Dobrý den
Mam problem s vyskakovaním okna Java Update který hlasí že neodpovídá, paradoxem je že žadnou javu v pc instalovanou nemám a každou chvíly se toto okno objěvuje.
Při hraní či práci na pc mi to vyhazuje na plochu
zde přikládám Log z FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-08-2015 01
Ran by Michele (administrator) on MICHELE-PC (15-08-2015 19:04:49)
Running from C:\Users\Michele\Desktop\Stahovaní
Loaded Profiles: Michele (Available Profiles: Michele)
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BitTorrent, Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Users\Michele\AppData\Roaming\Microsoft\CSUService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [BCU] => C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [375000 2009-10-26] (DeviceVM, Inc.)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-03-09] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-11] (Avast Software s.r.o.)
HKLM-x32\...\Run: [4StoryPrePatch] => C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe [327680 2015-03-20] (Zemi Interactive Inc.)
HKLM-x32\...\Run: [Hornet] => C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe [434176 2014-05-22] ()
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912 2011-08-02] (DT Soft Ltd)
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\Run: [uTorrent] => C:\Program Files (x86)\uTorrent\uTorrent.exe [640888 2015-02-07] (BitTorrent, Inc.)
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\Run: [Browsing Enhancements] => C:\Users\Michele\AppData\Roaming\Microsoft\CSUService.exe [16586752 2015-08-08] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-22] (Avast Software s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.default-search.net?sid=578&aid=100& ... 16&src=hmp
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} URL = hxxp://www.default-search.net/search?sid=578&a ... earchTerms}
SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} URL = hxxp://www.default-search.net/search?sid=578&a ... earchTerms}
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> DefaultScope {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-22] (Avast Software s.r.o.)
BHO-x32: No Name -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-22] (Avast Software s.r.o.)
BHO-x32: No Name -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> No File
BHO-x32: No Name -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> No File
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 85.193.0.8 192.168.1.1
Tcpip\..\Interfaces\{CEF34446-2396-45A0-97A8-DA670E72723E}: [DhcpNameServer] 85.193.0.8 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default
FF DefaultSearchEngine: Seznam
FF DefaultSearchUrl: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Seznam
FF SelectedSearchEngine: Seznam
FF Homepage: https://www.seznam.cz/?clid=22668
FF Keyword.URL: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-04-10] (Nero AG)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File]
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2098945541-2125412304-4018408577-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Michele\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-10] (Unity Technologies ApS)
FF user.js: detected! => C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\user.js [2015-06-30]
FF SearchPlugin: C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\searchplugins\default-search.xml [2015-05-18]
FF SearchPlugin: C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\searchplugins\seznam-avast.xml [2015-06-28]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml [2015-05-18]
FF Extension: Adblock Plus - C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-05]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-02-04]
Chrome:
=======
CHR Profile: C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Google Docs) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-04]
CHR Extension: (Rapport) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2015-07-15]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-07-16]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-07-16]
CHR Extension: (YouTube) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-04]
CHR Extension: (Google Search) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-04]
CHR Extension: (Google Sheets) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Linkey) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah [2015-07-15]
CHR Extension: (Avast Online Security) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-23]
CHR Extension: (Default-Search) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\iomphmdalfmaifjccmagmllnicjoghhk [2015-07-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-04]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-07-16]
CHR Extension: (Gmail) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-04]
CHR HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fpmeembnagmagppkgghhfjfdfajdfcah] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-22]
CHR HKLM-x32\...\Chrome\Extension: [iomphmdalfmaifjccmagmllnicjoghhk] - https://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [918144 2010-11-03] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-22] (Avast Software s.r.o.)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-30] (IObit)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3305824 2015-05-05] (INCA Internet Co., Ltd.) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-05-23] ()
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2222360 2015-07-29] (IBM Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-22] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-04-22] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-22] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-22] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-26] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-04-22] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-04-22] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [270912 2015-02-09] (DT Soft Ltd)
R3 GM312Fltr; C:\Windows\System32\drivers\GM312Fltr.sys [10624 2013-08-21] (LXD Development, Inc.)
R1 RapportCerberus_1412121; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1412121.sys [921176 2015-08-11] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [487992 2015-07-29] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [121432 2015-07-29] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [376184 2015-07-29] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [480440 2015-07-29] (IBM Corp.)
R1 {d447a5a7-a0f3-4764-b2fa-d4e58c36c75a}Gw64; C:\Windows\System32\drivers\{d447a5a7-a0f3-4764-b2fa-d4e58c36c75a}Gw64.sys [48776 2015-05-18] (StdLib)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-15 19:04 - 2015-08-15 19:04 - 00000000 ____D C:\FRST
2015-08-12 20:58 - 2015-08-12 21:17 - 00000000 ____D C:\Users\Michele\Desktop\Bomfunk MC's - In Stereo (+6 BONUS) (2000)[FLAC]
2015-08-09 21:59 - 2015-08-09 21:59 - 00276808 _____ C:\Windows\Minidump\080915-33306-01.dmp
2015-08-09 21:39 - 2015-08-09 21:59 - 00000000 ____D C:\Windows\Minidump
2015-08-09 21:39 - 2015-08-09 21:39 - 00276808 _____ C:\Windows\Minidump\080915-28594-01.dmp
2015-08-09 21:38 - 2015-08-09 21:59 - 655643911 _____ C:\Windows\MEMORY.DMP
2015-08-09 18:27 - 2015-08-09 18:27 - 00000000 ____D C:\Users\Michele\Documents\My Albums
2015-08-09 18:26 - 2015-08-09 18:26 - 00000000 ____D C:\Users\Michele\AppData\Roaming\ArcSoft
2015-08-09 17:57 - 2006-09-18 08:50 - 00022784 _____ (Arcsoft, Inc.) C:\Windows\SysWOW64\Drivers\afc.sys
2015-08-09 17:56 - 1995-08-01 04:44 - 00212480 _____ (Eastman Kodak) C:\Windows\PCDLIB32.DLL
2015-08-09 17:55 - 2015-08-09 17:55 - 00000000 ____D C:\Windows\Pixart
2015-08-09 17:55 - 2009-06-15 20:43 - 00000868 _____ C:\Windows\SysWOW64\SP7302.INI
2015-08-09 17:55 - 2009-04-28 10:07 - 00532480 _____ (PixArt Imaging Inc.) C:\Windows\system32\Drivers\PAC7302.SYS
2015-08-09 17:55 - 2008-03-24 11:09 - 00141824 _____ (PixArt Imaging Incorporation) C:\Windows\SysWOW64\SP7302.AX
2015-08-09 17:55 - 2007-11-02 11:07 - 00008704 _____ (PixArt Imaging Inc.) C:\Windows\system32\CoInst.dll
2015-08-09 17:55 - 2004-08-09 17:43 - 00094208 _____ (Microsoft Corporation) C:\Windows\AMCap.exe
2015-08-09 17:50 - 2015-08-09 17:50 - 00000000 ____D C:\Users\Michele\Tracing
2015-08-09 17:49 - 2015-08-10 18:38 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Skype
2015-08-09 17:49 - 2015-08-09 17:50 - 00000000 ____D C:\Users\Michele\AppData\Local\Skype
2015-08-09 17:49 - 2015-08-09 17:49 - 00002731 _____ C:\Users\Public\Desktop\Skype.lnk
2015-08-09 17:49 - 2015-08-09 17:49 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-09 17:49 - 2015-08-09 17:49 - 00000000 ____D C:\ProgramData\Skype
2015-08-09 17:49 - 2015-08-09 17:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-09 16:20 - 2015-08-09 16:21 - 00002562 _____ C:\Windows\diagwrn.xml
2015-08-09 16:20 - 2015-08-09 16:21 - 00001908 _____ C:\Windows\diagerr.xml
2015-08-08 19:26 - 2015-08-08 19:26 - 15507456 _____ C:\Windows\system32\config\SYSTEM.sav.LOG
2015-08-08 19:25 - 2015-08-08 19:26 - 45232128 _____ C:\Windows\system32\config\SOFTWARE.sav.LOG
2015-08-08 19:25 - 2015-08-08 19:25 - 00057344 _____ C:\Windows\system32\config\SAM.sav.LOG
2015-08-08 19:25 - 2015-08-08 19:25 - 00024576 _____ C:\Windows\system32\config\SECURITY.sav.LOG
2015-08-08 19:23 - 2015-08-08 19:26 - 00001668 _____ C:\Windows\system32\ASOROSet.bin
2015-08-08 19:22 - 2015-08-08 19:23 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2015-08-08 18:56 - 2015-08-08 18:56 - 00000000 ____D C:\ProgramData\Sun
2015-08-08 18:55 - 2015-08-08 18:55 - 00000000 ____D C:\ProgramData\Oracle
2015-08-07 21:25 - 2015-08-14 18:34 - 00000720 _____ C:\Users\Michele\Desktop\TORRENT – zástupce.lnk
2015-08-07 21:24 - 2015-08-07 21:24 - 00000462 _____ C:\Users\Michele\Desktop\Místní disk (E) – zástupce.lnk
2015-08-07 10:21 - 2015-08-08 11:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-07-21 18:31 - 2015-07-27 15:31 - 00001223 _____ C:\Users\Michele\Desktop\Launcher – zástupce.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-15 19:04 - 2015-02-07 17:39 - 00000000 ____D C:\Users\Michele\AppData\Roaming\uTorrent
2015-08-15 19:04 - 2015-02-04 19:31 - 00000000 ___RD C:\Users\Michele\Desktop\Stahovaní
2015-08-15 19:01 - 2009-07-14 06:45 - 00018224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-15 19:01 - 2009-07-14 06:45 - 00018224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-15 18:56 - 2015-02-04 17:39 - 01696506 _____ C:\Windows\WindowsUpdate.log
2015-08-15 18:54 - 2015-07-11 22:14 - 00004164 _____ C:\Windows\Tasks\e86ce847-5c8c-4fe7-9860-cee470d0be32-4.job
2015-08-15 18:54 - 2015-07-01 14:25 - 00002467 _____ C:\Windows\setupact.log
2015-08-15 18:54 - 2015-02-04 19:02 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-15 18:54 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-15 18:49 - 2015-07-11 22:13 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Seznam.cz
2015-08-15 18:49 - 2015-07-11 22:13 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2015-08-15 18:48 - 2015-02-04 18:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-15 18:47 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-15 18:19 - 2015-02-04 19:37 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-15 18:07 - 2015-02-04 19:02 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-14 16:08 - 2015-02-04 19:03 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-14 15:28 - 2015-06-30 21:19 - 00000000 ____D C:\ProgramData\ProductData
2015-08-13 16:55 - 2015-02-04 19:06 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-12 21:15 - 2015-06-28 16:07 - 00000000 ____D C:\Users\Michele\AppData\Local\Nero
2015-08-12 14:52 - 2015-07-01 14:25 - 00003162 _____ C:\Windows\PFRO.log
2015-08-11 20:19 - 2015-02-04 19:37 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-11 20:19 - 2015-02-04 19:37 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-11 20:19 - 2015-02-04 19:37 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-11 18:41 - 2015-04-30 16:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ochrana koncového bodu Trusteer
2015-08-09 18:27 - 2015-02-04 18:03 - 00000000 ____D C:\Users\Michele\AppData\Local\VirtualStore
2015-08-09 17:50 - 2015-02-04 18:02 - 00000000 ____D C:\Users\Michele
2015-08-09 16:20 - 2015-07-01 14:25 - 00000000 _____ C:\Windows\setuperr.log
2015-08-08 19:23 - 2015-03-07 18:39 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Solvusoft
2015-08-08 18:27 - 2015-06-13 19:17 - 00001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2015-08-08 18:27 - 2015-06-13 19:17 - 00000000 ____D C:\Program Files\WinRAR
2015-08-08 18:27 - 2015-03-07 17:57 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 18:27 - 2015-03-07 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 11:32 - 2015-02-04 19:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-08 01:32 - 2015-02-04 19:02 - 00000000 ____D C:\Users\Michele\AppData\Local\Google
2015-08-07 21:25 - 2015-06-06 18:34 - 00148992 ___SH C:\Users\Michele\Desktop\Thumbs.db
2015-08-02 13:21 - 2015-05-19 22:24 - 00000000 ____D C:\Users\Michele\AppData\Local\CrashDumps
2015-07-31 23:10 - 2015-07-11 21:49 - 00000080 _____ C:\Users\Michele\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
2015-07-29 22:46 - 2015-06-10 14:41 - 00121432 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportHades64.sys
2015-07-29 22:46 - 2015-04-30 16:54 - 00376184 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportKE64.sys
2015-07-25 13:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2015-07-21 18:55 - 2015-02-14 19:37 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Media Player Classic
2015-07-19 22:40 - 2009-07-14 17:18 - 00668138 _____ C:\Windows\system32\perfh005.dat
2015-07-19 22:40 - 2009-07-14 17:18 - 00140798 _____ C:\Windows\system32\perfc005.dat
2015-07-19 22:40 - 2009-07-14 07:13 - 01582262 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-17 12:29 - 2015-07-11 22:33 - 00000000 ____D C:\Users\Michele\AppData\Local\23838
2015-07-16 10:02 - 2015-02-04 19:02 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-16 10:02 - 2015-02-04 19:02 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories =======
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Users\Michele\AppData\Local\setup.txt
2015-02-12 22:10 - 2015-02-12 22:10 - 0000000 _____ () C:\Users\Michele\AppData\Local\{4CDCF8E7-961E-4A67-B96B-C66F4EE64B03}
Some files in TEMP:
====================
C:\Users\Michele\AppData\Local\Temp\amd-catalyst-15.7.1-without-dotnet45-win7-64bit.exe
C:\Users\Michele\AppData\Local\Temp\ASCSetup_3277783.exe
C:\Users\Michele\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\Michele\AppData\Local\Temp\dtimerj.exe
C:\Users\Michele\AppData\Local\Temp\grand theft auto v cd key__10924_i1555094552_il1351555.exe
C:\Users\Michele\AppData\Local\Temp\H36zgDKq-1.exe
C:\Users\Michele\AppData\Local\Temp\H36zgDKq.exe
C:\Users\Michele\AppData\Local\Temp\jsdev32.exe
C:\Users\Michele\AppData\Local\Temp\kernel32.dll
C:\Users\Michele\AppData\Local\Temp\p5n4kxm1.dll
C:\Users\Michele\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Michele\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Michele\AppData\Local\Temp\sfamcc00003.dll
C:\Users\Michele\AppData\Local\Temp\sfareca00002.dll
C:\Users\Michele\AppData\Local\Temp\sfextra.dll
C:\Users\Michele\AppData\Local\Temp\_isF71B.exe
C:\Users\Michele\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-08-12 16:20
==================== End of log ============================
Zde Additional:
Additional scan result of Farbar Recovery Scan Tool (x64) Version:14-08-2015 01
Ran by Michele (2015-08-15 19:05:32)
Running from C:\Users\Michele\Desktop\Stahovaní
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2098945541-2125412304-4018408577-500 - Administrator - Disabled)
Guest (S-1-5-21-2098945541-2125412304-4018408577-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2098945541-2125412304-4018408577-1004 - Limited - Enabled)
Michele (S-1-5-21-2098945541-2125412304-4018408577-1000 - Administrator - Enabled) => C:\Users\Michele
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM-x32\...\uTorrent) (Version: 3.0.0 - )
4Story 3.5 (HKLM-x32\...\4StoryCZ_is1) (Version: - )
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader 9.1 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 1.01.14 - ASUSTeK)
Ask Toolbar (HKLM-x32\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.6.9.0 - Ask.com) <==== ATTENTION
ATI AVIVO64 Codecs (Version: 11.6.0.10308 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (HKLM\...\{8D9294AA-BCC6-C17A-0A3F-AC6BC020840B}) (Version: 3.0.816.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2218 - AVAST Software)
Browser Configuration Utility (HKLM-x32\...\{D793423B-FF18-4A54-B9C9-75B3396BAAC4}) (Version: 1.0.10.0 - DeviceVM Inc.) <==== ATTENTION
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.41.3.0173 - DT Soft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Update Helper (x32 Version: 1.2.183.39 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0002.135 - Rockstar Games Inc.) Hidden
Hornet (HKLM-x32\...\{D0E01BE3-1E25-4457-B25A-4D44F352C371}) (Version: - )
HydraVision (x32 Version: 4.2.188.0 - ATI Technologies Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Network Connections 15.6.25.0 (HKLM\...\PROSetDX) (Version: 15.6.25.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.58.2 - JMicron Technology Corp.)
Leawo Free DVD to AVI Converter versione 2.3.1.0 (HKLM\...\{60278415-7204-4603-BA8C-574303706FAC}_is1) (Version: - )
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.0.0.1051 - Marvell)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 RC (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50861 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ Run Time Lib Setup (HKLM-x32\...\{AAF4238F-7C29-451D-9925-C753271A5728}) (Version: 1.0.0 - Microsoft)
Mozilla Firefox 39.0.3 (x86 cs) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 cs)) (Version: 39.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 - Nero AG)
Nero MediaHome Free (HKLM-x32\...\{4C4E731B-FFBC-4CD4-967E-B468E61C89F4}) (Version: 16.0.03300 - Nero AG)
NVIDIA PhysX (HKLM-x32\...\{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}) (Version: 9.09.0814 - NVIDIA Corporation)
Ochrana koncového bodu Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1412.207 - Trusteer)
Prerequisite installer (x32 Version: 16.0.0004 - Nero AG) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Rapport (x32 Version: 3.5.1412.207 - Trusteer) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.1 - Rockstar Games)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Software Version Updater (HKLM-x32\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.4.2 - ) <==== ATTENTION
SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.20.9.4533 - Enigma Software Group, LLC)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: - )
Unity Web Player (HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 7.1 - Ubisoft)
WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
15-08-2015 18:46:58 Removed 15354 Webcam Live
15-08-2015 18:47:40 Rimosso Assassin's Creed
15-08-2015 18:48:34 Removed Rapport
15-08-2015 18:50:19 Rimosso VideoImpression
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0C0E63F4-6762-4E50-B2E3-DF97A2161798} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2010-11-26] (ASUSTeK Computer Inc.)
Task: {80798395-C40A-4512-ADEE-B716B4950B54} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe <==== ATTENTION
Task: {974949DE-26EB-4D72-9E50-4951B6089A6B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.)
Task: {9F6145A8-4E07-45E5-B525-496798D4B104} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2015-06-04] (Nero AG)
Task: {AB9565D7-1BD5-4353-ABA7-A5410DA70E66} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-04] (Google Inc.)
Task: {AFE4F871-C28F-4D42-8EC6-C2E31C913F0B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-04] (Google Inc.)
Task: {BE5168C9-5C9E-41DA-8A55-F40DCB8E9AFE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11] (Adobe Systems Incorporated)
Task: {C57927C3-AD77-4DB8-95DF-315A0D5A413B} - System32\Tasks\ASUS\ASUS DigiVRM Help => C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe [2010-10-12] (ASUSTeK Computer Inc.)
Task: {D2672CBC-1D14-40E7-A063-B638292B057E} - System32\Tasks\e86ce847-5c8c-4fe7-9860-cee470d0be32-4 => C:\Program Files (x86)\Internet Speed Checker\e86ce847-5c8c-4fe7-9860-cee470d0be32-4.exe <==== ATTENTION
Task: {D7721D1A-7B28-477B-9F53-6B253D38CF72} - System32\Tasks\{C53FE247-0535-4027-AACE-4FC649216D35} => pcalua.exe -a "C:\Hry\Assassins Creed - Unity\GDFInstall.exe" -d "C:\Hry\Assassins Creed - Unity"
Task: {EF698EA4-06B2-4717-B5DF-62084F1461DD} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\e86ce847-5c8c-4fe7-9860-cee470d0be32-4.job => C:\Program Files (x86)\Internet Speed Checker\e86ce847-5c8c-4fe7-9860-cee470d0be32-4.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2010-11-03 11:30 - 2010-11-03 11:30 - 00918144 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
2010-12-02 04:15 - 2010-12-02 04:15 - 00915584 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
2015-02-04 18:34 - 2010-10-21 11:52 - 00586880 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
2015-04-06 10:28 - 2015-05-23 01:34 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2011-03-09 01:24 - 2011-03-09 01:24 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-08-08 01:32 - 2015-08-08 01:22 - 16586752 ___SH () C:\Users\Michele\AppData\Roaming\Microsoft\CSUService.exe
2015-06-09 16:16 - 2014-05-22 09:43 - 00434176 _____ () C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe
2015-04-22 22:49 - 2015-04-22 22:49 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-04-22 22:49 - 2015-04-22 22:49 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-08-15 17:32 - 2015-08-15 17:32 - 02962432 _____ () C:\Program Files\AVAST Software\Avast\defs\15081500\algo.dll
2015-02-04 18:34 - 2015-08-15 18:54 - 00024064 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.13\PEbiosinterface32.dll
2015-02-04 18:34 - 2010-06-29 04:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.13\ATKEX.dll
2015-07-21 17:02 - 2015-07-21 17:02 - 00557056 _____ () C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2009-06-27 11:11 - 2009-06-27 11:11 - 00503202 _____ () C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll
2015-02-04 18:37 - 2009-05-21 04:14 - 00053248 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2015-02-04 18:36 - 2009-05-21 11:14 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2015-04-22 22:49 - 2015-04-22 22:49 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-04 18:34 - 2010-12-02 18:28 - 00143360 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2015-02-04 18:34 - 2010-06-21 16:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2015-02-04 18:34 - 2009-08-12 21:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2015-02-04 18:35 - 2010-10-15 18:40 - 01031680 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Update\Update.dll
2015-02-04 18:34 - 2010-11-19 11:53 - 00963584 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2015-02-04 18:35 - 2010-11-04 19:30 - 01245184 _____ () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2015-02-04 18:34 - 2010-09-27 21:51 - 00881664 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2015-02-04 18:34 - 2010-09-27 21:51 - 01607168 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2015-02-04 18:34 - 2010-11-19 11:55 - 01246208 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2015-02-04 18:34 - 2010-08-06 19:11 - 00850944 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2015-02-04 18:34 - 2010-08-06 19:13 - 00886272 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2015-02-04 18:36 - 2011-01-04 11:37 - 00651264 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Thermal Radar\ThermalRadar.dll
2015-02-04 18:34 - 2010-08-23 04:17 - 00662016 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMLib.dll
2015-02-04 18:34 - 2010-06-21 16:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\ImageHelper.dll
2015-02-04 18:26 - 2015-02-04 18:26 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\3c92352ac1b24dbb492eb53731a36490\IsdiInterop.ni.dll
2015-02-04 18:26 - 2010-11-06 00:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2015-06-09 16:16 - 2014-05-22 10:02 - 00057344 _____ () C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\lan.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Michele\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 85.193.0.8 - 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{C08C833C-2043-48C7-9CC9-1C11538B3131}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4DA02ED1-5A52-4AE2-8EA3-981A4573B1D1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EA74CD1B-EA47-4F41-8559-89E78640720A}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{434E7BBC-A4B6-4AAD-9D39-D253389E3696}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{872FE887-04C1-483F-8ACE-6EBE9D96AB7E}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{681377C9-7A6E-46CB-8994-CD4149545FD9}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{7B987540-9525-436E-A712-772BCDDFB31F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{166B0A96-B046-4ED1-BC21-DC131EB76FDD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0D29030A-59E1-4579-94E6-A7792A2AA6F9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E2135A98-EDF6-4118-969C-4952FF3340B6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{CC2A95CC-AC38-4721-BD1C-8D67840B1321}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{0A4B349A-2603-4B97-8842-C414A8392AD8}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{C15E32A2-43B9-497E-9AE2-50CE61F41DAF}] => (Allow) C:\Program Files (x86)\Rockstar Games\EFLC\LaunchEFLC.exe
FirewallRules: [{6346C547-5D31-4972-B1DC-7A47E247E76E}] => (Allow) C:\Program Files (x86)\Rockstar Games\EFLC\LaunchEFLC.exe
FirewallRules: [TCP Query User{CACF2347-E567-4652-9B43-0F0055117261}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [UDP Query User{9C72233E-68FA-4548-83E8-F219367F67E5}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [TCP Query User{454B7958-4ADF-4580-A62D-7241AB813C45}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{DB3C520D-69D4-47A0-AECC-FF957655CE37}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{2F8D27D6-C30E-4970-8F02-48D9223BDA5C}C:\program files (x86)\ubisoft\assassin's creed liberation hd\ac3lhd_32.exe] => (Allow) C:\program files (x86)\ubisoft\assassin's creed liberation hd\ac3lhd_32.exe
FirewallRules: [UDP Query User{4BA556AF-CA19-4EBD-B5C3-07539FE0C68E}C:\program files (x86)\ubisoft\assassin's creed liberation hd\ac3lhd_32.exe] => (Allow) C:\program files (x86)\ubisoft\assassin's creed liberation hd\ac3lhd_32.exe
FirewallRules: [TCP Query User{2DD07DC7-8BC2-4CA4-9D87-1BAE55C2EB43}C:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe] => (Allow) C:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe
FirewallRules: [UDP Query User{DCF003B9-C2BB-49FE-BAD2-50ECB8358AE4}C:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe] => (Allow) C:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe
FirewallRules: [TCP Query User{3CA757C5-141D-4D66-8045-655D34A1F381}C:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe] => (Allow) C:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe
FirewallRules: [UDP Query User{92226A1F-3F89-4908-AA95-6C64326B3A88}C:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe] => (Allow) C:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe
FirewallRules: [TCP Query User{FAD59F71-1077-4C8F-9461-6C45C39D557C}C:\program files (x86)\agb-gt\assassin's creed brotherhood\acbsp.exe] => (Allow) C:\program files (x86)\agb-gt\assassin's creed brotherhood\acbsp.exe
FirewallRules: [UDP Query User{A84C7110-1FA4-459B-A388-C86CEA3F46A2}C:\program files (x86)\agb-gt\assassin's creed brotherhood\acbsp.exe] => (Allow) C:\program files (x86)\agb-gt\assassin's creed brotherhood\acbsp.exe
FirewallRules: [TCP Query User{A94E57D1-2374-41C1-B339-D0FDF408CC0A}C:\program files (x86)\assassin`s creed iii\ac3sp.exe] => (Allow) C:\program files (x86)\assassin`s creed iii\ac3sp.exe
FirewallRules: [UDP Query User{6BBE93BA-CA2E-4130-A272-C70BDBECD23E}C:\program files (x86)\assassin`s creed iii\ac3sp.exe] => (Allow) C:\program files (x86)\assassin`s creed iii\ac3sp.exe
FirewallRules: [{9EE1054C-CEE0-4DB9-B7B3-F3F23A466A4A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{2DF924D3-561E-43ED-BA62-846F28FBF643}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3244CB0D-34AC-4F9D-B5EA-A5E5F65F09C4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{9BA6DD00-6DCE-4A90-96B9-53133C125681}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{96ED24F3-BDC3-401D-A304-A5A9651E3940}C:\program files (x86)\assassins creed iv black flag\ac4bfmp.exe] => (Allow) C:\program files (x86)\assassins creed iv black flag\ac4bfmp.exe
FirewallRules: [UDP Query User{F9EF4E72-8BFD-4657-B0DE-BF01B3F9E63D}C:\program files (x86)\assassins creed iv black flag\ac4bfmp.exe] => (Allow) C:\program files (x86)\assassins creed iv black flag\ac4bfmp.exe
FirewallRules: [{2AB3004F-836C-4E87-B31F-7E1334C0A0A7}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{85FF4DC7-08E3-43A0-B7FB-D5BDECB794CF}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{417D8317-5D2C-4B95-88D6-3D8278BB9D83}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [TCP Query User{D43FE089-10EF-4BFD-9908-C13AA20C9CAE}C:\program files (x86)\milestone\mxgp - the official motocross videogame\mxgp.exe] => (Block) C:\program files (x86)\milestone\mxgp - the official motocross videogame\mxgp.exe
FirewallRules: [UDP Query User{B665BCC7-6100-4B96-9BF7-358A6A6740E1}C:\program files (x86)\milestone\mxgp - the official motocross videogame\mxgp.exe] => (Block) C:\program files (x86)\milestone\mxgp - the official motocross videogame\mxgp.exe
FirewallRules: [TCP Query User{416A845D-E472-4E5E-A715-082C484763EE}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{9BECC899-EB83-441D-9B2F-AB08572DC7DC}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{BB2F10B6-942B-46C2-A9F1-8D3151F9A44A}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{B63E434D-44AD-40F9-9A99-A8DBC1C1BC37}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
Name: Adaptér tunelového režimu Microsoft Teredo
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (08/15/2015 11:08:43 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (08/14/2015 04:58:51 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (08/13/2015 05:55:29 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (08/12/2015 04:20:41 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (08/11/2015 08:03:24 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (08/09/2015 02:32:48 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (08/08/2015 09:16:31 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (08/07/2015 12:02:51 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (08/06/2015 10:55:51 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version v prvku assemblyIdentity je neplatná.
Error: (08/05/2015 09:16:31 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek (E:) nebyl defragmentován, protože byla zjištěna chyba: Disk byl odpojen od systému. (0x89000011).
System errors:
=============
Error: (08/15/2015 06:46:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel® PROSet Monitoring Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (08/12/2015 04:21:16 PM) (Source: mv91xx) (EventID: 9) (User: )
Description: Zařízení \Device\Scsi\mv91xx1 neodpovídá v periodě časového limitu.
Error: (08/12/2015 02:55:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (08/09/2015 09:59:23 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x00000050 (0xfffff8810407e40e, 0x0000000000000000, 0xfffff880040306ed, 0x0000000000000005)C:\Windows\MEMORY.DMP080915-33306-01
Error: (08/09/2015 09:59:08 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:56:49, 9.8.2015) bylo neočekávané.
Error: (08/09/2015 09:39:16 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x00000050 (0xfffff8810bbcc40f, 0x0000000000000000, 0xfffff8800bb7e6ed, 0x0000000000000005)C:\Windows\MEMORY.DMP080915-28594-01
Error: (08/09/2015 09:39:07 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:37:04, 9.8.2015) bylo neočekávané.
Error: (08/09/2015 03:37:14 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (15:36:01, 9.8.2015) bylo neočekávané.
Error: (08/06/2015 11:00:48 AM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (08/06/2015 10:08:25 AM) (Source: BROWSER) (EventID: 8032) (User: )
Description: Službě Browser se při přenosu \Device\NetBT_Tcpip_{CEF34446-2396-45A0-97A8-DA670E72723E} příliš často nezdařilo načíst záložní seznam.
Záložní prohledávač bude ukončen.
Microsoft Office:
=========================
Error: (08/15/2015 11:08:43 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (08/14/2015 04:58:51 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (08/13/2015 05:55:29 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (08/12/2015 04:20:41 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (08/11/2015 08:03:24 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (08/09/2015 02:32:48 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (08/08/2015 09:16:31 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (08/07/2015 12:02:51 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (08/06/2015 10:55:51 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (08/05/2015 09:16:31 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: (E:)Disk byl odpojen od systému. (0x89000011)
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz
Percentage of memory in use: 16%
Total physical RAM: 16360.97 MB
Available physical RAM: 13709.53 MB
Total Virtual: 32720.09 MB
Available Virtual: 29698.2 MB
==================== Drives ================================
Drive c: (Nový svazek) (Fixed) (Total:149.05 GB) (Free:27.97 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: () (Fixed) (Total:233.76 GB) (Free:27.75 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 233.8 GB) (Disk ID: EDC3EDC3)
Partition 1: (Active) - (Size=233.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: E07FE07F)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)
==================== End of log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu Problem Java Update
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu Problem Java Update
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu Problem Java Update
# AdwCleaner v5.000 - Logfile created 15/08/2015 at 19:50:50
# Updated 14/08/2015 by Xplode
# Database : 2015-08-14.3 [Server]
# Operating system : Windows 7 Home Premium (x64)
# Username : Michele - MICHELE-PC
# Running from : C:\Users\Michele\Desktop\Stahovaní\adwcleaner_5.000.exe
# Option : Cleaning
***** [ Services ] *****
[-] Service Deleted : {d447a5a7-a0f3-4764-b2fa-d4e58c36c75a}Gw64
***** [ Folders ] *****
[#] Folder Deleted : C:\Program Files (x86)\DeviceVM
[#] Folder Deleted : C:\Program Files (x86)\globalUpdate
[#] Folder Deleted : C:\Program Files (x86)\CinemaPlus-3.2cV17.05
[#] Folder Deleted : C:\Users\Michele\AppData\Local\globalUpdate
[#] Folder Deleted : C:\Users\Michele\AppData\Local\FileViewPro
[#] Folder Deleted : C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah
[#] Folder Deleted : C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\iomphmdalfmaifjccmagmllnicjoghhk
[#] Folder Deleted : C:\Users\Michele\AppData\Local\Temp\Air Globe
[#] Folder Deleted : C:\Users\Michele\AppData\Roaming\Solvusoft
[#] Folder Deleted : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
***** [ Files ] *****
[-] File Deleted : C:\user.js
[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\default-search.xml
[-] File Deleted : C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\searchplugins\default-search.xml
[-] File Deleted : C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\user.js
[-] File Deleted : C:\Windows\Sysnative\roboot64.exe
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : Scheduled Update for Ask Toolbar
[-] Task Deleted : amiupdaterExd
[-] Task Deleted : amiupdaterExi
[-] Task Deleted : e86ce847-5c8c-4fe7-9860-cee470d0be32-4
[-] Task Deleted : e86ce847-5c8c-4fe7-9860-cee470d0be32-4
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\iomphmdalfmaifjccmagmllnicjoghhk
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Key Deleted : HKCU\Software\Ask.com
[-] Key Deleted : HKCU\Software\DeviceVM
[-] Key Deleted : HKCU\Software\GlobalUpdate
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\Video Player
[-] Key Deleted : HKCU\Software\Linkey
[-] Key Deleted : HKCU\Software\YorkNewCin
[-] Key Deleted : HKCU\Software\HighDefAction
[-] Key Deleted : HKCU\Software\ArenaHD
[-] Key Deleted : HKCU\Software\AppDataLow\AskToolbarInfo
[-] Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\DeviceVM
[-] Key Deleted : HKLM\SOFTWARE\GlobalUpdate
[-] Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : HKLM\SOFTWARE\SmdmF
[-] Key Deleted : HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : HKLM\SOFTWARE\ArenaHD
[-] Key Deleted : HKLM\SOFTWARE\CinemaPlus-3.2cV17.05
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D793423B-FF18-4A54-B9C9-75B3396BAAC4}
[!] Key Not Deleted : [x64] HKCU\Software\Ask.com
[!] Key Not Deleted : [x64] HKCU\Software\DeviceVM
[!] Key Not Deleted : [x64] HKCU\Software\GlobalUpdate
[!] Key Not Deleted : [x64] HKCU\Software\InstalledBrowserExtensions
[!] Key Not Deleted : [x64] HKCU\Software\Video Player
[!] Key Not Deleted : [x64] HKCU\Software\Linkey
[!] Key Not Deleted : [x64] HKCU\Software\YorkNewCin
[!] Key Not Deleted : [x64] HKCU\Software\HighDefAction
[!] Key Not Deleted : [x64] HKCU\Software\ArenaHD
[-] Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : [x64] HKLM\SOFTWARE\Linkey
[-] Key Deleted : [x64] HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : [x64] HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : [x64] HKLM\SOFTWARE\ArenaHD
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2578}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2578}
***** [ Web browsers ] *****
[-] [C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\prefs.js] [Preference] Deleted : user_pref("extensions.extension@linkeyproject.com.install-event-fired", true);
[-] [C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar@ask.com.install-event-fired", true);
*************************
:: Proxy settings cleared
:: Winsock settings cleared
*************************
C:\AdwCleaner[C1].txt - [14913 octets] - [15/08/2015 19:50:50]
C:\AdwCleaner[S1].txt - [14258 octets] - [15/08/2015 19:43:07]
C:\AdwCleaner[S2].txt - [14322 octets] - [15/08/2015 19:49:49]
########## EOF - C:\AdwCleaner[C1].txt - [15105 octets] ##########
# Updated 14/08/2015 by Xplode
# Database : 2015-08-14.3 [Server]
# Operating system : Windows 7 Home Premium (x64)
# Username : Michele - MICHELE-PC
# Running from : C:\Users\Michele\Desktop\Stahovaní\adwcleaner_5.000.exe
# Option : Cleaning
***** [ Services ] *****
[-] Service Deleted : {d447a5a7-a0f3-4764-b2fa-d4e58c36c75a}Gw64
***** [ Folders ] *****
[#] Folder Deleted : C:\Program Files (x86)\DeviceVM
[#] Folder Deleted : C:\Program Files (x86)\globalUpdate
[#] Folder Deleted : C:\Program Files (x86)\CinemaPlus-3.2cV17.05
[#] Folder Deleted : C:\Users\Michele\AppData\Local\globalUpdate
[#] Folder Deleted : C:\Users\Michele\AppData\Local\FileViewPro
[#] Folder Deleted : C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah
[#] Folder Deleted : C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\iomphmdalfmaifjccmagmllnicjoghhk
[#] Folder Deleted : C:\Users\Michele\AppData\Local\Temp\Air Globe
[#] Folder Deleted : C:\Users\Michele\AppData\Roaming\Solvusoft
[#] Folder Deleted : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
***** [ Files ] *****
[-] File Deleted : C:\user.js
[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\default-search.xml
[-] File Deleted : C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\searchplugins\default-search.xml
[-] File Deleted : C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\user.js
[-] File Deleted : C:\Windows\Sysnative\roboot64.exe
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : Scheduled Update for Ask Toolbar
[-] Task Deleted : amiupdaterExd
[-] Task Deleted : amiupdaterExi
[-] Task Deleted : e86ce847-5c8c-4fe7-9860-cee470d0be32-4
[-] Task Deleted : e86ce847-5c8c-4fe7-9860-cee470d0be32-4
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\iomphmdalfmaifjccmagmllnicjoghhk
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Key Deleted : HKCU\Software\Ask.com
[-] Key Deleted : HKCU\Software\DeviceVM
[-] Key Deleted : HKCU\Software\GlobalUpdate
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\Video Player
[-] Key Deleted : HKCU\Software\Linkey
[-] Key Deleted : HKCU\Software\YorkNewCin
[-] Key Deleted : HKCU\Software\HighDefAction
[-] Key Deleted : HKCU\Software\ArenaHD
[-] Key Deleted : HKCU\Software\AppDataLow\AskToolbarInfo
[-] Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\DeviceVM
[-] Key Deleted : HKLM\SOFTWARE\GlobalUpdate
[-] Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : HKLM\SOFTWARE\SmdmF
[-] Key Deleted : HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : HKLM\SOFTWARE\ArenaHD
[-] Key Deleted : HKLM\SOFTWARE\CinemaPlus-3.2cV17.05
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D793423B-FF18-4A54-B9C9-75B3396BAAC4}
[!] Key Not Deleted : [x64] HKCU\Software\Ask.com
[!] Key Not Deleted : [x64] HKCU\Software\DeviceVM
[!] Key Not Deleted : [x64] HKCU\Software\GlobalUpdate
[!] Key Not Deleted : [x64] HKCU\Software\InstalledBrowserExtensions
[!] Key Not Deleted : [x64] HKCU\Software\Video Player
[!] Key Not Deleted : [x64] HKCU\Software\Linkey
[!] Key Not Deleted : [x64] HKCU\Software\YorkNewCin
[!] Key Not Deleted : [x64] HKCU\Software\HighDefAction
[!] Key Not Deleted : [x64] HKCU\Software\ArenaHD
[-] Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : [x64] HKLM\SOFTWARE\Linkey
[-] Key Deleted : [x64] HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : [x64] HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : [x64] HKLM\SOFTWARE\ArenaHD
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2578}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2578}
***** [ Web browsers ] *****
[-] [C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\prefs.js] [Preference] Deleted : user_pref("extensions.extension@linkeyproject.com.install-event-fired", true);
[-] [C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar@ask.com.install-event-fired", true);
*************************
:: Proxy settings cleared
:: Winsock settings cleared
*************************
C:\AdwCleaner[C1].txt - [14913 octets] - [15/08/2015 19:50:50]
C:\AdwCleaner[S1].txt - [14258 octets] - [15/08/2015 19:43:07]
C:\AdwCleaner[S2].txt - [14322 octets] - [15/08/2015 19:49:49]
########## EOF - C:\AdwCleaner[C1].txt - [15105 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu Problem Java Update
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu Problem Java Update
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-08-2015 01
Ran by Michele (administrator) on MICHELE-PC (15-08-2015 21:49:47)
Running from C:\Users\Michele\Desktop\Stahovaní
Loaded Profiles: Michele (Available Profiles: Michele)
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BitTorrent, Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Zemi Interactive Inc.) C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe
() C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Users\Michele\AppData\Roaming\Microsoft\CSUService.exe
() C:\Users\Michele\AppData\Roaming\Microsoft\CSUService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-03-09] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-11] (Avast Software s.r.o.)
HKLM-x32\...\Run: [4StoryPrePatch] => C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe [327680 2015-03-20] (Zemi Interactive Inc.)
HKLM-x32\...\Run: [Hornet] => C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe [434176 2014-05-22] ()
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912 2011-08-02] (DT Soft Ltd)
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\Run: [uTorrent] => C:\Program Files (x86)\uTorrent\uTorrent.exe [640888 2015-02-07] (BitTorrent, Inc.)
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\Run: [Browsing Enhancements] => C:\Users\Michele\AppData\Roaming\Microsoft\CSUService.exe [16586752 2015-08-08] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-22] (Avast Software s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> DefaultScope {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-22] (Avast Software s.r.o.)
BHO-x32: No Name -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-22] (Avast Software s.r.o.)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 85.193.0.8 192.168.1.1
Tcpip\..\Interfaces\{CEF34446-2396-45A0-97A8-DA670E72723E}: [DhcpNameServer] 85.193.0.8 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default
FF DefaultSearchEngine: Seznam
FF DefaultSearchUrl: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Seznam
FF SelectedSearchEngine: Seznam
FF Homepage: https://www.seznam.cz/?clid=22668
FF Keyword.URL: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-04-10] (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2098945541-2125412304-4018408577-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Michele\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-10] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\searchplugins\seznam-avast.xml [2015-06-28]
FF Extension: Adblock Plus - C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-05]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-02-04]
Chrome:
=======
CHR Profile: C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Google Docs) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-04]
CHR Extension: (Rapport) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2015-07-15]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-07-16]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-07-16]
CHR Extension: (YouTube) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-04]
CHR Extension: (Google Search) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-04]
CHR Extension: (Google Sheets) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Avast Online Security) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-04]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-07-16]
CHR Extension: (Gmail) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-04]
CHR HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-22]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [918144 2010-11-03] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-22] (Avast Software s.r.o.)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-30] (IObit)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3305824 2015-05-05] (INCA Internet Co., Ltd.) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-05-23] ()
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2222360 2015-07-29] (IBM Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-22] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-04-22] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-22] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-22] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-26] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-04-22] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-04-22] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [270912 2015-02-09] (DT Soft Ltd)
R3 GM312Fltr; C:\Windows\System32\drivers\GM312Fltr.sys [10624 2013-08-21] (LXD Development, Inc.)
R1 RapportCerberus_1412121; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1412121.sys [921176 2015-08-11] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [487992 2015-07-29] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [121432 2015-07-29] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [376184 2015-07-29] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [480440 2015-07-29] (IBM Corp.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-15 19:52 - 2015-08-15 19:52 - 00015331 _____ C:\Users\Michele\Desktop\AdwCleaner[C1].txt
2015-08-15 19:50 - 2015-08-15 19:50 - 00015331 _____ C:\AdwCleaner[C1].txt
2015-08-15 19:49 - 2015-08-15 19:50 - 00014322 _____ C:\AdwCleaner[S2].txt
2015-08-15 19:43 - 2015-08-15 19:50 - 00000000 ____D C:\AdwCleaner
2015-08-15 19:43 - 2015-08-15 19:44 - 00014258 _____ C:\AdwCleaner[S1].txt
2015-08-15 19:04 - 2015-08-15 21:49 - 00000000 ____D C:\FRST
2015-08-12 20:58 - 2015-08-12 21:17 - 00000000 ____D C:\Users\Michele\Desktop\Bomfunk MC's - In Stereo (+6 BONUS) (2000)[FLAC]
2015-08-09 21:59 - 2015-08-09 21:59 - 00276808 _____ C:\Windows\Minidump\080915-33306-01.dmp
2015-08-09 21:39 - 2015-08-09 21:59 - 00000000 ____D C:\Windows\Minidump
2015-08-09 21:39 - 2015-08-09 21:39 - 00276808 _____ C:\Windows\Minidump\080915-28594-01.dmp
2015-08-09 21:38 - 2015-08-09 21:59 - 655643911 _____ C:\Windows\MEMORY.DMP
2015-08-09 18:27 - 2015-08-09 18:27 - 00000000 ____D C:\Users\Michele\Documents\My Albums
2015-08-09 18:26 - 2015-08-09 18:26 - 00000000 ____D C:\Users\Michele\AppData\Roaming\ArcSoft
2015-08-09 17:57 - 2006-09-18 08:50 - 00022784 _____ (Arcsoft, Inc.) C:\Windows\SysWOW64\Drivers\afc.sys
2015-08-09 17:56 - 1995-08-01 04:44 - 00212480 _____ (Eastman Kodak) C:\Windows\PCDLIB32.DLL
2015-08-09 17:55 - 2015-08-09 17:55 - 00000000 ____D C:\Windows\Pixart
2015-08-09 17:55 - 2009-06-15 20:43 - 00000868 _____ C:\Windows\SysWOW64\SP7302.INI
2015-08-09 17:55 - 2009-04-28 10:07 - 00532480 _____ (PixArt Imaging Inc.) C:\Windows\system32\Drivers\PAC7302.SYS
2015-08-09 17:55 - 2008-03-24 11:09 - 00141824 _____ (PixArt Imaging Incorporation) C:\Windows\SysWOW64\SP7302.AX
2015-08-09 17:55 - 2007-11-02 11:07 - 00008704 _____ (PixArt Imaging Inc.) C:\Windows\system32\CoInst.dll
2015-08-09 17:55 - 2004-08-09 17:43 - 00094208 _____ (Microsoft Corporation) C:\Windows\AMCap.exe
2015-08-09 17:50 - 2015-08-09 17:50 - 00000000 ____D C:\Users\Michele\Tracing
2015-08-09 17:49 - 2015-08-10 18:38 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Skype
2015-08-09 17:49 - 2015-08-09 17:50 - 00000000 ____D C:\Users\Michele\AppData\Local\Skype
2015-08-09 17:49 - 2015-08-09 17:49 - 00002731 _____ C:\Users\Public\Desktop\Skype.lnk
2015-08-09 17:49 - 2015-08-09 17:49 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-09 17:49 - 2015-08-09 17:49 - 00000000 ____D C:\ProgramData\Skype
2015-08-09 17:49 - 2015-08-09 17:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-09 16:20 - 2015-08-09 16:21 - 00002562 _____ C:\Windows\diagwrn.xml
2015-08-09 16:20 - 2015-08-09 16:21 - 00001908 _____ C:\Windows\diagerr.xml
2015-08-08 19:26 - 2015-08-08 19:26 - 15507456 _____ C:\Windows\system32\config\SYSTEM.sav.LOG
2015-08-08 19:25 - 2015-08-08 19:26 - 45232128 _____ C:\Windows\system32\config\SOFTWARE.sav.LOG
2015-08-08 19:25 - 2015-08-08 19:25 - 00057344 _____ C:\Windows\system32\config\SAM.sav.LOG
2015-08-08 19:25 - 2015-08-08 19:25 - 00024576 _____ C:\Windows\system32\config\SECURITY.sav.LOG
2015-08-08 19:23 - 2015-08-08 19:26 - 00001668 _____ C:\Windows\system32\ASOROSet.bin
2015-08-08 19:22 - 2015-08-08 19:23 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2015-08-08 18:56 - 2015-08-08 18:56 - 00000000 ____D C:\ProgramData\Sun
2015-08-08 18:55 - 2015-08-08 18:55 - 00000000 ____D C:\ProgramData\Oracle
2015-08-07 21:25 - 2015-08-14 18:34 - 00000720 _____ C:\Users\Michele\Desktop\TORRENT – zástupce.lnk
2015-08-07 21:24 - 2015-08-07 21:24 - 00000462 _____ C:\Users\Michele\Desktop\Místní disk (E) – zástupce.lnk
2015-08-07 10:21 - 2015-08-08 11:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-07-21 18:31 - 2015-07-27 15:31 - 00001223 _____ C:\Users\Michele\Desktop\Launcher – zástupce.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-15 21:42 - 2015-02-07 17:39 - 00000000 ____D C:\Users\Michele\AppData\Roaming\uTorrent
2015-08-15 21:19 - 2015-02-04 19:37 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-15 21:07 - 2015-02-04 19:02 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-15 19:59 - 2009-07-14 06:45 - 00018224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-15 19:59 - 2009-07-14 06:45 - 00018224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-15 19:54 - 2015-02-04 17:39 - 01700023 _____ C:\Windows\WindowsUpdate.log
2015-08-15 19:52 - 2015-07-01 14:25 - 00002523 _____ C:\Windows\setupact.log
2015-08-15 19:52 - 2015-02-04 19:02 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-15 19:52 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-15 19:42 - 2015-02-04 19:31 - 00000000 ___RD C:\Users\Michele\Desktop\Stahovaní
2015-08-15 18:49 - 2015-07-11 22:13 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Seznam.cz
2015-08-15 18:49 - 2015-07-11 22:13 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2015-08-15 18:48 - 2015-02-04 18:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-15 18:47 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-14 16:08 - 2015-02-04 19:03 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-14 15:28 - 2015-06-30 21:19 - 00000000 ____D C:\ProgramData\ProductData
2015-08-13 16:55 - 2015-02-04 19:06 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-12 21:15 - 2015-06-28 16:07 - 00000000 ____D C:\Users\Michele\AppData\Local\Nero
2015-08-12 14:52 - 2015-07-01 14:25 - 00003162 _____ C:\Windows\PFRO.log
2015-08-11 20:19 - 2015-02-04 19:37 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-11 20:19 - 2015-02-04 19:37 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-11 20:19 - 2015-02-04 19:37 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-11 18:41 - 2015-04-30 16:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ochrana koncového bodu Trusteer
2015-08-09 18:27 - 2015-02-04 18:03 - 00000000 ____D C:\Users\Michele\AppData\Local\VirtualStore
2015-08-09 17:50 - 2015-02-04 18:02 - 00000000 ____D C:\Users\Michele
2015-08-09 16:20 - 2015-07-01 14:25 - 00000000 _____ C:\Windows\setuperr.log
2015-08-08 18:27 - 2015-06-13 19:17 - 00001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2015-08-08 18:27 - 2015-06-13 19:17 - 00000000 ____D C:\Program Files\WinRAR
2015-08-08 18:27 - 2015-03-07 17:57 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 18:27 - 2015-03-07 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 11:32 - 2015-02-04 19:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-08 01:32 - 2015-02-04 19:02 - 00000000 ____D C:\Users\Michele\AppData\Local\Google
2015-08-07 21:25 - 2015-06-06 18:34 - 00148992 ___SH C:\Users\Michele\Desktop\Thumbs.db
2015-08-02 13:21 - 2015-05-19 22:24 - 00000000 ____D C:\Users\Michele\AppData\Local\CrashDumps
2015-07-31 23:10 - 2015-07-11 21:49 - 00000080 _____ C:\Users\Michele\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
2015-07-29 22:46 - 2015-06-10 14:41 - 00121432 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportHades64.sys
2015-07-29 22:46 - 2015-04-30 16:54 - 00376184 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportKE64.sys
2015-07-25 13:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2015-07-21 18:55 - 2015-02-14 19:37 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Media Player Classic
2015-07-19 22:40 - 2009-07-14 17:18 - 00668138 _____ C:\Windows\system32\perfh005.dat
2015-07-19 22:40 - 2009-07-14 17:18 - 00140798 _____ C:\Windows\system32\perfc005.dat
2015-07-19 22:40 - 2009-07-14 07:13 - 01582262 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-17 12:29 - 2015-07-11 22:33 - 00000000 ____D C:\Users\Michele\AppData\Local\23838
2015-07-16 10:02 - 2015-02-04 19:02 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-16 10:02 - 2015-02-04 19:02 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories =======
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Users\Michele\AppData\Local\setup.txt
2015-02-12 22:10 - 2015-02-12 22:10 - 0000000 _____ () C:\Users\Michele\AppData\Local\{4CDCF8E7-961E-4A67-B96B-C66F4EE64B03}
Some files in TEMP:
====================
C:\Users\Michele\AppData\Local\Temp\amd-catalyst-15.7.1-without-dotnet45-win7-64bit.exe
C:\Users\Michele\AppData\Local\Temp\ASCSetup_3277783.exe
C:\Users\Michele\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\Michele\AppData\Local\Temp\dtimerj.exe
C:\Users\Michele\AppData\Local\Temp\grand theft auto v cd key__10924_i1555094552_il1351555.exe
C:\Users\Michele\AppData\Local\Temp\H36zgDKq-1.exe
C:\Users\Michele\AppData\Local\Temp\H36zgDKq.exe
C:\Users\Michele\AppData\Local\Temp\jsdev32.exe
C:\Users\Michele\AppData\Local\Temp\kernel32.dll
C:\Users\Michele\AppData\Local\Temp\p5n4kxm1.dll
C:\Users\Michele\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Michele\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Michele\AppData\Local\Temp\sfamcc00003.dll
C:\Users\Michele\AppData\Local\Temp\sfareca00002.dll
C:\Users\Michele\AppData\Local\Temp\sfextra.dll
C:\Users\Michele\AppData\Local\Temp\sqlite3.dll
C:\Users\Michele\AppData\Local\Temp\_isF71B.exe
C:\Users\Michele\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-08-12 16:20
==================== End of log ============================
Ran by Michele (administrator) on MICHELE-PC (15-08-2015 21:49:47)
Running from C:\Users\Michele\Desktop\Stahovaní
Loaded Profiles: Michele (Available Profiles: Michele)
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BitTorrent, Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Zemi Interactive Inc.) C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe
() C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Users\Michele\AppData\Roaming\Microsoft\CSUService.exe
() C:\Users\Michele\AppData\Roaming\Microsoft\CSUService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-03-09] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-11] (Avast Software s.r.o.)
HKLM-x32\...\Run: [4StoryPrePatch] => C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe [327680 2015-03-20] (Zemi Interactive Inc.)
HKLM-x32\...\Run: [Hornet] => C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe [434176 2014-05-22] ()
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912 2011-08-02] (DT Soft Ltd)
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\Run: [uTorrent] => C:\Program Files (x86)\uTorrent\uTorrent.exe [640888 2015-02-07] (BitTorrent, Inc.)
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\...\Run: [Browsing Enhancements] => C:\Users\Michele\AppData\Roaming\Microsoft\CSUService.exe [16586752 2015-08-08] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-04-22] (Avast Software s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> DefaultScope {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-22] (Avast Software s.r.o.)
BHO-x32: No Name -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-22] (Avast Software s.r.o.)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 85.193.0.8 192.168.1.1
Tcpip\..\Interfaces\{CEF34446-2396-45A0-97A8-DA670E72723E}: [DhcpNameServer] 85.193.0.8 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default
FF DefaultSearchEngine: Seznam
FF DefaultSearchUrl: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Seznam
FF SelectedSearchEngine: Seznam
FF Homepage: https://www.seznam.cz/?clid=22668
FF Keyword.URL: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-11] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-11] ()
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-04-10] (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2098945541-2125412304-4018408577-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Michele\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-10] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\searchplugins\seznam-avast.xml [2015-06-28]
FF Extension: Adblock Plus - C:\Users\Michele\AppData\Roaming\Mozilla\Firefox\Profiles\6hkvudor.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-05]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-02-04]
Chrome:
=======
CHR Profile: C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Google Docs) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-04]
CHR Extension: (Rapport) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2015-07-15]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-07-16]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-07-16]
CHR Extension: (YouTube) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-04]
CHR Extension: (Google Search) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-04]
CHR Extension: (Google Sheets) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Avast Online Security) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-04]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-07-16]
CHR Extension: (Gmail) - C:\Users\Michele\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-04]
CHR HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-22]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [918144 2010-11-03] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-04-22] (Avast Software s.r.o.)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-30] (IObit)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3305824 2015-05-05] (INCA Internet Co., Ltd.) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-05-23] ()
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2222360 2015-07-29] (IBM Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-04-22] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-04-22] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-04-22] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-04-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-04-22] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-26] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-04-22] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-04-22] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [270912 2015-02-09] (DT Soft Ltd)
R3 GM312Fltr; C:\Windows\System32\drivers\GM312Fltr.sys [10624 2013-08-21] (LXD Development, Inc.)
R1 RapportCerberus_1412121; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1412121.sys [921176 2015-08-11] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [487992 2015-07-29] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [121432 2015-07-29] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [376184 2015-07-29] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [480440 2015-07-29] (IBM Corp.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-15 19:52 - 2015-08-15 19:52 - 00015331 _____ C:\Users\Michele\Desktop\AdwCleaner[C1].txt
2015-08-15 19:50 - 2015-08-15 19:50 - 00015331 _____ C:\AdwCleaner[C1].txt
2015-08-15 19:49 - 2015-08-15 19:50 - 00014322 _____ C:\AdwCleaner[S2].txt
2015-08-15 19:43 - 2015-08-15 19:50 - 00000000 ____D C:\AdwCleaner
2015-08-15 19:43 - 2015-08-15 19:44 - 00014258 _____ C:\AdwCleaner[S1].txt
2015-08-15 19:04 - 2015-08-15 21:49 - 00000000 ____D C:\FRST
2015-08-12 20:58 - 2015-08-12 21:17 - 00000000 ____D C:\Users\Michele\Desktop\Bomfunk MC's - In Stereo (+6 BONUS) (2000)[FLAC]
2015-08-09 21:59 - 2015-08-09 21:59 - 00276808 _____ C:\Windows\Minidump\080915-33306-01.dmp
2015-08-09 21:39 - 2015-08-09 21:59 - 00000000 ____D C:\Windows\Minidump
2015-08-09 21:39 - 2015-08-09 21:39 - 00276808 _____ C:\Windows\Minidump\080915-28594-01.dmp
2015-08-09 21:38 - 2015-08-09 21:59 - 655643911 _____ C:\Windows\MEMORY.DMP
2015-08-09 18:27 - 2015-08-09 18:27 - 00000000 ____D C:\Users\Michele\Documents\My Albums
2015-08-09 18:26 - 2015-08-09 18:26 - 00000000 ____D C:\Users\Michele\AppData\Roaming\ArcSoft
2015-08-09 17:57 - 2006-09-18 08:50 - 00022784 _____ (Arcsoft, Inc.) C:\Windows\SysWOW64\Drivers\afc.sys
2015-08-09 17:56 - 1995-08-01 04:44 - 00212480 _____ (Eastman Kodak) C:\Windows\PCDLIB32.DLL
2015-08-09 17:55 - 2015-08-09 17:55 - 00000000 ____D C:\Windows\Pixart
2015-08-09 17:55 - 2009-06-15 20:43 - 00000868 _____ C:\Windows\SysWOW64\SP7302.INI
2015-08-09 17:55 - 2009-04-28 10:07 - 00532480 _____ (PixArt Imaging Inc.) C:\Windows\system32\Drivers\PAC7302.SYS
2015-08-09 17:55 - 2008-03-24 11:09 - 00141824 _____ (PixArt Imaging Incorporation) C:\Windows\SysWOW64\SP7302.AX
2015-08-09 17:55 - 2007-11-02 11:07 - 00008704 _____ (PixArt Imaging Inc.) C:\Windows\system32\CoInst.dll
2015-08-09 17:55 - 2004-08-09 17:43 - 00094208 _____ (Microsoft Corporation) C:\Windows\AMCap.exe
2015-08-09 17:50 - 2015-08-09 17:50 - 00000000 ____D C:\Users\Michele\Tracing
2015-08-09 17:49 - 2015-08-10 18:38 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Skype
2015-08-09 17:49 - 2015-08-09 17:50 - 00000000 ____D C:\Users\Michele\AppData\Local\Skype
2015-08-09 17:49 - 2015-08-09 17:49 - 00002731 _____ C:\Users\Public\Desktop\Skype.lnk
2015-08-09 17:49 - 2015-08-09 17:49 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-09 17:49 - 2015-08-09 17:49 - 00000000 ____D C:\ProgramData\Skype
2015-08-09 17:49 - 2015-08-09 17:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-09 16:20 - 2015-08-09 16:21 - 00002562 _____ C:\Windows\diagwrn.xml
2015-08-09 16:20 - 2015-08-09 16:21 - 00001908 _____ C:\Windows\diagerr.xml
2015-08-08 19:26 - 2015-08-08 19:26 - 15507456 _____ C:\Windows\system32\config\SYSTEM.sav.LOG
2015-08-08 19:25 - 2015-08-08 19:26 - 45232128 _____ C:\Windows\system32\config\SOFTWARE.sav.LOG
2015-08-08 19:25 - 2015-08-08 19:25 - 00057344 _____ C:\Windows\system32\config\SAM.sav.LOG
2015-08-08 19:25 - 2015-08-08 19:25 - 00024576 _____ C:\Windows\system32\config\SECURITY.sav.LOG
2015-08-08 19:23 - 2015-08-08 19:26 - 00001668 _____ C:\Windows\system32\ASOROSet.bin
2015-08-08 19:22 - 2015-08-08 19:23 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2015-08-08 18:56 - 2015-08-08 18:56 - 00000000 ____D C:\ProgramData\Sun
2015-08-08 18:55 - 2015-08-08 18:55 - 00000000 ____D C:\ProgramData\Oracle
2015-08-07 21:25 - 2015-08-14 18:34 - 00000720 _____ C:\Users\Michele\Desktop\TORRENT – zástupce.lnk
2015-08-07 21:24 - 2015-08-07 21:24 - 00000462 _____ C:\Users\Michele\Desktop\Místní disk (E) – zástupce.lnk
2015-08-07 10:21 - 2015-08-08 11:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-07-21 18:31 - 2015-07-27 15:31 - 00001223 _____ C:\Users\Michele\Desktop\Launcher – zástupce.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-08-15 21:42 - 2015-02-07 17:39 - 00000000 ____D C:\Users\Michele\AppData\Roaming\uTorrent
2015-08-15 21:19 - 2015-02-04 19:37 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-15 21:07 - 2015-02-04 19:02 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-15 19:59 - 2009-07-14 06:45 - 00018224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-15 19:59 - 2009-07-14 06:45 - 00018224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-15 19:54 - 2015-02-04 17:39 - 01700023 _____ C:\Windows\WindowsUpdate.log
2015-08-15 19:52 - 2015-07-01 14:25 - 00002523 _____ C:\Windows\setupact.log
2015-08-15 19:52 - 2015-02-04 19:02 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-15 19:52 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-15 19:42 - 2015-02-04 19:31 - 00000000 ___RD C:\Users\Michele\Desktop\Stahovaní
2015-08-15 18:49 - 2015-07-11 22:13 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Seznam.cz
2015-08-15 18:49 - 2015-07-11 22:13 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2015-08-15 18:48 - 2015-02-04 18:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-15 18:47 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-14 16:08 - 2015-02-04 19:03 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-14 15:28 - 2015-06-30 21:19 - 00000000 ____D C:\ProgramData\ProductData
2015-08-13 16:55 - 2015-02-04 19:06 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-12 21:15 - 2015-06-28 16:07 - 00000000 ____D C:\Users\Michele\AppData\Local\Nero
2015-08-12 14:52 - 2015-07-01 14:25 - 00003162 _____ C:\Windows\PFRO.log
2015-08-11 20:19 - 2015-02-04 19:37 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-11 20:19 - 2015-02-04 19:37 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-11 20:19 - 2015-02-04 19:37 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-11 18:41 - 2015-04-30 16:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ochrana koncového bodu Trusteer
2015-08-09 18:27 - 2015-02-04 18:03 - 00000000 ____D C:\Users\Michele\AppData\Local\VirtualStore
2015-08-09 17:50 - 2015-02-04 18:02 - 00000000 ____D C:\Users\Michele
2015-08-09 16:20 - 2015-07-01 14:25 - 00000000 _____ C:\Windows\setuperr.log
2015-08-08 18:27 - 2015-06-13 19:17 - 00001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2015-08-08 18:27 - 2015-06-13 19:17 - 00000000 ____D C:\Program Files\WinRAR
2015-08-08 18:27 - 2015-03-07 17:57 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 18:27 - 2015-03-07 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 11:32 - 2015-02-04 19:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-08 01:32 - 2015-02-04 19:02 - 00000000 ____D C:\Users\Michele\AppData\Local\Google
2015-08-07 21:25 - 2015-06-06 18:34 - 00148992 ___SH C:\Users\Michele\Desktop\Thumbs.db
2015-08-02 13:21 - 2015-05-19 22:24 - 00000000 ____D C:\Users\Michele\AppData\Local\CrashDumps
2015-07-31 23:10 - 2015-07-11 21:49 - 00000080 _____ C:\Users\Michele\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
2015-07-29 22:46 - 2015-06-10 14:41 - 00121432 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportHades64.sys
2015-07-29 22:46 - 2015-04-30 16:54 - 00376184 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportKE64.sys
2015-07-25 13:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2015-07-21 18:55 - 2015-02-14 19:37 - 00000000 ____D C:\Users\Michele\AppData\Roaming\Media Player Classic
2015-07-19 22:40 - 2009-07-14 17:18 - 00668138 _____ C:\Windows\system32\perfh005.dat
2015-07-19 22:40 - 2009-07-14 17:18 - 00140798 _____ C:\Windows\system32\perfc005.dat
2015-07-19 22:40 - 2009-07-14 07:13 - 01582262 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-17 12:29 - 2015-07-11 22:33 - 00000000 ____D C:\Users\Michele\AppData\Local\23838
2015-07-16 10:02 - 2015-02-04 19:02 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-16 10:02 - 2015-02-04 19:02 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories =======
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Users\Michele\AppData\Local\setup.txt
2015-02-12 22:10 - 2015-02-12 22:10 - 0000000 _____ () C:\Users\Michele\AppData\Local\{4CDCF8E7-961E-4A67-B96B-C66F4EE64B03}
Some files in TEMP:
====================
C:\Users\Michele\AppData\Local\Temp\amd-catalyst-15.7.1-without-dotnet45-win7-64bit.exe
C:\Users\Michele\AppData\Local\Temp\ASCSetup_3277783.exe
C:\Users\Michele\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\Michele\AppData\Local\Temp\dtimerj.exe
C:\Users\Michele\AppData\Local\Temp\grand theft auto v cd key__10924_i1555094552_il1351555.exe
C:\Users\Michele\AppData\Local\Temp\H36zgDKq-1.exe
C:\Users\Michele\AppData\Local\Temp\H36zgDKq.exe
C:\Users\Michele\AppData\Local\Temp\jsdev32.exe
C:\Users\Michele\AppData\Local\Temp\kernel32.dll
C:\Users\Michele\AppData\Local\Temp\p5n4kxm1.dll
C:\Users\Michele\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Michele\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Michele\AppData\Local\Temp\sfamcc00003.dll
C:\Users\Michele\AppData\Local\Temp\sfareca00002.dll
C:\Users\Michele\AppData\Local\Temp\sfextra.dll
C:\Users\Michele\AppData\Local\Temp\sqlite3.dll
C:\Users\Michele\AppData\Local\Temp\_isF71B.exe
C:\Users\Michele\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-08-12 16:20
==================== End of log ============================
Re: Kontrola logu Problem Java Update
Ještě pro doplnění když dám správce uloh a vypnu proces CSUService.exe*32 tak okno java update už nenaskakuje. Mám orig Win 7 home
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu Problem Java Update
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\Michele\Desktop\Stahovaní jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> DefaultScope {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} URL =
BHO-x32: No Name -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> No File
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Michele\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Michele\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu Problem Java Update
Fix result of Farbar Recovery Scan Tool (x64) Version:14-08-2015 01
Ran by Michele (2015-08-15 22:46:00) Run:1
Running from C:\Users\Michele\Desktop\Stahovaní
Loaded Profiles: Michele (Available Profiles: Michele)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> DefaultScope {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} URL =
BHO-x32: No Name -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> No File
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Michele\AppData\Local???????????????????
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Michele\AppData\Local\Temp
End
*****************
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
"HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{89A6E356-8485-4cee-992B-DBB9F3B2C4D2}" => key removed successfully
HKCR\CLSID\{89A6E356-8485-4cee-992B-DBB9F3B2C4D2} => key not found.
"HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2578}" => key removed successfully
HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}" => key removed successfully
HKCR\Wow6432Node\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3} => key not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
"C:\Users\Michele\AppData\Local???????????????????" folder move:
Could not move "C:\Users\Michele\AppData\Local???????????????????" => Scheduled to move on reboot.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully.
"C:\Users\Michele\AppData\Local\Temp" folder move:
Could not move "C:\Users\Michele\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-08-15 22:48:16)<=
"C:\Users\Michele\AppData\Local???????????????????" => Could not move
C:\Users\Michele\AppData\Local\Temp => moved successfully
==== End of Fixlog 22:48:21 ====
Ran by Michele (2015-08-15 22:46:00) Run:1
Running from C:\Users\Michele\Desktop\Stahovaní
Loaded Profiles: Michele (Available Profiles: Michele)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> DefaultScope {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {89A6E356-8485-4cee-992B-DBB9F3B2C4D2} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270 ... -SearchBox
SearchScopes: HKU\S-1-5-21-2098945541-2125412304-4018408577-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} URL =
BHO-x32: No Name -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> No File
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Michele\AppData\Local???????????????????
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Michele\AppData\Local\Temp
End
*****************
HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
"HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{89A6E356-8485-4cee-992B-DBB9F3B2C4D2}" => key removed successfully
HKCR\CLSID\{89A6E356-8485-4cee-992B-DBB9F3B2C4D2} => key not found.
"HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2578}" => key removed successfully
HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2578} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}" => key removed successfully
HKCR\Wow6432Node\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3} => key not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
"C:\Users\Michele\AppData\Local???????????????????" folder move:
Could not move "C:\Users\Michele\AppData\Local???????????????????" => Scheduled to move on reboot.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully.
"C:\Users\Michele\AppData\Local\Temp" folder move:
Could not move "C:\Users\Michele\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-08-15 22:48:16)<=
"C:\Users\Michele\AppData\Local???????????????????" => Could not move
C:\Users\Michele\AppData\Local\Temp => moved successfully
==== End of Fixlog 22:48:21 ====
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu Problem Java Update
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu Problem Java Update
Okno stále vyskakuje
Re: Kontrola logu Problem Java Update
a ted vyskočilo okno exploreru který v pc teoreticky nemněl být
Co je prosím to CSUService.exe*32 když to vypnu v procesech tak okno už nevyskakuje do dalšího restartu pc
Co je prosím to CSUService.exe*32 když to vypnu v procesech tak okno už nevyskakuje do dalšího restartu pc
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu Problem Java Update
Udělejte ještě kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte. Explorer je v každém PC. Zobrazuje plochu. Máte-li na mysli Internet Explorer, ten je tam též, neboť je standardní součástí instalace Windows.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu Problem Java Update
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 15.8.2015
Čas skenování: 23:03
Protokol: Malware.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.15.05
Databáze rootkitů: v2015.08.06.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7
CPU: x64
Souborový systém: NTFS
Uživatel: Michele
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 338759
Uplynulý čas: 12 min, 25 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 10
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.AirGlobe.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{4C54CE3D-6B7D-4F21-9E69-200632A98540}, , [57ca36d332591c1acf1b7a58e022c13f],
PUP.Optional.AirGlobe.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{4C54CE3D-6B7D-4F21-9E69-200632A98540}, , [57ca36d332591c1acf1b7a58e022c13f],
PUP.Optional.InternetSpeedChecker.PrxySvrRST, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Internet Speed Checker-nv-ie, , [0819de2bb7d4ad898429b571838052ae],
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB, , [958c090026655adcfce2555d1de76898],
Hodnoty registru: 6
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype1, 5/18/15 20:32:22, , [958c090026655adcfce2555d1de76898]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype9, 5/18/15 20:32:22, , [50d1ed1cfb901b1b647ab200e81c50b0]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype6, 5/18/15 20:33:56, , [cd540405860593a39b43387a55af50b0]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype19, 5/18/15 20:35:19, , [75ac3ccdc2c974c229b5654d36ce8878]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype20, 5/18/15 20:35:19, , [968baf5a2e5d5dd9f7e7d2e0937107f9]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype15, 5/18/15 20:36:28, , [60c17594fc8f1422c21c704234d0ec14]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 1
PUP.Optional.Airglobe, C:\Windows\System32\drivers\{d447a5a7-a0f3-4764-b2fa-d4e58c36c75a}Gw64.sys, , [a180cd3c7c0f2c0a97ca97ee897c4cb4],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 15.8.2015
Čas skenování: 23:03
Protokol: Malware.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.15.05
Databáze rootkitů: v2015.08.06.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7
CPU: x64
Souborový systém: NTFS
Uživatel: Michele
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 338759
Uplynulý čas: 12 min, 25 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 10
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, , [9d84ff0ac5c6ba7c12b3dff4d72bb848],
PUP.Optional.AirGlobe.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{4C54CE3D-6B7D-4F21-9E69-200632A98540}, , [57ca36d332591c1acf1b7a58e022c13f],
PUP.Optional.AirGlobe.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{4C54CE3D-6B7D-4F21-9E69-200632A98540}, , [57ca36d332591c1acf1b7a58e022c13f],
PUP.Optional.InternetSpeedChecker.PrxySvrRST, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\Internet Speed Checker-nv-ie, , [0819de2bb7d4ad898429b571838052ae],
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB, , [958c090026655adcfce2555d1de76898],
Hodnoty registru: 6
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype1, 5/18/15 20:32:22, , [958c090026655adcfce2555d1de76898]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype9, 5/18/15 20:32:22, , [50d1ed1cfb901b1b647ab200e81c50b0]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype6, 5/18/15 20:33:56, , [cd540405860593a39b43387a55af50b0]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype19, 5/18/15 20:35:19, , [75ac3ccdc2c974c229b5654d36ce8878]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype20, 5/18/15 20:35:19, , [968baf5a2e5d5dd9f7e7d2e0937107f9]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2098945541-2125412304-4018408577-1000\SOFTWARE\OB|monitype15, 5/18/15 20:36:28, , [60c17594fc8f1422c21c704234d0ec14]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 1
PUP.Optional.Airglobe, C:\Windows\System32\drivers\{d447a5a7-a0f3-4764-b2fa-d4e58c36c75a}Gw64.sys, , [a180cd3c7c0f2c0a97ca97ee897c4cb4],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu Problem Java Update
Smažte všechny nálezy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu Problem Java Update
kontrola Malware po restartu PC
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 16.8.2015
Čas skenování: 12:40
Protokol: 2.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.15.06
Databáze rootkitů: v2015.08.06.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Michele
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 339007
Uplynulý čas: 28 min, 45 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 16.8.2015
Čas skenování: 12:40
Protokol: 2.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.15.06
Databáze rootkitů: v2015.08.06.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Michele
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 339007
Uplynulý čas: 28 min, 45 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Přispějete na provoz fóra?