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Mozilla Firefox v12.0 (cs)
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultengine", "Ask.com");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultenginename", "mystartsearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultenginename,S", "WebSearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaulturl", "hxxp://websearch.swellsearch.info/?pid=2606&r=2015/02/27&hid=16734624176608730698&lg=EN&cc=CZ&unqvl=84&l=1&q=");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.order.1", "WebSearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.order.1,S", "WebSearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.selectedEngine", "mystartsearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.selectedEngine,S", "WebSearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.startup.homepage", "hxxp://search.gboxapp.com/");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("extensions.ORJ.InstallDir", "\"C:\\\\Program Files\\\\Ask.com\\\\\"");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("extensions.ORJ.domain", "\"www.search.ask.com\"");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("extensions.enabledItems", "Cetrumcz@igeared:1.203.023.002,battlefieldheroespatcher@ea.com:5.0.110.0,wrc@avast.com:7.0.1426,toolbar@ask.com:3.15.15.100013,{972ce4c6-7e08-4474-a285-3208198ce6[...]
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("extensions.wrc.SearchRules.terra.com.br.style", ".WRCN {display:none} #searchResultsDiv .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("iminent.enabledAds", "false");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("iminent.newtabredirect", "true");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("iminent.searchindex", "2");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("keyword.URL", "hxxp://websearch.swellsearch.info/?pid=2606&r=2015/02/27&hid=16734624176608730698&lg=EN&cc=CZ&unqvl=84&l=1&q=");
-\\ Google Chrome v
[C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : adldappccjhelkmbkpiibilgnnjakieg
[C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : nmmhkkegccagdldgiimedpiccmgmieda
[C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Startup_URLs] : hxxp://www.mystartsearch.com/?type=hppp&ts=142 ... 1197611976
[C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Default_Search_Provider_Data] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
-\\ Chromium v
*************************
AdwCleaner[R0].txt - [49541 bytů] - [23/04/2015 12:13:41]
AdwCleaner[S0].txt - [47597 bytů] - [23/04/2015 12:22:01]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [47656 bytů] ##########
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-22.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x86)
# Uživatelské jméno : admin - ADMIN-PC
# Spuštěno z : C:\Users\admin\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : IHProtect Service
[#] Služba Smazáno : SProtection
[#] Služba Smazáno : 00eff4f8
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\apn
Složka Smazáno : C:\ProgramData\Ask
Složka Smazáno : C:\ProgramData\Iminent
Složka Smazáno : C:\ProgramData\SaveSenseLive
Složka Smazáno : C:\ProgramData\IHProtectUpDate
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent
Složka Smazáno : C:\Program Files\Iminent
Složka Smazáno : C:\Program Files\SaveSenseLive
Složka Smazáno : C:\Program Files\TornTV.com
Složka Smazáno : C:\Program Files\VideoDownloadConverter
Složka Smazáno : C:\Program Files\XTab
Složka Smazáno : C:\Program Files\LibraryProc
Složka Smazáno : C:\Program Files\50COOupons
Složka Smazáno : C:\Program Files\AllSaveri
Složka Smazáno : C:\Program Files\BestSaVeFaoRYou
Složka Smazáno : C:\Program Files\BitSavier
Složka Smazáno : C:\Program Files\CheApMMe
Složka Smazáno : C:\Program Files\DDealExparess
Složka Smazáno : C:\Program Files\DieGiSaver
Složka Smazáno : C:\Program Files\DiscoUntExtensi
Složka Smazáno : C:\Program Files\FindBesstDeal
Složka Smazáno : C:\Program Files\FindBestDeAl
Složka Smazáno : C:\Program Files\Isaveer
Složka Smazáno : C:\Program Files\NewwSavoer
Složka Smazáno : C:\Program Files\SaverEEXtension
Složka Smazáno : C:\Program Files\SaverExteNsionn
Složka Smazáno : C:\Program Files\UniDDEAlsi
Složka Smazáno : C:\Program Files\UniDeailS
Složka Smazáno : C:\Program Files\UniDeals
Složka Smazáno : C:\Program Files\UniDEalss
Složka Smazáno : C:\Program Files\UnnIDeeaLse
Složka Smazáno : C:\Program Files\youtubeadblocker
Složka Smazáno : C:\Program Files\Common Files\Umbrella
Složka Smazáno : C:\Users\admin\AppData\Local\Temp\apn
Složka Smazáno : C:\Users\admin\AppData\Local\Temp\Iminent
Složka Smazáno : C:\Users\admin\AppData\Local\apn
Složka Smazáno : C:\Users\admin\AppData\Local\SaveSenseLive
Složka Smazáno : C:\Users\admin\AppData\Roaming\Iminent
Složka Smazáno : C:\Users\admin\AppData\Roaming\SaveSense
Složka Smazáno : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\2Yps@l.net
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\94q@6SRZ.com
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\EY@W.org
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\f2dFACy@62.com
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\F@sbxo.net
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\I5@l4bWyf.net
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\L6zJs@aMg2.com
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\LMuMmBsh@N.org
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\N8uHtUy4M2@O.edu
Složka Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\QP7@Tx.org
Složka Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\adldappccjhelkmbkpiibilgnnjakieg
Složka Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_khcceooakamlehbimaepcldnnlnkcmfk_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_adldappccjhelkmbkpiibilgnnjakieg_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\searchplugins\Askcom.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\searchplugins\mystartsearch.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\searchplugins\SearchTheWeb.xml
Soubor Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\searchplugins\WebSearch.xml
Soubor Smazáno : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\user.js
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cs.reimageplus.com_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_searches.vi-view.com_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_searches.vi-view.com_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.search-plaza.info_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.search-plaza.info_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage
Soubor Smazáno : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage-journal
***** [ Naplánované úlohy ] *****
Úloha Smazáno : SaveSense
Úloha Smazáno : Torntv V6.0-chromeinstaller
Úloha Smazáno : Torntv V6.0-updater
***** [ Zástupci ] *****
Zástupce Vyléčeno : C:\Users\Public\Desktop\Mozilla Firefox.lnk
Zástupce Vyléčeno : C:\Users\admin\Desktop\Google Chrome.lnk
Zástupce Vyléčeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
Zástupce Vyléčeno : C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\adldappccjhelkmbkpiibilgnnjakieg
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Klíč Smazáno : HKCU\Software\SIEN SA
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\esrv.iminentESrvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\esrv.iminentESrvc.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
Klíč Smazáno : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
Klíč Smazáno : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Klíč Smazáno : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Klíč Smazáno : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\VideoDownloadConverter.ScriptHelper
Klíč Smazáno : HKLM\SOFTWARE\Classes\VideoDownloadConverter.ScriptHelper.1
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@VideoDownloadConverter_ScriptHelper.com/Plugin
Klíč Smazáno : HKLM\SOFTWARE\605fe05f-12fd-fbcc-5dcd-4e06b5e10bef
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{eff4f8}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8A4E8BCB-5598-4CAF-9DEC-4D452760E28D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{99E71BF1-5F51-4AF9-830B-67015D59640D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3F97FDF1-DA2B-4579-AD3E-E46641F9DBAB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A220BAB5-C335-48BA-8A01-309FDA37446F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0416BDB0-AFB0-4464-952D-1EAB5047B8E6}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{385F1935-3784-48D0-A61F-6385493DED3C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{5563BEFE-3B03-43B1-8041-64A9745DAA56}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{318C7F13-3498-459E-BF35-12865E6D005C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{57B0DCF0-8B40-4449-8AA4-E297D6E779D4}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{89310413-97E0-4F09-AA75-390A7F4D4918}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{C7405EEB-2E16-40FE-9E27-1F48CAAB15E1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{D553067B-6F4E-4F58-BF46-7ACDBBC50332}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{E06EED53-863A-446D-8F3C-617EC8F9870B}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A4E8BCB-5598-4CAF-9DEC-4D452760E28D}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D6F0AC3-0C2E-4E07-8FDA-11268AB51211}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3379E527-8FA3-403A-AA5D-92EBD0A8079A}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Klíč Smazáno : HKCU\Software\1ClickDownload
Klíč Smazáno : HKCU\Software\Iminent
Klíč Smazáno : HKCU\Software\InstalledBrowserExtensions
Klíč Smazáno : HKCU\Software\SaveSenseLive
Klíč Smazáno : HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Klíč Smazáno : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Klíč Smazáno : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Klíč Smazáno : HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Klíč Smazáno : HKLM\SOFTWARE\Iminent
Klíč Smazáno : HKLM\SOFTWARE\SaveSenseLive
Klíč Smazáno : HKLM\SOFTWARE\SupDp
Klíč Smazáno : HKLM\SOFTWARE\Umbrella
Klíč Smazáno : HKLM\SOFTWARE\VideoDownloadConverter
Klíč Smazáno : HKLM\SOFTWARE\mystartsearchSoftware
Klíč Smazáno : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Klíč Smazáno : HKLM\SOFTWARE\IHProtect
Klíč Smazáno : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Klíč Smazáno : HKU\.DEFAULT\Software\AskPartnerNetwork
Klíč Smazáno : HKU\.DEFAULT\Software\AskToolbar
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CF687AD3-80CD-431E-A50F-25DD8F9C96C3}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VideoDownloadConverter
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{11F6D5AB-263F-388E-74DE-E3DECD390E3F}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04D01B4BB24CCD043B69431CCABB1A34
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0702826FCAC36EE52AC0441EEEEE2170
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1198E28F40C3E185E9958608554D4253
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14C66209FCA938858B9729645C666684
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15A073601B9AEC3549BE4A9314794615
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F7C80F9CE5CDF44E9AADDC99402534C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\206AF45B775E3A445B3B2273827DA85F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\225C3CBCEB850204D860A6C7CC7724AF
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2310FC151CD4F185798FA0996B3524D7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\28572D2E2DE533256AC6B560EA573C22
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29C79786B109AC443B0DC7BFD61B1896
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ABB56EABB920EB59B04BDDD26A62083
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DABA02DFED47E352A2FA2EBDD6F6187
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\311567B4A9A002050BB9423FD73FB880
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\373FCED70D7F84E5FB5F3F7B76BEE024
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3BE992C130B235E53A2937391FDCA35B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3DA5F64B3483DE549947A9164ACBAD21
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3ED93605BB9B6635E9D0D86615AF31F1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4759B017032BA185F9BA6F7DBC95A2D4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A78ABCBB54E46E5482A3EE0AD66C39E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F9E947B6B895EB5A86757FC5D3DB862
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4FEEA83BF72B97E43A2DF0EE4BE4F261
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\509EC7EFB89B7D942997574AB14037A4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50A730A9A3A61BF5BA70CA8A3B7C133B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\51A95A1D4CDE4F958A9451FBB39BF54A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\536133807DE80465BA6CD0A9742B7DE5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5E25036E68895D45B95E72D1C3C58C74
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60ECC80C54085B141A40437A96CA2618
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60FD8CD5BE007315CA3B5C7E41F24017
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618E7D05458C4F257909ED9C8CDC0D66
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\621C21014D3C152529E2460FA6304EE3
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6241FF6F317CABD4EBBEE0DE9076BD94
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\636B9C23C79154B57AB561F39A139BFD
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65AAF0F0CB7F0B45F900FDF19CEAAF2B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6879A5E348601C45986308CA84958E94
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A6F3B7A9805E1F5492A1020EEDF2341
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B1F5D204E4EEB342A5AD1D7E60D61BF
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7005A2A4DCF9DD7548137AB17E3A3AF3
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\712EAF07EE73CC65C822CC3BAE3B2483
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75FF6D97AF9FC004A9521D4B83FA6321
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7947B301B2446E752A3FE06EAD7D26B5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7987CE52D13E16258B0E1E3DB1BB0974
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7BEED197C514FDA53901AE8DD8EF0891
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DFDCF03D46C34159BDE29FBDBF1ACF5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87EC9ACEAFE8ECD52A529663CD35213F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890F436B85B790A55A582B7307DA12CE
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C13DA6755F685B529615C8E92B3CA39
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D07CD9CB3E6BE652872BF06A1CCA782
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90841B1FC98200349925C88999866F17
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94194FDD4DF523E53A888D65722A135D
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95266D07D008D2E4E9B6F8E0DD15432A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4223BBC9438CAD49BBE10B4E344B1DD
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A72F23B1D745C27508518132197BC982
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A89E2B6FB14D8275DA63D075171DA184
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9C43CD4001E9E4518B274AF9A0EFDA9
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABA081CF7F19915FBB80B3BAF47CE63
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC2A0FFD0A1686D53A4E24D6E96949E4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5BDB2750259915D8442D4591A7717B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1A79C71D5DC1C150B76B6ED11195DFC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D497DB33974935488761F7C4C3D755
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B752EF3300008394886C402CC27B474F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B8C8BCC1206978D51A8B9EECBF806C53
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAD3576CEA646895B962F94754612791
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB4091512C8F4295E99CE2D061ED2020
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE6BBC9A31531F598794A62120B51C7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C19162788CA4D235E829F88E2F771567
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71F07DA356B66B5484A8E7F2ADEB7DC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C96AD15EE8E887B56BAF2136A9088503
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9E6B66ECC49D155888399C51D05C49E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA360F24F0B214744BE40657FDA0B727
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB13D869D7D092348847B7481BB59E27
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE85F265816AE2D4E9B73C3E207E679C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5389AEEA4A1E20428D045E86BCF643B
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5B62BB7BC607FB539585E2B7B6AFD16
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB027F01D4D53765C8E4FBE7DB77E07E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC2EB492393411F5ABE8ED13C59FBF20
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDA2534BD056D1F44B6EC96AAA7F1F6E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDCA763D4C48A105086B4CCCEE78043F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEF7558C7CD27EF46AF802AFBE402675
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E05B987540A9E2849AAF9E5B06C27DA8
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E09F4A6B9D2A08B599AE9E38BFC93CD6
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E27B6535D0D94A24E91047C7D86F27BC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45D171E075A5425CBACF6631A45FA39
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E513C2076D90AD04F888BD762143F191
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8F4C985459564F5B8DCFF2B3C7EBD27
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E96E33222BAC06B57A1FA9D72951C945
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA46CE9007F70A5CAFA5F26E5DDEBE5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE43FF091A8714A599F33EF2533FB59A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE790015CF30DAA569960905FF1651A0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB44C47185BD304D80FDF5A4BBE8F54
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F214EB834D2EC474CA76C1CDE306CF3A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F25491036D0FA5D5FA6742F5742F151A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2E0D3DD9E5E4B74CA43BCE77815E287
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F4D1BA8B482D9734E943EE260A7ADEF2
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F6704141BAAF6884785EC6843143D6A7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7507D4D4C310125E9A22BD909A41FB6
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F79C21D785419125595AC59458A6142D
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA15C90F092A60F53A4E0F88CED02968
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA1CF130B3D58B553833ACB6BE8AFAD4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB0F1A18E4F0DBD509A42F4D4C05C02A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FD17ED194F1C2B457B4F6EF4AE8DEAF3
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DA786FCDC08E1345AF052DDF8C9693C
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\3DA786FCDC08E1345AF052DDF8C9693C
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\3DA786FCDC08E1345AF052DDF8C9693C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SaveSenseLive.exe
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\adserver.iminent.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\iminent.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mystartsearch.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\search.iminent.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\vi-view.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.mystartsearch.com
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17728
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Mozilla Firefox v12.0 (cs)
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultengine", "Ask.com");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultenginename", "mystartsearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultenginename,S", "WebSearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaulturl", "hxxp://websearch.swellsearch.info/?pid=2606&r=2015/02/27&hid=16734624176608730698&lg=EN&cc=CZ&unqvl=84&l=1&q=");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.order.1", "WebSearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.order.1,S", "WebSearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.selectedEngine", "mystartsearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.selectedEngine,S", "WebSearch");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("browser.startup.homepage", "hxxp://search.gboxapp.com/");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("extensions.ORJ.InstallDir", "\"C:\\\\Program Files\\\\Ask.com\\\\\"");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("extensions.ORJ.domain", "\"www.search.ask.com\"");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("extensions.enabledItems", "Cetrumcz@igeared:1.203.023.002,battlefieldheroespatcher@ea.com:5.0.110.0,wrc@avast.com:7.0.1426,toolbar@ask.com:3.15.15.100013,{972ce4c6-7e08-4474-a285-3208198ce6[...]
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("extensions.wrc.SearchRules.terra.com.br.style", ".WRCN {display:none} #searchResultsDiv .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("iminent.enabledAds", "false");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("iminent.newtabredirect", "true");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("iminent.searchindex", "2");
[buwccx2j.default\prefs.js] - Řádek Smazáno : user_pref("keyword.URL", "hxxp://websearch.swellsearch.info/?pid=2606&r=2015/02/27&hid=16734624176608730698&lg=EN&cc=CZ&unqvl=84&l=1&q=");
-\\ Google Chrome v
[C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : adldappccjhelkmbkpiibilgnnjakieg
[C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : nmmhkkegccagdldgiimedpiccmgmieda
[C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Startup_URLs] : hxxp://www.mystartsearch.com/?type=hppp&ts=142 ... 1197611976
[C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Default_Search_Provider_Data] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
-\\ Chromium v
*************************
AdwCleaner[R0].txt - [49541 bytů] - [23/04/2015 12:13:41]
AdwCleaner[S0].txt - [47597 bytů] - [23/04/2015 12:22:01]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [47656 bytů] ##########
Re: vyskakovací okna
Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by admin on źt 23.04.2015 at 13:58:21,24.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\admin\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
23.4.2015 14:00:05 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\Program Files\DAEMON Tools Lite deleted successfully
C:\Program Files\GUM8FCE.tmp deleted successfully
C:\Program Files\InstallShield Installation Information deleted successfully
C:\Program Files\league of legends deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\Program Files\PragmaSystem deleted successfully
C:\Program Files\SoftwareBump deleted successfully
C:\PROGRA~2\7efe698000021e3 deleted successfully
C:\PROGRA~2\HPSSUPPLY deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA58ED58-01DD-4D91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA58ED58-01DD-4D91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Update qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Update qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Util qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Util qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Util qualitink deleted successfully
==== FireFox Fix ======================
Deleted from C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\prefs.js:
user_pref("extensions.APN_TB.first-previous-keyword-url", "http://search.centrum.cz/index.php?tool ... m-1.0.0&q=");
user_pref("extensions.ORJ.my-keyword-url", "\"\"");
user_pref("extensions.ORJ.previous-keyword-url", "\"http://search.centrum.cz/index.php?tool ... m-1.0.0&q=\"");
Added to C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
user.js not found
---- Lines qualitink removed from prefs.js ----
user_pref("extensions.qualitink.aul", "1392097074161");
user_pref("extensions.qualitink.irl", true);
user_pref("extensions.qualitink.is", "fmxqtcz");
user_pref("extensions.qualitink.ug", "a6a959b2-cd7b-4195-8c6c-ceebafe1275f");
---- Lines extensions.8Gcf7LhqzwApx1lL removed from prefs.js ----
user_pref("extensions.8Gcf7LhqzwApx1lL.epoch", "1428138273");
user_pref("extensions.8Gcf7LhqzwApx1lL.url", "http://transferbox.info/sync2/?q=hfZ9oe ... dYFqihIC7n
---- Lines extensions.JjFGEA8Opvae752G removed from prefs.js ----
user_pref("extensions.JjFGEA8Opvae752G.epoch", "1428138278");
user_pref("extensions.JjFGEA8Opvae752G.url", "http://care-hair-loss.org/sync2/?q=hfZ9 ... 6rHgGpihIC
---- Lines extensions.M2WtF35kyZ0M32Ys removed from prefs.js ----
user_pref("extensions.M2WtF35kyZ0M32Ys.epoch", "1428138277");
user_pref("extensions.M2WtF35kyZ0M32Ys.url", "http://jobfirstall.in/sync2/?q=hfZ9oeZJ ... IC7n0rjkEr
---- Lines extensions.Q88wQ4J3D0MTZAEy removed from prefs.js ----
user_pref("extensions.Q88wQ4J3D0MTZAEy.epoch", "1428138275");
user_pref("extensions.Q88wQ4J3D0MTZAEy.url", "http://jpiproxy.info/sync2/?q=hfZ9ofDVC ... C7n0rjkErH
---- Lines extensions.VEYLElF94wWfxzYb removed from prefs.js ----
user_pref("extensions.VEYLElF94wWfxzYb.epoch", "1428138283");
user_pref("extensions.VEYLElF94wWfxzYb.url", "http://storageinstallbardirectory.in/sy ... rHs4rdYEqd
---- Lines extensions.bQCwCM1HnDVxOAq9 removed from prefs.js ----
user_pref("extensions.bQCwCM1HnDVxOAq9.epoch", "1428138282");
user_pref("extensions.bQCwCM1HnDVxOAq9.url", "http://supercept.org/sync2/?q=hfZ9oe4Mh ... pchIC7n0rj
---- Lines extensions.elBoYpDOplf6cZxV removed from prefs.js ----
user_pref("extensions.elBoYpDOplf6cZxV.epoch", "1428138279");
user_pref("extensions.elBoYpDOplf6cZxV.url", "http://canadafirstforeverygroup.net/syn ... TwFrjUEqda
---- Lines extensions.ftTW74iQZNjwMvZU removed from prefs.js ----
user_pref("extensions.ftTW74iQZNjwMvZU.epoch", "1428138280");
user_pref("extensions.ftTW74iQZNjwMvZU.url", "http://blacknewtransferjob.net/sync2/?q ... sErdn8qGhI
---- Lines extensions.g9ufMW9mEVadjYW1 removed from prefs.js ----
user_pref("extensions.g9ufMW9mEVadjYW1.epoch", "1428138272");
user_pref("extensions.g9ufMW9mEVadjYW1.url", "http://superimes.info/sync2/?q=hfZ9oe4M ... FqGhIC7n0r
---- Lines extensions.n3mz1pXVjincZcSB removed from prefs.js ----
user_pref("extensions.n3mz1pXVjincZcSB.epoch", "1428138274");
user_pref("extensions.n3mz1pXVjincZcSB.url", "http://solutionprojob.info/sync2/?q=hfZ ... a9qShIC7n0
---- FireFox user.js and prefs.js backups ----
prefs_23.04.2015_1409_.backup
==== Deleting Files \ Folders ======================
C:\Program Files\DAEMON Tools Lite not found
C:\Program Files\GUM8FCE.tmp not found
C:\Program Files\InstallShield Installation Information not found
C:\Program Files\league of legends not found
C:\Program Files\PragmaSystem not found
C:\Program Files\SoftwareBump not found
C:\Program Files\BetterGaia deleted
C:\Program Files\cifFix deleted
C:\Program Files\Oogle deleted
C:\Program Files\Ultimate Football Results deleted
C:\Program Files\World Clock deleted
C:\Users\admin\AppData\Roaming\.minecraft deleted
C:\PROGRA~2\ahpekmgfoifpfdohdopphmhgbipmkini deleted
C:\PROGRA~2\bcbibcengdodlhecnginendfoohecbmm deleted
C:\PROGRA~2\mgeljbpailnnmkojnjaaggjfbchkfepl deleted
C:\PROGRA~2\nfideflmbkfganmlnejmkcfigphjpolh deleted
C:\PROGRA~2\onaflfdjmglnokeiaehcomkalgnjfbon deleted
C:\Program Files\qualitink deleted
C:\PROGRA~2\{4343082d-3c09-4d9b-4343-3082d3c020b4} deleted
C:\PROGRA~2\{ecb62cc3-ff3d-42cb-ecb6-62cc3ff3b30f} deleted
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\C66f05C64.lnk deleted
C:\PROGRA~2\17473188530667141286 deleted
C:\PROGRA~2\EPSON deleted
C:\Program Files\Torntv V6.0 deleted
C:\Program Files\VideoDownloadConverter_4z Chrome Extension deleted
C:\Users\admin\AppData\Roaming\WB.CFG deleted
C:\Users\admin\AppData\Roaming\appdataFr3.bin deleted
C:\PROGRA~2\Browser AdBlocker deleted
C:\PROGRA~2\The AdBlocker deleted
C:\PROGRA~2\TheAdBlock deleted
C:\Users\admin\AppData\LocalLow\SIEN SA deleted
C:\Windows\system32\config\systemprofile\Searches deleted
C:\Windows\System32\InstallUtil.InstallLog deleted
C:\Windows\System32\AI_RecycleBin deleted
"C:\Windows\Installer\3fa0b5.msi" deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
user_pref("extensions.APN_TB.first-previous-keyword-url", "http://search.centrum.cz/index.php?tool ... m-1.0.0&q=");
user_pref("extensions.ORJ.my-keyword-url", "\"\"");
user_pref("extensions.ORJ.previous-keyword-url", "\"http://search.centrum.cz/index.php?tool ... m-1.0.0&q=\"");
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [22.06.2012 19:33]
==== Firefox Extensions ======================
ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
- Battlefield Heroes Updater - %ProfilePath%\extensions\battlefieldheroespatcher@ea.com
- qualitink - %ProfilePath%\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi
AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
98137411B9C632095F919E2CE70B288A - C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll - Google Update
0806948270D853B709CCBBF38AF167E4 - C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll - Adobe Acrobat
05C4A7136F3012BB47107333B5D351D3 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U17
D4BD9F86123C87ECA570418B69326F99 - C:\Windows\system32\npdeployJava1.dll - Java Deployment Toolkit 7.0.170.2
0EFA66E9384DBCED4D639FB9BDD97536 - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll - Pando Web Plugin
09B4E13D25623D879D35286E2D29FF13 - C:\Users\admin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
9A6101F29E2E9D41B99CBCC8F106E8FE - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL - 2007 Microsoft Office system
0806948270D853B709CCBBF38AF167E4 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat
9DF0C4F0CEF60158614EDD1B3AB441EE - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
98137411B9C632095F919E2CE70B288A - C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll - Google Update
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System
==== Deleted Firefox Extensions ======================
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi deleted
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
icmlaeflemplmjndnaapfdbbnpncnbda - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[07.03.2012 01:12]
ljkcijnbckdflhifmbnfnkjacokloacf - C:\Program Files\qualitink\ljkcijnbckdflhifmbnfnkjacokloacf.crx[]
Battlefield Heroes - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh
Oogle - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnldbiikfjheppkbnjbnkgimnfejifpf
avast WebRep - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
cifFix - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclfgmgojdnckljehaliiiolimmhmoad
Ultimate Football Results - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnpobggldcjebejmndignliobeifocj
qualitink - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkcijnbckdflhifmbnfnkjacokloacf
World Clock - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkkidmpafdcfdcbkbpnmplgedohaijkd
BetterGaia - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmgjagdflhhfjflolfalapokbplfldna
==== Chromium Startpages ======================
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.seznam.cz/",
==== Chromium Fix ======================
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkcijnbckdflhifmbnfnkjacokloacf deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ljkcijnbckdflhifmbnfnkjacokloacf_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ljkcijnbckdflhifmbnfnkjacokloacf deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnldbiikfjheppkbnjbnkgimnfejifpf deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hnldbiikfjheppkbnjbnkgimnfejifpf_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hnldbiikfjheppkbnjbnkgimnfejifpf_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hnldbiikfjheppkbnjbnkgimnfejifpf deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclfgmgojdnckljehaliiiolimmhmoad deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jclfgmgojdnckljehaliiiolimmhmoad_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jclfgmgojdnckljehaliiiolimmhmoad_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jclfgmgojdnckljehaliiiolimmhmoad deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnpobggldcjebejmndignliobeifocj deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jpnpobggldcjebejmndignliobeifocj_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jpnpobggldcjebejmndignliobeifocj_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jpnpobggldcjebejmndignliobeifocj deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkkidmpafdcfdcbkbpnmplgedohaijkd deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lkkidmpafdcfdcbkbpnmplgedohaijkd_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lkkidmpafdcfdcbkbpnmplgedohaijkd_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkkidmpafdcfdcbkbpnmplgedohaijkd deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmgjagdflhhfjflolfalapokbplfldna deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lmgjagdflhhfjflolfalapokbplfldna_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lmgjagdflhhfjflolfalapokbplfldna_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lmgjagdflhhfjflolfalapokbplfldna deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... urceid=ie7"
{EF25E545-B6B7-4199-9956-EBAD5CE3C639} Centrum.cz Search Url="http://search.centrum.cz/index.php?q={s ... trum-1.0.0"
==== Reset Google Chrome ======================
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1094FB974CE162743B2C7A5879606C7E deleted successfully
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ljkcijnbckdflhifmbnfnkjacokloacf deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79BF4901-1EC4-4726-B3C2-A7859706C6E7} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\League of Legends 3.0.1 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Torntv V6.0 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\qualitink deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\1094FB974CE162743B2C7A5879606C7E deleted successfully
==== Empty IE Cache ======================
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OSWWIWOV will be deleted at reboot
==== Empty FireFox Cache ======================
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\buwccx2j.default\Cache emptied successfully
==== Empty Chrome Cache ======================
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=4824 folders=3225 292662400 bytes)
==== Empty Temp Folders ======================
C:\Users\admin\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\admin\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OSWWIWOV" not found
==== EOF on źt 23.04.2015 at 14:33:55,31 ======================
Tool run by admin on źt 23.04.2015 at 13:58:21,24.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\admin\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
23.4.2015 14:00:05 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\Program Files\DAEMON Tools Lite deleted successfully
C:\Program Files\GUM8FCE.tmp deleted successfully
C:\Program Files\InstallShield Installation Information deleted successfully
C:\Program Files\league of legends deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\Program Files\PragmaSystem deleted successfully
C:\Program Files\SoftwareBump deleted successfully
C:\PROGRA~2\7efe698000021e3 deleted successfully
C:\PROGRA~2\HPSSUPPLY deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA58ED58-01DD-4D91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA58ED58-01DD-4D91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Update qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Update qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Util qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Util qualitink deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Util qualitink deleted successfully
==== FireFox Fix ======================
Deleted from C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\prefs.js:
user_pref("extensions.APN_TB.first-previous-keyword-url", "http://search.centrum.cz/index.php?tool ... m-1.0.0&q=");
user_pref("extensions.ORJ.my-keyword-url", "\"\"");
user_pref("extensions.ORJ.previous-keyword-url", "\"http://search.centrum.cz/index.php?tool ... m-1.0.0&q=\"");
Added to C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
user.js not found
---- Lines qualitink removed from prefs.js ----
user_pref("extensions.qualitink.aul", "1392097074161");
user_pref("extensions.qualitink.irl", true);
user_pref("extensions.qualitink.is", "fmxqtcz");
user_pref("extensions.qualitink.ug", "a6a959b2-cd7b-4195-8c6c-ceebafe1275f");
---- Lines extensions.8Gcf7LhqzwApx1lL removed from prefs.js ----
user_pref("extensions.8Gcf7LhqzwApx1lL.epoch", "1428138273");
user_pref("extensions.8Gcf7LhqzwApx1lL.url", "http://transferbox.info/sync2/?q=hfZ9oe ... dYFqihIC7n
---- Lines extensions.JjFGEA8Opvae752G removed from prefs.js ----
user_pref("extensions.JjFGEA8Opvae752G.epoch", "1428138278");
user_pref("extensions.JjFGEA8Opvae752G.url", "http://care-hair-loss.org/sync2/?q=hfZ9 ... 6rHgGpihIC
---- Lines extensions.M2WtF35kyZ0M32Ys removed from prefs.js ----
user_pref("extensions.M2WtF35kyZ0M32Ys.epoch", "1428138277");
user_pref("extensions.M2WtF35kyZ0M32Ys.url", "http://jobfirstall.in/sync2/?q=hfZ9oeZJ ... IC7n0rjkEr
---- Lines extensions.Q88wQ4J3D0MTZAEy removed from prefs.js ----
user_pref("extensions.Q88wQ4J3D0MTZAEy.epoch", "1428138275");
user_pref("extensions.Q88wQ4J3D0MTZAEy.url", "http://jpiproxy.info/sync2/?q=hfZ9ofDVC ... C7n0rjkErH
---- Lines extensions.VEYLElF94wWfxzYb removed from prefs.js ----
user_pref("extensions.VEYLElF94wWfxzYb.epoch", "1428138283");
user_pref("extensions.VEYLElF94wWfxzYb.url", "http://storageinstallbardirectory.in/sy ... rHs4rdYEqd
---- Lines extensions.bQCwCM1HnDVxOAq9 removed from prefs.js ----
user_pref("extensions.bQCwCM1HnDVxOAq9.epoch", "1428138282");
user_pref("extensions.bQCwCM1HnDVxOAq9.url", "http://supercept.org/sync2/?q=hfZ9oe4Mh ... pchIC7n0rj
---- Lines extensions.elBoYpDOplf6cZxV removed from prefs.js ----
user_pref("extensions.elBoYpDOplf6cZxV.epoch", "1428138279");
user_pref("extensions.elBoYpDOplf6cZxV.url", "http://canadafirstforeverygroup.net/syn ... TwFrjUEqda
---- Lines extensions.ftTW74iQZNjwMvZU removed from prefs.js ----
user_pref("extensions.ftTW74iQZNjwMvZU.epoch", "1428138280");
user_pref("extensions.ftTW74iQZNjwMvZU.url", "http://blacknewtransferjob.net/sync2/?q ... sErdn8qGhI
---- Lines extensions.g9ufMW9mEVadjYW1 removed from prefs.js ----
user_pref("extensions.g9ufMW9mEVadjYW1.epoch", "1428138272");
user_pref("extensions.g9ufMW9mEVadjYW1.url", "http://superimes.info/sync2/?q=hfZ9oe4M ... FqGhIC7n0r
---- Lines extensions.n3mz1pXVjincZcSB removed from prefs.js ----
user_pref("extensions.n3mz1pXVjincZcSB.epoch", "1428138274");
user_pref("extensions.n3mz1pXVjincZcSB.url", "http://solutionprojob.info/sync2/?q=hfZ ... a9qShIC7n0
---- FireFox user.js and prefs.js backups ----
prefs_23.04.2015_1409_.backup
==== Deleting Files \ Folders ======================
C:\Program Files\DAEMON Tools Lite not found
C:\Program Files\GUM8FCE.tmp not found
C:\Program Files\InstallShield Installation Information not found
C:\Program Files\league of legends not found
C:\Program Files\PragmaSystem not found
C:\Program Files\SoftwareBump not found
C:\Program Files\BetterGaia deleted
C:\Program Files\cifFix deleted
C:\Program Files\Oogle deleted
C:\Program Files\Ultimate Football Results deleted
C:\Program Files\World Clock deleted
C:\Users\admin\AppData\Roaming\.minecraft deleted
C:\PROGRA~2\ahpekmgfoifpfdohdopphmhgbipmkini deleted
C:\PROGRA~2\bcbibcengdodlhecnginendfoohecbmm deleted
C:\PROGRA~2\mgeljbpailnnmkojnjaaggjfbchkfepl deleted
C:\PROGRA~2\nfideflmbkfganmlnejmkcfigphjpolh deleted
C:\PROGRA~2\onaflfdjmglnokeiaehcomkalgnjfbon deleted
C:\Program Files\qualitink deleted
C:\PROGRA~2\{4343082d-3c09-4d9b-4343-3082d3c020b4} deleted
C:\PROGRA~2\{ecb62cc3-ff3d-42cb-ecb6-62cc3ff3b30f} deleted
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\C66f05C64.lnk deleted
C:\PROGRA~2\17473188530667141286 deleted
C:\PROGRA~2\EPSON deleted
C:\Program Files\Torntv V6.0 deleted
C:\Program Files\VideoDownloadConverter_4z Chrome Extension deleted
C:\Users\admin\AppData\Roaming\WB.CFG deleted
C:\Users\admin\AppData\Roaming\appdataFr3.bin deleted
C:\PROGRA~2\Browser AdBlocker deleted
C:\PROGRA~2\The AdBlocker deleted
C:\PROGRA~2\TheAdBlock deleted
C:\Users\admin\AppData\LocalLow\SIEN SA deleted
C:\Windows\system32\config\systemprofile\Searches deleted
C:\Windows\System32\InstallUtil.InstallLog deleted
C:\Windows\System32\AI_RecycleBin deleted
"C:\Windows\Installer\3fa0b5.msi" deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
user_pref("extensions.APN_TB.first-previous-keyword-url", "http://search.centrum.cz/index.php?tool ... m-1.0.0&q=");
user_pref("extensions.ORJ.my-keyword-url", "\"\"");
user_pref("extensions.ORJ.previous-keyword-url", "\"http://search.centrum.cz/index.php?tool ... m-1.0.0&q=\"");
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [22.06.2012 19:33]
==== Firefox Extensions ======================
ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
- Battlefield Heroes Updater - %ProfilePath%\extensions\battlefieldheroespatcher@ea.com
- qualitink - %ProfilePath%\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi
AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
98137411B9C632095F919E2CE70B288A - C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll - Google Update
0806948270D853B709CCBBF38AF167E4 - C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll - Adobe Acrobat
05C4A7136F3012BB47107333B5D351D3 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U17
D4BD9F86123C87ECA570418B69326F99 - C:\Windows\system32\npdeployJava1.dll - Java Deployment Toolkit 7.0.170.2
0EFA66E9384DBCED4D639FB9BDD97536 - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll - Pando Web Plugin
09B4E13D25623D879D35286E2D29FF13 - C:\Users\admin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
9A6101F29E2E9D41B99CBCC8F106E8FE - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL - 2007 Microsoft Office system
0806948270D853B709CCBBF38AF167E4 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat
9DF0C4F0CEF60158614EDD1B3AB441EE - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
98137411B9C632095F919E2CE70B288A - C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll - Google Update
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System
==== Deleted Firefox Extensions ======================
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi deleted
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
icmlaeflemplmjndnaapfdbbnpncnbda - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[07.03.2012 01:12]
ljkcijnbckdflhifmbnfnkjacokloacf - C:\Program Files\qualitink\ljkcijnbckdflhifmbnfnkjacokloacf.crx[]
Battlefield Heroes - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh
Oogle - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnldbiikfjheppkbnjbnkgimnfejifpf
avast WebRep - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda
cifFix - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclfgmgojdnckljehaliiiolimmhmoad
Ultimate Football Results - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnpobggldcjebejmndignliobeifocj
qualitink - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkcijnbckdflhifmbnfnkjacokloacf
World Clock - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkkidmpafdcfdcbkbpnmplgedohaijkd
BetterGaia - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmgjagdflhhfjflolfalapokbplfldna
==== Chromium Startpages ======================
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.seznam.cz/",
==== Chromium Fix ======================
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkcijnbckdflhifmbnfnkjacokloacf deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ljkcijnbckdflhifmbnfnkjacokloacf_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ljkcijnbckdflhifmbnfnkjacokloacf deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnldbiikfjheppkbnjbnkgimnfejifpf deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hnldbiikfjheppkbnjbnkgimnfejifpf_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hnldbiikfjheppkbnjbnkgimnfejifpf_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hnldbiikfjheppkbnjbnkgimnfejifpf deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclfgmgojdnckljehaliiiolimmhmoad deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jclfgmgojdnckljehaliiiolimmhmoad_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jclfgmgojdnckljehaliiiolimmhmoad_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jclfgmgojdnckljehaliiiolimmhmoad deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnpobggldcjebejmndignliobeifocj deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jpnpobggldcjebejmndignliobeifocj_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jpnpobggldcjebejmndignliobeifocj_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jpnpobggldcjebejmndignliobeifocj deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkkidmpafdcfdcbkbpnmplgedohaijkd deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lkkidmpafdcfdcbkbpnmplgedohaijkd_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lkkidmpafdcfdcbkbpnmplgedohaijkd_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkkidmpafdcfdcbkbpnmplgedohaijkd deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmgjagdflhhfjflolfalapokbplfldna deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lmgjagdflhhfjflolfalapokbplfldna_0.localstorage deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lmgjagdflhhfjflolfalapokbplfldna_0.localstorage-journal deleted successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lmgjagdflhhfjflolfalapokbplfldna deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... urceid=ie7"
{EF25E545-B6B7-4199-9956-EBAD5CE3C639} Centrum.cz Search Url="http://search.centrum.cz/index.php?q={s ... trum-1.0.0"
==== Reset Google Chrome ======================
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1094FB974CE162743B2C7A5879606C7E deleted successfully
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ljkcijnbckdflhifmbnfnkjacokloacf deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79BF4901-1EC4-4726-B3C2-A7859706C6E7} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\League of Legends 3.0.1 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Torntv V6.0 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\qualitink deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\1094FB974CE162743B2C7A5879606C7E deleted successfully
==== Empty IE Cache ======================
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OSWWIWOV will be deleted at reboot
==== Empty FireFox Cache ======================
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\buwccx2j.default\Cache emptied successfully
==== Empty Chrome Cache ======================
C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=4824 folders=3225 292662400 bytes)
==== Empty Temp Folders ======================
C:\Users\admin\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\admin\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OSWWIWOV" not found
==== EOF on źt 23.04.2015 at 14:33:55,31 ======================
Re: vyskakovací okna
Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: vyskakovací okna
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-04-2015 01
Ran by admin (administrator) on ADMIN-PC on 23-04-2015 19:09:51
Running from C:\Users\admin\Desktop
Loaded Profiles: admin (Available profiles: admin)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(Software) C:\Program Files\Common Files\Hydrup\hydrup.exe
() C:\Windows\System32\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
() C:\Program Files\Pando Networks\Media Booster\PMB.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Program Files\CentrumczToolbar\ToolbarBroker.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [HPUsageTrackingLEDM] => C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe [30264 2009-08-04] (Hewlett-Packard Company)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1840424 2008-06-24] (Nero AG)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Google Update] => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-27] (Google Inc.)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Pando Media Booster] => C:\Program Files\Pando Networks\Media Booster\PMB.exe [3077528 2011-08-29] ()
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e36d9f56-6d7b-11e3-945e-bcaec5b4b7ff} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e4d0c0b1-4ed1-11e3-9a6d-bcaec5b4b7ff} - E:\.autorun\autorun.exe
Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2011-03-13]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
URLSearchHook: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 - CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files\CentrumczToolbar\IEToolbar.dll ()
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> DefaultScope {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
BHO: CentrumczToolbar BHO -> {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} -> C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26] ()
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-28] (Oracle Corporation)
BHO: avast! WebRep -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-28] (Oracle Corporation)
Toolbar: HKLM - Lišta Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26] ()
Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07] (AVAST Software)
Toolbar: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> Lišta Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26] ()
DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} http://www.battlefieldheroes.com/static ... .203.0.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26] ()
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
FF NewTab: about:newtab
FF Homepage: about:home
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-23] ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 -> C:\Windows\system32\npDeployJava1.dll [2013-03-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-03-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [2011-08-29] (Pando Networks)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1189625069-2542699651-1591823224-1000: @tools.google.com/Google Update;version=3 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1189625069-2542699651-1591823224-1000: @tools.google.com/Google Update;version=9 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1189625069-2542699651-1591823224-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\admin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1189625069-2542699651-1591823224-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [2011-08-29] (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Cetrumcz_igeared.xml [2010-03-26]
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml [2013-12-22]
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml [2011-07-05]
FF Extension: Battlefield Heroes Updater - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\battlefieldheroespatcher@ea.com [2011-08-10]
FF HKLM\...\Firefox\Extensions: [Cetrumcz@igeared] - C:\Program Files\CentrumczToolbar\Firefox\Cetrumcz@igeared
FF Extension: Lišta Centrum.cz Toolbar - C:\Program Files\CentrumczToolbar\Firefox\Cetrumcz@igeared [2011-02-10]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! WebRep - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-06-22]
FF Extension: No Name - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi [Not Found]
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-23]
CHR Extension: (Google Docs) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-23]
CHR Extension: (Google Drive) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-23]
CHR Extension: (YouTube) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-23]
CHR Extension: (Google Search) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-23]
CHR Extension: (Google Sheets) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-23]
CHR Extension: (avast! WebRep) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2012-03-25]
CHR Extension: (Google Wallet) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-23]
CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-23]
CHR HKLM\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2012-06-22]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44768 2012-03-07] (AVAST Software)
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [136704 2009-06-24] (HP) [File not signed]
R2 Hydrup; C:\Program Files\Common Files\Hydrup\hydrup.exe [266536 2015-03-27] (Software)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2013-02-27] ()
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5448976 2015-04-17] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [44376 2012-03-07] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-11-17] (DT Soft Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S2 aswFsBlk; No ImagePath
S1 aswSP; No ImagePath
S1 aswTdi; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-23 19:09 - 2015-04-23 19:10 - 00014533 _____ () C:\Users\admin\Desktop\FRST.txt
2015-04-23 19:09 - 2015-04-23 19:09 - 01139200 _____ (Farbar) C:\Users\admin\Downloads\FRST.exe
2015-04-23 19:09 - 2015-04-23 19:09 - 01139200 _____ (Farbar) C:\Users\admin\Desktop\FRST.exe
2015-04-23 19:09 - 2015-04-23 19:09 - 00000000 ____D () C:\FRST
2015-04-23 19:07 - 2015-04-23 19:07 - 00015327 _____ () C:\Users\admin\Desktop\LM.bat
2015-04-23 19:06 - 2015-04-23 19:06 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Desktop\FRSTLauncher.exe
2015-04-23 19:05 - 2015-04-23 19:07 - 00029696 _____ () C:\Users\admin\AppData\Local\MSGBOX.EXE
2015-04-23 19:04 - 2015-04-23 19:04 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 681116.crdownload
2015-04-23 19:03 - 2015-04-23 19:03 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 191063.crdownload
2015-04-23 18:57 - 2015-04-23 18:57 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 499982.crdownload
2015-04-23 14:34 - 2015-04-23 14:34 - 00000020 _____ () C:\Users\admin\AppData\Roaming\appdataFr3.bin
2015-04-23 14:13 - 2015-04-23 13:58 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-04-23 13:59 - 2015-04-23 14:33 - 00024197 _____ () C:\zoek-results.log
2015-04-23 13:58 - 2015-04-23 14:11 - 00000000 ____D () C:\zoek_backup
2015-04-23 12:44 - 2015-04-23 12:44 - 01305600 _____ () C:\Users\admin\Desktop\zoek.exe
2015-04-23 12:12 - 2015-04-23 12:22 - 00000000 ____D () C:\AdwCleaner
2015-04-23 12:11 - 2015-04-23 12:11 - 02217984 _____ () C:\Users\admin\Desktop\adwcleaner_4.201.exe
2015-04-22 23:53 - 2015-04-22 23:53 - 00000000 ____D () C:\Users\admin\AppData\Local\TeamViewer
2015-04-22 23:51 - 2015-04-23 07:04 - 00000000 ____D () C:\Program Files\TeamViewer
2015-04-22 23:51 - 2015-04-23 07:03 - 00000929 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-04-22 23:51 - 2015-04-23 07:03 - 00000917 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-04-22 23:51 - 2015-04-22 23:51 - 07825216 _____ (TeamViewer GmbH) C:\Users\admin\Desktop\TeamViewer_Setup_cs.exe
2015-04-22 23:27 - 2015-04-22 23:34 - 00000000 ____D () C:\Program Files\trend micro
2015-04-22 23:27 - 2015-04-22 23:27 - 01107968 _____ () C:\Users\admin\Desktop\RSIT.exe
2015-04-22 23:27 - 2015-04-22 23:27 - 00000000 ____D () C:\rsit
2015-04-18 17:45 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-18 17:45 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-18 17:45 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-04-18 17:45 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-18 17:45 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-18 17:45 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-18 17:45 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-18 17:45 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-18 17:45 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-18 17:45 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-18 17:45 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-18 17:45 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-18 17:44 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-18 17:44 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-18 17:44 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-18 17:44 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-18 17:44 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-18 17:44 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-18 17:44 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-18 17:44 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-18 17:44 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-18 17:44 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-18 17:44 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-18 17:42 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-18 17:42 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-18 17:42 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-18 17:42 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-18 17:42 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-18 17:42 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-18 17:42 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-18 17:42 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-18 17:42 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-18 17:42 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-18 17:42 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-18 17:42 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-18 17:42 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-18 17:42 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-18 17:42 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-18 17:42 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-18 17:42 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-18 17:42 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-18 17:42 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-18 17:42 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-18 17:42 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-18 17:42 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-18 17:42 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-18 17:42 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-18 17:42 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-18 17:42 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-18 17:42 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-18 17:42 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-18 17:42 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-18 17:42 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-18 17:42 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-18 17:42 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-18 17:41 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-18 17:41 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-18 17:41 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-18 17:40 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-18 17:40 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-18 17:39 - 2015-04-18 17:39 - 02347384 _____ (ESET) C:\Users\admin\Downloads\esetsmartinstaller_csy (1).exe
2015-04-16 20:57 - 2015-04-16 20:57 - 02347384 _____ (ESET) C:\Users\admin\Downloads\esetsmartinstaller_csy.exe
2015-04-16 20:44 - 2015-04-16 20:44 - 00001527 _____ () C:\MAKEMSI_VBSCA-Kaspersky Security Scan(1.0.0.500)-čtvrtek.log
2015-04-05 07:49 - 2015-04-05 07:50 - 00000000 ___SD () C:\Windows\system32\GWX
2015-03-27 13:43 - 2015-03-27 13:43 - 00000000 ____D () C:\Program Files\Common Files\Hydrup
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-23 19:10 - 2011-08-29 19:20 - 00000000 ____D () C:\Users\admin\AppData\Local\PMB Files
2015-04-23 19:07 - 2012-03-24 21:20 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-23 18:43 - 2013-02-27 17:56 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-23 18:36 - 2011-02-04 20:41 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job
2015-04-23 18:15 - 2011-01-25 20:33 - 01289239 _____ () C:\Windows\WindowsUpdate.log
2015-04-23 14:41 - 2009-07-14 06:34 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-23 14:41 - 2009-07-14 06:34 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-23 14:33 - 2014-02-11 07:34 - 00054282 _____ () C:\Windows\PFRO.log
2015-04-23 14:33 - 2014-02-11 07:34 - 00025618 _____ () C:\Windows\setupact.log
2015-04-23 14:33 - 2012-03-24 21:20 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-23 14:33 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-23 12:36 - 2011-02-04 20:41 - 00001533 _____ () C:\Users\admin\Desktop\Google Chrome.lnk
2015-04-23 12:22 - 2013-12-22 03:00 - 00001023 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-04-23 12:22 - 2011-02-10 16:21 - 00001011 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-04-23 12:22 - 2011-02-04 20:41 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-23 12:22 - 2011-01-25 20:34 - 00001126 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-04-23 07:43 - 2013-02-27 17:56 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-04-23 07:43 - 2011-07-24 10:20 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-04-23 07:36 - 2011-02-04 20:41 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job
2015-04-23 07:36 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-04-23 07:34 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat
2015-04-23 07:06 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-04-23 06:58 - 2009-07-14 06:33 - 00412584 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-22 23:08 - 2014-12-13 17:25 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-22 23:08 - 2014-09-23 03:32 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-18 21:56 - 2011-01-25 20:37 - 01559340 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-18 18:20 - 2011-08-29 19:20 - 00000000 ____D () C:\ProgramData\PMB Files
2015-04-18 18:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\wfp
2015-04-18 18:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\registration
2015-04-18 18:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-18 17:30 - 2011-01-25 20:34 - 00000000 ____D () C:\Users\admin
2015-04-17 03:11 - 2013-10-20 19:50 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-16 21:44 - 2011-02-08 10:53 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Skype
2015-04-16 20:45 - 2011-02-08 10:53 - 00000000 ___RD () C:\Program Files\Skype
2015-04-15 21:15 - 2012-03-24 21:20 - 00000000 ____D () C:\Program Files\Google
2015-04-15 20:19 - 2011-02-04 20:40 - 00000000 ____D () C:\Users\admin\AppData\Local\Google
2015-04-07 20:46 - 2015-01-27 09:49 - 00000000 ____D () C:\Stereo2015 v17
2015-03-31 21:16 - 2013-01-31 16:37 - 00000000 ____D () C:\Stereo2013 v15
2015-03-30 22:19 - 2011-01-25 22:37 - 00001024 _____ () C:\Users\admin\.rnd
2015-03-24 22:49 - 2011-02-13 21:26 - 00000000 ____D () C:\ZALOHY
==================== Files in the root of some directories =======
2015-04-23 14:34 - 2015-04-23 14:34 - 0000020 _____ () C:\Users\admin\AppData\Roaming\appdataFr3.bin
2011-02-07 23:20 - 2013-12-15 20:51 - 0000134 _____ () C:\Users\admin\AppData\Roaming\default.pls
2011-02-06 19:15 - 2013-02-27 18:03 - 0138056 _____ () C:\Users\admin\AppData\Roaming\PnkBstrK.sys
2015-04-23 19:05 - 2015-04-23 19:07 - 0029696 _____ () C:\Users\admin\AppData\Local\MSGBOX.EXE
2011-02-08 10:59 - 2011-02-08 10:59 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2012-04-29 21:23 - 2010-02-09 17:04 - 0024772 _____ () C:\ProgramData\P1100DEF.css
2012-04-29 21:23 - 2012-04-29 21:23 - 0004188 _____ () C:\ProgramData\P1100OS.HTM
2012-04-29 21:23 - 2010-02-09 17:04 - 0002944 _____ () C:\ProgramData\P1100SIG.GIF
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-15 20:37
==================== End Of Log ============================
Ran by admin (administrator) on ADMIN-PC on 23-04-2015 19:09:51
Running from C:\Users\admin\Desktop
Loaded Profiles: admin (Available profiles: admin)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(Software) C:\Program Files\Common Files\Hydrup\hydrup.exe
() C:\Windows\System32\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
() C:\Program Files\Pando Networks\Media Booster\PMB.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Program Files\CentrumczToolbar\ToolbarBroker.exe
(Google Inc.) C:\Users\admin\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [HPUsageTrackingLEDM] => C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe [30264 2009-08-04] (Hewlett-Packard Company)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1840424 2008-06-24] (Nero AG)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Google Update] => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-27] (Google Inc.)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Pando Media Booster] => C:\Program Files\Pando Networks\Media Booster\PMB.exe [3077528 2011-08-29] ()
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e36d9f56-6d7b-11e3-945e-bcaec5b4b7ff} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e4d0c0b1-4ed1-11e3-9a6d-bcaec5b4b7ff} - E:\.autorun\autorun.exe
Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2011-03-13]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
URLSearchHook: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 - CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files\CentrumczToolbar\IEToolbar.dll ()
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> DefaultScope {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
BHO: CentrumczToolbar BHO -> {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} -> C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26] ()
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-28] (Oracle Corporation)
BHO: avast! WebRep -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-28] (Oracle Corporation)
Toolbar: HKLM - Lišta Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26] ()
Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-03-07] (AVAST Software)
Toolbar: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> Lišta Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26] ()
DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} http://www.battlefieldheroes.com/static ... .203.0.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-03-26] ()
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default
FF NewTab: about:newtab
FF Homepage: about:home
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-23] ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 -> C:\Windows\system32\npDeployJava1.dll [2013-03-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-03-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [2011-08-29] (Pando Networks)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1189625069-2542699651-1591823224-1000: @tools.google.com/Google Update;version=3 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1189625069-2542699651-1591823224-1000: @tools.google.com/Google Update;version=9 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1189625069-2542699651-1591823224-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\admin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1189625069-2542699651-1591823224-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [2011-08-29] (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Cetrumcz_igeared.xml [2010-03-26]
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml [2013-12-22]
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml [2011-07-05]
FF Extension: Battlefield Heroes Updater - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\Extensions\battlefieldheroespatcher@ea.com [2011-08-10]
FF HKLM\...\Firefox\Extensions: [Cetrumcz@igeared] - C:\Program Files\CentrumczToolbar\Firefox\Cetrumcz@igeared
FF Extension: Lišta Centrum.cz Toolbar - C:\Program Files\CentrumczToolbar\Firefox\Cetrumcz@igeared [2011-02-10]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! WebRep - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-06-22]
FF Extension: No Name - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi [Not Found]
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-23]
CHR Extension: (Google Docs) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-23]
CHR Extension: (Google Drive) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-23]
CHR Extension: (YouTube) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-23]
CHR Extension: (Google Search) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-23]
CHR Extension: (Google Sheets) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-23]
CHR Extension: (avast! WebRep) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2012-03-25]
CHR Extension: (Google Wallet) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-23]
CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-23]
CHR HKLM\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2012-06-22]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44768 2012-03-07] (AVAST Software)
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [136704 2009-06-24] (HP) [File not signed]
R2 Hydrup; C:\Program Files\Common Files\Hydrup\hydrup.exe [266536 2015-03-27] (Software)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2013-02-27] ()
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5448976 2015-04-17] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [44376 2012-03-07] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-11-17] (DT Soft Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S2 aswFsBlk; No ImagePath
S1 aswSP; No ImagePath
S1 aswTdi; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-23 19:09 - 2015-04-23 19:10 - 00014533 _____ () C:\Users\admin\Desktop\FRST.txt
2015-04-23 19:09 - 2015-04-23 19:09 - 01139200 _____ (Farbar) C:\Users\admin\Downloads\FRST.exe
2015-04-23 19:09 - 2015-04-23 19:09 - 01139200 _____ (Farbar) C:\Users\admin\Desktop\FRST.exe
2015-04-23 19:09 - 2015-04-23 19:09 - 00000000 ____D () C:\FRST
2015-04-23 19:07 - 2015-04-23 19:07 - 00015327 _____ () C:\Users\admin\Desktop\LM.bat
2015-04-23 19:06 - 2015-04-23 19:06 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Desktop\FRSTLauncher.exe
2015-04-23 19:05 - 2015-04-23 19:07 - 00029696 _____ () C:\Users\admin\AppData\Local\MSGBOX.EXE
2015-04-23 19:04 - 2015-04-23 19:04 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 681116.crdownload
2015-04-23 19:03 - 2015-04-23 19:03 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 191063.crdownload
2015-04-23 18:57 - 2015-04-23 18:57 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 499982.crdownload
2015-04-23 14:34 - 2015-04-23 14:34 - 00000020 _____ () C:\Users\admin\AppData\Roaming\appdataFr3.bin
2015-04-23 14:13 - 2015-04-23 13:58 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-04-23 13:59 - 2015-04-23 14:33 - 00024197 _____ () C:\zoek-results.log
2015-04-23 13:58 - 2015-04-23 14:11 - 00000000 ____D () C:\zoek_backup
2015-04-23 12:44 - 2015-04-23 12:44 - 01305600 _____ () C:\Users\admin\Desktop\zoek.exe
2015-04-23 12:12 - 2015-04-23 12:22 - 00000000 ____D () C:\AdwCleaner
2015-04-23 12:11 - 2015-04-23 12:11 - 02217984 _____ () C:\Users\admin\Desktop\adwcleaner_4.201.exe
2015-04-22 23:53 - 2015-04-22 23:53 - 00000000 ____D () C:\Users\admin\AppData\Local\TeamViewer
2015-04-22 23:51 - 2015-04-23 07:04 - 00000000 ____D () C:\Program Files\TeamViewer
2015-04-22 23:51 - 2015-04-23 07:03 - 00000929 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-04-22 23:51 - 2015-04-23 07:03 - 00000917 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-04-22 23:51 - 2015-04-22 23:51 - 07825216 _____ (TeamViewer GmbH) C:\Users\admin\Desktop\TeamViewer_Setup_cs.exe
2015-04-22 23:27 - 2015-04-22 23:34 - 00000000 ____D () C:\Program Files\trend micro
2015-04-22 23:27 - 2015-04-22 23:27 - 01107968 _____ () C:\Users\admin\Desktop\RSIT.exe
2015-04-22 23:27 - 2015-04-22 23:27 - 00000000 ____D () C:\rsit
2015-04-18 17:45 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-18 17:45 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-18 17:45 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-18 17:45 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-04-18 17:45 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-18 17:45 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-18 17:45 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-18 17:45 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-18 17:45 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-18 17:45 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-18 17:45 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-18 17:45 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-18 17:45 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-18 17:45 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-18 17:44 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-18 17:44 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-18 17:44 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-18 17:44 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-18 17:44 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-18 17:44 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-18 17:44 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-18 17:44 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-18 17:44 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-18 17:44 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-18 17:44 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-18 17:42 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-18 17:42 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-18 17:42 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-18 17:42 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-18 17:42 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-18 17:42 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-18 17:42 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-18 17:42 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-18 17:42 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-18 17:42 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-18 17:42 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-18 17:42 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-18 17:42 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-18 17:42 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-18 17:42 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-18 17:42 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-18 17:42 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-18 17:42 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-18 17:42 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-18 17:42 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-18 17:42 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-18 17:42 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-18 17:42 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-18 17:42 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-18 17:42 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-18 17:42 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-18 17:42 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-18 17:42 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-18 17:42 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-18 17:42 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-18 17:42 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-18 17:42 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-18 17:41 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-18 17:41 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-18 17:41 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-18 17:41 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-18 17:40 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-18 17:40 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-18 17:39 - 2015-04-18 17:39 - 02347384 _____ (ESET) C:\Users\admin\Downloads\esetsmartinstaller_csy (1).exe
2015-04-16 20:57 - 2015-04-16 20:57 - 02347384 _____ (ESET) C:\Users\admin\Downloads\esetsmartinstaller_csy.exe
2015-04-16 20:44 - 2015-04-16 20:44 - 00001527 _____ () C:\MAKEMSI_VBSCA-Kaspersky Security Scan(1.0.0.500)-čtvrtek.log
2015-04-05 07:49 - 2015-04-05 07:50 - 00000000 ___SD () C:\Windows\system32\GWX
2015-03-27 13:43 - 2015-03-27 13:43 - 00000000 ____D () C:\Program Files\Common Files\Hydrup
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-23 19:10 - 2011-08-29 19:20 - 00000000 ____D () C:\Users\admin\AppData\Local\PMB Files
2015-04-23 19:07 - 2012-03-24 21:20 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-23 18:43 - 2013-02-27 17:56 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-23 18:36 - 2011-02-04 20:41 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job
2015-04-23 18:15 - 2011-01-25 20:33 - 01289239 _____ () C:\Windows\WindowsUpdate.log
2015-04-23 14:41 - 2009-07-14 06:34 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-23 14:41 - 2009-07-14 06:34 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-23 14:33 - 2014-02-11 07:34 - 00054282 _____ () C:\Windows\PFRO.log
2015-04-23 14:33 - 2014-02-11 07:34 - 00025618 _____ () C:\Windows\setupact.log
2015-04-23 14:33 - 2012-03-24 21:20 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-23 14:33 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-23 12:36 - 2011-02-04 20:41 - 00001533 _____ () C:\Users\admin\Desktop\Google Chrome.lnk
2015-04-23 12:22 - 2013-12-22 03:00 - 00001023 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-04-23 12:22 - 2011-02-10 16:21 - 00001011 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-04-23 12:22 - 2011-02-04 20:41 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-23 12:22 - 2011-01-25 20:34 - 00001126 _____ () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-04-23 07:43 - 2013-02-27 17:56 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-04-23 07:43 - 2011-07-24 10:20 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-04-23 07:36 - 2011-02-04 20:41 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job
2015-04-23 07:36 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-04-23 07:34 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat
2015-04-23 07:06 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-04-23 06:58 - 2009-07-14 06:33 - 00412584 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-22 23:08 - 2014-12-13 17:25 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-22 23:08 - 2014-09-23 03:32 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-18 21:56 - 2011-01-25 20:37 - 01559340 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-18 18:20 - 2011-08-29 19:20 - 00000000 ____D () C:\ProgramData\PMB Files
2015-04-18 18:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\wfp
2015-04-18 18:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\registration
2015-04-18 18:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-18 17:30 - 2011-01-25 20:34 - 00000000 ____D () C:\Users\admin
2015-04-17 03:11 - 2013-10-20 19:50 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-16 21:44 - 2011-02-08 10:53 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Skype
2015-04-16 20:45 - 2011-02-08 10:53 - 00000000 ___RD () C:\Program Files\Skype
2015-04-15 21:15 - 2012-03-24 21:20 - 00000000 ____D () C:\Program Files\Google
2015-04-15 20:19 - 2011-02-04 20:40 - 00000000 ____D () C:\Users\admin\AppData\Local\Google
2015-04-07 20:46 - 2015-01-27 09:49 - 00000000 ____D () C:\Stereo2015 v17
2015-03-31 21:16 - 2013-01-31 16:37 - 00000000 ____D () C:\Stereo2013 v15
2015-03-30 22:19 - 2011-01-25 22:37 - 00001024 _____ () C:\Users\admin\.rnd
2015-03-24 22:49 - 2011-02-13 21:26 - 00000000 ____D () C:\ZALOHY
==================== Files in the root of some directories =======
2015-04-23 14:34 - 2015-04-23 14:34 - 0000020 _____ () C:\Users\admin\AppData\Roaming\appdataFr3.bin
2011-02-07 23:20 - 2013-12-15 20:51 - 0000134 _____ () C:\Users\admin\AppData\Roaming\default.pls
2011-02-06 19:15 - 2013-02-27 18:03 - 0138056 _____ () C:\Users\admin\AppData\Roaming\PnkBstrK.sys
2015-04-23 19:05 - 2015-04-23 19:07 - 0029696 _____ () C:\Users\admin\AppData\Local\MSGBOX.EXE
2011-02-08 10:59 - 2011-02-08 10:59 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2012-04-29 21:23 - 2010-02-09 17:04 - 0024772 _____ () C:\ProgramData\P1100DEF.css
2012-04-29 21:23 - 2012-04-29 21:23 - 0004188 _____ () C:\ProgramData\P1100OS.HTM
2012-04-29 21:23 - 2010-02-09 17:04 - 0002944 _____ () C:\ProgramData\P1100SIG.GIF
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-15 20:37
==================== End Of Log ============================
Re: vyskakovací okna
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 22-04-2015 01
Ran by admin at 2015-04-23 19:10:29
Running from C:\Users\admin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AION Free-to-Play version 1.0 (HKLM\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version: 1.0 - Gameforge)
avast! Free Antivirus (HKLM\...\avast) (Version: 7.0.1426.0 - AVAST Software)
Battlefield Heroes (HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}) (Version: - EA Digital illusions)
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
Counter-Strike-Source-Hack-by-MoullCZ version for Windows (HKLM\...\{47A2585D-2822-F495-92E1- 1BB5A79DA10}_is1) (Version: for Windows - )
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - )
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Gameforge Live 1.0 "Legend" (HKLM\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 1.0.1717 - Gameforge)
Google Chrome (HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Google Chrome) (Version: 42.0.2311.90 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - )
hppLaserJetService (Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppP1100P1560P1600SeriesLaserJetService (Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppusgP1100P1560P1600Series (Version: 1.0.0.1 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Java 7 Update 17 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.170 - Oracle)
Lišta Centrum.cz Toolbar 1.203.023.002 (HKLM\...\Lišta Centrum.cz Toolbar_is1) (Version: - iGeared LLC)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft1.7.2 (HKLM\...\Minecraft1.7.2) (Version: - )
Mozilla Firefox 12.0 (x86 cs) (HKLM\...\Mozilla Firefox 12.0 (x86 cs)) (Version: 12.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 12.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 8 Essentials (HKLM\...\{A5CCD0C8-6D5E-4515-BDD7-2A22D5D91029}) (Version: 8.3.569 - Nero AG)
Pando Media Booster (HKLM\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.3.6.0 - Pando Networks Inc.)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Skype™ 6.3 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
Stereo 2011 - ekonomický software, v.13.1.3 (HKLM\...\suc13_is1) (Version: 13.1.3 - KASTNER software s.r.o.)
Stereo 2012 - ekonomický software, v.14.1.3 (HKLM\...\suc14_is1) (Version: 14.1.3 - KASTNER software s.r.o.)
Stereo 2013 - ekonomický software, v.15.1.1 (HKLM\...\suc15_is1) (Version: 15.1.1 - KASTNER software s.r.o.)
Stereo 2014 - ekonomický software, v.16.1.1 (HKLM\...\suc16_is1) (Version: 16.1.1 - KASTNER software s.r.o.)
Stereo 2015 - ekonomický software, v.17.1.3 (HKLM\...\suc17_is1) (Version: 17.1.3 - KASTNER software s.r.o.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.6 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM\...\TeamViewer) (Version: 10.0.41459 - TeamViewer)
Unity Web Player (HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
VideoDownloadConverter Toolbar Chrome Extension (HKLM\...\VideoDownloadConverter_4z Chrome Extension Uninstall) (Version: - Mindspark Interactive Network) <==== ATTENTION
WinZip 15.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240C1}) (Version: 15.0.9411 - WinZip Computing, S.L. )
Zoner Photo Studio 14 (HKLM\...\ZonerPhotoStudio14_CZ_is1) (Version: 14.0.1.1 - ZONER software)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{31261F21-2B16-45EE-BEAB-07C4CFA18B65}\InprocServer32 -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\admin\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\admin\AppData\Local\Google\Chrome\Application\42.0.2311.90\delegate_execute.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.24.15\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.3\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\admin\AppData\Local\Temp\d55242783Bc99.exe No File
==================== Restore Points =========================
03-04-2015 21:53:19 Windows Update
05-04-2015 07:49:21 Windows Update
15-04-2015 21:14:22 Naplánovaný kontrolní bod
16-04-2015 20:44:16 Removed Kaspersky Security Scan
16-04-2015 20:45:07 Removed Skype Toolbars
16-04-2015 21:08:22 Windows Update
17-04-2015 03:00:12 Windows Update
18-04-2015 21:53:39 Windows Update
22-04-2015 23:22:32 Windows Update
23-04-2015 13:59:50 zoek.exe restore point
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2015-04-23 14:00 - 00000841 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {03645F03-278B-4312-8B9E-34174DA90DBD} - System32\Tasks\{0BC46521-F6CA-415B-AA86-6A59EE3631B2} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop
Task: {230A3C2F-D5FC-448D-9D07-253A20DD9DF0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {27B1AFAE-3BAF-45C1-8AE9-FF1329A70D32} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {5AB64E53-034B-41FF-BDBD-9B28D231B480} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-23] (Adobe Systems Incorporated)
Task: {67B65291-347D-4456-92C3-71A0E66DC726} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {6A56E7C7-A60D-4671-9C83-AD63D51AE1AE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {6AEA6BD7-EEFE-481F-9BF5-19526D82DA1E} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {754D1B77-A5C3-48C8-810E-C5991357FDF1} - System32\Tasks\{FFEC9F4F-972E-44C5-9742-9CF9FB501BBD} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop
Task: {7B3E7C3A-339B-4D6C-9D02-B3E912165F82} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {A2FBE91E-1178-4EB3-836C-D5AFB9D7C06F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {A529F7D8-C4E2-4FC1-8BB9-48FC8AA199A1} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {B4E94455-DBB4-4F21-90F7-D2AFCBDC25A0} - System32\Tasks\{08D06A52-1801-4FB3-933C-9A6B8B75EAC8} => C:\Program Files\Skype\\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {DE6B5075-D23F-4462-B1FE-07E4FF5E3DDB} - System32\Tasks\{B3E167D6-6FEA-4427-BBC6-87B6877008B9} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZB7BWK47\stereo-1907.exe" -d C:\Users\admin\Desktop
Task: {F6E9EB0D-47CB-44B1-8CC2-AF1333BE8941} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) ==============
2011-03-15 16:33 - 2010-03-04 17:55 - 00147456 _____ () C:\Windows\System32\HP1100LM.DLL
2011-03-15 16:34 - 2010-03-04 17:55 - 00069632 _____ () C:\Windows\system32\spool\PRTPROCS\W32X86\HP1100PP.DLL
2011-03-15 16:33 - 2010-03-06 09:40 - 00081920 _____ () C:\Windows\system32\mvusbews.DLL
2011-02-06 19:14 - 2013-02-27 18:03 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2011-08-29 19:19 - 2011-08-29 19:20 - 03077528 _____ () C:\Program Files\Pando Networks\Media Booster\PMB.exe
2015-04-17 02:39 - 2015-04-13 23:55 - 01252680 _____ () C:\Users\admin\AppData\Local\Google\Chrome\Application\42.0.2311.90\libglesv2.dll
2015-04-17 02:39 - 2015-04-13 23:55 - 00080712 _____ () C:\Users\admin\AppData\Local\Google\Chrome\Application\42.0.2311.90\libegl.dll
2015-04-17 02:39 - 2015-04-13 23:55 - 14980424 _____ () C:\Users\admin\AppData\Local\Google\Chrome\Application\42.0.2311.90\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_email1229235768
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_firmy-216282473
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_novinky-1609642764
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_prozeny771666966
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_sport6476750
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_stream1444311432
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_super-41222104
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, the associated entry will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\admin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== Accounts: =============================
admin (S-1-5-21-1189625069-2542699651-1591823224-1000 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-1189625069-2542699651-1591823224-500 - Administrator - Disabled)
Guest (S-1-5-21-1189625069-2542699651-1591823224-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1189625069-2542699651-1591823224-1002 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
Name: aswSP
Description: aswSP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswSP
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: avast! Network Shield Support
Description: avast! Network Shield Support
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswTdi
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/22/2015 11:27:47 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (04/05/2015 06:58:30 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (04/03/2015 00:48:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program iexplore.exe verze 11.0.9600.17689 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1004
Čas spuštění: 01d06dfb9a2f78c0
Čas ukončení: 8
Cesta k aplikaci: C:\Program Files\Internet Explorer\iexplore.exe
ID hlášení: f49da435-d9ee-11e4-8e02-bcaec5b4b7ff
Error: (04/03/2015 11:09:28 AM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (04/01/2015 02:46:42 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (03/31/2015 04:11:24 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (03/30/2015 07:37:11 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.
Operace:
Shromažďování dat modulu pro zápis
Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {6f87bc0a-c646-4d91-b1ff-c0bdc9f18317}
Error: (03/29/2015 04:16:29 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (03/28/2015 02:12:18 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (03/28/2015 01:57:09 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
System errors:
=============
Error: (04/23/2015 02:33:37 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
aswSP
aswTdi
Error: (04/23/2015 02:33:26 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Služba avast! Antivirus závisí na následující službě: aswMonFlt. Tato služba pravděpodobně není nainstalována.
Error: (04/23/2015 02:33:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba aswFsBlk neuspěla při spuštění v důsledku následující chyby:
%%2
Error: (04/23/2015 02:09:17 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:17 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:17 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:16 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:16 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:15 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:15 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Processor: Pentium(R) Dual-Core CPU E6500 @ 2.93GHz
Percentage of memory in use: 60%
Total physical RAM: 2013.05 MB
Available physical RAM: 790.87 MB
Total Pagefile: 4026.11 MB
Available Pagefile: 2232.38 MB
Total Virtual: 2047.88 MB
Available Virtual: 1889.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:158.13 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 53D74895)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Ran by admin at 2015-04-23 19:10:29
Running from C:\Users\admin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AION Free-to-Play version 1.0 (HKLM\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version: 1.0 - Gameforge)
avast! Free Antivirus (HKLM\...\avast) (Version: 7.0.1426.0 - AVAST Software)
Battlefield Heroes (HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}) (Version: - EA Digital illusions)
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
Counter-Strike-Source-Hack-by-MoullCZ version for Windows (HKLM\...\{47A2585D-2822-F495-92E1- 1BB5A79DA10}_is1) (Version: for Windows - )
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - )
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Gameforge Live 1.0 "Legend" (HKLM\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 1.0.1717 - Gameforge)
Google Chrome (HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Google Chrome) (Version: 42.0.2311.90 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - )
hppLaserJetService (Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppP1100P1560P1600SeriesLaserJetService (Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppusgP1100P1560P1600Series (Version: 1.0.0.1 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Java 7 Update 17 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.170 - Oracle)
Lišta Centrum.cz Toolbar 1.203.023.002 (HKLM\...\Lišta Centrum.cz Toolbar_is1) (Version: - iGeared LLC)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft1.7.2 (HKLM\...\Minecraft1.7.2) (Version: - )
Mozilla Firefox 12.0 (x86 cs) (HKLM\...\Mozilla Firefox 12.0 (x86 cs)) (Version: 12.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 12.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 8 Essentials (HKLM\...\{A5CCD0C8-6D5E-4515-BDD7-2A22D5D91029}) (Version: 8.3.569 - Nero AG)
Pando Media Booster (HKLM\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.3.6.0 - Pando Networks Inc.)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Skype™ 6.3 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
Stereo 2011 - ekonomický software, v.13.1.3 (HKLM\...\suc13_is1) (Version: 13.1.3 - KASTNER software s.r.o.)
Stereo 2012 - ekonomický software, v.14.1.3 (HKLM\...\suc14_is1) (Version: 14.1.3 - KASTNER software s.r.o.)
Stereo 2013 - ekonomický software, v.15.1.1 (HKLM\...\suc15_is1) (Version: 15.1.1 - KASTNER software s.r.o.)
Stereo 2014 - ekonomický software, v.16.1.1 (HKLM\...\suc16_is1) (Version: 16.1.1 - KASTNER software s.r.o.)
Stereo 2015 - ekonomický software, v.17.1.3 (HKLM\...\suc17_is1) (Version: 17.1.3 - KASTNER software s.r.o.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.6 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM\...\TeamViewer) (Version: 10.0.41459 - TeamViewer)
Unity Web Player (HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
VideoDownloadConverter Toolbar Chrome Extension (HKLM\...\VideoDownloadConverter_4z Chrome Extension Uninstall) (Version: - Mindspark Interactive Network) <==== ATTENTION
WinZip 15.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240C1}) (Version: 15.0.9411 - WinZip Computing, S.L. )
Zoner Photo Studio 14 (HKLM\...\ZonerPhotoStudio14_CZ_is1) (Version: 14.0.1.1 - ZONER software)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{31261F21-2B16-45EE-BEAB-07C4CFA18B65}\InprocServer32 -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\admin\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\admin\AppData\Local\Google\Chrome\Application\42.0.2311.90\delegate_execute.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.24.15\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.3\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.26.9\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\admin\AppData\Local\Temp\d55242783Bc99.exe No File
==================== Restore Points =========================
03-04-2015 21:53:19 Windows Update
05-04-2015 07:49:21 Windows Update
15-04-2015 21:14:22 Naplánovaný kontrolní bod
16-04-2015 20:44:16 Removed Kaspersky Security Scan
16-04-2015 20:45:07 Removed Skype Toolbars
16-04-2015 21:08:22 Windows Update
17-04-2015 03:00:12 Windows Update
18-04-2015 21:53:39 Windows Update
22-04-2015 23:22:32 Windows Update
23-04-2015 13:59:50 zoek.exe restore point
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2015-04-23 14:00 - 00000841 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {03645F03-278B-4312-8B9E-34174DA90DBD} - System32\Tasks\{0BC46521-F6CA-415B-AA86-6A59EE3631B2} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop
Task: {230A3C2F-D5FC-448D-9D07-253A20DD9DF0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {27B1AFAE-3BAF-45C1-8AE9-FF1329A70D32} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {5AB64E53-034B-41FF-BDBD-9B28D231B480} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-23] (Adobe Systems Incorporated)
Task: {67B65291-347D-4456-92C3-71A0E66DC726} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {6A56E7C7-A60D-4671-9C83-AD63D51AE1AE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {6AEA6BD7-EEFE-481F-9BF5-19526D82DA1E} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {754D1B77-A5C3-48C8-810E-C5991357FDF1} - System32\Tasks\{FFEC9F4F-972E-44C5-9742-9CF9FB501BBD} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop
Task: {7B3E7C3A-339B-4D6C-9D02-B3E912165F82} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {A2FBE91E-1178-4EB3-836C-D5AFB9D7C06F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {A529F7D8-C4E2-4FC1-8BB9-48FC8AA199A1} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {B4E94455-DBB4-4F21-90F7-D2AFCBDC25A0} - System32\Tasks\{08D06A52-1801-4FB3-933C-9A6B8B75EAC8} => C:\Program Files\Skype\\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.)
Task: {DE6B5075-D23F-4462-B1FE-07E4FF5E3DDB} - System32\Tasks\{B3E167D6-6FEA-4427-BBC6-87B6877008B9} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZB7BWK47\stereo-1907.exe" -d C:\Users\admin\Desktop
Task: {F6E9EB0D-47CB-44B1-8CC2-AF1333BE8941} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) ==============
2011-03-15 16:33 - 2010-03-04 17:55 - 00147456 _____ () C:\Windows\System32\HP1100LM.DLL
2011-03-15 16:34 - 2010-03-04 17:55 - 00069632 _____ () C:\Windows\system32\spool\PRTPROCS\W32X86\HP1100PP.DLL
2011-03-15 16:33 - 2010-03-06 09:40 - 00081920 _____ () C:\Windows\system32\mvusbews.DLL
2011-02-06 19:14 - 2013-02-27 18:03 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2011-08-29 19:19 - 2011-08-29 19:20 - 03077528 _____ () C:\Program Files\Pando Networks\Media Booster\PMB.exe
2015-04-17 02:39 - 2015-04-13 23:55 - 01252680 _____ () C:\Users\admin\AppData\Local\Google\Chrome\Application\42.0.2311.90\libglesv2.dll
2015-04-17 02:39 - 2015-04-13 23:55 - 00080712 _____ () C:\Users\admin\AppData\Local\Google\Chrome\Application\42.0.2311.90\libegl.dll
2015-04-17 02:39 - 2015-04-13 23:55 - 14980424 _____ () C:\Users\admin\AppData\Local\Google\Chrome\Application\42.0.2311.90\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_email1229235768
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_firmy-216282473
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_novinky-1609642764
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_prozeny771666966
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_sport6476750
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_stream1444311432
AlternateDataStreams: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.website:DESTICON_super-41222104
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, the associated entry will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\admin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== Accounts: =============================
admin (S-1-5-21-1189625069-2542699651-1591823224-1000 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-1189625069-2542699651-1591823224-500 - Administrator - Disabled)
Guest (S-1-5-21-1189625069-2542699651-1591823224-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1189625069-2542699651-1591823224-1002 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
Name: aswSP
Description: aswSP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswSP
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: avast! Network Shield Support
Description: avast! Network Shield Support
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswTdi
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/22/2015 11:27:47 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (04/05/2015 06:58:30 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (04/03/2015 00:48:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program iexplore.exe verze 11.0.9600.17689 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1004
Čas spuštění: 01d06dfb9a2f78c0
Čas ukončení: 8
Cesta k aplikaci: C:\Program Files\Internet Explorer\iexplore.exe
ID hlášení: f49da435-d9ee-11e4-8e02-bcaec5b4b7ff
Error: (04/03/2015 11:09:28 AM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (04/01/2015 02:46:42 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (03/31/2015 04:11:24 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (03/30/2015 07:37:11 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.
Operace:
Shromažďování dat modulu pro zápis
Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {6f87bc0a-c646-4d91-b1ff-c0bdc9f18317}
Error: (03/29/2015 04:16:29 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (03/28/2015 02:12:18 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
Error: (03/28/2015 01:57:09 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: Pando_WinPando-1
System errors:
=============
Error: (04/23/2015 02:33:37 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
aswSP
aswTdi
Error: (04/23/2015 02:33:26 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Služba avast! Antivirus závisí na následující službě: aswMonFlt. Tato služba pravděpodobně není nainstalována.
Error: (04/23/2015 02:33:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba aswFsBlk neuspěla při spuštění v důsledku následující chyby:
%%2
Error: (04/23/2015 02:09:17 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:17 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:17 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:16 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:16 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:15 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (04/23/2015 02:09:15 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Processor: Pentium(R) Dual-Core CPU E6500 @ 2.93GHz
Percentage of memory in use: 60%
Total physical RAM: 2013.05 MB
Available physical RAM: 790.87 MB
Total Pagefile: 4026.11 MB
Available Pagefile: 2232.38 MB
Total Virtual: 2047.88 MB
Available Virtual: 1889.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:158.13 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 53D74895)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Re: vyskakovací okna
Mate poskozeny a castecne funkcni az nefunkcni Avast. Odinstalujte jej, pak pouzijte v nouzovem rezimu oficialni odinstalator a pak jej nainstalujte nanovo. https://www.avast.com/cs-cz/uninstall-utility Odinstalujte starou a zranitelnou verzi javy Java 7 Update 17. Pokud javu potrebujete, pak nainstalujte novou z java.com - pozor na adware pri jeji instalaci http://forum.viry.cz/viewtopic.php?p=1374438#p1374438 . Z hlediska bezpecnosti (exploity) je lepsi ji nemit. Pokud nepouzivate, odinstalujte Lišta Centrum.cz Toolbar - jedna se doplnek do prohlizece.- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu bude na plose ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi
Kód: Vybrat vše
Start CloseProcesses: HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated) HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Google Update] => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-27] (Google Inc.) HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Pando Media Booster] => C:\Program Files\Pando Networks\Media Booster\PMB.exe [3077528 2011-08-29] () HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e36d9f56-6d7b-11e3-945e-bcaec5b4b7ff} - F:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e4d0c0b1-4ed1-11e3-9a6d-bcaec5b4b7ff} - E:\.autorun\autorun.exe URLSearchHook: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 - CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files\CentrumczToolbar\IEToolbar.dll () SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> DefaultScope {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={searchTerms}&toolbar=centrum-1.0.0 SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={searchTerms}&toolbar=centrum-1.0.0 FF NetworkProxy: "type", 0 FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Extension: No Name - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi [Not Found] 2015-04-23 19:07 - 2015-04-23 19:07 - 00015327 _____ () C:\Users\admin\Desktop\LM.bat 2015-04-23 19:06 - 2015-04-23 19:06 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Desktop\FRSTLauncher.exe 2015-04-23 19:05 - 2015-04-23 19:07 - 00029696 _____ () C:\Users\admin\AppData\Local\MSGBOX.EXE 2015-04-23 19:04 - 2015-04-23 19:04 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 681116.crdownload 2015-04-23 19:03 - 2015-04-23 19:03 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 191063.crdownload 2015-04-23 18:57 - 2015-04-23 18:57 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 499982.crdownload 2015-04-23 14:13 - 2015-04-23 13:58 - 00024064 _____ () C:\Windows\zoek-delete.exe 2015-04-23 13:59 - 2015-04-23 14:33 - 00024197 _____ () C:\zoek-results.log 2015-04-23 13:58 - 2015-04-23 14:11 - 00000000 ____D () C:\zoek_backup 2015-04-23 12:44 - 2015-04-23 12:44 - 01305600 _____ () C:\Users\admin\Desktop\zoek.exe 2015-04-23 12:12 - 2015-04-23 12:22 - 00000000 ____D () C:\AdwCleaner 2015-04-23 12:11 - 2015-04-23 12:11 - 02217984 _____ () C:\Users\admin\Desktop\adwcleaner_4.201.exe 2015-04-22 23:27 - 2015-04-22 23:34 - 00000000 ____D () C:\Program Files\trend micro 2015-04-22 23:27 - 2015-04-22 23:27 - 01107968 _____ () C:\Users\admin\Desktop\RSIT.exe 2015-04-22 23:27 - 2015-04-22 23:27 - 00000000 ____D () C:\rsit CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.5\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.24.15\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.3\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.5\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\admin\AppData\Local\Temp\d55242783Bc99.exe No File Task: {03645F03-278B-4312-8B9E-34174DA90DBD} - System32\Tasks\{0BC46521-F6CA-415B-AA86-6A59EE3631B2} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop Task: {754D1B77-A5C3-48C8-810E-C5991357FDF1} - System32\Tasks\{FFEC9F4F-972E-44C5-9742-9CF9FB501BBD} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop Task: {DE6B5075-D23F-4462-B1FE-07E4FF5E3DDB} - System32\Tasks\{B3E167D6-6FEA-4427-BBC6-87B6877008B9} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZB7BWK47\stereo-1907.exe" -d C:\Users\admin\Desktop Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: vyskakovací okna
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 26-04-2015
Ran by admin at 2015-04-26 23:42:16 Run:1
Running from C:\Users\admin\Desktop
Loaded Profiles: admin (Available profiles: admin)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Google Update] => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-27] (Google Inc.)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Pando Media Booster] => C:\Program Files\Pando Networks\Media Booster\PMB.exe [3077528 2011-08-29] ()
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e36d9f56-6d7b-11e3-945e-bcaec5b4b7ff} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e4d0c0b1-4ed1-11e3-9a6d-bcaec5b4b7ff} - E:\.autorun\autorun.exe
URLSearchHook: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 - CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files\CentrumczToolbar\IEToolbar.dll ()
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> DefaultScope {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
FF NetworkProxy: "type", 0
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Extension: No Name - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi [Not Found]
2015-04-23 19:07 - 2015-04-23 19:07 - 00015327 _____ () C:\Users\admin\Desktop\LM.bat
2015-04-23 19:06 - 2015-04-23 19:06 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Desktop\FRSTLauncher.exe
2015-04-23 19:05 - 2015-04-23 19:07 - 00029696 _____ () C:\Users\admin\AppData\Local\MSGBOX.EXE
2015-04-23 19:04 - 2015-04-23 19:04 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 681116.crdownload
2015-04-23 19:03 - 2015-04-23 19:03 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 191063.crdownload
2015-04-23 18:57 - 2015-04-23 18:57 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 499982.crdownload
2015-04-23 14:13 - 2015-04-23 13:58 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-04-23 13:59 - 2015-04-23 14:33 - 00024197 _____ () C:\zoek-results.log
2015-04-23 13:58 - 2015-04-23 14:11 - 00000000 ____D () C:\zoek_backup
2015-04-23 12:44 - 2015-04-23 12:44 - 01305600 _____ () C:\Users\admin\Desktop\zoek.exe
2015-04-23 12:12 - 2015-04-23 12:22 - 00000000 ____D () C:\AdwCleaner
2015-04-23 12:11 - 2015-04-23 12:11 - 02217984 _____ () C:\Users\admin\Desktop\adwcleaner_4.201.exe
2015-04-22 23:27 - 2015-04-22 23:34 - 00000000 ____D () C:\Program Files\trend micro
2015-04-22 23:27 - 2015-04-22 23:27 - 01107968 _____ () C:\Users\admin\Desktop\RSIT.exe
2015-04-22 23:27 - 2015-04-22 23:27 - 00000000 ____D () C:\rsit
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.24.15\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.3\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\admin\AppData\Local\Temp\d55242783Bc99.exe No File
Task: {03645F03-278B-4312-8B9E-34174DA90DBD} - System32\Tasks\{0BC46521-F6CA-415B-AA86-6A59EE3631B2} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop
Task: {754D1B77-A5C3-48C8-810E-C5991357FDF1} - System32\Tasks\{FFEC9F4F-972E-44C5-9742-9CF9FB501BBD} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop
Task: {DE6B5075-D23F-4462-B1FE-07E4FF5E3DDB} - System32\Tasks\{B3E167D6-6FEA-4427-BBC6-87B6877008B9} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZB7BWK47\stereo-1907.exe" -d C:\Users\admin\Desktop
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value deleted successfully.
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Pando Media Booster => value deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e36d9f56-6d7b-11e3-945e-bcaec5b4b7ff}" => Key deleted successfully.
HKCR\CLSID\{e36d9f56-6d7b-11e3-945e-bcaec5b4b7ff} => Key not found.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4d0c0b1-4ed1-11e3-9a6d-bcaec5b4b7ff}" => Key deleted successfully.
HKCR\CLSID\{e4d0c0b1-4ed1-11e3-9a6d-bcaec5b4b7ff} => Key not found.
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} => Value not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => Key deleted successfully.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => Key not found.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EF25E545-B6B7-4199-9956-EBAD5CE3C639}" => Key deleted successfully.
HKCR\CLSID\{EF25E545-B6B7-4199-9956-EBAD5CE3C639} => Key not found.
Firefox Proxy settings were reset.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi => not found.
C:\Users\admin\Desktop\LM.bat => Moved successfully.
"C:\Users\admin\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\Users\admin\AppData\Local\MSGBOX.EXE => Moved successfully.
"C:\Users\admin\Downloads\Nepotvrzeno 681116.crdownload" => File/Directory not found.
"C:\Users\admin\Downloads\Nepotvrzeno 191063.crdownload" => File/Directory not found.
"C:\Users\admin\Downloads\Nepotvrzeno 499982.crdownload" => File/Directory not found.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\admin\Desktop\zoek.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\admin\Desktop\adwcleaner_4.201.exe => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Users\admin\Desktop\RSIT.exe => Moved successfully.
C:\rsit => Moved successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03645F03-278B-4312-8B9E-34174DA90DBD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03645F03-278B-4312-8B9E-34174DA90DBD}" => Key deleted successfully.
C:\Windows\System32\Tasks\{0BC46521-F6CA-415B-AA86-6A59EE3631B2} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0BC46521-F6CA-415B-AA86-6A59EE3631B2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{754D1B77-A5C3-48C8-810E-C5991357FDF1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{754D1B77-A5C3-48C8-810E-C5991357FDF1}" => Key deleted successfully.
C:\Windows\System32\Tasks\{FFEC9F4F-972E-44C5-9742-9CF9FB501BBD} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FFEC9F4F-972E-44C5-9742-9CF9FB501BBD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DE6B5075-D23F-4462-B1FE-07E4FF5E3DDB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DE6B5075-D23F-4462-B1FE-07E4FF5E3DDB}" => Key deleted successfully.
C:\Windows\System32\Tasks\{B3E167D6-6FEA-4427-BBC6-87B6877008B9} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B3E167D6-6FEA-4427-BBC6-87B6877008B9}" => Key deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job => Moved successfully.
EmptyTemp: => Removed 312 MB temporary data.
The system needed a reboot.
==== End of Fixlog 23:42:47 ====
Ran by admin at 2015-04-26 23:42:16 Run:1
Running from C:\Users\admin\Desktop
Loaded Profiles: admin (Available profiles: admin)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Google Update] => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe [107912 2014-10-27] (Google Inc.)
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\Run: [Pando Media Booster] => C:\Program Files\Pando Networks\Media Booster\PMB.exe [3077528 2011-08-29] ()
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e36d9f56-6d7b-11e3-945e-bcaec5b4b7ff} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\...\MountPoints2: {e4d0c0b1-4ed1-11e3-9a6d-bcaec5b4b7ff} - E:\.autorun\autorun.exe
URLSearchHook: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 - CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files\CentrumczToolbar\IEToolbar.dll ()
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> DefaultScope {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000 -> {EF25E545-B6B7-4199-9956-EBAD5CE3C639} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
FF NetworkProxy: "type", 0
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Extension: No Name - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi [Not Found]
2015-04-23 19:07 - 2015-04-23 19:07 - 00015327 _____ () C:\Users\admin\Desktop\LM.bat
2015-04-23 19:06 - 2015-04-23 19:06 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Desktop\FRSTLauncher.exe
2015-04-23 19:05 - 2015-04-23 19:07 - 00029696 _____ () C:\Users\admin\AppData\Local\MSGBOX.EXE
2015-04-23 19:04 - 2015-04-23 19:04 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 681116.crdownload
2015-04-23 19:03 - 2015-04-23 19:03 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 191063.crdownload
2015-04-23 18:57 - 2015-04-23 18:57 - 00112640 _____ (forum.viry.cz) C:\Users\admin\Downloads\Nepotvrzeno 499982.crdownload
2015-04-23 14:13 - 2015-04-23 13:58 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-04-23 13:59 - 2015-04-23 14:33 - 00024197 _____ () C:\zoek-results.log
2015-04-23 13:58 - 2015-04-23 14:11 - 00000000 ____D () C:\zoek_backup
2015-04-23 12:44 - 2015-04-23 12:44 - 01305600 _____ () C:\Users\admin\Desktop\zoek.exe
2015-04-23 12:12 - 2015-04-23 12:22 - 00000000 ____D () C:\AdwCleaner
2015-04-23 12:11 - 2015-04-23 12:11 - 02217984 _____ () C:\Users\admin\Desktop\adwcleaner_4.201.exe
2015-04-22 23:27 - 2015-04-22 23:34 - 00000000 ____D () C:\Program Files\trend micro
2015-04-22 23:27 - 2015-04-22 23:27 - 01107968 _____ () C:\Users\admin\Desktop\RSIT.exe
2015-04-22 23:27 - 2015-04-22 23:27 - 00000000 ____D () C:\rsit
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.24.15\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.3\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.25.11\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}\InprocServer32 -> C:\Users\admin\AppData\Local\Google\Update\1.3.22.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\admin\AppData\Local\Temp\d55242783Bc99.exe No File
Task: {03645F03-278B-4312-8B9E-34174DA90DBD} - System32\Tasks\{0BC46521-F6CA-415B-AA86-6A59EE3631B2} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop
Task: {754D1B77-A5C3-48C8-810E-C5991357FDF1} - System32\Tasks\{FFEC9F4F-972E-44C5-9742-9CF9FB501BBD} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F9RJKH9Y\u11_cd[1].exe" -d C:\Users\admin\Desktop
Task: {DE6B5075-D23F-4462-B1FE-07E4FF5E3DDB} - System32\Tasks\{B3E167D6-6FEA-4427-BBC6-87B6877008B9} => pcalua.exe -a "C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZB7BWK47\stereo-1907.exe" -d C:\Users\admin\Desktop
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value deleted successfully.
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Pando Media Booster => value deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e36d9f56-6d7b-11e3-945e-bcaec5b4b7ff}" => Key deleted successfully.
HKCR\CLSID\{e36d9f56-6d7b-11e3-945e-bcaec5b4b7ff} => Key not found.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4d0c0b1-4ed1-11e3-9a6d-bcaec5b4b7ff}" => Key deleted successfully.
HKCR\CLSID\{e4d0c0b1-4ed1-11e3-9a6d-bcaec5b4b7ff} => Key not found.
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} => Value not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => Key deleted successfully.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => Key not found.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EF25E545-B6B7-4199-9956-EBAD5CE3C639}" => Key deleted successfully.
HKCR\CLSID\{EF25E545-B6B7-4199-9956-EBAD5CE3C639} => Key not found.
Firefox Proxy settings were reset.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\buwccx2j.default\extensions\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.xpi => not found.
C:\Users\admin\Desktop\LM.bat => Moved successfully.
"C:\Users\admin\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\Users\admin\AppData\Local\MSGBOX.EXE => Moved successfully.
"C:\Users\admin\Downloads\Nepotvrzeno 681116.crdownload" => File/Directory not found.
"C:\Users\admin\Downloads\Nepotvrzeno 191063.crdownload" => File/Directory not found.
"C:\Users\admin\Downloads\Nepotvrzeno 499982.crdownload" => File/Directory not found.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\admin\Desktop\zoek.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\admin\Desktop\adwcleaner_4.201.exe => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Users\admin\Desktop\RSIT.exe => Moved successfully.
C:\rsit => Moved successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}" => Key deleted successfully.
"HKU\S-1-5-21-1189625069-2542699651-1591823224-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03645F03-278B-4312-8B9E-34174DA90DBD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03645F03-278B-4312-8B9E-34174DA90DBD}" => Key deleted successfully.
C:\Windows\System32\Tasks\{0BC46521-F6CA-415B-AA86-6A59EE3631B2} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0BC46521-F6CA-415B-AA86-6A59EE3631B2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{754D1B77-A5C3-48C8-810E-C5991357FDF1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{754D1B77-A5C3-48C8-810E-C5991357FDF1}" => Key deleted successfully.
C:\Windows\System32\Tasks\{FFEC9F4F-972E-44C5-9742-9CF9FB501BBD} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FFEC9F4F-972E-44C5-9742-9CF9FB501BBD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DE6B5075-D23F-4462-B1FE-07E4FF5E3DDB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DE6B5075-D23F-4462-B1FE-07E4FF5E3DDB}" => Key deleted successfully.
C:\Windows\System32\Tasks\{B3E167D6-6FEA-4427-BBC6-87B6877008B9} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B3E167D6-6FEA-4427-BBC6-87B6877008B9}" => Key deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1189625069-2542699651-1591823224-1000UA.job => Moved successfully.
EmptyTemp: => Removed 312 MB temporary data.
The system needed a reboot.
==== End of Fixlog 23:42:47 ====
Re: vyskakovací okna
Takze jeste uklidime.
- Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
- Oznacte jen moznost "Remove disinfection tools"
- kliknete na Run
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: vyskakovací okna
děkuji moc za pomoc
Re: vyskakovací okna
Nemate zac, rad jsem pomohl 
Mejte se krasne a treba zase nekdy
Mejte se krasne a treba zase nekdy
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Přispějete na provoz fóra?