Artemis

[kristi55]

Zdravim,
mam novy notebook a dneska mi McAfee (predinstalovany a licence zdarma) nahlasil Artemis. Zmenila se mi uvodni stranka a pri pokusu o update adwcleaneru mi to
vyhodilo prave hlasku o artemis. Moc dekuju za kontrolu a za pomoc.

Log z RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Adélka at 2015-05-25 17:44:16
Microsoft Windows 8.1
System drive C: has 862 GB (95%) free of 911 GB
Total RAM: 8106 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:44:30, on 25. 5. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
C:\Users\Adélka\AppData\Local\Pokki\Engine\HostAppService.exe
C:\Users\Adélka\AppData\Local\Pokki\Engine\HostAppService.exe
C:\Program Files (x86)\Lenovo\Lenovo Messenger\NotificationsViewHost.exe
C:\Program Files\trend micro\Adélka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... 3E0483E048
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... 3E0483E048
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [snp2uvc] C:\windows\vsnp2uvc.exe
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe" /platui /runkey
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Pokki] "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O20 - AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVControlCenter - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
O23 - Service: CCSDK - Unknown owner - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files\Lenovo\OneKey Optimizer\bin\FbService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (ibtsiva.exe) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel® ME Service (Intel(R) ME Service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo OKO Service - Lenovo(beijing) Limited - C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo AVFramework Camera Privacy Controller (LENOVO.CAMMUTE) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\cammute.exe
O23 - Service: Lenovo AVFramework Microphone Volume Controller and Dolby Interface (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo PAWD Service (LenovoPAWDService) - Unknown owner - C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe
O23 - Service: LenovoSetSvr - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe
O23 - Service: lupdate (LenovoUpdate) - Unknown owner - C:\windows\System32\LenovoUpdate.exe (file missing)
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: Maxthon Core Update Service (MaxthonUpdateSvc) - Maxthon - C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
O23 - Service: McAfee Boot Delay Start Service (mcbootdelaystartsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: OKOControlSvc - Lenovo(beijing) Limited - C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe
O23 - Service: Lenovo PhoneCompanionPusher Service (PhoneCompanionPusher) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
O23 - Service: Lenovo PhoneCompanionVap Service (PhoneCompanionVap) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe
O23 - Service: VisualDiscovery - Superfish, Inc. - C:\Program Files (x86)\Lenovo\VisualDiscovery\VisualDiscovery.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 13874 bytes

======Listing Processes======





wininit.exe

C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\igfxCUIService.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 1012627759792
\??\C:\windows\system32\conhost.exe 0x4
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\CxAudMsg64.exe
dashost.exe {09b217d6-1ed0-4060-8d9a1f3f7b1e5163}
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Lenovo\OneKey Optimizer\bin\FbService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe"
"C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe"
"C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe"
"C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe"
"C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\windows\system32\mfevtps.exe"
"C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe"
"C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\windows\SysWOW64\SAsrv.exe
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe"
"C:\Program Files (x86)\Lenovo\VisualDiscovery\VisualDiscovery.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-fc3c0715-ee1c-450b-b809-445b30d28473 -SystemEventPortName:HostProcess-08aaf7f9-545d-4a99-b34a-261a4e62d97c -IoCancelEventPortName:HostProcess-3d86c2ca-019c-43fd-8656-5812397592b3 -NonStateChangingEventPortName:HostProcess-8f1d201d-0ac4-49ba-a930-5cd2a011b8a9 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1d2772e6-4247-49fa-9885-cf6a8ce582a3 -DeviceGroupId:WudfDefaultDevicePool
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7712f849-ee25-40e3-96fc-5de1a6c3073a -SystemEventPortName:HostProcess-a81fc496-cfbb-4f13-9b5a-cc73b041bdf6 -IoCancelEventPortName:HostProcess-bbd2ded1-3fe1-4d66-9409-8cdfffa8c312 -NonStateChangingEventPortName:HostProcess-76f2b052-083e-4713-90b1-cd50d3b29ac6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:64db1980-8588-4ff6-b146-3f74b7ebb4b1 -DeviceGroupId:
System32\LenovoUpdate.exe
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-17590462-e10a-4f2e-867e-e07ba9e4515e -SystemEventPortName:HostProcess-14efbbf4-0e32-4725-a795-7924dc0aa18f -IoCancelEventPortName:HostProcess-3a161084-7577-4c34-8f63-5b6efd767e41 -NonStateChangingEventPortName:HostProcess-19a5d9fb-a140-480c-b5de-e0c445482f79 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bd94575a-dac9-4212-be16-1c8784197055 -DeviceGroupId:
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\McAfee\MSC\McAPExe.exe"
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
"C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "0xb58_0x1538_0x5fd95ded"
"C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
adb fork-server server
"C:\Program Files\Lenovo\Communications Utility\cammute.exe"
"C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe"
"C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe"

C:\windows\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
"C:\Program Files\Elantech\ETDCtrl.exe"
taskhostex.exe
C:\windows\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe" 1 1 1 1
"C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui -Embedding
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Lenovo\LenovoUtility\utility.exe"
"C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe"
"C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe" /run
"C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe"
"C:\Users\Adélka\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Program Files\Lenovo\Communications Utility\tpknrres.exe"
"C:\Users\Adélka\AppData\Local\Pokki\Engine\HostAppService.exe"
"C:\Users\Adélka\AppData\Local\Pokki\Engine\HostAppService.exe" --type=renderer --disable-breakpad --disable-desktop-notifications --disable-logging --disable-speech-input --lang=en-US --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/17/OneClickSignIn/BlueOnWhite/Prefetch/ContentPrefetchPrefetchOn/Prerender/PrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V1/SpeculativePrefetchingLearning/SpeculativePrefetchingLearningEnabled/Test0PercentDefault/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_73/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --noerrdialogs --disable-client-side-phishing-detection --disable-bundled-ppapi-flash --channel="4360.2.1272127173\4895675" /prefetch:3
"C:\Users\Adélka\AppData\Local\Pokki\Engine\StartMenuIndexer.exe"
"C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizer.exe" /hide
"C:\Program Files (x86)\Lenovo\Lenovo Messenger\NotificationsViewHost.exe" -taskbar

"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe40_ Global\UsGthrCtrlFltPipeMssGthrPipe40 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572

"C:\Users\Adélka\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\Bidaily Synchronize Task[pr].job - c:\programdata\{3f62c873-ff82-33ad-3f62-2c873ff821cf}\vietcong 1 game.exe --startup=1 --single
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-22 551848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-22 212904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-10-10 36352]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-20 919768]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2014-08-20 3282248]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\LibStartStub.dll [2014-08-06 87536]
"LenovoUtility"=C:\Program Files\Lenovo\LenovoUtility\utility.exe [2015-02-12 791368]
"PhoneCompanion"=C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [2015-02-12 802800]
"OneKeyOptimizer"=C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe [2014-11-19 559896]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Pokki"=C:\Users\Adélka\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe [2015-05-23 10566656]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-12-17 767176]
"snp2uvc"=C:\windows\vsnp2uvc.exe []
"mcpltui_exe"=C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe [2014-09-17 643064]
"CLMLServer_For_P2G8"=C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [2014-09-09 110344]
"CLVirtualDrive"=C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [2014-09-09 492808]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-10 335232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDWFP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VisualDiscovery]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-05-25 17:44:16 ----D---- C:\rsit
2015-05-25 17:44:16 ----D---- C:\Program Files\trend micro
2015-05-24 18:25:14 ----D---- C:\Program Files (x86)\Yoono Twitter Facebook LinkedIn Youtube
2015-05-24 18:24:47 ----D---- C:\Program Files (x86)\bestadblocker
2015-05-24 18:24:27 ----D---- C:\Program Files (x86)\PriaceMoinnUs
2015-05-24 18:23:59 ----D---- C:\ProgramData\17167424410710104037
2015-05-24 18:23:58 ----D---- C:\Program Files (x86)\PricEMMinus
2015-05-24 18:22:53 ----D---- C:\ProgramData\{3f62c873-ff82-33ad-3f62-2c873ff821cf}
2015-05-23 12:50:51 ----D---- C:\Users\Adélka\AppData\Roaming\Maxthon3
2015-05-23 07:47:36 ----A---- C:\windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-23 07:47:36 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-22 09:04:32 ----D---- C:\ProgramData\Sun
2015-05-22 09:04:25 ----A---- C:\windows\system32\WindowsAccessBridge-64.dll
2015-05-22 09:04:01 ----D---- C:\ProgramData\Oracle
2015-05-22 09:03:58 ----D---- C:\Program Files\Java
2015-05-22 08:29:53 ----A---- C:\windows\SYSWOW64\scesrv.dll
2015-05-22 08:29:53 ----A---- C:\windows\system32\scesrv.dll
2015-05-22 08:29:44 ----A---- C:\windows\SYSWOW64\poqexec.exe
2015-05-22 08:29:44 ----A---- C:\windows\system32\poqexec.exe
2015-05-22 08:17:56 ----A---- C:\windows\SYSWOW64\atmlib.dll
2015-05-22 08:17:56 ----A---- C:\windows\SYSWOW64\atmfd.dll
2015-05-22 08:17:56 ----A---- C:\windows\system32\atmlib.dll
2015-05-22 08:17:56 ----A---- C:\windows\system32\atmfd.dll
2015-05-22 08:17:41 ----A---- C:\windows\system32\profsvc.dll
2015-05-22 08:16:52 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-05-22 08:16:52 ----A---- C:\windows\system32\schannel.dll
2015-05-22 08:16:33 ----A---- C:\windows\system32\ntoskrnl.exe
2015-05-22 08:16:32 ----A---- C:\windows\SYSWOW64\wow32.dll
2015-05-22 08:16:32 ----A---- C:\windows\SYSWOW64\user.exe
2015-05-22 08:16:32 ----A---- C:\windows\SYSWOW64\tracerpt.exe
2015-05-22 08:16:32 ----A---- C:\windows\SYSWOW64\tdh.dll
2015-05-22 08:16:32 ----A---- C:\windows\SYSWOW64\setup16.exe
2015-05-22 08:16:32 ----A---- C:\windows\SYSWOW64\sechost.dll
2015-05-22 08:16:32 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2015-05-22 08:16:32 ----A---- C:\windows\SYSWOW64\ntdll.dll
2015-05-22 08:16:32 ----A---- C:\windows\SYSWOW64\instnm.exe
2015-05-22 08:16:32 ----A---- C:\windows\system32\wow64cpu.dll
2015-05-22 08:16:32 ----A---- C:\windows\system32\wow64.dll
2015-05-22 08:16:32 ----A---- C:\windows\system32\tracerpt.exe
2015-05-22 08:16:32 ----A---- C:\windows\system32\tdh.dll
2015-05-22 08:16:32 ----A---- C:\windows\system32\sechost.dll
2015-05-22 08:16:32 ----A---- C:\windows\system32\ntvdm64.dll
2015-05-22 08:16:32 ----A---- C:\windows\system32\ntdll.dll
2015-05-22 08:16:32 ----A---- C:\windows\system32\microsoft-windows-system-events.dll
2015-05-22 08:15:22 ----A---- C:\windows\system32\lsm.dll
2015-05-22 08:15:18 ----A---- C:\windows\system32\services.exe
2015-05-22 08:15:14 ----A---- C:\windows\SYSWOW64\DWrite.dll
2015-05-22 08:15:14 ----A---- C:\windows\system32\win32k.sys
2015-05-22 08:15:14 ----A---- C:\windows\system32\FntCache.dll
2015-05-22 08:15:14 ----A---- C:\windows\system32\DWrite.dll
2015-05-22 08:15:13 ----A---- C:\windows\system32\drivers\mrxdav.sys
2015-05-22 08:15:13 ----A---- C:\windows\system32\drivers\ahcache.sys
2015-05-22 08:15:12 ----A---- C:\windows\SYSWOW64\pku2u.dll
2015-05-22 08:15:12 ----A---- C:\windows\system32\TSWbPrxy.exe
2015-05-22 08:15:12 ----A---- C:\windows\system32\pku2u.dll
2015-05-22 08:15:08 ----A---- C:\windows\SYSWOW64\TsWpfWrp.exe
2015-05-22 08:15:08 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-05-22 08:14:58 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-05-22 08:14:58 ----A---- C:\windows\system32\kerberos.dll
2015-05-22 08:14:56 ----A---- C:\windows\SYSWOW64\certcli.dll
2015-05-22 08:14:56 ----A---- C:\windows\system32\lsasrv.dll
2015-05-22 08:14:56 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-05-22 08:14:56 ----A---- C:\windows\system32\drivers\cng.sys
2015-05-22 08:14:56 ----A---- C:\windows\system32\certcli.dll
2015-05-22 08:14:55 ----A---- C:\windows\SYSWOW64\WMPhoto.dll
2015-05-22 08:14:55 ----A---- C:\windows\SYSWOW64\clfsw32.dll
2015-05-22 08:14:55 ----A---- C:\windows\system32\WMPhoto.dll
2015-05-22 08:14:55 ----A---- C:\windows\system32\drivers\http.sys
2015-05-22 08:14:55 ----A---- C:\windows\system32\drivers\clfs.sys
2015-05-22 08:14:55 ----A---- C:\windows\system32\clfsw32.dll
2015-05-22 08:14:54 ----A---- C:\windows\system32\ubpm.dll
2015-05-22 08:14:54 ----A---- C:\windows\system32\rdpudd.dll
2015-05-22 08:14:54 ----A---- C:\windows\system32\rdpcorets.dll
2015-05-22 08:14:46 ----A---- C:\windows\system32\nlasvc.dll
2015-05-22 08:14:46 ----A---- C:\windows\system32\ncsi.dll
2015-05-22 08:14:45 ----A---- C:\windows\SYSWOW64\WindowsCodecs.dll
2015-05-22 08:14:45 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-05-22 08:14:44 ----A---- C:\windows\system32\shell32.dll
2015-05-22 08:14:43 ----A---- C:\windows\SYSWOW64\shell32.dll
2015-05-22 08:14:41 ----A---- C:\windows\SYSWOW64\WerFaultSecure.exe
2015-05-22 08:14:41 ----A---- C:\windows\SYSWOW64\wer.dll
2015-05-22 08:14:41 ----A---- C:\windows\SYSWOW64\Faultrep.dll
2015-05-22 08:14:41 ----A---- C:\windows\system32\WerFaultSecure.exe
2015-05-22 08:14:41 ----A---- C:\windows\system32\wer.dll
2015-05-22 08:14:41 ----A---- C:\windows\system32\Faultrep.dll
2015-05-22 08:14:41 ----A---- C:\windows\system32\EncDump.dll
2015-05-22 08:14:41 ----A---- C:\windows\system32\ci.dll
2015-05-22 08:14:41 ----A---- C:\windows\system32\AudioEndpointBuilder.dll
2015-05-22 08:14:37 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-05-22 08:14:37 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-05-22 08:14:37 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-05-22 08:14:37 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-05-22 08:14:37 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-05-22 08:14:37 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-05-22 08:14:37 ----A---- C:\windows\system32\ie4uinit.exe
2015-05-22 08:14:36 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-05-22 08:14:36 ----A---- C:\windows\system32\urlmon.dll
2015-05-22 08:14:36 ----A---- C:\windows\system32\msfeeds.dll
2015-05-22 08:14:36 ----A---- C:\windows\system32\iedkcs32.dll
2015-05-22 08:14:35 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-05-22 08:14:35 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-05-22 08:14:35 ----A---- C:\windows\system32\iertutil.dll
2015-05-22 08:14:35 ----A---- C:\windows\system32\dxtrans.dll
2015-05-22 08:14:34 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-05-22 08:14:34 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-05-22 08:14:34 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-05-22 08:14:33 ----A---- C:\windows\system32\mshtmled.dll
2015-05-22 08:14:33 ----A---- C:\windows\system32\jscript9diag.dll
2015-05-22 08:14:33 ----A---- C:\windows\system32\jscript9.dll
2015-05-22 08:14:33 ----A---- C:\windows\system32\ieframe.dll
2015-05-22 08:14:33 ----A---- C:\windows\system32\dxtmsft.dll
2015-05-22 08:14:32 ----A---- C:\windows\system32\wininet.dll
2015-05-22 08:14:32 ----A---- C:\windows\system32\mshtml.dll
2015-05-22 08:14:32 ----A---- C:\windows\system32\ieapfltr.dll
2015-05-22 08:14:31 ----A---- C:\windows\system32\inetcomm.dll
2015-05-22 08:14:31 ----A---- C:\windows\system32\actxprxy.dll
2015-05-22 08:14:30 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-05-22 08:14:30 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-05-22 08:14:30 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2015-05-22 08:14:30 ----A---- C:\windows\system32\vbscript.dll
2015-05-22 08:14:30 ----A---- C:\windows\system32\jscript.dll
2015-05-22 08:14:29 ----A---- C:\windows\SYSWOW64\webcheck.dll
2015-05-22 08:14:29 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2015-05-22 08:14:29 ----A---- C:\windows\SYSWOW64\iepeers.dll
2015-05-22 08:14:29 ----A---- C:\windows\system32\webcheck.dll
2015-05-22 08:14:29 ----A---- C:\windows\system32\MshtmlDac.dll
2015-05-22 08:14:29 ----A---- C:\windows\system32\iepeers.dll
2015-05-22 08:14:28 ----A---- C:\windows\system32\inseng.dll
2015-05-22 08:14:28 ----A---- C:\windows\system32\ieui.dll
2015-05-22 08:14:13 ----A---- C:\windows\SYSWOW64\msvcr120_clr0400.dll
2015-05-22 08:14:13 ----A---- C:\windows\system32\msvcr120_clr0400.dll
2015-05-22 08:13:24 ----A---- C:\windows\SYSWOW64\msctf.dll
2015-05-22 08:13:24 ----A---- C:\windows\system32\msctf.dll
2015-05-20 20:26:57 ----D---- C:\Users\Adélka\AppData\Roaming\BSplayer Pro
2015-05-20 20:26:57 ----D---- C:\Users\Adélka\AppData\Roaming\BSplayer
2015-05-20 20:26:56 ----D---- C:\Program Files (x86)\Webteh
2015-05-20 16:00:19 ----A---- C:\windows\system32\drivers\HipShieldK.sys
2015-05-20 10:55:52 ----D---- C:\Program Files (x86)\Google
2015-05-20 10:48:28 ----D---- C:\Users\Adélka\AppData\Roaming\LSC
2015-05-20 10:46:24 ----D---- C:\ProgramData\OneKey Optimizer
2015-05-20 10:44:20 ----D---- C:\Users\Adélka\AppData\Roaming\Intel Corporation
2015-05-20 10:43:36 ----D---- C:\Users\Adélka\AppData\Roaming\ATI
2015-05-20 10:43:36 ----D---- C:\ProgramData\ATI
2015-05-20 10:40:24 ----D---- C:\Users\Adélka\AppData\Roaming\Adobe
2015-05-20 10:40:13 ----A---- C:\windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-05-20 10:39:59 ----D---- C:\Users\Adélka\AppData\Roaming\Intel
2015-05-20 10:39:11 ----SD---- C:\Users\Adélka\AppData\Roaming\Microsoft
2015-05-20 10:39:11 ----D---- C:\Users\Adélka\AppData\Roaming\Macromedia
2015-05-20 10:34:25 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2015-05-20 10:34:25 ----A---- C:\windows\SYSWOW64\wups.dll
2015-05-20 10:34:25 ----A---- C:\windows\SYSWOW64\wudriver.dll
2015-05-20 10:34:25 ----A---- C:\windows\SYSWOW64\wuapp.exe
2015-05-20 10:34:25 ----A---- C:\windows\SYSWOW64\wuapi.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\wuwebv.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\WUSettingsProvider.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\wups2.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\wups.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\wudriver.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\wucltux.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\wuaueng.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\wuauclt.exe
2015-05-20 10:34:25 ----A---- C:\windows\system32\wuapp.exe
2015-05-20 10:34:25 ----A---- C:\windows\system32\wuapi.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\wuaext.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\WinSetupUI.dll
2015-05-20 10:34:25 ----A---- C:\windows\system32\storewuauth.dll

======List of files/folders modified in the last 1 month======

2015-05-25 17:44:17 ----D---- C:\windows\Temp
2015-05-25 17:44:16 ----RD---- C:\Program Files
2015-05-25 17:36:59 ----D---- C:\windows\system32\Tasks
2015-05-25 17:25:24 ----D---- C:\windows\system32\sru
2015-05-25 14:39:39 ----D---- C:\windows\Prefetch
2015-05-25 13:58:43 ----D---- C:\windows\WinSxS
2015-05-25 13:58:21 ----RD---- C:\windows\ImmersiveControlPanel
2015-05-25 13:58:21 ----RAD---- C:\windows\System32
2015-05-25 13:58:21 ----D---- C:\windows\WinStore
2015-05-25 13:58:21 ----D---- C:\windows\SYSWOW64\WCN
2015-05-25 13:58:21 ----D---- C:\windows\SYSWOW64\wbem
2015-05-25 13:58:21 ----D---- C:\windows\SYSWOW64\slmgr
2015-05-25 13:58:21 ----D---- C:\windows\SYSWOW64\sk-SK
2015-05-25 13:58:21 ----D---- C:\windows\SYSWOW64\oobe
2015-05-25 13:58:21 ----D---- C:\windows\SYSWOW64\drivers
2015-05-25 13:58:21 ----D---- C:\windows\system32\Sysprep
2015-05-25 13:58:21 ----D---- C:\windows\system32\slmgr
2015-05-25 13:58:21 ----D---- C:\windows\system32\sk-SK
2015-05-25 13:58:21 ----D---- C:\windows\system32\migwiz
2015-05-25 13:58:21 ----D---- C:\windows\servicing
2015-05-25 13:58:21 ----D---- C:\windows\PolicyDefinitions
2015-05-25 13:58:21 ----D---- C:\Program Files\Windows Photo Viewer
2015-05-25 13:58:21 ----D---- C:\Program Files\Windows Media Player
2015-05-25 13:58:21 ----D---- C:\Program Files\Windows Mail
2015-05-25 13:58:21 ----D---- C:\Program Files\Windows Journal
2015-05-25 13:58:21 ----D---- C:\Program Files\Windows Defender
2015-05-25 13:58:21 ----D---- C:\Program Files\Internet Explorer
2015-05-25 13:58:21 ----D---- C:\Program Files\Common Files\System
2015-05-25 13:58:21 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-05-25 13:58:21 ----D---- C:\Program Files (x86)\Windows Media Player
2015-05-25 13:58:21 ----D---- C:\Program Files (x86)\Windows Mail
2015-05-25 13:58:21 ----D---- C:\Program Files (x86)\Windows Defender
2015-05-25 13:58:21 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-25 13:58:21 ----AD---- C:\windows\system32\oobe
2015-05-25 13:58:21 ----AD---- C:\Windows
2015-05-25 13:58:20 ----D---- C:\windows\system32\WCN
2015-05-25 13:58:20 ----D---- C:\windows\system32\wbem
2015-05-25 13:58:20 ----D---- C:\windows\system32\DriverStore
2015-05-25 13:58:20 ----D---- C:\windows\system32\drivers
2015-05-25 13:58:19 ----D---- C:\windows\system32\SystemResetPlatform
2015-05-25 13:58:19 ----AD---- C:\windows\Help
2015-05-25 13:55:02 ----D---- C:\windows\system32\config
2015-05-25 13:55:02 ----D---- C:\windows\CbsTemp
2015-05-25 13:54:54 ----SHD---- C:\System Volume Information
2015-05-25 12:39:30 ----D---- C:\windows\system32\drivers\etc
2015-05-25 11:26:24 ----D---- C:\windows\AppReadiness
2015-05-25 11:26:23 ----HD---- C:\Program Files\WindowsApps
2015-05-25 11:18:50 ----D---- C:\ProgramData\Microsoft
2015-05-25 11:16:45 ----D---- C:\windows\Inf
2015-05-24 18:55:33 ----D---- C:\windows\Microsoft.NET
2015-05-24 18:55:06 ----RSD---- C:\windows\assembly
2015-05-24 18:29:00 ----RD---- C:\Program Files (x86)
2015-05-24 18:29:00 ----D---- C:\windows\SysWOW64
2015-05-24 18:23:59 ----HD---- C:\ProgramData
2015-05-24 18:22:53 ----D---- C:\windows\Tasks
2015-05-24 15:54:43 ----A---- C:\windows\SYSWOW64\VisualDiscoveryOff.ini
2015-05-24 15:54:43 ----A---- C:\windows\SYSWOW64\VisualDiscovery.ini
2015-05-24 15:54:43 ----A---- C:\windows\system32\VisualDiscoveryOff.ini
2015-05-24 15:54:07 ----A---- C:\windows\system32\LenovoUpdate.exe
2015-05-24 15:54:07 ----A---- C:\windows\system32\LenovoCheck.exe
2015-05-24 15:54:05 ----A---- C:\windows\system32\wpbbin.exe
2015-05-24 14:35:16 ----RD---- C:\windows\ToastData
2015-05-24 14:35:16 ----D---- C:\windows\system32\CodeIntegrity
2015-05-24 14:35:15 ----D---- C:\windows\SYSWOW64\en-US
2015-05-24 14:35:15 ----D---- C:\windows\SYSWOW64\cs-CZ
2015-05-24 14:35:15 ----D---- C:\windows\system32\en-US
2015-05-24 14:35:15 ----D---- C:\windows\system32\cs-CZ
2015-05-24 14:35:13 ----D---- C:\windows\system32\sr-Latn-RS
2015-05-24 14:35:13 ----D---- C:\windows\system32\sr-Latn-CS
2015-05-24 14:35:05 ----D---- C:\windows\apppatch
2015-05-23 13:06:13 ----D---- C:\windows\Logs
2015-05-23 08:57:44 ----D---- C:\ProgramData\CyberLink
2015-05-23 08:56:47 ----D---- C:\windows\system32\drivers\UMDF
2015-05-22 12:48:43 ----D---- C:\ProgramData\Lenovo
2015-05-22 12:37:43 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-05-22 12:36:57 ----D---- C:\windows\system32\wdi
2015-05-22 09:04:32 ----SHD---- C:\windows\Installer
2015-05-22 09:04:32 ----D---- C:\Program Files (x86)\Common Files
2015-05-22 08:12:59 ----D---- C:\windows\system32\catroot2
2015-05-21 11:24:56 ----D---- C:\Program Files (x86)\McAfee
2015-05-21 02:28:03 ----D---- C:\windows\rescache
2015-05-21 02:26:49 ----D---- C:\windows\debug
2015-05-20 21:31:46 ----D---- C:\windows\system32\catroot
2015-05-20 15:59:28 ----D---- C:\Program Files\Common Files\McAfee
2015-05-20 15:58:52 ----D---- C:\ProgramData\McAfee
2015-05-20 10:52:06 ----D---- C:\windows\system32\LogFiles
2015-05-20 10:46:12 ----D---- C:\ProgramData\Intel
2015-05-20 10:45:53 ----D---- C:\Program Files (x86)\Lenovo
2015-05-20 10:44:38 ----D---- C:\windows\SoftwareDistribution
2015-05-20 10:43:00 ----SHD---- C:\$Recycle.Bin
2015-05-20 10:42:41 ----D---- C:\windows\Panther
2015-05-20 10:39:07 ----AD---- C:\Users
2015-05-20 10:35:03 ----D---- C:\windows\system32\AdvancedInstallers
2015-05-05 19:59:54 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem6.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\windows\System32\drivers\amdkmpfd.sys [2014-10-28 62152]
R0 Fastboot;Fastboot; C:\windows\System32\DRIVERS\Fastboot.sys [2014-11-20 70168]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2014-10-10 1398936]
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2014-10-01 786304]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys [2014-10-01 348560]
R1 CLVirtualDrive;CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [2013-11-13 91912]
R2 VDWFP;VDWFP; \??\C:\windows\system32\Drivers\VDWFP64.sys [2014-05-12 39800]
R3 ACPIVPC;@oem22.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2015-02-12 35064]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2014-12-17 18977280]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2014-12-17 591872]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 cfwids;McAfee Inc. cfwids; C:\windows\system32\drivers\cfwids.sys [2014-10-01 72136]
R3 CnxtHdAudService;@oem11.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2014-11-12 1535168]
R3 ETD;@oem12.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\windows\system32\DRIVERS\ETD.sys [2014-08-19 425736]
R3 ibtusb;@oem13.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\windows\system32\DRIVERS\ibtusb.sys [2014-08-14 219592]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2014-12-19 4787128]
R3 iwdbus;@oem5.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2014-12-11 30512]
R3 KMDFVirtualKbd;@oem25.inf,%KMDFVirtualKbd.SVCDESC%;Lenovo Virtual Keyboard Device; C:\windows\System32\drivers\KMDFVirtualKbd.sys [2014-08-05 22264]
R3 KMDFVirtualMouse;@oem26.inf,%KMDFVirtualMouse.SVCDESC%;Lenovo Virtual Mouse Device; C:\windows\System32\drivers\KMDFVirtualMouse.sys [2014-08-05 21240]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\TeeDriverx64.sys [2014-09-03 126976]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\windows\system32\drivers\mfeapfk.sys [2014-10-01 181584]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys [2014-10-01 313680]
R3 mfefirek;McAfee Inc. mfefirek; C:\windows\system32\drivers\mfefirek.sys [2014-10-01 526360]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\windows\system32\DRIVERS\mfencbdc.sys [2014-09-19 447440]
R3 NETwNb64;@oem14.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\windows\system32\DRIVERS\Netwbw02.sys [2014-12-08 3494680]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2014-03-18 167424]
R3 RSUSBVSTOR;@oem17.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2014-03-27 331992]
R3 RTL8168;@oem8.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2014-05-29 873176]
R3 SNP2UVC;@oem18.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2014-08-26 3554968]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\windows\system32\drivers\mfeelamk.sys [2014-10-01 70608]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\windows\system32\drivers\HipShieldK.sys [2013-09-23 197704]
S3 intaud_WaveExtensible;@oem4.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2014-12-11 42288]
S3 IntcDAud;@oem2.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2014-12-19 455440]
S3 mfencrk;McAfee Inc. mfencrk; C:\windows\system32\DRIVERS\mfencrk.sys [2014-09-19 96600]
S3 NETwNe64;@netwew02.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\windows\system32\DRIVERS\NETwew02.sys [2013-06-18 4649440]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2014-12-17 246272]
R2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2014-10-22 644080]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2014-10-20 207576]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2013-10-15 101680]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-12-04 638880]
R2 FastbootService;FastbootService; C:\Program Files\Lenovo\OneKey Optimizer\bin\FbService.exe [2014-11-20 191512]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-10-10 18584]
R2 ibtsiva.exe;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2014-08-14 121288]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2014-12-19 344168]
R2 Intel(R) ME Service;Intel® ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-09-03 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-09-03 154584]
R2 Lenovo OKO Service;Lenovo OKO Service; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe [2014-11-19 2544408]
R2 Lenovo Settings Service;Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2014-10-13 2005320]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-03-06 584632]
R2 LenovoPAWDService;Lenovo PAWD Service; C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe [2015-02-12 133440]
R2 LenovoSetSvr;LenovoSetSvr; C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe [2014-06-19 258544]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-08-26 218952]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-09-03 405976]
R2 MaxthonUpdateSvc;Maxthon Core Update Service; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [2014-08-01 1844024]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2015-01-13 562200]
R2 mcbootdelaystartsvc;McAfee Boot Delay Start Service; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe [2014-11-21 422632]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-11-06 1050952]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-10-01 221832]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2014-10-01 189920]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-10-31 335064]
R2 OKOControlSvc;OKOControlSvc; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe [2014-11-18 113944]
R2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [2015-02-12 321520]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-12-04 157088]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 SAService;Conexant SmartAudio service; C:\windows\system32\SAsrv.exe []
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [2015-02-12 68880]
R2 VisualDiscovery;VisualDiscovery; C:\Program Files (x86)\Lenovo\VisualDiscovery\VisualDiscovery.exe [2014-09-28 1304360]
R3 AVControlCenter;AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [2014-08-06 599024]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 LENOVO.CAMMUTE;Lenovo AVFramework Camera Privacy Controller; C:\Program Files\Lenovo\Communications Utility\cammute.exe [2014-08-06 525296]
R3 LENOVO.TPKNRSVC;Lenovo AVFramework Microphone Volume Controller and Dolby Interface; C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe [2014-08-06 535024]
R3 LENOVO.TVTVCAM;Lenovo AVFramework Virtual Camera Controller Service; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2014-08-06 727536]
R3 LenovoUpdate;lupdate; C:\windows\System32\LenovoUpdate.exe [2015-05-24 26608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-20 107848]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2014-12-19 279144]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-20 107848]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-25 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-14 887256]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09 174368]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-06-03 533760]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-10-17 272776]
S3 McAWFwk;McAfee Activation Service; c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe [2014-03-13 332528]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2015-01-07 601864]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-12-04 268192]
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [2015-02-12 338416]
S4 McOobeSv2;McAfee OOBE Service2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2014-10-31 335064]

-----------------EOF-----------------

[vyosek]

Zdravim

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[kristi55]

Hotovo.

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Ad‚lka on po 25. 05. 2015 at 18:07:35,35.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\ADLKA~1\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

25. 5. 2015 18:08:37 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\New Folder deleted successfully
C:\Users\ADLKA~1\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3297065278-4184664775-1928332329-1001\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\New Folder not found
C:\PROGRA~2\bestadblocker deleted
C:\PROGRA~2\PriaceMoinnUs deleted
C:\PROGRA~2\PricEMMinus deleted
C:\PROGRA~2\Yoono Twitter Facebook LinkedIn Youtube deleted
C:\windows\SysNative\Tasks\Bidaily Synchronize Task[pr] deleted
C:\windows\SysNative\Tasks\OFFICE2013ACT deleted
C:\PROGRA~3\17167424410710104037 deleted
C:\PROGRA~3\OneKey Optimizer deleted
C:\windows\sysWoW64\config\systemprofile\.android deleted
C:\Users\Public\Pokki deleted
C:\PROGRA~3\Pokki deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Default\AppData\Local\Pokki deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\ADLKA~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\PC App Store.lnk deleted
C:\Users\ADLKA~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Start Menu.lnk deleted
C:\Users\ADLKA~1\Downloads\bsplayer269-1078.exe deleted
"C:\PROGRA~3\{3f62c873-ff82-33ad-3f62-2c873ff821cf}\1a76b9c6f2f08951" not deleted
"C:\PROGRA~3\{3f62c873-ff82-33ad-3f62-2c873ff821cf}\d78b1f93d5246e85" not deleted
"C:\PROGRA~3\{3f62c873-ff82-33ad-3f62-2c873ff821cf}\vietcong 1 game.exe" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\analytics.db" not deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\engine_update.db" not deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\notifications.db" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\avcodec-54.dll" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\avformat-54.dll" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\avutil-51.dll" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\chrome_100_percent.pak" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\en-US.pak" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\HostAppService.exe" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\icudt.dll" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\libPokki.dll" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\resources.pak" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine\StartMenuIndexer.exe" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Pokkies\installed_pokkies.db" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\lockfile" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Cookies" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Network Action Predictor" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Visited Links" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Cookies" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Network Action Predictor" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Cookies" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Network Action Predictor" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Shortcuts" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cookies" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Network Action Predictor" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Visited Links" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cookies" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Network Action Predictor" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Cookies" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Network Action Predictor" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\QuotaManager" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\QuotaManager-journal" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Visited Links" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Cookies" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Network Action Predictor" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Cache\data_0" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Cache\data_1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Cache\data_2" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Cache\data_3" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Cache\index" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Extension State\000011.log" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Extension State\LOCK" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Extension State\MANIFEST-000010" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\User StyleSheets\Custom.css" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Cache\data_0" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Cache\data_1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Cache\data_2" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Cache\data_3" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Cache\index" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Extension State\000011.log" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Extension State\LOCK" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Extension State\MANIFEST-000010" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Cache\data_0" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Cache\data_1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Cache\data_2" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Cache\data_3" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Cache\index" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Extension State\000009.log" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Extension State\LOCK" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Extension State\MANIFEST-000008" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\data_0" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\data_1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\data_2" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\data_3" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache\index" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State\000011.log" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State\LOCK" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State\MANIFEST-000010" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\User StyleSheets\Custom.css" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\data_0" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\data_1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\data_2" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\data_3" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache\index" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State\000011.log" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State\LOCK" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State\MANIFEST-000010" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Cache\data_0" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Cache\data_1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Cache\data_2" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Cache\data_3" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Cache\index" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\databases\Databases.db" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Extension State\000011.log" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Extension State\LOCK" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Extension State\MANIFEST-000010" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\databases\file__0\1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Cache\data_0" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Cache\data_1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Cache\data_2" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Cache\data_3" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Cache\index" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Extension State\000011.log" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Extension State\LOCK" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Extension State\MANIFEST-000010" deleted
"C:\PROGRA~3\{3f62c873-ff82-33ad-3f62-2c873ff821cf}" not deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki" not deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Engine" not deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\Pokkies" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Cache" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\Extension State" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1\User StyleSheets" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Cache" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\04bb6df446330549a2cb8d67fbd1a745025b7bd1-websheet\Extension State" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Cache" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\Default\Extension State" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\User StyleSheets" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Cache" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\databases" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\Extension State" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications\databases\file__0" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Cache" deleted
"C:\Users\ADLKA~1\AppData\Local\Pokki\UserData\notifications-websheet\Extension State" deleted

==== Chromium Look ======================

Bookmark Manager DEV - ADLKA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik

==== Chromium Startpages ======================

C:\Users\ADLKA~1\AppData\Local\Google\Chrome\User Data\Default\Preferences
tom_display_name\":\"6 3/4 Envelope\",\"height_microns\":165100,\"name\":\"NA_PERSONAL\",\"vendor_id\":\"38\",\"width_microns\":92000},{\"custom_display_name\":\"US Std Fanfold\",\"height_microns\":377800,\"name\":\"NA_FANFOLD_US\",\"vendor_id\":\"39\",\"width_microns\":279400},{\"custom_display_name\":\"German Std Fanfold\",\"height_microns\":304800,\"name\":\"NA_FANFOLD_EUR\",\"vendor_id\":\"40\",\"width_microns\":215900},{\"custom_display_name\":\"Japanese Postcard\",\"height_microns\":148000,\"name\":\"JPN_HAGAKI\",\"vendor_id\":\"43\",\"width_microns\":100000},{\"custom_display_name\":\"9Ă—11\",\"height_microns\":279400,\"name\":\"NA_9X11\",\"vendor_id\":\"44\",\"width_microns\":228600},{\"custom_display_name\":\"10Ă—11\",\"height_microns\":279400,\"name\":\"NA_10X11\",\"vendor_id\":\"45\",\"width_microns\":254000},{\"custom_display_name\":\"15Ă—11\",\"height_microns\":381000,\"name\":\"NA_11X15\",\"vendor_id\":\"46\",\"width_microns\":279400},{\"custom_display_name\":\"Envelope Invite\",\"height_microns\":220000,\"name\":\"OM_INVITE\",\"vendor_id\":\"47\",\"width_microns\":220000},{\"custom_display_name\":\"Letter Extra\",\"height_microns\":304800,\"name\":\"NA_LETTER_EXTRA\",\"vendor_id\":\"50\",\"width_microns\":241300},{\"custom_display_name\":\"Legal Extra\",\"height_microns\":381000,\"name\":\"NA_LEGAL_EXTRA\",\"vendor_id\":\"51\",\"width_microns\":241300},{\"custom_display_name\":\"A4 Extra\",\"height_microns\":322300,\"name\":\"ISO_A4_EXTRA\",\"vendor_id\":\"53\",\"width_microns\":235400},{\"custom_display_name\":\"Super A\",\"height_microns\":356000,\"name\":\"NA_SUPER_A\",\"vendor_id\":\"57\",\"width_microns\":227000},{\"custom_display_name\":\"Super B\",\"height_microns\":487000,\"name\":\"NA_B_PLUS\",\"vendor_id\":\"58\",\"width_microns\":305000},{\"custom_display_name\":\"Letter Plus\",\"height_microns\":322300,\"name\":\"NA_LETTER_PLUS\",\"vendor_id\":\"59\",\"width_microns\":215900},{\"custom_display_name\":\"A4 Plus\",\"height_microns\":330000,\"name\":\"OM_FOLIO\",\"vendor_id\":\"60\",\"width_microns\":210000},{\"custom_display_name\":\"A3 Extra\",\"height_microns\":445000,\"name\":\"ISO_A3_EXTRA\",\"vendor_id\":\"63\",\"width_microns\":322000},{\"custom_display_name\":\"A5 Extra\",\"height_microns\":235000,\"name\":\"ISO_A5_EXTRA\",\"vendor_id\":\"64\",\"width_microns\":174000},{\"custom_display_name\":\"B5 (ISO) Extra\",\"height_microns\":276000,\"name\":\"ISO_B5_EXTRA\",\"vendor_id\":\"65\",\"width_microns\":201000},{\"custom_display_name\":\"A2\",\"height_microns\":594000,\"name\":\"ISO_A2\",\"vendor_id\":\"66\",\"width_microns\":420000},{\"custom_display_name\":\"Japanese Double Postcard\",\"height_microns\":200000,\"name\":\"JPN_OUFUKU\",\"vendor_id\":\"69\",\"width_microns\":148000},{\"custom_display_name\":\"A6\",\"height_microns\":148000,\"name\":\"ISO_A6\",\"vendor_id\":\"70\",\"width_microns\":105000},{\"custom_display_name\":\"Japanese Envelope Kaku #2\",\"height_microns\":332000,\"name\":\"JPN_KAKU2\",\"vendor_id\":\"71\",\"width_microns\":240000},{\"custom_display_name\":\"Japanese Envelope Kaku #3\",\"height_microns\":277000,\"vendor_id\":\"72\",\"width_microns\":216000},{\"custom_display_name\":\"Japanese Envelope Chou #3\",\"height_microns\":235000,\"name\":\"JPN_CHOU3\",\"vendor_id\":\"73\",\"width_microns\":120000},{\"custom_display_name\":\"Japanese Envelope Chou #4\",\"height_microns\":205000,\"name\":\"JPN_CHOU4\",\"vendor_id\":\"74\",\"width_microns\":90000},{\"custom_display_name\":\"B6 (JIS)\",\"height_microns\":182000,\"name\":\"JIS_B6\",\"vendor_id\":\"88\",\"width_microns\":128000},{\"custom_display_name\":\"12Ă—11\",\"height_microns\":304900,\"name\":\"NA_11X12\",\"vendor_id\":\"90\",\"width_microns\":279500},{\"custom_display_name\":\"Japan Envelope You #4\",\"height_microns\":235000,\"name\":\"JPN_YOU4\",\"vendor_id\":\"91\",\"width_microns\":105000},{\"custom_display_name\":\"PRC Envelope #1\",\"height_microns\":165000,\"name\":\"PRC_1\",\"vendor_id\":\"96\",\"width_microns\":102000},{\"custom_display_name\":\"PRC Envelope #4\",\"height_microns\":208000,\"name\":\"PRC_4\",\"vendor_id\":\"99\",\"width_microns\":110000},{\"custom_display_name\":\"PRC Envelope #6\",\"height_microns\":230000,\"name\":\"PRC_6\",\"vendor_id\":\"101\",\"width_microns\":120000},{\"custom_display_name\":\"PRC Envelope #7\",\"height_microns\":230000,\"name\":\"PRC_7\",\"vendor_id\":\"102\",\"width_microns\":160000},{\"custom_display_name\":\"PRC Envelope #8\",\"height_microns\":309000,\"name\":\"PRC_8\",\"vendor_id\":\"103\",\"width_microns\":120000}]},\"page_orientation\":{\"option\":[{\"is_default\":true,\"type\":\"PORTRAIT\"},{\"type\":\"LANDSCAPE\"},{\"type\":\"AUTO\"}]},\"supported_content_type\":[{\"content_type\":\"application/pdf\"}]},\"version\":\"1.0\"},\"selectedDestinationName\":\"Microsoft XPS Document Writer\",\"selectedDestinationExtensionId\":\"\",\"selectedDestinationExtensionName\":\"\",\"mediaSize\":{\"custom_display_name\":\"Letter\",\"height_microns\":279400,\"is_default\":true,\"name\":\"NA_LETTER\",\"vendor_id\":\"1\",\"width_microns\":215900}}"}},"profile":{"avatar_index":26,"content_settings":{"exceptions":{"app_banner":{},"auto_select_certificate":{},"automatic_downloads":{},"cookies":{},"fullscreen":{"http://exashare.com:80,http://stream-a-ams1xx2sfcdnvideo5269.cz:80":{"setting":1},"http://nahnoji.cz:80,http://pratele.nikee.net:80":{"setting":1}},"geolocation":{},"images":{},"javascript":{},"media_stream":{},"media_stream_camera":{},"media_stream_mic":{},"metro_switch_to_desktop":{},"midi_sysex":{},"mixed_script":{},"mouselock":{},"notifications":{},"plugins":{},"popups":{},"ppapi_broker":{},"protocol_handlers":{},"push_messaging":{},"ssl_cert_decisions":{}},"pattern_pairs":{"http://exashare.com:80,http://stream-a-ams1xx2sfcdnvideo5269.cz:80":{"fullscreen":1},"http://nahnoji.cz:80,http://pratele.nikee.net:80":{"fullscreen":1}},"pref_version":1},"exit_type":"Normal","exited_cleanly":true,"icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"PrvnĂ­ uĹľivatel","per_host_zoom_levels":{}},"protection":{"macs":{}},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13076585776708005"},"sync_promo":{"startup_count":1,"user_skipped":true},"translate_accepted_count":{"en":0},"translate_blocked_languages":["cs"],"translate_denied_count":{"en":4},"translate_last_denied_time":1432445848940.674,"translate_too_often_denied":true,"translate_whitelists":{}}
startup":4,"startup_urls":["http://www.mystartsearch.com/?type=hp&t ... 3E0483E048"]}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.mystartsearch.com/?type=hp&t ... 3E0483E048"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.mystartsearch.com/web/?type= ... earchTerms}"
"Default_Page_URL"="http://www.mystartsearch.com/?type=hp&t ... 3E0483E048"
"Search Page"="http://www.mystartsearch.com/web/?type= ... earchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.mystartsearch.com/web/?type= ... earchTerms}"
"Default_Page_URL"="http://www.mystartsearch.com/?type=hp&t ... 3E0483E048"
"Search Page"="http://www.mystartsearch.com/web/?type= ... earchTerms}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{67AD328C-0BDC-47B5-B2BA-8F90FE6B6501} Unknown Url="Not_Found"

==== Reset Google Chrome ======================

C:\Users\ADLKA~1\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\ADLKA~1\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\ADLKA~1\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\ADLKA~1\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\ADLKA~1\AppData\Local\Google\Chrome\User Data\Default\Web Data.tmp was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3297065278-4184664775-1928332329-1001\Software\Microsoft\Internet Explorer\SearchScopes\{67AD328C-0BDC-47B5-B2BA-8F90FE6B6501} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{67AD328C-0BDC-47B5-B2BA-8F90FE6B6501} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67AD328C-0BDC-47B5-B2BA-8F90FE6B6501} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7} deleted successfully

==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\ADLKA~1\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\ADLKA~1\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\ADLKA~1\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\ADLKA~1\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\ADLKA~1\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=9475 folders=250 573587041 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\ADLKA~1\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Reset Hosts File ======================

Hosts File Reset Successfully

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\ADLKA~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~3\{3f62c873-ff82-33ad-3f62-2c873ff821cf}\1a76b9c6f2f08951" not found
"C:\PROGRA~3\{3f62c873-ff82-33ad-3f62-2c873ff821cf}\d78b1f93d5246e85" not found
"C:\Users\ADLKA~1\AppData\Local\Pokki\analytics.db" not found
"C:\Users\ADLKA~1\AppData\Local\Pokki\engine_update.db" not found
"C:\PROGRA~3\{3f62c873-ff82-33ad-3f62-2c873ff821cf}" not found
"C:\Users\ADLKA~1\AppData\Local\Pokki" not found

==== EOF on po 25. 05. 2015 at 18:41:23,65 ======================

[vyosek]

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[kristi55]

Tak a ted jsme u toho, z emi to nedovoli stahnout ten Adwcleaner, haze mi to hlasku s tou Artemis.. Hodilo ji to do karanteny a pri stahovani doslo k chybe.

[vyosek]

Vypnete docasne McAfee a AdwCleaner stahnete - je to falesna detekce na nej. Ono McAfee zrovna moc kvalitou neoplyva

[kristi55]

Provedeno.

# AdwCleaner v4.205 - Logfile created 25/05/2015 at 19:26:17
# Updated 21/05/2015 by Xplode
# Database : 2015-05-25.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Adélka - LENOVO
# Running from : C:\Users\Adélka\Desktop\adwcleaner_4.205.exe
# Option : Cleaning

***** [ Services ] *****

[#] Service Deleted : VDWFP
[#] Service Deleted : VisualDiscovery

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\Lenovo\VisualDiscovery
File Deleted : C:\windows\SysWOW64\VisualDiscovery.ini
File Deleted : C:\windows\SysWOW64\VisualDiscoveryOff.ini
File Deleted : C:\windows\System32\VisualDiscoveryOff.ini
File Deleted : C:\windows\System32\drivers\VDWFP64.sys
File Deleted : C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage
File Deleted : C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage-journal

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Classes\pokki
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
Key Deleted : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Key Deleted : HKCU\Software\Classes\Directory\shell\pokki
Key Deleted : HKCU\Software\Classes\Drive\shell\pokki
Key Deleted : HKCU\Software\Classes\lnkfile\shell\pokki
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_04bb6df446330549a2cb8d67fbd1a745025b7bd1
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{26B19FA4-E8A1-4A1B-A163-1A1E46F830DD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Pokki
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
Key Deleted : HKLM\SOFTWARE\VisualDiscovery
Key Deleted : HKLM\SOFTWARE\Superfish Inc. VisualDiscovery
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Superfish Inc. VisualDiscovery
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]

-\\ Google Chrome v43.0.2357.65


*************************

AdwCleaner[R0].txt - [4567 bytes] - [25/05/2015 19:24:51]
AdwCleaner[S0].txt - [4234 bytes] - [25/05/2015 19:26:17]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4293 bytes] ##########

[vyosek]

Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[kristi55]

Tady to je.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-05-2015
Ran by Adélka (administrator) on LENOVO on 25-05-2015 20:59:34
Running from C:\Users\Adélka\Desktop
Loaded Profiles: Adélka (Available Profiles: Adélka)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Lenovo) C:\Program Files\Lenovo\OneKey Optimizer\bin\FbService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
() C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\systemcore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
(Lenovo) C:\Windows\System32\LenovoUpdate.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\Lenovo\LenovoUtility\utility.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
() C:\Program Files\Lenovo PhoneCompanion\adb.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
() C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizer.exe
() C:\Program Files (x86)\Lenovo\Lenovo Messenger\NotificationsViewHost.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(PokerStars) C:\Program Files (x86)\PokerStars.EU\PokerStars.exe
() C:\Program Files (x86)\PokerStars.EU\gameutil1.exe
() C:\Program Files (x86)\PokerStars.EU\br\PokerStarsBr.exe
() C:\Program Files (x86)\PokerStars.EU\br\PokerStarsBr.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\Core\mchost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322712 2014-10-10] (Intel Corporation)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3282248 2014-08-20] (ELAN Microelectronics Corp.)
HKLM\...\Run: [LENOVO.TPKNRRES] => rundll32.exe "C:\Program Files\Lenovo\Communications Utility\LibStartStub.dll",AVStartupStub
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791368 2015-02-12] ()
HKLM\...\Run: [PhoneCompanion] => C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [802800 2015-02-12] (Lenovo)
HKLM\...\Run: [OneKeyOptimizer] => C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe [559896 2014-11-19] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-12-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [snp2uvc] => C:\windows\vsnp2uvc.exe
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\Common Files\McAfee\platform\McUICnt.exe [643064 2014-09-17] (McAfee, Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonExtIE64.dll [119616 2014-09-27] (Amazon Inc.)
AppInit_DLLs-x32: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL => C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonExtIE.dll [106304 2014-09-27] (Amazon Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3297065278-4184664775-1928332329-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3297065278-4184664775-1928332329-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKU\S-1-5-21-3297065278-4184664775-1928332329-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3297065278-4184664775-1928332329-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-22] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-22] (Oracle Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-01-13] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-01-13] (McAfee, Inc.)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-22] (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-01-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-01-13] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-20] (Google Inc.)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2015-02-12]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-20]
CHR Extension: (Google Docs) - C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-20]
CHR Extension: (Google Drive) - C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-20]
CHR Extension: (YouTube) - C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-20]
CHR Extension: (Google Search) - C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-20]
CHR Extension: (Google Sheets) - C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-20]
CHR Extension: (Gmail) - C:\Users\Adélka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-20]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [599024 2014-08-06] (Lenovo Corporation)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [644080 2014-10-22] ()
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [101680 2013-10-15] (ELAN Microelectronics Corp.)
R2 FastbootService; C:\Program Files\Lenovo\OneKey Optimizer\bin\FbService.exe [191512 2014-11-20] (Lenovo)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18584 2014-10-10] (Intel Corporation)
R2 ibtsiva.exe; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [121288 2014-08-14] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2014-12-19] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-14] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-09-03] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-09-03] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [533760 2014-06-03] (Lenovo)
R2 Lenovo OKO Service; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe [2544408 2014-11-19] (Lenovo(beijing) Limited)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2005320 2014-10-13] (Lenovo Group Limited)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584632 2015-03-06] (LENOVO INCORPORATED.)
S3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [727536 2014-08-06] (Lenovo Corporation)
R2 LenovoPAWDService; C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe [133440 2015-02-12] ()
R2 LenovoSetSvr; C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe [258544 2014-06-19] (Lenovo(beijing) Limited)
R3 LenovoUpdate; C:\Windows\System32\LenovoUpdate.exe [26608 2015-05-25] (Lenovo)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [218952 2014-08-26] (Lenovo(beijing) Limited)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272776 2014-10-17] ()
R2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1844024 2014-08-01] (Maxthon)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [562200 2015-01-13] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [332528 2014-03-13] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe [422632 2014-11-21] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [601864 2015-01-07] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1050952 2014-11-06] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [221832 2014-10-01] (McAfee, Inc.)
R2 mfevtp; C:\windows\system32\mfevtps.exe [189920 2014-10-01] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-12-04] ()
R2 OKOControlSvc; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe [113944 2014-11-18] (Lenovo(beijing) Limited)
R2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [321520 2015-02-12] (Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [338416 2015-02-12] (Lenovo)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [68880 2015-02-12] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-12-04] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72136 2014-10-01] (McAfee, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-13] (CyberLink)
R0 Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [70168 2014-11-20] (Windows (R) Win 7 DDK provider)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [219592 2014-08-14] (Intel Corporation)
R3 KMDFVirtualKbd; C:\Windows\System32\drivers\KMDFVirtualKbd.sys [22264 2014-08-05] ()
R3 KMDFVirtualMouse; C:\Windows\System32\drivers\KMDFVirtualMouse.sys [21240 2014-08-05] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [126976 2014-09-03] (Intel Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181584 2014-10-01] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313680 2014-10-01] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70608 2014-10-01] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [526360 2014-10-01] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786304 2014-10-01] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [447440 2014-09-19] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96600 2014-09-19] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348560 2014-10-01] (McAfee, Inc.)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3494680 2014-12-08] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [3554968 2014-08-26] (Sonix Co. Ltd.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-25 20:59 - 2015-05-25 21:00 - 00021392 _____ () C:\Users\Adélka\Desktop\FRST.txt
2015-05-25 20:52 - 2015-05-25 20:59 - 00000000 ____D () C:\FRST
2015-05-25 20:49 - 2015-05-25 20:49 - 00112640 _____ () C:\Users\Adélka\Downloads\Nepotvrzeno 350521.crdownload
2015-05-25 20:46 - 2015-05-25 20:46 - 02108928 _____ (Farbar) C:\Users\Adélka\Desktop\FRST64.exe
2015-05-25 20:16 - 2015-05-25 20:31 - 00000000 ____D () C:\Users\Adélka\AppData\Local\PokerStars.EU
2015-05-25 20:16 - 2015-05-25 20:16 - 00002009 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\PokerStars.eu.lnk
2015-05-25 20:16 - 2015-05-25 20:16 - 00002003 _____ () C:\Users\Public\Desktop\PokerStars.eu.lnk
2015-05-25 20:16 - 2015-05-25 20:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.EU
2015-05-25 20:15 - 2015-05-25 20:18 - 00000000 ____D () C:\Program Files (x86)\PokerStars.EU
2015-05-25 20:13 - 2015-05-25 20:14 - 80694888 _____ (PokerStars) C:\Users\Adélka\Downloads\PokerStarsInstallEU.exe
2015-05-25 19:24 - 2015-05-25 19:26 - 00000000 ____D () C:\AdwCleaner
2015-05-25 19:23 - 2015-05-25 19:23 - 02223104 _____ () C:\Users\Adélka\Desktop\adwcleaner_4.205.exe
2015-05-25 18:41 - 2015-05-25 18:41 - 00000000 ____D () C:\ProgramData\OneKey Optimizer
2015-05-25 18:26 - 2015-05-25 18:07 - 00024064 _____ () C:\windows\zoek-delete.exe
2015-05-25 18:08 - 2015-05-25 18:41 - 00029334 _____ () C:\zoek-results.log
2015-05-25 18:07 - 2015-05-25 18:22 - 00000000 ____D () C:\zoek_backup
2015-05-25 18:06 - 2015-05-25 18:06 - 01308672 _____ () C:\Users\Adélka\Desktop\zoek.exe
2015-05-25 17:44 - 2015-05-25 17:44 - 00000000 ____D () C:\rsit
2015-05-25 17:44 - 2015-05-25 17:44 - 00000000 ____D () C:\Program Files\trend micro
2015-05-25 17:43 - 2015-05-25 17:43 - 01222144 _____ () C:\Users\Adélka\Desktop\RSITx64.exe
2015-05-24 18:50 - 2015-05-24 18:57 - 1440339968 _____ () C:\Users\Adélka\Downloads\Troja-DVDRip-CZ-(DD-5,1)-Petr3007.avi
2015-05-24 18:22 - 2015-05-25 18:35 - 00000360 _____ () C:\windows\Tasks\Bidaily Synchronize Task[pr].job
2015-05-23 12:50 - 2015-05-23 12:50 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\Maxthon3
2015-05-23 08:58 - 2015-05-23 09:02 - 00000000 ____D () C:\Users\Adélka\Desktop\Adélka fotky z telefonu 21.5.2015
2015-05-23 08:57 - 2015-05-23 08:57 - 00000000 ____D () C:\Users\Adélka\AppData\Local\CyberLink
2015-05-23 08:56 - 2015-05-23 08:56 - 00000000 ____H () C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-05-23 07:47 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-23 07:47 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-22 09:04 - 2015-05-22 09:04 - 00111016 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge-64.dll
2015-05-22 09:04 - 2015-05-22 09:04 - 00000000 ____D () C:\ProgramData\Sun
2015-05-22 09:04 - 2015-05-22 09:04 - 00000000 ____D () C:\ProgramData\Oracle
2015-05-22 09:04 - 2015-05-22 09:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-05-22 09:03 - 2015-05-22 09:03 - 00000000 ____D () C:\Program Files\Java
2015-05-22 09:01 - 2015-05-22 09:03 - 43159464 _____ (Oracle Corporation) C:\Users\Adélka\Downloads\jre-8u45-windows-x64.exe
2015-05-22 08:29 - 2014-12-09 05:45 - 00393728 _____ (Microsoft Corporation) C:\windows\SysWOW64\scesrv.dll
2015-05-22 08:29 - 2014-12-09 03:56 - 00538624 _____ (Microsoft Corporation) C:\windows\system32\scesrv.dll
2015-05-22 08:29 - 2014-10-31 00:37 - 00129536 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2015-05-22 08:29 - 2014-10-31 00:34 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2015-05-22 08:17 - 2015-02-20 05:03 - 00358912 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2015-05-22 08:17 - 2015-02-20 04:58 - 00044032 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2015-05-22 08:17 - 2015-02-20 04:20 - 00301056 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2015-05-22 08:17 - 2015-02-20 04:15 - 00035840 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2015-05-22 08:17 - 2014-12-09 03:50 - 00225280 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2015-05-22 08:16 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-05-22 08:16 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2015-05-22 08:16 - 2015-03-23 23:59 - 07476032 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-05-22 08:16 - 2015-03-23 23:59 - 01733952 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-05-22 08:16 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\windows\system32\sechost.dll
2015-05-22 08:16 - 2015-03-23 23:58 - 01498872 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2015-05-22 08:16 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\windows\SysWOW64\sechost.dll
2015-05-22 08:16 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\microsoft-windows-system-events.dll
2015-05-22 08:16 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2015-05-22 08:16 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2015-05-22 08:16 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\windows\system32\tracerpt.exe
2015-05-22 08:16 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\windows\SysWOW64\tracerpt.exe
2015-05-22 08:16 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2015-05-22 08:16 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2015-05-22 08:16 - 2014-10-29 03:57 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2015-05-22 08:16 - 2014-10-29 03:15 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2015-05-22 08:16 - 2014-10-29 03:15 - 00005632 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2015-05-22 08:16 - 2014-10-29 03:14 - 00004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2015-05-22 08:16 - 2014-10-29 03:13 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2015-05-22 08:16 - 2014-10-29 03:13 - 00008704 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2015-05-22 08:15 - 2015-04-14 00:48 - 04180480 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-05-22 08:15 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2015-05-22 08:15 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2015-05-22 08:15 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2015-05-22 08:15 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\windows\system32\services.exe
2015-05-22 08:15 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll
2015-05-22 08:15 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\windows\SysWOW64\pku2u.dll
2015-05-22 08:15 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\windows\system32\lsm.dll
2015-05-22 08:15 - 2014-12-19 08:26 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2015-05-22 08:15 - 2014-12-12 04:04 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2015-05-22 08:15 - 2014-12-12 02:51 - 00075776 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ahcache.sys
2015-05-22 08:15 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2015-05-22 08:15 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2015-05-22 08:14 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-05-22 08:14 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-05-22 08:14 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-05-22 08:14 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-05-22 08:14 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-05-22 08:14 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-05-22 08:14 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-05-22 08:14 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2015-05-22 08:14 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2015-05-22 08:14 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2015-05-22 08:14 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2015-05-22 08:14 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-05-22 08:14 - 2015-04-21 18:07 - 00145408 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2015-05-22 08:14 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-05-22 08:14 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2015-05-22 08:14 - 2015-04-21 17:59 - 01032704 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2015-05-22 08:14 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2015-05-22 08:14 - 2015-04-21 17:52 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2015-05-22 08:14 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-05-22 08:14 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-05-22 08:14 - 2015-04-21 17:49 - 00374272 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-05-22 08:14 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-05-22 08:14 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-05-22 08:14 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2015-05-22 08:14 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2015-05-22 08:14 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2015-05-22 08:14 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2015-05-22 08:14 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2015-05-22 08:14 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2015-05-22 08:14 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-05-22 08:14 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2015-05-22 08:14 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2015-05-22 08:14 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2015-05-22 08:14 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2015-05-22 08:14 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-05-22 08:14 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-05-22 08:14 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2015-05-22 08:14 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2015-05-22 08:14 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2015-05-22 08:14 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2015-05-22 08:14 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2015-05-22 08:14 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2015-05-22 08:14 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-05-22 08:14 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\clfs.sys
2015-05-22 08:14 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\windows\system32\clfsw32.dll
2015-05-22 08:14 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\windows\SysWOW64\clfsw32.dll
2015-05-22 08:14 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2015-05-22 08:14 - 2015-02-20 04:47 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-05-22 08:14 - 2015-02-20 04:34 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-05-22 08:14 - 2015-02-20 04:06 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2015-05-22 08:14 - 2015-02-20 03:29 - 02865152 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2015-05-22 08:14 - 2015-02-12 19:40 - 22291584 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2015-05-22 08:14 - 2015-02-12 19:34 - 19731824 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2015-05-22 08:14 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2015-05-22 08:14 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2015-05-22 08:14 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2015-05-22 08:14 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2015-05-22 08:14 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2015-05-22 08:14 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2015-05-22 08:14 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2015-05-22 08:14 - 2015-01-16 00:43 - 00177984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-05-22 08:14 - 2015-01-12 04:21 - 00490496 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-05-22 08:14 - 2015-01-12 03:45 - 00418304 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2015-05-22 08:14 - 2014-12-08 21:42 - 00535640 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2015-05-22 08:14 - 2014-12-08 21:42 - 00531616 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
2015-05-22 08:14 - 2014-12-08 21:42 - 00448792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2015-05-22 08:14 - 2014-12-08 21:42 - 00413248 _____ (Microsoft Corporation) C:\windows\system32\Faultrep.dll
2015-05-22 08:14 - 2014-12-08 21:42 - 00372408 _____ (Microsoft Corporation) C:\windows\SysWOW64\Faultrep.dll
2015-05-22 08:14 - 2014-12-08 21:42 - 00108944 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2015-05-22 08:14 - 2014-12-08 21:42 - 00038264 _____ (Microsoft Corporation) C:\windows\system32\WerFaultSecure.exe
2015-05-22 08:14 - 2014-12-08 21:42 - 00033584 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFaultSecure.exe
2015-05-22 08:14 - 2014-12-06 05:17 - 00360448 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2015-05-22 08:14 - 2014-12-06 03:41 - 00391680 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2015-05-22 08:14 - 2014-12-06 03:35 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\AudioEndpointBuilder.dll
2015-05-22 08:14 - 2014-11-10 01:19 - 00991232 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-05-22 08:14 - 2014-11-10 01:19 - 00806400 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2015-05-22 08:14 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr120_clr0400.dll
2015-05-22 08:14 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\windows\system32\msvcr120_clr0400.dll
2015-05-22 08:13 - 2015-01-21 07:54 - 01384712 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2015-05-22 08:13 - 2015-01-21 07:15 - 01123848 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2015-05-21 21:05 - 2015-05-25 18:06 - 00020480 ___SH () C:\Users\Adélka\Downloads\Thumbs.db
2015-05-21 20:37 - 2015-05-21 20:58 - 1557540864 _____ () C:\Users\Adélka\Downloads\Chappie- parádní zvuk i grafika- 2015. BDRip, cz dabing.avi
2015-05-21 13:35 - 2015-05-21 13:35 - 00000000 ____T () C:\Users\Adélka\Documents\ů nm.ů,,.oxps
2015-05-20 20:30 - 2015-05-20 20:32 - 470796288 _____ () C:\Users\Adélka\Downloads\Hra-o-trůny-Game-of-Thrones-S05E06.-CZ-tit-ve-filmu.avi
2015-05-20 20:28 - 2015-05-20 20:28 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk
2015-05-20 20:28 - 2015-05-20 20:28 - 00001153 _____ () C:\Users\Public\Desktop\BS.Player FREE.lnk
2015-05-20 20:28 - 2015-05-20 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2015-05-20 20:26 - 2015-05-21 22:59 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\BSplayer
2015-05-20 20:26 - 2015-05-20 20:26 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\BSplayer Pro
2015-05-20 20:26 - 2015-05-20 20:26 - 00000000 ____D () C:\Program Files (x86)\Webteh
2015-05-20 20:18 - 2015-05-20 20:18 - 00002403 _____ () C:\Users\Adélka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo Web Start.lnk
2015-05-20 16:00 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\windows\system32\Drivers\HipShieldK.sys
2015-05-20 10:56 - 2015-05-20 10:56 - 00002290 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-20 10:56 - 2015-05-20 10:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-20 10:55 - 2015-05-25 20:06 - 00000974 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-20 10:55 - 2015-05-25 19:28 - 00000970 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-20 10:55 - 2015-05-20 11:01 - 00003946 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-20 10:55 - 2015-05-20 11:01 - 00003710 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-20 10:55 - 2015-05-20 10:56 - 00000000 ____D () C:\Users\Adélka\AppData\Local\Google
2015-05-20 10:55 - 2015-05-20 10:56 - 00000000 ____D () C:\Program Files (x86)\Google
2015-05-20 10:55 - 2015-05-20 10:55 - 00000000 ____D () C:\Users\Adélka\AppData\Local\Deployment
2015-05-20 10:55 - 2015-05-20 10:55 - 00000000 ____D () C:\Users\Adélka\AppData\Local\Apps\2.0
2015-05-20 10:54 - 2015-05-20 10:54 - 00000000 __SHD () C:\Users\Adélka\AppData\Local\EmieUserList
2015-05-20 10:54 - 2015-05-20 10:54 - 00000000 __SHD () C:\Users\Adélka\AppData\Local\EmieSiteList
2015-05-20 10:54 - 2015-05-20 10:54 - 00000000 __SHD () C:\Users\Adélka\AppData\Local\EmieBrowserModeList
2015-05-20 10:49 - 2015-05-20 10:49 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2015-05-20 10:48 - 2015-05-21 11:28 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\LSC
2015-05-20 10:48 - 2015-05-20 10:48 - 00000000 ____D () C:\Users\Adélka\AppData\Local\Adobe
2015-05-20 10:47 - 2015-05-25 20:51 - 00003598 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3297065278-4184664775-1928332329-1001
2015-05-20 10:46 - 2015-05-21 11:29 - 00000000 ____D () C:\Users\Adélka\AppData\Local\Lenovo
2015-05-20 10:44 - 2015-05-20 10:44 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\Intel Corporation
2015-05-20 10:43 - 2015-05-20 10:43 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\ATI
2015-05-20 10:43 - 2015-05-20 10:43 - 00000000 ____D () C:\Users\Adélka\AppData\Local\Power2Go8
2015-05-20 10:43 - 2015-05-20 10:43 - 00000000 ____D () C:\Users\Adélka\AppData\Local\ATI
2015-05-20 10:43 - 2015-05-20 10:43 - 00000000 ____D () C:\ProgramData\ATI
2015-05-20 10:40 - 2015-05-20 10:48 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\Adobe
2015-05-20 10:40 - 2015-05-20 10:44 - 00000000 ____D () C:\Users\Adélka\AppData\Local\Packages
2015-05-20 10:40 - 2015-05-20 10:40 - 00001457 _____ () C:\Users\Adélka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-20 10:40 - 2015-05-20 10:40 - 00000118 _____ () C:\windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-05-20 10:39 - 2015-05-20 10:40 - 00000000 ____D () C:\Users\Adélka
2015-05-20 10:39 - 2015-05-20 10:39 - 00000020 ___SH () C:\Users\Adélka\ntuser.ini
2015-05-20 10:39 - 2015-05-20 10:39 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\Intel
2015-05-20 10:39 - 2015-02-12 05:53 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\Macromedia
2015-05-20 10:39 - 2015-02-12 05:47 - 00000187 _____ () C:\Users\Adélka\Desktop\Google Play Music.url
2015-05-20 10:39 - 2015-02-12 05:47 - 00000126 _____ () C:\Users\Adélka\Desktop\Adobe Photo Offer.url
2015-05-20 10:39 - 2015-02-12 04:40 - 00000000 ___RD () C:\Users\Adélka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-20 10:39 - 2015-02-12 04:40 - 00000000 ___RD () C:\Users\Adélka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-20 10:39 - 2015-02-12 04:40 - 00000000 ___RD () C:\Users\Adélka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-20 10:39 - 2014-03-26 12:21 - 00000190 _____ () C:\Users\Adélka\Desktop\FREE CALLS with Voxox.url
2015-05-20 10:39 - 2014-03-18 11:55 - 00000369 _____ () C:\Users\Adélka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-05-20 10:39 - 2014-03-18 11:55 - 00000369 _____ () C:\Users\Adélka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-05-20 10:39 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Adélka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-20 10:34 - 2015-03-14 10:54 - 00133256 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2015-05-20 10:34 - 2015-03-14 03:56 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2015-05-20 10:34 - 2015-03-14 03:56 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2015-05-20 10:34 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2015-05-20 10:34 - 2015-03-14 03:37 - 00267264 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2015-05-20 10:34 - 2015-03-14 03:14 - 00027136 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2015-05-20 10:34 - 2015-03-14 02:22 - 03678720 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2015-05-20 10:34 - 2015-03-14 02:12 - 00140288 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2015-05-20 10:34 - 2015-03-14 02:12 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2015-05-20 10:34 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2015-05-20 10:34 - 2015-03-14 02:08 - 00408064 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2015-05-20 10:34 - 2015-03-14 02:08 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2015-05-20 10:34 - 2015-03-14 02:06 - 02373632 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2015-05-20 10:34 - 2015-03-14 02:06 - 00891392 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2015-05-20 10:34 - 2015-03-14 02:02 - 00124928 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2015-05-20 10:34 - 2015-03-14 02:02 - 00029696 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2015-05-20 10:34 - 2015-03-14 01:59 - 00721920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2015-05-20 10:34 - 2015-03-14 01:59 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2015-05-20 10:34 - 2014-10-18 08:50 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\wuaext.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-25 21:00 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\system32\sru
2015-05-25 19:46 - 2015-02-12 04:04 - 00000784 _____ () C:\windows\lupdate.log
2015-05-25 19:37 - 2013-08-22 16:46 - 00028649 _____ () C:\windows\setupact.log
2015-05-25 19:36 - 2015-02-12 05:47 - 00000000 ____D () C:\windows\System32\Tasks\Lenovo
2015-05-25 19:29 - 2015-02-12 05:11 - 00006400 _____ () C:\windows\SysWOW64\Gms.log
2015-05-25 19:27 - 2013-08-22 16:45 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-05-25 19:26 - 2015-02-12 05:48 - 00002560 _____ () C:\windows\system32\VfService.trf
2015-05-25 19:26 - 2015-02-12 05:16 - 00000000 ____D () C:\Program Files (x86)\Lenovo
2015-05-25 19:26 - 2015-02-12 05:06 - 00327176 _____ () C:\Users\Public\CAFADEBUG.log
2015-05-25 19:26 - 2015-02-12 03:56 - 00153336 _____ () C:\windows\system32\wpbbin.exe
2015-05-25 19:26 - 2015-02-12 03:56 - 00111088 _____ (Lenovo (Beijing) Limited) C:\windows\system32\LenovoCheck.exe
2015-05-25 19:26 - 2015-02-12 03:56 - 00026608 _____ (Lenovo) C:\windows\system32\LenovoUpdate.exe
2015-05-25 18:36 - 2013-08-22 15:25 - 00262144 ___SH () C:\windows\system32\config\BBI
2015-05-25 17:56 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\rescache
2015-05-25 17:35 - 2015-02-12 04:02 - 01802242 _____ () C:\windows\WindowsUpdate.log
2015-05-25 14:47 - 2013-08-22 17:20 - 00000000 ____D () C:\windows\CbsTemp
2015-05-25 13:58 - 2014-03-18 11:38 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-25 13:58 - 2014-03-18 11:25 - 00000000 ____D () C:\windows\SysWOW64\WCN
2015-05-25 13:58 - 2014-03-18 11:25 - 00000000 ____D () C:\windows\SysWOW64\slmgr
2015-05-25 13:58 - 2014-03-18 11:25 - 00000000 ____D () C:\windows\system32\WCN
2015-05-25 13:58 - 2014-03-18 11:25 - 00000000 ____D () C:\windows\system32\slmgr
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ___RD () C:\windows\ImmersiveControlPanel
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\WinStore
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\SysWOW64\sk-SK
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\system32\SystemResetPlatform
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\system32\sk-SK
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\system32\migwiz
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\PolicyDefinitions
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\Help
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\System
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-05-25 13:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-05-25 13:58 - 2013-08-22 15:36 - 00000000 ____D () C:\windows\SysWOW64\oobe
2015-05-25 13:58 - 2013-08-22 15:36 - 00000000 ____D () C:\windows\system32\Sysprep
2015-05-25 13:58 - 2013-08-22 15:36 - 00000000 ____D () C:\windows\system32\oobe
2015-05-25 13:58 - 2013-08-22 15:36 - 00000000 ____D () C:\windows\servicing
2015-05-25 11:26 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\AppReadiness
2015-05-24 15:54 - 2013-08-22 16:44 - 00346656 _____ () C:\windows\system32\FNTCACHE.DAT
2015-05-24 14:35 - 2013-08-22 17:36 - 00000000 ___RD () C:\windows\ToastData
2015-05-24 14:35 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\system32\sr-Latn-RS
2015-05-24 14:35 - 2013-08-22 17:36 - 00000000 ____D () C:\windows\system32\sr-Latn-CS
2015-05-23 08:57 - 2015-02-12 05:55 - 00000000 ____D () C:\ProgramData\CyberLink
2015-05-22 12:48 - 2015-02-12 05:26 - 00000000 ____D () C:\ProgramData\Lenovo
2015-05-22 12:37 - 2015-02-12 04:52 - 00740946 _____ () C:\windows\system32\perfh005.dat
2015-05-22 12:37 - 2015-02-12 04:52 - 00152150 _____ () C:\windows\system32\perfc005.dat
2015-05-22 12:37 - 2014-03-18 11:53 - 01749406 _____ () C:\windows\system32\PerfStringBackup.INI
2015-05-21 11:24 - 2015-02-12 05:49 - 00000000 ____D () C:\Program Files (x86)\McAfee
2015-05-21 11:24 - 2014-03-18 11:44 - 00008810 _____ () C:\windows\PFRO.log
2015-05-20 15:59 - 2015-02-12 05:49 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2015-05-20 15:58 - 2015-02-12 05:49 - 00000000 ____D () C:\ProgramData\McAfee
2015-05-20 15:58 - 2013-08-22 15:25 - 00262144 ___SH () C:\windows\system32\config\ELAM
2015-05-20 10:46 - 2015-02-12 05:04 - 00003718 _____ () C:\windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2015-05-20 10:46 - 2015-02-12 05:02 - 00000000 ____D () C:\ProgramData\Intel
2015-05-20 10:45 - 2015-02-12 05:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-05-20 10:42 - 2014-04-03 21:15 - 00000000 ____D () C:\windows\Panther
2015-05-20 10:40 - 2015-02-12 06:12 - 00169007 ____H () C:\windows\modules.log
2015-05-20 10:35 - 2013-08-22 15:36 - 00000000 ____D () C:\windows\system32\AdvancedInstallers
2015-05-05 19:59 - 2013-08-22 17:38 - 00792568 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-05-05 19:59 - 2013-08-22 17:38 - 00178168 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2015-02-12 05:05 - 2015-02-12 05:05 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Adélka\AppData\Local\Temp\Quarantine.exe
C:\Users\Adélka\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-23 23:30

==================== End of log ============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
  HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
  HKLM\...\Policies\Explorer: [NoFolderOptions] 0
  HKLM\...\Policies\Explorer: [NoControlPanel] 0
  CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
  
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  
  Task: {73F09CF8-9A09-41F3-864A-373425B3D318} - \OFFICE2013ACT No Task File <==== ATTENTION
  Task: {E99A1A65-E37D-4163-A193-CEA739CD1826} - \Bidaily Synchronize Task[pr] No Task File <==== ATTENTION
  Task: C:\windows\Tasks\Bidaily Synchronize Task[pr].job => c:\programdata\{3f62c873-ff82-33ad-3f62-2c873ff821cf}\vietcong 1 game.exe <==== ATTENTION
  Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  
  Hosts:
  EmptyTemp:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[kristi55]

Tady je:

Fix result of Farbar Recovery Scan Tool (x64) Version: 25-05-2015
Ran by Adélka at 2015-05-25 22:00:38 Run:1
Running from C:\Users\Adélka\Desktop
Loaded Profiles: Adélka (Available Profiles: Adélka)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

Task: {73F09CF8-9A09-41F3-864A-373425B3D318} - \OFFICE2013ACT No Task File <==== ATTENTION
Task: {E99A1A65-E37D-4163-A193-CEA739CD1826} - \Bidaily Synchronize Task[pr] No Task File <==== ATTENTION
Task: C:\windows\Tasks\Bidaily Synchronize Task[pr].job => c:\programdata\{3f62c873-ff82-33ad-3f62-2c873ff821cf}\vietcong 1 game.exe <==== ATTENTION
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLVirtualDrive => value Removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value Removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoFolderOptions => value Removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => value Removed successfully
"HKLM\SOFTWARE\Policies\Google" => key Removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value Removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value Removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73F09CF8-9A09-41F3-864A-373425B3D318}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73F09CF8-9A09-41F3-864A-373425B3D318}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OFFICE2013ACT" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E99A1A65-E37D-4163-A193-CEA739CD1826}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E99A1A65-E37D-4163-A193-CEA739CD1826}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bidaily Synchronize Task[pr]" => key Removed successfully
C:\windows\Tasks\Bidaily Synchronize Task[pr].job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
Hosts restored successfully.
EmptyTemp: => Removed 439.1 MB temporary data.


The system needed a reboot.

==== End of Fixlog 22:01:18 ====

[vyosek]

Jak se chova PC??

[kristi55]

Vsechno sla pe, jak ma, zda se. Moc dekuju za pomoc.

[vyosek]

Tak jeste uklidime

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standard
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse