Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kotrolu logu - part1

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Mufff
Návštěvník
Návštěvník
Příspěvky: 92
Registrován: 14 dub 2009 15:12

Prosím o kotrolu logu - part1

#1 Příspěvek od Mufff »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondra at 2015-09-04 11:42:09
Microsoft Windows 8
System drive C: has 271 GB (63%) free of 428 GB
Total RAM: 3960 MB (33% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:42:21, on 4. 9. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17377)
Boot mode: Normal

Running processes:
C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
C:\Users\Ondra\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\USB Camera2\VM332STI.EXE
C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Program Files (x86)\Coupon Time\bin\CouponTime.BrowserAdapter.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Ask.com\UpdateTask.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe
C:\Program Files\trend micro\Ondra.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1 ... XXW0V22PZY
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://searchsimple-a.akamaihd.net/?affID=mt-re
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1 ... XXW0V22PZY
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/web/?type=ds& ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/web/?type=ds& ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/?type=hp&ts=1 ... XXW0V22PZY
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8118
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: Winamp Toolbar Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
O2 - BHO: (no name) - {2A836234-186C-41A0-9863-40BECDEDED9F} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Speed Analysis 3 - {A66261FC-B82E-4EC7-9F6D-C2F36B871DF0} - C:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Coupon Time 1.0.0.7 - {b7f975e4-2467-475f-9cfd-994f39ab5bb5} - C:\Program Files (x86)\Coupon Time\CouponTimebho.dll
O2 - BHO: Movies Toolbar (Dist. by Bandoo Media, Inc.) - {d1dac034-9fd9-4c13-a388-d2e10e57707f} - (no file)
O2 - BHO: SecureWebBHO - {D3C24E2B-C820-4492-9B69-11BF7163F998} - C:\Program Files (x86)\Softcomp Software\jpie.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: (no name) - {3d86a75b-cb6b-4764-885d-ca6336f04ba2} - (no file)
O3 - Toolbar: (no name) - {d1dac034-9fd9-4c13-a388-d2e10e57707f} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [4StoryPrePatch] C:\Program Files (x86)\GameforgeLive\Games\CZE_ces\4Story\PrePatch.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Ondra\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Ondra\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [MK LOL] "C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe" -auto
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_4A843355F8030D5EB910D792C116EA6D] "C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe" --no-startup-window
O4 - HKCU\..\Run: [Yahoo! Search] C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrlte.exe
O4 - Startup: crossbrowse.lnk = C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
O4 - Startup: Dropbox.lnk = Ondra\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: Datamngr Coordinator (DatamngrCoordinator) - Bandoo Media Inc. - C:\Program Files (x86)\Movies App\Datamngr\DatamngrCoordinator.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Privoxy (PrivoxyService) (PrivoxyService) - The Privoxy team - www.privoxy.org - C:\Program Files (x86)\Softcomp Software\privoxy.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Tor Win32 Service (tor) - Unknown owner - C:\Program Files (x86)\Tor\tor.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update Coupon Time - Unknown owner - C:\Program Files (x86)\Coupon Time\updateCouponTime.exe
O23 - Service: Util Coupon Time - Unknown owner - C:\Program Files (x86)\Coupon Time\bin\utilCouponTime.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - DTools LIMITED - C:\ProgramData\2WinManPro2\ProtectWindowsManager.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 21784 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\ProgramData\2WinManPro2\ProtectWindowsManager.exe -service
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\windows\system32\CxAudMsg64.exe
"C:\Program Files (x86)\Movies App\Datamngr\DatamngrCoordinator.exe"
dashost.exe {e7b0cdc0-a0ac-40b1-a0c6e04b28f9bc8f}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Softcomp Software\privoxy.exe" --service
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Tor\tor.exe" --nt-service "-ControlPort" "9051"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e41a949f-8de1-40fd-9dfb-0769ad135b0e -SystemEventPortName:HostProcess-e94aa0be-4267-4a88-90c9-240eb01bfbeb -IoCancelEventPortName:HostProcess-bf027e9e-bfbf-4427-a8c7-3af537b98da3 -NonStateChangingEventPortName:HostProcess-e2581f29-30f7-4b98-bdb5-ab4b1414432c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:fc7c19bc-8c71-4723-9fce-af3c93eb66ec -DeviceGroupId:
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\system32\nvvsvc.exe -session -first
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
taskeng.exe {66BA95BC-B7DD-4C84-942F-1023899A3627}
"C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-1-6.exe" /rawdata=LGWzbAXYemtHFRrzqE0pnuoz/gI/B7nvya4X5XaxT/J6CQvDEcUKf8Z12whCcDuH8wk2kyx4RFAJSfl+eXpw0T/k3pTHoNYE+t2xrAa5Kv/XJ0icDJ3pUNIVqtM+8rXIyyVIASFMgz1JDXGs0v4ucAhYMW5F9RYzrjVhncaJEZme+MXxmYYlU45tAu06h9oWMff07RF+TqhcBxmSoVGjuScX7jxrkBHRjYTeRE32+iUCxqu1gtjYNpBOuYAoSkqCEqS/m/wq1SCQAJOsw5Pw/7uzUly2Y73T703XEZU3vkicHmBVQnMoVtLo/5TWb/Aq47pB+IDyIJaY3/0Ce/wSZUcN/P5pLwKzy0r/VnCsXTwUkvRsUQeF02K12o0XADJxm4pSgZt0KhxqZbd0JW6VXIed8m6CggggGDM/b2eE8Nlao9I9S03F+vnEZ0Br+YInKIR3W5PToAbty92O9LbcyVHbL+Xr/cfCkvbyv6Ib75zs4hc0n6LACCDRH7Se1HoJDk/S33KbsXoBwW2UI7pOulls9b5LeyBCPaz/+YZNx2pEg7wauJrX/PcSv2v5gBiUsM2yaSbcNfVih8iqnsdvIKaJMOvrwKjAiWQkJ4ZbiPHkGJR+6zSyXr3eEMh6tKVX0SDaaJJE5iVpNs8epOmWQxra+q+lTryVfLZyErO/IsNVMDksweKSQYwh9f3GSTAK53YUlT5m5BUoi37NHqFRsZZbXk4mJi/104pFib0QJ9jeV//9E4fIMtnyIBCbtvmErRE+9XW5S803DTrY9kXk+5gPh1rfMsYoA9zz6OWl34QE6I20jC4H2851+nBEiKK7oBUcEl88nGBLkWGiJw/JGJX/rmNUu73G3M3MFpaP2uj8jTUme9P1QO3OpI1SP80IQdCbCcQ9IvLil+9pbPX32oRTN76lfXu+Gd1TemuLgthUxBeMcCdcXGFa5daJAlJ9OZUJPxgMnvAjsLkOYtTNgP9E+G9rSuBAPMtESCFaGHFRNrsHUV0n7XCXnXoARQ2nodxzSafQC3CEy0ML513r3r2qjUJdLU9Wtp6XaP7BVN+oEzkkbZpl4hRiE6x8lPQ65PvhQdalRr5cgvcjxmqudOtX5UJuDVdWPz8akvl6YxAtH6dDatQsFdQ5S/owdlVLXvIaVIdUF1HJjw50znHKeiYmILlfF9Ics9LwVQsUfFBqfoFwdY0WSxF5adusEINfRWoYnFhZNmEZ8c2aZ25rVomIynKqfhwia7EyOAS38GcPhjTTI7zJAj1wB4XZ010DuBZdfH+YGKMT8e60gu+vC1A6ZaafaJre5FRKY99QrKvsQkTaD2tNZXHTgBTunJ6gGQ8wWg8sFgbTtLper7vMZg==
"C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-6.exe" /rawdata=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
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
taskhostex.exe
C:\windows\Explorer.EXE
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe"
C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe"
"C:\Users\Ondra\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\USB Camera2\VM332STI.EXE"
"C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe" --type=gpu-process --channel="5780.0.2103910020\153846135" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2828 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe"
"C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Ondra\AppData\Local\Steam\htmlcache" -steampid 5764 -buildid 1439401440 -steamid "0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
C:\windows\system32\wbem\unsecapp.exe -Embedding
taskhost.exe $(Arg0)
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -StartupEvent 1f0 -InterruptEvent 0 -NGENProcess 12c -Pipe 124 -Comment "NGen Worker Process"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
taskeng.exe {EC909CA7-F3A4-42F8-9F75-591E58EA6485}
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Program Files (x86)\Coupon Time\updateCouponTime.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Program Files (x86)\Coupon Time\bin\utilCouponTime.exe"
/ch 8cff0b56-4b93-4b4e-95ba-c566928ab2a0 /ie 3c8c22ec-8272-47e3-9b51-bf53b784838b /z "n=CouponTime&is=reamrsCZ&dpt=20"
/ch 8cff0b56-4b93-4b4e-95ba-c566928ab2a0 /ie 3c8c22ec-8272-47e3-9b51-bf53b784838b /z "n=CouponTime&is=reamrsCZ&dpt=20"
"C:\windows\System32\Taskmgr.exe" /3
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\windows\system32\backgroundTaskHost.exe" -ServerName:AppexFinance.AppXkf55n7dtthta2mns6eq299x0n82sxq98.mca
"C:\Program Files\Internet Explorer\iexplore.exe" http://www.oursurfing.com/?type=sc&ts=1 ... XXW0V22PZY
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="16296.0.1538328031\326473168" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2828 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/DisableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="16296.2.830183218\1386003067" --font-cache-shared-handle=2164 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/DisableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="16296.3.1139506230\2100574174" --font-cache-shared-handle=2248 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/DisableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="16296.4.23721481\1779773366" --font-cache-shared-handle=2176 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/DisableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="16296.5.815833467\2135479872" --font-cache-shared-handle=2348 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/DisableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_10/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="16296.8.546764986\1099143718" --font-cache-shared-handle=6372 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="16296.9.2115803431\587114264" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:12884 CREDAT:2757899 /prefetch:2
"C:\windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe" -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\windows\system32\NOTEPAD.EXE" C:\rsit\info.txt
"C:\windows\system32\NOTEPAD.EXE" C:\rsit\log.txt
wscript.exe //B "C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\..\updt.js"
"C:\Program Files (x86)\Ask.com\UpdateTask.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
"C:\windows\system32\backgroundTaskHost.exe" -ServerName:AppexTravel.AppXzhp7et9szc37245rrdmnxvs7hhpmh8rv.mca
taskhost.exe
taskhost.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource scheduler
C:\windows\System32\sdclt.exe /CONFIGNOTIFICATION
C:\windows\system32\wermgr.exe -queuereporting
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
C:\windows\System32\AutoUpdate.exe /Auto
"C:\windows\system32\backgroundTaskHost.exe" -ServerName:AppexSports.AppXpgfzkkax0p24b53pgd813d7zpchsy299.mca
"C:\windows\system32\backgroundTaskHost.exe" -ServerName:App.AppX42r8evwg359fn5xfrxhj5nv2n3dnya3e.mca
"C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrsetup.exe"
C:\windows\System32\svchost.exe -k WerSvcGroup

"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe17_ Global\UsGthrCtrlFltPipeMssGthrPipe17 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Users\Ondra\Desktop\RSITx64 (2).exe"

======Scheduled tasks folder======
Nahoru
Uživatelský avatar
Marek-26
Přítel fóra
Přítel fóra
Příspěvky: 1000
Registrován: 16 pro 2006 15:53
Bydliště: Brüx/Praha

Re: Prosím o kotrolu logu - part1

#2 Příspěvek od Marek-26 »

======Scheduled tasks folder======

C:\windows\tasks\AmiUpdXp.job - C:\Users\Ondra\AppData\Local\22095\a31050.exe
C:\windows\tasks\be818199-9f84-451e-b8d9-88604ee38008-1-6.job - C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-1-6.exe /rawdata=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
C:\windows\tasks\be818199-9f84-451e-b8d9-88604ee38008-1-7.job - C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-1-7.exe /rawdata=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
C:\windows\tasks\be818199-9f84-451e-b8d9-88604ee38008-10_user.job - C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-10.exe /rawdata=ED49Cg+Bx+cssCaxbz1z4WZ6p/2VwOELc8jIpDzJm2iiKw1fsuZWbMHtGFnWUrGlFpsQS0BeX6hacKXxhNMNI5vQ1B4mSYkGvCl63UoOKKrjJyt8Cv4N/ll/2vtlSLXA+Sy9Bh89O13Cyw8Q/PHBFYStRjKJ3Qw42GO0v0DFiM4m3+aNHj/wnnrNQMVkruNv/pYciRBbm+gNcl0CE47NtJ0oX0YNJvwsaUe+kGl0KoAkNLux1rPUSU9MV5xQNKnZESpkK0eMmquvGrGY+AU1YMxMEHB/tK1CVowaN/Wx8JowEXNlxUWhhX/iQqaJ56HK3YDSKfMgZs4KLZSCASl00w61yBfKTBoRKeVrUYfKqv8Ag4U+NKellnnbvr8In7Ae2LaCKhSi1CRSctD0k2Y0u77g6E5YIoO1wVJFL9kRlb4v+9uDYbZQVDCje/reUhELBZJj3AbSg5opRLNO/X77rxWT1VlQOMjFUJnfP/PlpW9PS4GOvPGxN0NDdTIHhXESmZlRL/EP65J/bjDPH3RDUleQ52eNhET5iBVN/tc5u2w+qG+RJitDDwMFl1Pxu8j+Iw7BvAe0fs5DKEJtvmI7Z0q1tdG8NCavsxe5jqjllpo8Jf6k7dudjC/UPkRvhcJ0AoOOY3L93dyqnendHMt5Xds6uMiJXdY2Bw+xYn9qteAJYLVzR0zfiQlN5QnUF8hEMOB99SM0ZxmQOrxbG6lYIAvCweJNutnclxRgV4vkqBUsC+MSC5Alb52EtnVIBjPFSzhYCRt6fyYdvPBhwAPGDbpTDPj8AylTyfPlfqY8ye/yNPoX7HmfQ6AmyuCsiIB4z6U8kryEIlt29bz5PHtf6A==
C:\windows\tasks\be818199-9f84-451e-b8d9-88604ee38008-11.job - C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-11.exe /rawdata=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
C:\windows\tasks\be818199-9f84-451e-b8d9-88604ee38008-3.job - C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-3.exe /rawdata=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
C:\windows\tasks\be818199-9f84-451e-b8d9-88604ee38008-5.job - C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-5.exe /rawdata=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
C:\windows\tasks\be818199-9f84-451e-b8d9-88604ee38008-5_user.job - C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-5.exe /rawdata=Mm/dEzKEhOEqYJQFHcRulLUKLVfkNNmiOoEeErR40JCm31oslajxw16us5PtKwVMVwtNK+vKunwCd8mjjvcS92CJwDXwe+bVdKAEwC9mI6BzIW0do/dmG98ZzQEZ4CAaXoLBpbhqpJ5jaKNJ1uYgtiGonoAJ1exLJui6IU3i17dRExB6VzpS+fpJsbZJNS7J/eyUKfgU8Llce4NMDt1O8snnQJGHk77eJddUoyKjpGpsAV4BYcZHffy0P3YRJ4WywcuZeVoG38KxMd4X2CNE2Ih6SIMkYiGMz4CqgaxqiJeUke0UdibDPoNCLkO9oYd0tPgOZUor9KcOg9nmDes/ulVyxif42tk2zQdjIjcAG9fbm/xGlQenA7uffGDtfOlVMhBl1adogKiUFelFMYEVpQXdFxN3wgdMzm7HJMQFEmokuEIYPw6cqHL5zi6QfHaf5l6rrTjRWMc68WnEjTiAtPccr1U90KKSftWkObXm4xVyV3okf/9s5Bygejp3pFXEjjBP6aTJRpSZwCmzO3PYXsXay11kVrmWQk0myKGwiQnxsb260REcwSn/CujvoerBCEVlxzd/HApvaxXZJEhRt5h7gKxQ+cvpgvaA+EELjtm5xDvCI2vfVhoe8WV+nEY7NG3c73dqTuucowsPhtCpZp1fVfkYyY5a8qWjY1XUVxc/Of7QzYiQqCwOcT9o+F9Sy9kCNA/fhmrro8V9uXQsxIGgYC53ShCTfoqiDdYUgVct/Faym2JwxpbUf8uYpxwO+35ZKFp9MsDh6ks1PMIiPnFzZ6whL8V4wWoaZ0Zr9A4ZaAj707VHEipoUycmOdEdgejXItzmclptPYFVE7flv1hUw79q2ZCBfH3SpME3i4C/Pp8KUIk5N2nilb8k9WhZLHvOG6OpXYgt2d8WFhjqfkLAtnqCzrMRQfAa9fjUdjJxOVj4QvUTLAXZB5LvNpQY0//XrewFbcVNoQkA0XfSALlFGA9m8cp140FXsmBc6e6IxlFcKFTIj2bk3s47iwn1
C:\windows\tasks\be818199-9f84-451e-b8d9-88604ee38008-6.job - C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-6.exe /rawdata=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
C:\windows\tasks\be818199-9f84-451e-b8d9-88604ee38008-7.job - C:\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-7.exe /rawdata=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
C:\windows\tasks\Crossbrowse.job - C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe /rawdata='DgbvMItNR3UFoEWe7reIdggUtP/saU1Va1fqhijlfLRUFgAF1RgEiidaWr3Gx+3JQsIgcRMorYfZWiMyuFYUoHnRxGhzzqhqe+qK0DK0vzo7Vk/5L0fTumNA1XgfVTo7lSrLG0/XU+D9XXqJ+WHcgoR5NVuwcmRxICJm/7tXykqOJlJxzHbdN1UU2NWRmwAzni18LVv9vNx3M33KPDR3bJ9s0bUgp7DjbkLiI1oWbWs6zlH/ELysBsNS7A8JypQJ76JsqicGDL5u4irVc5im61BdW3dRu1F7Py+VuhyThYBiwaRN3jYRN8duk5A4u5kzpDnoyUynMN3uDpT+kgH1Uw=='
C:\windows\tasks\DLL-Files.Com Fixer_MONTHLY.job - C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe scan
C:\windows\tasks\DLL-Files.Com Fixer_Updates.job - C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe -updatecheck
C:\windows\tasks\DropboxUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002Core.job - C:\Users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\windows\tasks\DropboxUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002UA.job - C:\Users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002Core.job - C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002UA.job - C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\Norton Security Scan for Ondra.job - C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe /scan-quick /scheduled
C:\windows\tasks\WinThruster_DEFAULT.job - C:\Program Files (x86)\WinThruster\WinThruster.exe -default
C:\windows\tasks\WinThruster_UPDATES.job - C:\Program Files (x86)\WinThruster\WinThruster.exe -updatecheck

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A836234-186C-41A0-9863-40BECDEDED9F}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-20 64640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-18 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}]
Speed Analysis 3 - C:\Program Files (x86)\Speed Analysis 3\ScriptHost64.dll [2013-10-03 381760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-28 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01 2133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d1dac034-9fd9-4c13-a388-d2e10e57707f}]
Movies Toolbar (Dist. by Bandoo Media, Inc.) - C:\PROGRA~2\MOVIES~1\Datamngr\SRTOOL~2\IE\searchresultsDx64.dll [2013-12-11 131536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll [2012-03-19 1937736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A836234-186C-41A0-9863-40BECDEDED9F}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-21 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-18 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}]
Speed Analysis 3 - C:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll [2013-10-03 400704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-26 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b7f975e4-2467-475f-9cfd-994f39ab5bb5}]
Coupon Time 1.0.0.7 - C:\Program Files (x86)\Coupon Time\CouponTimebho.dll [2015-08-14 269040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d1dac034-9fd9-4c13-a388-d2e10e57707f}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3C24E2B-C820-4492-9B69-11BF7163F998}]
SecureWebBHO Class - C:\Program Files (x86)\Softcomp Software\jpie.dll [2015-08-14 135168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2013-04-25 1520776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-21 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetPacks Browser Helper - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-07-04 1310040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
{d1dac034-9fd9-4c13-a388-d2e10e57707f} - Movies Toolbar (Dist. by Bandoo Media, Inc.) - C:\PROGRA~2\MOVIES~1\Datamngr\SRTOOL~2\IE\searchresultsDx64.dll [2013-12-11 131536]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-28 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll [2012-03-19 1937736]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2013-04-25 1520776]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetPacks Toolbar for Internet Explorer - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-07-04 1310040]
{3d86a75b-cb6b-4764-885d-ca6336f04ba2}
{d1dac034-9fd9-4c13-a388-d2e10e57707f}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-26 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-08-08 170304]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-08 398656]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-08-08 440640]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-15 887968]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-08-08 2864016]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-08-20 127616]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-10-19 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-10-19 191544]
"WrtMon.exe"=C:\windows\system32\spool\drivers\x64\3\WrtMon.exe [2006-09-20 20480]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Pando Media Booster"=C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [2013-03-03 3093624]
"cz.seznam.software.autoupdate"=C:\Users\Ondra\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Ondra\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-08-12 2899136]
"Facebook Update"=C:\Users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-06-03 138096]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2015-07-08 3632112]
"MK LOL"=C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe [2015-06-10 1092296]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-02-26 31344744]
"Dropbox Update"=C:\Users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19 134512]
"GoogleChromeAutoLaunch_4A843355F8030D5EB910D792C116EA6D"=C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [2015-05-12 637440]
"Yahoo! Search"=C:\Users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrlte.exe [2015-09-02 660736]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-07-26 508656]
"332BigDog"=C:\Program Files (x86)\USB Camera2\VM332STI.EXE [2012-03-20 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-12-09 74752]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2012-10-25 421888]
""= []
"ApnUpdater"=C:\Program Files (x86)\Ask.com\Updater\Updater.exe [2013-04-25 1648264]
"SweetIM"=C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [2012-05-29 115032]
"Sweetpacks Communicator"=C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe [2012-08-15 231768]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-03-21 1061960]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
"ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2015-08-26 1843088]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-12-13 3838800]
"4StoryPrePatch"=C:\Program Files (x86)\GameforgeLive\Games\CZE_ces\4Story\PrePatch.exe [2014-04-24 327680]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-18 5515496]

C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
crossbrowse.lnk - C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
Dropbox.lnk - C:\Users\Ondra\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2012-08-03 439296]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe]
"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-04 08:11:16 ----D---- C:\Program Files\trend micro
2015-09-04 08:11:04 ----D---- C:\rsit
2015-09-03 22:52:37 ----AD---- C:\3590F75ABA9E485486C100C1A9D4FF06ZZ..ZZZZZZ.Z.ZZZ
2015-09-03 20:07:29 ----AD---- C:\3590F75ABA9E485486C100C1A9D4FF06ZZZ....Z...ZZ.ZZ
2015-09-02 16:33:05 ----A---- C:\windows\system32\drivers\{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64.sys
2015-08-29 12:46:22 ----A---- C:\windows\system32\mshtml.dll
2015-08-29 12:45:21 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-08-28 09:08:06 ----A---- C:\windows\system32\drivers\{db97384e-1f00-468a-bbb9-c073b671999e}Gw64.sys
2015-08-27 17:43:43 ----A---- C:\windows\system32\drivers\{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64.sys
2015-08-24 10:20:26 ----A---- C:\windows\system32\drivers\{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64.sys
2015-08-18 22:12:12 ----A---- C:\windows\system32\drivers\{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64.sys
2015-08-14 12:30:25 ----D---- C:\Program Files (x86)\Crossbrowse
2015-08-14 12:27:59 ----D---- C:\Program Files (x86)\0b19452d-7570-45e0-b1eb-dc53d0adbfb9
2015-08-14 12:27:06 ----D---- C:\Program Files (x86)\CinemaP-1.9cV14.08
2015-08-14 11:22:57 ----D---- C:\Program Files (x86)\Prompt Downloader
2015-08-14 11:19:48 ----D---- C:\Users\Ondra\AppData\Roaming\Network Menager
2015-08-14 11:19:22 ----D---- C:\Program Files (x86)\Softcomp Software
2015-08-14 11:19:14 ----D---- C:\Users\Ondra\AppData\Roaming\Opera Software
2015-08-14 11:15:03 ----D---- C:\Program Files (x86)\Opera
2015-08-14 11:14:59 ----A---- C:\windows\system32\drivers\{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64.sys
2015-08-14 11:14:38 ----D---- C:\ProgramData\2WinManPro2
2015-08-14 11:14:17 ----A---- C:\windows\prleth.sys
2015-08-14 11:14:17 ----A---- C:\windows\hgfs.sys
2015-08-14 11:13:38 ----D---- C:\Users\Ondra\AppData\Roaming\oursurfing
2015-08-14 11:11:43 ----D---- C:\Program Files (x86)\Coupon Time
2015-08-14 10:56:20 ----D---- C:\Program Files (x86)\Origin Games
2015-08-14 10:44:05 ----SHD---- C:\Config.Msi
2015-08-14 10:31:34 ----D---- C:\Program Files (x86)\The Sims 4
2015-08-13 17:56:45 ----A---- C:\windows\system32\ieframe.dll
2015-08-13 17:56:42 ----A---- C:\windows\system32\jscript9.dll
2015-08-13 17:56:40 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-08-13 17:56:38 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-08-13 17:56:38 ----A---- C:\windows\system32\wininet.dll
2015-08-13 17:56:36 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-08-13 17:56:35 ----A---- C:\windows\system32\iertutil.dll
2015-08-13 17:56:34 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-08-13 17:56:33 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-08-13 17:56:33 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2015-08-13 17:56:33 ----A---- C:\windows\system32\urlmon.dll
2015-08-13 17:56:32 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-08-13 17:56:32 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-08-13 17:56:32 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-08-13 17:56:32 ----A---- C:\windows\system32\vbscript.dll
2015-08-13 17:56:32 ----A---- C:\windows\system32\msfeeds.dll
2015-08-13 17:56:32 ----A---- C:\windows\system32\inetcomm.dll
2015-08-13 17:56:31 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-08-13 17:56:31 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-08-13 17:56:31 ----A---- C:\windows\system32\jscript.dll
2015-08-13 17:53:20 ----A---- C:\windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 17:53:20 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 17:47:14 ----A---- C:\windows\system32\drivers\WdFilter.sys
2015-08-13 17:47:13 ----A---- C:\windows\system32\drivers\WdBoot.sys
2015-08-13 17:46:50 ----A---- C:\windows\system32\basesrv.dll
2015-08-13 17:46:48 ----A---- C:\windows\system32\csrsrv.dll
2015-08-13 17:40:33 ----A---- C:\windows\system32\ntoskrnl.exe
2015-08-13 17:40:33 ----A---- C:\windows\system32\ntdll.dll
2015-08-13 17:40:32 ----A---- C:\windows\system32\sysmain.dll
2015-08-13 17:40:31 ----A---- C:\windows\SYSWOW64\ntdll.dll
2015-08-13 17:40:31 ----A---- C:\windows\system32\drivers\mountmgr.sys
2015-08-13 17:38:24 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2015-08-13 17:38:24 ----A---- C:\windows\system32\WebClnt.dll
2015-08-13 17:38:23 ----A---- C:\windows\SYSWOW64\davclnt.dll
2015-08-13 17:38:23 ----A---- C:\windows\system32\davclnt.dll
2015-08-13 17:18:48 ----A---- C:\windows\system32\mstscax.dll
2015-08-13 17:18:47 ----A---- C:\windows\SYSWOW64\mstscax.dll
2015-08-13 17:18:46 ----A---- C:\windows\SYSWOW64\aaclient.dll
2015-08-13 17:18:45 ----A---- C:\windows\system32\aaclient.dll
2015-08-13 17:15:15 ----A---- C:\windows\system32\mcupdate_GenuineIntel.dll
2015-08-13 17:14:31 ----A---- C:\windows\system32\appraiser.dll
2015-08-13 17:14:30 ----A---- C:\windows\system32\invagent.dll
2015-08-13 17:14:30 ----A---- C:\windows\system32\generaltel.dll
2015-08-13 17:14:30 ----A---- C:\windows\system32\devinv.dll
2015-08-13 17:14:30 ----A---- C:\windows\system32\aeinv.dll
2015-08-13 17:14:29 ----A---- C:\windows\system32\CompatTelRunner.exe
2015-08-13 17:14:29 ----A---- C:\windows\system32\acmigration.dll
2015-08-13 17:05:01 ----A---- C:\windows\system32\DWrite.dll
2015-08-13 17:05:00 ----A---- C:\windows\system32\win32k.sys
2015-08-13 17:04:59 ----A---- C:\windows\system32\FntCache.dll
2015-08-13 17:04:58 ----A---- C:\windows\SYSWOW64\DWrite.dll
2015-08-13 17:04:58 ----A---- C:\windows\system32\atmfd.dll
2015-08-13 17:04:57 ----A---- C:\windows\SYSWOW64\atmlib.dll
2015-08-13 17:04:57 ----A---- C:\windows\SYSWOW64\atmfd.dll
2015-08-13 17:04:57 ----A---- C:\windows\system32\atmlib.dll
2015-08-13 16:54:11 ----A---- C:\windows\SYSWOW64\notepad.exe
2015-08-13 16:54:10 ----A---- C:\windows\system32\notepad.exe
2015-08-13 16:54:10 ----A---- C:\windows\notepad.exe
2015-08-13 16:53:30 ----A---- C:\windows\SYSWOW64\msxml6.dll
2015-08-13 16:53:30 ----A---- C:\windows\system32\msxml6.dll
2015-08-13 16:53:27 ----A---- C:\windows\SYSWOW64\msxml3.dll
2015-08-13 16:53:27 ----A---- C:\windows\system32\msxml3.dll

======List of files/folders modified in the last 1 month======

2015-09-04 11:42:17 ----D---- C:\windows\SYSWOW64\jmdp
2015-09-04 11:37:40 ----D---- C:\Users\Ondra\AppData\Roaming\Skype
2015-09-04 11:00:18 ----D---- C:\windows\system32\sru
2015-09-04 08:44:45 ----D---- C:\windows\Temp
2015-09-04 08:27:27 ----D---- C:\windows\Prefetch
2015-09-04 08:11:16 ----D---- C:\Program Files
2015-09-04 07:54:01 ----D---- C:\windows\AUInstallAgent
2015-09-04 07:48:23 ----HD---- C:\Program Files\WindowsApps
2015-09-04 07:18:53 ----D---- C:\windows\system32\config
2015-09-04 07:17:04 ----A---- C:\windows\win.ini
2015-09-03 21:47:17 ----D---- C:\windows\SoftwareDistribution
2015-09-03 21:47:17 ----AD---- C:\Windows
2015-09-02 21:32:43 ----HD---- C:\$Windows.~BT
2015-09-02 20:54:45 ----D---- C:\windows\system32\catroot
2015-09-02 20:45:03 ----SHD---- C:\System Volume Information
2015-09-02 20:06:42 ----AD---- C:\windows\System32
2015-09-02 20:06:41 ----D---- C:\windows\debug
2015-09-02 19:56:59 ----D---- C:\windows\Microsoft.NET
2015-09-02 16:33:33 ----D---- C:\windows\system32\Tasks
2015-09-02 16:33:05 ----D---- C:\windows\system32\Drivers
2015-09-02 16:32:38 ----D---- C:\Program Files (x86)\Steam
2015-09-02 16:31:58 ----D---- C:\Users\Ondra\AppData\Roaming\Dropbox
2015-09-02 16:28:09 ----A---- C:\windows\SYSWOW64\log.txt
2015-09-02 14:15:01 ----D---- C:\windows\WinSxS
2015-09-02 14:14:40 ----D---- C:\ProgramData\Datamngr
2015-09-02 14:11:53 ----D---- C:\windows\SysWOW64
2015-08-31 08:29:04 ----SHD---- C:\windows\Installer
2015-08-31 08:24:58 ----RD---- C:\Program Files (x86)
2015-08-31 08:24:51 ----D---- C:\windows\Tasks
2015-08-29 12:49:20 ----D---- C:\windows\CbsTemp
2015-08-29 12:48:35 ----D---- C:\windows\system32\catroot2
2015-08-24 10:27:13 ----D---- C:\Users\Ondra\AppData\Roaming\uTorrent
2015-08-24 10:27:13 ----D---- C:\Users\Ondra\AppData\Roaming\DAEMON Tools Lite
2015-08-21 17:56:30 ----D---- C:\windows\Inf
2015-08-18 14:45:55 ----D---- C:\ProgramData\Norton
2015-08-16 19:11:43 ----RSD---- C:\windows\assembly
2015-08-16 18:50:12 ----D---- C:\Program Files\Windows Defender
2015-08-16 18:50:10 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-16 18:49:59 ----SD---- C:\windows\system32\CompatTel
2015-08-16 18:49:59 ----D---- C:\windows\system32\appraiser
2015-08-16 18:49:58 ----D---- C:\windows\apppatch
2015-08-16 18:49:41 ----D---- C:\windows\system32\drivers\cs-CZ
2015-08-16 18:49:36 ----D---- C:\windows\system32\drivers\en-US
2015-08-14 11:14:38 ----HD---- C:\ProgramData
2015-08-14 10:54:15 ----D---- C:\ProgramData\Origin
2015-08-14 10:51:45 ----D---- C:\Program Files (x86)\Origin
2015-08-14 10:43:07 ----D---- C:\ProgramData\Package Cache
2015-08-14 09:51:02 ----D---- C:\ProgramData\PMB Files
2015-08-13 18:31:46 ----D---- C:\windows\system32\MRT
2015-08-13 18:19:32 ----A---- C:\windows\system32\MRT.exe
2015-08-08 04:27:48 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-05-18 65736]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-05-18 272248]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2012-10-19 39008]
R0 nvpciflt;nvpciflt; C:\windows\system32\DRIVERS\nvpciflt.sys [2012-12-29 30648]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-05-18 93528]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2015-05-18 1047320]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2015-06-28 442264]
R1 dtsoftbus01;@oem30.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\windows\System32\drivers\dtsoftbus01.sys [2013-06-26 283200]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2015-08-05 498512]
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222;F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Movies App\Datamngr\x64\setmgrc3.cfg [2015-03-23 46152]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-05-18 29168]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-05-18 89944]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-05-18 137288]
R3 ACPIVPC;@oem20.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2012-10-19 33560]
R3 AthBTPort;@oem16.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-08-20 88728]
R3 athr;@oem11.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athw8x.sys [2012-07-24 3618304]
R3 BTATH_A2DP;@oem15.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-08-20 344216]
R3 btath_avdt;@oem15.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-08-20 114840]
R3 BTATH_BUS;@oem12.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\windows\System32\drivers\btath_bus.sys [2012-08-20 33944]
R3 BTATH_HCRP;@oem18.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\windows\System32\drivers\btath_hcrp.sys [2012-08-20 178840]
R3 BTATH_LWFLT;@oem19.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-08-20 76952]
R3 BTATH_RCP;@oem21.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\windows\System32\drivers\btath_rcp.sys [2012-08-20 135832]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-08-20 567808]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 CnxtHdAudService;@oem7.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2012-06-27 1608864]
R3 ETD;@oem10.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\windows\system32\DRIVERS\ETD.sys [2012-08-07 311632]
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\windows\system32\DRIVERS\Hamdrv.sys [2014-12-13 45112]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;@oem9.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C63x64.sys [2012-07-19 110744]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 nvlddmkm;nvlddmkm; C:\windows\system32\DRIVERS\nvlddmkm.sys [2012-12-29 10997176]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 vm332avs;@oem17.inf,%USBCamera.DeviceDesc2%;Lenovo Camera2; C:\windows\System32\Drivers\vm332avs.sys [2012-08-25 981112]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 dg_ssudbus;@oem35.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 EagleX64;EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys []
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 RSUSBVSTOR;@oem8.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
S3 ssudmdm;@oem37.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;@oem38.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 usbbus;@oem31.inf,%LGSI.Service.Desc%;LGE Mobile Composite USB Device; C:\windows\System32\drivers\lgx64bus.sys [2010-01-21 17920]
S3 UsbDiag;@oem33.inf,%Lgsi.Service.Name%;LGE Mobile USB Serial Port; C:\windows\system32\DRIVERS\lgx64diag.sys [2010-01-21 27648]
S3 USBModem;@oem32.inf,%LGSI.Service.Name%;LGE Mobile USB Modem; C:\windows\system32\DRIVERS\lgx64modem.sys [2010-01-21 33280]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\windows\System32\drivers\usbscan.sys [2013-07-02 43008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-06 210560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 APNMCP;Ask Update Service; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2015-08-26 201616]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-08-20 211584]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-05-18 343336]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DatamngrCoordinator;Datamngr Coordinator; C:\Program Files (x86)\Movies App\Datamngr\DatamngrCoordinator.exe [2015-03-23 3204296]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-12-13 2530640]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-12-02 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2012-12-29 884152]
R2 PrivoxyService;Privoxy (PrivoxyService); C:\Program Files (x86)\Softcomp Software\privoxy.exe [2015-08-14 371200]
R2 tor;Tor Win32 Service; C:\Program Files (x86)\Tor\tor.exe [2013-09-02 3233806]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R2 Update Coupon Time;Update Coupon Time; C:\Program Files (x86)\Coupon Time\updateCouponTime.exe [2015-09-03 466672]
R2 Util Coupon Time;Util Coupon Time; C:\Program Files (x86)\Coupon Time\bin\utilCouponTime.exe [2015-09-04 467696]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-08-12 838336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-12-29 1260472]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2012-08-08 276288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-01-13 194032]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-08 2004488]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Marek-26
Přítel fóra
Přítel fóra
Příspěvky: 1000
Registrován: 16 pro 2006 15:53
Bydliště: Brüx/Praha

Re: Prosím o kotrolu logu - part1

#3 Příspěvek od Marek-26 »

Dobrý den,

podařilo se Vám dát dva samostatné příspěvky, tak jsem to takto sloučil.

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte nejlépe na plochu
Ukončete všechny programy a spusťte AdwCleaner
Kliknete na Search
Proběhne skenovaní a pak se objeví log, připadne bude uložen na systémovém disku jako AdwCleaner[R?].txt

Obsah logu mi sem prosím vložte
Nahoru
Mufff
Návštěvník
Návštěvník
Příspěvky: 92
Registrován: 14 dub 2009 15:12

Re: Prosím o kotrolu logu - part1

#4 Příspěvek od Mufff »

Zdravím.
Pro Skenu AdwCleanerem proběhl restart a potom už nenaběhl internet. Proto log posílám z jiného PC než na kterém děláme úpravy.
# AdwCleaner v5.005 - Logfile created 04/09/2015 at 13:52:42
# Updated 31/08/2015 by Xplode
# Database : 2015-08-31.2 [Server]
# Operating system : Windows 8 (x64)
# Username : Ondra - G580
# Running from : C:\Users\Ondra\Desktop\adwcleaner_5.005.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : APNMCP
[-] Service Deleted : DatamngrCoordinator
[-] Service Deleted : PrivoxyService
[-] Service Deleted : WindowsMangerProtect
[-] Service Deleted : Update Coupon Time
[-] Service Deleted : Util Coupon Time
[-] Service Deleted : F06DEFF2-5B9C-490D-910F-35D3A91196222

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\FileViewPro
[-] Folder Deleted : C:\Program Files (x86)\Amazon\ABB
[-] Folder Deleted : C:\Program Files (x86)\Ask.com
[#] Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
[-] Folder Deleted : C:\Program Files (x86)\BetterSurf
[#] Folder Deleted : C:\Program Files (x86)\Movies App
[-] Folder Deleted : C:\Program Files (x86)\Movies Toolbar
[-] Folder Deleted : C:\Program Files (x86)\Speed Analysis 3
[-] Folder Deleted : C:\Program Files (x86)\SweetIM
[-] Folder Deleted : C:\Program Files (x86)\Winamp Toolbar
[-] Folder Deleted : C:\Program Files (x86)\GotClip
[-] Folder Deleted : C:\Program Files (x86)\SereneScreen
[-] Folder Deleted : C:\Program Files (x86)\Crossbrowse
[-] Folder Deleted : C:\Program Files (x86)\Prompt Downloader
[-] Folder Deleted : C:\Program Files (x86)\Coupon Time
[-] Folder Deleted : C:\Program Files (x86)\WinThruster
[-] Folder Deleted : C:\Program Files (x86)\Softcomp Software
[!] Folder Not Deleted : C:\Program Files (x86)\Coupon Time
[-] Folder Deleted : C:\Program Files (x86)\EliteUnzip
[!] Folder Not Deleted : C:\Program Files (x86)\Coupon Time
[-] Folder Deleted : C:\Program Files (x86)\MediaWatchV1
[-] Folder Deleted : C:\Program Files (x86)\RichMediaViewV1
[-] Folder Deleted : C:\Program Files (x86)\WebexpEnhancedV1
[-] Folder Deleted : C:\Program Files (x86)\CinemaP-1.9cV14.08
[!] Folder Not Deleted : C:\Program Files (x86)\Crossbrowse
[-] Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
[-] Folder Deleted : C:\ProgramData\apn
[-] Folder Deleted : C:\ProgramData\Ask
[-] Folder Deleted : C:\ProgramData\AskPartnerNetwork
[-] Folder Deleted : C:\ProgramData\Babylon
[+] Folder Deleted : C:\ProgramData\BitGuard
[+] Folder Deleted : C:\ProgramData\Browser Manager
[+] Folder Deleted : C:\ProgramData\BrowserProtect
[-] Folder Deleted : C:\ProgramData\DSearchLink
[-] Folder Deleted : C:\ProgramData\IBUpdaterService
[-] Folder Deleted : C:\ProgramData\SweetIM
[-] Folder Deleted : C:\ProgramData\Winamp Toolbar
[-] Folder Deleted : C:\ProgramData\wincert
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileViewPro
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SereneScreen
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Play
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster
[!] Folder Not Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\apn
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\AskPartnerNetwork
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\ilividmoviestoolbar181
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\pay-by-ads
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\SwvUpdater
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\torch
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Winamp Toolbar
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Mindspark_Interactive_Net
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\FileViewPro
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Crossbrowse
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Prompt Downloader
[!] Folder Not Deleted : C:\Users\Ondra\AppData\Local\Crossbrowse
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\boipimhfjpakfgckhbljjengakjhkcbp
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dedmngkbaffkenlfdcbganndoghblmap
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbmpjbkgemhgalmeiigcdljkccfcafoj
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmifolfpllfdhilecpdpmemhelmanajl
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Folder Deleted : C:\Users\Ondra\AppData\Local\Temp\apn
[-] Folder Deleted : C:\Users\Ondra\AppData\LocalLow\AskToolbar
[-] Folder Deleted : C:\Users\Ondra\AppData\LocalLow\ilividmoviestoolbar181
[-] Folder Deleted : C:\Users\Ondra\AppData\LocalLow\ilividmoviestoolbarha
[-] Folder Deleted : C:\Users\Ondra\AppData\LocalLow\searchresultstb
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\Babylon
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\CRMixiDJTB
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\Solvusoft
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\SpeedAnalysis3
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\zulagames
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\oursurfing
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Elite Unzip
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GotClip
[-] Folder Deleted : C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prompt Downloader
[-] Folder Deleted : C:\windows\Installer\{7683B745-6060-41FD-AA75-0BBB383FEAD4}
[-] Folder Deleted : C:\windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
[-] Folder Deleted : C:\windows\SysWOW64\ARFC
[-] Folder Deleted : C:\windows\SysWOW64\jmdp
[-] Folder Deleted : C:\windows\SysWOW64\WNLT

***** [ Files ] *****

[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_boipimhfjpakfgckhbljjengakjhkcbp_0.localstorage
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gflandjopdloblmlcoiidmncpinmmacn_0.localstorage
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gflandjopdloblmlcoiidmncpinmmacn
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mbmpjbkgemhgalmeiigcdljkccfcafoj_0.localstorage
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mbmpjbkgemhgalmeiigcdljkccfcafoj
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\bprotector web data
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\Ondra\AppData\Roaming\speedanalysis.ico
[-] File Deleted : C:\Users\Ondra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\crossbrowse.lnk
[-] File Deleted : C:\Users\Ondra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\crossbrowse.lnk
[-] File Deleted : C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk
[-] File Deleted : C:\windows\Sysnative\roboot64.exe
[-] File Deleted : C:\windows\Sysnative\drivers\nethfdrv.sys
[-] File Deleted : C:\windows\Sysnative\drivers\{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64.sys
[-] File Deleted : C:\windows\Sysnative\drivers\{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64.sys
[-] File Deleted : C:\windows\Sysnative\drivers\{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64.sys
[-] File Deleted : C:\windows\Sysnative\drivers\{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64.sys
[-] File Deleted : C:\windows\Sysnative\drivers\{db97384e-1f00-468a-bbb9-c073b671999e}Gw64.sys
[-] File Deleted : C:\windows\Sysnative\drivers\{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64.sys

***** [ Shortcuts ] *****

[-] Shortcut Disinfected : C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[-] Shortcut Disinfected : C:\Users\Ondra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

***** [ Scheduled tasks ] *****

[-] Task Deleted : AmiUpdXp
[-] Task Deleted : Crossbrowse
[-] Task Deleted : Scheduled Update for Ask Toolbar
[-] Task Deleted : WinThruster
[-] Task Deleted : WinThruster_DEFAULT
[-] Task Deleted : WinThruster_UPDATES
[-] Task Deleted : Yahoo! Search Updater
[-] Task Deleted : amiupdaterExd
[-] Task Deleted : amiupdaterExi
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-1-6
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-1-7
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-10_user
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-11
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-3
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-5
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-5_user
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-6
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-7
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-1-6
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-1-7
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-10_user
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-11
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-3
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-5
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-5_user
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-6
[-] Task Deleted : be818199-9f84-451e-b8d9-88604ee38008-7

***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Classes\iLivid.torrent
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\AddonsFramework.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\ButtonSite.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHost.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\winamptbServer.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
[-] Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
[-] Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
[-] Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
[-] Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\iLivid.torrent
[-] Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
[-] Key Deleted : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
[-] Key Deleted : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
[-] Key Deleted : HKLM\SOFTWARE\Classes\sim-packages
[-] Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject
[-] Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.BackgroundHostObject.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.Navbar
[-] Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.Navbar.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.Tool
[-] Key Deleted : HKLM\SOFTWARE\Classes\Speed Analysis 3.Tool.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
[-] Key Deleted : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
[-] Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
[-] Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.AOLTBSearch
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.AOLTBSearch.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.AOLToolBand
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.AOLToolBand.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.Downloader
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.Downloader.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.ToolbarInfo
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.ToolbarInfo.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.ToolbarParams
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.ToolbarParams.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTbServer.AolToolbarHelper
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinampTbServer.AolToolbarHelper.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
[-] Key Deleted : HKCU\Software\Classes\keepmysearch
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\BackgroundHost.EXE
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Mediaplayer\Shiminclusionlist\crossbrowse.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\CRSBRWSHTML
[-] Key Deleted : HKLM\SOFTWARE\Clients\StartMenuInternet\Crossbrowse
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\crossbrowse.exe
[-] Value Deleted : HKLM\SOFTWARE\Classes\.htm\OpenWithProgids [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.html\OpenWithProgids [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\RegisteredApplications [Crossbrowse]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.xht\OpenWithProgIDs [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.webp\OpenWithProgIDs [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.shtml\OpenWithProgIDs [CRSBRWSHTML]
[-] Key Deleted : HKLM\SOFTWARE\Clients\StartMenuInternet\Torch
[-] Key Deleted : HKCU\Software\5228fdee16fe446
[-] Key Deleted : HKLM\SOFTWARE\5228fdee16fe446
[-] Key Deleted : HKLM\SOFTWARE\bf027f71-5ddc-425c-a99b-314590e1b3d9
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [ext@bettersurfplus.com]
[-] Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [speedanalysis03@SpeedAnalysis.com]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [speedanalysis03@SpeedAnalysis.com]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [xz123@ya456.com]
[-] Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [zulagames@ZulaGames.com]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [zulagames@ZulaGames.com]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [ext@MediaWatchV1home666.net]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [ext@RichMediaViewV1release1.net]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [ext@WebexpEnhancedV1alpha864.net]
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
[-] Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
[-] Key Deleted : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A2773ED4-83BD-488A-A186-73590706C916}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B27D9527-3762-4D71-963D-FB7A94FDD678}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{24F3378A-5B52-491F-AD90-88D583C42C77}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{58B849FB-ECBE-4F1B-BEE0-2DC418CF68F7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EF4E91D-DDD5-4478-BCA7-DA04435934C0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{841FD004-57A2-4B49-BBDB-5897394619DB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ACE0D5AB-50C8-4052-BD02-977569E56291}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B38D6EDE-390B-4620-8365-29E16459EBDA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E1164984-B567-47BD-A7FF-240C2594404A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F20F11FD-203E-45A9-B7BB-AFC1B4FEA7A6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE178B09-C8AA-4734-804D-1849BCCA0C29}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B7F975E4-2467-475F-9CFD-994F39AB5BB5}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{b7f975e4-2467-475f-9cfd-994f39ab5bb5}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{b7f975e4-2467-475f-9cfd-994f39ab5bb5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{462862BE-9A5C-49A5-9CBD-A649EAC63645}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66DD22B9-6521-4B05-97DB-0EBC00B1DA5D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{841FD004-57A2-4B49-BBDB-5897394619DB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E4A994B0-5550-4680-A4C6-B9470B888069}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EE95078D-518C-4FD2-8093-FD1D4E33D3CA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F9EB11AB-9384-4736-9B33-993940F88895}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{0113A098-06EA-4776-A011-D75590778F1E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{0771C34F-730F-4535-AD4C-37B74D27188E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{15998F3C-BBA9-476D-8FC2-09BE9E3B8751}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{507591C2-2F4E-46A7-92D6-E6CFF82E5F26}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{538CD77C-BFDD-49B0-9562-77419CAB89D1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A09B0156-EFCE-46B4-9118-BC270EA654C1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D88E0FD9-31EB-48EF-BC89-35EBCE0E813C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99E29823-2F67-41C3-8AA5-6425097A771F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2F137995-4D26-44AD-9C4E-91055090A817}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4D632E-5768-4E2C-B1F3-16AA35474B25}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4D632E-5768-4E2C-B1F3-16AA35474B25}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A836234-186C-41A0-9863-40BECDEDED9F}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D1DAC034-9FD9-4C13-A388-D2E10E57707F}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B7F975E4-2467-475F-9CFD-994F39AB5BB5}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b7f975e4-2467-475f-9cfd-994f39ab5bb5}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b7f975e4-2467-475f-9cfd-994f39ab5bb5}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2A836234-186C-41A0-9863-40BECDEDED9F}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D1DAC034-9FD9-4C13-A388-D2E10E57707F}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B7F975E4-2467-475F-9CFD-994F39AB5BB5}
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{b7f975e4-2467-475f-9cfd-994f39ab5bb5}
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{b7f975e4-2467-475f-9cfd-994f39ab5bb5}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1824FF90-C98E-48A6-838F-E3B6572B0C77}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2A836234-186C-41A0-9863-40BECDEDED9F}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D1DAC034-9FD9-4C13-A388-D2E10E57707F}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B7F975E4-2467-475F-9CFD-994F39AB5BB5}
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{b7f975e4-2467-475f-9cfd-994f39ab5bb5}
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{b7f975e4-2467-475f-9cfd-994f39ab5bb5}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D1DAC034-9FD9-4C13-A388-D2E10E57707F}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A8C2644D-BF72-4A89-A88C-D85F565F2F46}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1DAC034-9FD9-4C13-A388-D2E10E57707F}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3D86A75B-CB6B-4764-885D-CA6336F04BA2}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D1DAC034-9FD9-4C13-A388-D2E10E57707F}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{24F3378A-5B52-491F-AD90-88D583C42C77}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{58B849FB-ECBE-4F1B-BEE0-2DC418CF68F7}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{ACE0D5AB-50C8-4052-BD02-977569E56291}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{D1DAC034-9FD9-4C13-A388-D2E10E57707F}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{462862BE-9A5C-49A5-9CBD-A649EAC63645}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66DD22B9-6521-4B05-97DB-0EBC00B1DA5D}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{841FD004-57A2-4B49-BBDB-5897394619DB}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E4A994B0-5550-4680-A4C6-B9470B888069}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EE95078D-518C-4FD2-8093-FD1D4E33D3CA}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F9EB11AB-9384-4736-9B33-993940F88895}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A836234-186C-41A0-9863-40BECDEDED9F}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D1DAC034-9FD9-4C13-A388-D2E10E57707F}
[-] Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D1DAC034-9FD9-4C13-A388-D2E10E57707F}]
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
[-] Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Key Deleted : HKU\.DEFAULT\Software\AskToolbar
[-] Key Deleted : HKU\.DEFAULT\Software\ImInstaller
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKCU\Software\APN DTX
[-] Key Deleted : HKCU\Software\APN PIP
[-] Key Deleted : HKCU\Software\APN
[-] Key Deleted : HKCU\Software\APNDTX
[-] Key Deleted : HKCU\Software\Ask.com
[-] Key Deleted : HKCU\Software\AskPartnerNetwork
[-] Key Deleted : HKCU\Software\BABSOLUTION
[-] Key Deleted : HKCU\Software\BI
[-] Key Deleted : HKCU\Software\DataMngr
[-] Key Deleted : HKCU\Software\filescout
[-] Key Deleted : HKCU\Software\ilivid
[-] Key Deleted : HKCU\Software\ilividmoviestoolbar181
[-] Key Deleted : HKCU\Software\IM
[-] Key Deleted : HKCU\Software\ImInstaller
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\simplytech
[!] Key Not Deleted : HKCU\Software\Simplytech\HomeTab
[-] Key Deleted : HKCU\Software\Solvusoft
[-] Key Deleted : HKCU\Software\SweetIM
[-] Key Deleted : HKCU\Software\torch
[-] Key Deleted : HKCU\Software\Winamp Toolbar
[-] Key Deleted : HKCU\Software\WNLT
[-] Key Deleted : HKCU\Software\TNT2
[-] Key Deleted : HKCU\Software\CrossBrowser
[-] Key Deleted : HKCU\Software\SereneScreen
[-] Key Deleted : HKCU\Software\Crossbrowse
[-] Key Deleted : HKCU\Software\YorkNewCin
[-] Key Deleted : HKCU\Software\HighDefAction
[-] Key Deleted : HKCU\Software\ArenaHD
[-] Key Deleted : HKCU\Software\Coupon Time
[!] Key Not Deleted : HKCU\Software\Coupon Time
[-] Key Deleted : HKCU\Software\CinemaP-1.9cV14.08
[!] Key Not Deleted : HKCU\Software\Crossbrowse
[-] Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKCU\Software\AppDataLow\Software\ilividmoviestoolbar181
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKLM\SOFTWARE\APN
[-] Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
[-] Key Deleted : HKLM\SOFTWARE\AskToolbar
[-] Key Deleted : HKLM\SOFTWARE\Babylon
[-] Key Deleted : HKLM\SOFTWARE\BetterSurf
[-] Key Deleted : HKLM\SOFTWARE\DataMngr
[-] Key Deleted : HKLM\SOFTWARE\GlobalUpdate
[-] Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : HKLM\SOFTWARE\Solvusoft
[-] Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
[-] Key Deleted : HKLM\SOFTWARE\SweetIM
[-] Key Deleted : HKLM\SOFTWARE\torch
[-] Key Deleted : HKLM\SOFTWARE\Winamp Toolbar
[-] Key Deleted : HKLM\SOFTWARE\Mindspark
[-] Key Deleted : HKLM\SOFTWARE\Webexp Enhanced
[-] Key Deleted : HKLM\SOFTWARE\SereneScreen
[-] Key Deleted : HKLM\SOFTWARE\Crossbrowse
[-] Key Deleted : HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : HKLM\SOFTWARE\oursurfingSoftware
[-] Key Deleted : HKLM\SOFTWARE\ArenaHD
[-] Key Deleted : HKLM\SOFTWARE\searchult
[-] Key Deleted : HKLM\SOFTWARE\SecureWebChannel
[-] Key Deleted : HKLM\SOFTWARE\Coupon Time
[!] Key Not Deleted : HKLM\SOFTWARE\Coupon Time
[-] Key Deleted : HKLM\SOFTWARE\MediaWatchV1home666
[-] Key Deleted : HKLM\SOFTWARE\RichMediaViewV1release1
[-] Key Deleted : HKLM\SOFTWARE\CinemaP-1.9cV14.08
[!] Key Not Deleted : HKLM\SOFTWARE\Crossbrowse
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Toolbar
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7683B745-6060-41FD-AA75-0BBB383FEAD4}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B49962AF-CAB9-44DE-8729-A4369F44BA0D}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilividmoviestoolbar181CR
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilividmoviestoolbar181IE
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 3
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Toolbar
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Crossbrowse
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilividmoviestoolbarhaIE
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\oursurfing uninstall
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A428B273-73B2-E11F-895C-669BA9344EE5}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Elite Unzip
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CinemaP-1.9cV14.08
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Crossbrowse
[!] Key Not Deleted : [x64] HKCU\Software\APN DTX
[!] Key Not Deleted : [x64] HKCU\Software\APN PIP
[!] Key Not Deleted : [x64] HKCU\Software\APN
[!] Key Not Deleted : [x64] HKCU\Software\APNDTX
[!] Key Not Deleted : [x64] HKCU\Software\Ask.com
[!] Key Not Deleted : [x64] HKCU\Software\AskPartnerNetwork
[!] Key Not Deleted : [x64] HKCU\Software\BABSOLUTION
[!] Key Not Deleted : [x64] HKCU\Software\BI
[!] Key Not Deleted : [x64] HKCU\Software\DataMngr
[!] Key Not Deleted : [x64] HKCU\Software\filescout
[!] Key Not Deleted : [x64] HKCU\Software\ilivid
[!] Key Not Deleted : [x64] HKCU\Software\ilividmoviestoolbar181
[!] Key Not Deleted : [x64] HKCU\Software\IM
[!] Key Not Deleted : [x64] HKCU\Software\ImInstaller
[!] Key Not Deleted : [x64] HKCU\Software\InstalledBrowserExtensions
[!] Key Not Deleted : [x64] HKCU\Software\simplytech
[!] Key Not Deleted : [x64] HKCU\Software\Simplytech\HomeTab
[!] Key Not Deleted : [x64] HKCU\Software\Solvusoft
[!] Key Not Deleted : [x64] HKCU\Software\SweetIM
[!] Key Not Deleted : [x64] HKCU\Software\torch
[!] Key Not Deleted : [x64] HKCU\Software\Winamp Toolbar
[!] Key Not Deleted : [x64] HKCU\Software\WNLT
[!] Key Not Deleted : [x64] HKCU\Software\TNT2
[!] Key Not Deleted : [x64] HKCU\Software\CrossBrowser
[!] Key Not Deleted : [x64] HKCU\Software\SereneScreen
[!] Key Not Deleted : [x64] HKCU\Software\Crossbrowse
[!] Key Not Deleted : [x64] HKCU\Software\YorkNewCin
[!] Key Not Deleted : [x64] HKCU\Software\HighDefAction
[!] Key Not Deleted : [x64] HKCU\Software\ArenaHD
[!] Key Not Deleted : [x64] HKCU\Software\Coupon Time
[!] Key Not Deleted : [x64] HKCU\Software\Coupon Time
[!] Key Not Deleted : [x64] HKCU\Software\CinemaP-1.9cV14.08
[!] Key Not Deleted : [x64] HKCU\Software\Crossbrowse
[-] Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : [x64] HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : [x64] HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : [x64] HKLM\SOFTWARE\ArenaHD
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FileViewPro_is1
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Coupon Time
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Coupon Time
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\AppDataLow\Software\AskToolbar
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\AppDataLow\Software\Crossrider
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\AppDataLow\Software\ilividmoviestoolbar181
[!] Key Not Deleted : HKU\S-1-5-18\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\547B38670606DF14AA57B0BB83F3AE4D
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\547B38670606DF14AA57B0BB83F3AE4D
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\547B38670606DF14AA57B0BB83F3AE4D
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[!] Data Not Restored : HKCU\Software\Microsoft\Internet Explorer\Main [bProtector Start Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[!] Data Not Restored : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\Main [bProtector Start Page]
[!] Data Not Restored : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Key Deleted : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{526B1C9B-05F6-4376-ADE3-7DE79AC76A93}
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E18EFFE0-F4BA-44D4-86AC-B7665F5D6B9B}
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{FA51B62F-CA2F-4A03-B58E-E24F5B9174BC}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E18EFFE0-F4BA-44D4-86AC-B7665F5D6B9B}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{FA51B62F-CA2F-4A03-B58E-E24F5B9174BC}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
[!] Key Not Deleted : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{526B1C9B-05F6-4376-ADE3-7DE79AC76A93}
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\SearchScopes\{E18EFFE0-F4BA-44D4-86AC-B7665F5D6B9B}
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}
[!] Key Not Deleted : HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\Software\Microsoft\Internet Explorer\SearchScopes\{FA51B62F-CA2F-4A03-B58E-E24F5B9174BC}
[!] Key Not Deleted : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{526B1C9B-05F6-4376-ADE3-7DE79AC76A93}
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []

***** [ Web browsers ] *****

[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : websearch.ask.com
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mixidj.delta-search.com
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.sweetim.com
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : delta-search.com
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : dts.search.ask.com
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com_
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : oursurfing
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.oursurfing.com/?type=hp&ts=14395436 ... XXW0V22PZY
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://www.oursurfing.com/webfavicon.ico
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaabcbmongicmdegkmmfgdickgnnob
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaaiabcopkplhgaedhbloeejhhankf
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaojmikegpiepcfdkkjaplodkpfmlo
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : boipimhfjpakfgckhbljjengakjhkcbp
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dedmngkbaffkenlfdcbganndoghblmap
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : gflandjopdloblmlcoiidmncpinmmacn
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : jcdgjdiieiljkfkdcloehkohchhpekkn
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mbmpjbkgemhgalmeiigcdljkccfcafoj
[-] [C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mmifolfpllfdhilecpdpmemhelmanajl

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [76967 bytes] ##########
Nahoru
Uživatelský avatar
Marek-26
Přítel fóra
Přítel fóra
Příspěvky: 1000
Registrován: 16 pro 2006 15:53
Bydliště: Brüx/Praha

Re: Prosím o kotrolu logu - part1

#5 Příspěvek od Marek-26 »

No fuj, tam toho bylo víc, než jsem myslel a ještě tam toho spousta zůstala. Pozorně si pročtěte toto:

http://www.bleepingcomputer.com/combofi ... t-combofix

stahnete a ulozte nejlepe na plochu ComboFix

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano:

dale muze dojit k varovani ohledne rezidentniho stitu vaseho antiviru a upozorneni na nenainstalovanou konzoli pro zotaveni; tu nainstalujte.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, deaktivujte jeho rezidentni stit, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim Combofixu s rezidentem antispyware

po restartu aplikace vytvori log, ulozeny na C:/Combofix.txt (pri opakovanem pouziti jsou logy oznaceny Combofix2.txt atd.), jeho obsah vlozte sem
Nahoru
Mufff
Návštěvník
Návštěvník
Příspěvky: 92
Registrován: 14 dub 2009 15:12

Re: Prosím o kotrolu logu - part1

#6 Příspěvek od Mufff »

Zdravím. ComboFix log je:

ComboFix 15-09-03.01 - Ondra . 09. 2015 18:31:32.1.2 - x64
Microsoft Windows 8 6.2.9200.0.1250.420.1029.18.3960.2439 [GMT 2:00]
Spuštěný z: c:\users\Ondra\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Movies App\Datamngr
c:\program files (x86)\Movies App\Datamngr\DatamngrCoordinator.exe
c:\program files (x86)\Movies App\Datamngr\favicon.ico
c:\program files (x86)\Movies App\Datamngr\MoviesAppHelper.dll
c:\program files (x86)\Movies App\Datamngr\setmgrc3.cfg
c:\program files (x86)\Movies App\Datamngr\Uninstall.exe
c:\program files (x86)\Movies App\Datamngr\x64\setmgrc3.cfg
c:\users\Ondra\AppData\Roaming\Microsoft\Windows\Recent\ChickenInvaders2demo.url
c:\users\Ondra\AppData\Roaming\Microsoft\Windows\Recent\Thumbs.db
c:\windows\msdownld.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-08-04 do 2015-09-04 )))))))))))))))))))))))))))))))
.
.
2015-09-04 16:43 . 2015-09-04 16:43 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2015-09-04 16:43 . 2015-09-04 16:43 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-09-04 11:47 . 2015-09-04 12:16 -------- d-----w- C:\AdwCleaner
2015-09-04 06:11 . 2015-09-04 09:42 -------- d-----w- c:\program files\trend micro
2015-09-04 06:11 . 2015-09-04 06:20 -------- d-----w- C:\rsit
2015-08-29 10:46 . 2015-08-13 12:34 19292160 ----a-w- c:\windows\system32\mshtml.dll
2015-08-29 10:45 . 2015-08-13 10:49 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2015-08-29 10:45 . 2015-08-13 10:44 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2015-08-18 12:41 . 2015-08-18 12:41 -------- d-----w- c:\users\Ondra\AppData\Local\CEF
2015-08-14 10:27 . 2015-08-14 10:27 -------- d-----w- c:\program files (x86)\0b19452d-7570-45e0-b1eb-dc53d0adbfb9
2015-08-14 09:19 . 2015-08-18 13:20 -------- d-----w- c:\users\Ondra\AppData\Roaming\Network Menager
2015-08-14 09:19 . 2015-08-14 09:19 -------- d-----w- c:\users\Ondra\AppData\Local\Opera Software
2015-08-14 09:19 . 2015-08-14 09:19 -------- d-----w- c:\users\Ondra\AppData\Roaming\Opera Software
2015-08-14 09:15 . 2015-08-18 12:44 -------- d-----w- c:\program files (x86)\Opera
2015-08-14 09:14 . 2015-08-14 09:15 -------- d-----w- c:\programdata\2WinManPro2
2015-08-14 09:14 . 2015-08-14 09:14 0 ----a-w- c:\windows\prleth.sys
2015-08-14 09:14 . 2015-08-14 09:14 0 ----a-w- c:\windows\hgfs.sys
2015-08-14 08:56 . 2015-08-14 08:56 -------- d-----w- c:\program files (x86)\Origin Games
2015-08-14 08:31 . 2015-08-14 08:40 -------- d-----w- c:\program files (x86)\The Sims 4
2015-08-13 15:53 . 2015-07-30 13:11 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 15:53 . 2015-07-30 13:10 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 15:46 . 2015-07-13 21:05 54272 ----a-w- c:\windows\system32\basesrv.dll
2015-08-13 15:46 . 2015-07-13 21:05 48128 ----a-w- c:\windows\system32\csrsrv.dll
2015-08-13 15:40 . 2015-07-15 16:09 6969688 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-08-13 15:40 . 2015-07-15 16:06 1824296 ----a-w- c:\windows\system32\ntdll.dll
2015-08-13 15:40 . 2015-07-15 13:29 1333248 ----a-w- c:\windows\system32\sysmain.dll
2015-08-13 15:40 . 2015-07-15 16:09 95064 ----a-w- c:\windows\system32\drivers\mountmgr.sys
2015-08-13 15:40 . 2015-07-15 13:49 1410000 ----a-w- c:\windows\SysWow64\ntdll.dll
2015-08-13 15:40 . 2015-07-15 19:06 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\mountmgr.sys.mui
2015-08-13 15:40 . 2015-07-15 13:36 2560 ----a-w- c:\windows\system32\drivers\en-US\mountmgr.sys.mui
2015-08-13 15:38 . 2015-07-01 13:00 227328 ----a-w- c:\windows\system32\WebClnt.dll
2015-08-13 15:38 . 2015-07-01 11:42 198656 ----a-w- c:\windows\SysWow64\WebClnt.dll
2015-08-13 15:38 . 2015-07-01 12:58 104448 ----a-w- c:\windows\system32\davclnt.dll
2015-08-13 15:38 . 2015-07-01 11:41 86016 ----a-w- c:\windows\SysWow64\davclnt.dll
2015-08-13 15:18 . 2015-07-09 21:46 5982208 ----a-w- c:\windows\system32\mstscax.dll
2015-08-13 15:18 . 2015-07-09 20:17 5095424 ----a-w- c:\windows\SysWow64\mstscax.dll
2015-08-13 15:18 . 2015-07-09 20:16 269824 ----a-w- c:\windows\SysWow64\aaclient.dll
2015-08-13 15:18 . 2015-07-09 21:44 322560 ----a-w- c:\windows\system32\aaclient.dll
2015-08-13 15:15 . 2015-05-11 22:49 527704 ----a-w- c:\windows\system32\mcupdate_GenuineIntel.dll
2015-08-13 15:14 . 2015-07-28 14:13 1116160 ----a-w- c:\windows\system32\appraiser.dll
2015-08-13 15:14 . 2015-07-28 14:13 774144 ----a-w- c:\windows\system32\invagent.dll
2015-08-13 15:14 . 2015-07-28 14:13 743424 ----a-w- c:\windows\system32\generaltel.dll
2015-08-13 15:14 . 2015-07-28 14:13 437248 ----a-w- c:\windows\system32\devinv.dll
2015-08-13 15:14 . 2015-07-28 13:12 1148416 ----a-w- c:\windows\system32\aeinv.dll
2015-08-13 15:14 . 2015-07-28 16:25 25776 ----a-w- c:\windows\system32\CompatTelRunner.exe
2015-08-13 15:14 . 2015-07-28 14:13 69120 ----a-w- c:\windows\system32\acmigration.dll
2015-08-13 15:05 . 2015-07-29 13:52 1840640 ----a-w- c:\windows\system32\DWrite.dll
2015-08-13 15:05 . 2015-07-27 22:40 4064768 ----a-w- c:\windows\system32\win32k.sys
2015-08-13 15:04 . 2015-07-29 13:52 1280000 ----a-w- c:\windows\system32\FntCache.dll
2015-08-13 15:04 . 2015-07-29 14:45 1412608 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-08-13 15:04 . 2015-07-27 22:40 366592 ----a-w- c:\windows\system32\atmfd.dll
2015-08-13 15:04 . 2015-07-29 14:45 35328 ----a-w- c:\windows\SysWow64\atmlib.dll
2015-08-13 15:04 . 2015-07-29 13:52 46080 ----a-w- c:\windows\system32\atmlib.dll
2015-08-13 15:04 . 2015-07-27 22:42 304128 ----a-w- c:\windows\SysWow64\atmfd.dll
2015-08-13 14:54 . 2015-07-09 20:18 233984 ----a-w- c:\windows\SysWow64\notepad.exe
2015-08-13 14:54 . 2015-07-09 21:47 243712 ----a-w- c:\windows\system32\notepad.exe
2015-08-13 14:54 . 2015-07-09 21:47 243712 ----a-w- c:\windows\notepad.exe
2015-08-13 14:53 . 2015-07-13 21:23 1744384 ----a-w- c:\windows\SysWow64\msxml6.dll
2015-08-13 14:53 . 2015-07-13 21:05 2340864 ----a-w- c:\windows\system32\msxml6.dll
2015-08-13 14:53 . 2015-07-13 21:23 1422336 ----a-w- c:\windows\SysWow64\msxml3.dll
2015-08-13 14:53 . 2015-07-13 21:05 1850880 ----a-w- c:\windows\system32\msxml3.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-08-29 06:53 . 2014-11-25 18:16 269992 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin
2015-08-26 07:36 . 2015-04-21 16:01 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2015-08-13 16:19 . 2013-01-11 19:46 132483416 ----a-w- c:\windows\system32\MRT.exe
2015-08-13 07:55 . 2015-06-09 18:01 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2015-08-08 02:27 . 2015-02-20 16:08 177632 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-08-08 02:27 . 2015-02-20 16:08 793544 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-06-29 13:27 . 2015-07-26 11:54 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-06-28 16:33 . 2015-05-18 16:32 442264 ----a-w- c:\windows\system32\drivers\aswsp.sys
2015-06-27 16:36 . 2015-07-26 06:52 171352 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2015-06-27 13:56 . 2015-07-26 06:52 452608 ----a-w- c:\windows\SysWow64\SHCore.dll
2015-06-27 13:55 . 2015-07-26 06:52 273920 ----a-w- c:\windows\SysWow64\msv1_0.dll
2015-06-27 13:55 . 2015-07-26 06:52 668160 ----a-w- c:\windows\SysWow64\kerberos.dll
2015-06-27 13:46 . 2015-07-26 06:52 588800 ----a-w- c:\windows\system32\SHCore.dll
2015-06-27 13:46 . 2015-07-26 06:52 1314816 ----a-w- c:\windows\system32\rpcrt4.dll
2015-06-27 13:46 . 2015-07-26 06:52 318464 ----a-w- c:\windows\system32\msv1_0.dll
2015-06-27 13:46 . 2015-07-26 06:52 829952 ----a-w- c:\windows\system32\kerberos.dll
2015-06-27 13:23 . 2015-07-26 06:52 694784 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2015-06-25 18:29 . 2015-07-26 06:52 210432 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2015-06-25 18:27 . 2015-07-26 06:52 281600 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2015-06-17 14:13 . 2015-07-26 06:47 1150264 ----a-w- c:\windows\SysWow64\ole32.dll
2015-06-17 13:44 . 2015-07-26 06:47 1567560 ----a-w- c:\windows\system32\ole32.dll
2015-06-15 15:22 . 2015-07-26 06:47 62976 ----a-w- c:\windows\SysWow64\msiexec.exe
2015-06-15 15:22 . 2015-07-26 06:47 8858112 ----a-w- c:\windows\SysWow64\twinui.dll
2015-06-15 15:22 . 2015-07-26 06:47 2416640 ----a-w- c:\windows\SysWow64\msi.dll
2015-06-15 15:22 . 2015-07-26 06:47 2037760 ----a-w- c:\windows\SysWow64\authui.dll
2015-06-15 15:21 . 2015-07-26 06:47 124416 ----a-w- c:\windows\system32\msiexec.exe
2015-06-15 15:20 . 2015-07-26 06:47 10116608 ----a-w- c:\windows\system32\twinui.dll
2015-06-15 15:20 . 2015-07-26 06:47 2886144 ----a-w- c:\windows\system32\msi.dll
2015-06-15 15:20 . 2015-07-26 06:48 97280 ----a-w- c:\windows\system32\mshtmled.dll
2015-06-15 15:20 . 2015-07-26 06:48 255488 ----a-w- c:\windows\system32\iedkcs32.dll
2015-06-15 15:19 . 2015-07-26 06:48 281600 ----a-w- c:\windows\system32\dxtrans.dll
2015-06-15 15:19 . 2015-07-26 06:47 2307072 ----a-w- c:\windows\system32\authui.dll
2015-06-15 15:19 . 2015-07-26 06:48 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2015-06-11 20:29 . 2015-07-26 06:47 1302528 ----a-w- c:\windows\system32\gdi32.dll
2015-06-11 16:27 . 2015-07-26 06:47 1024000 ----a-w- c:\windows\SysWow64\gdi32.dll
2015-06-09 13:57 . 2015-07-26 06:47 3248640 ----a-w- c:\windows\system32\rdpcorets.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 189464 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 189464 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 189464 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2013-03-03 3093624]
"cz.seznam.software.autoupdate"="c:\users\Ondra\AppData\Roaming\Seznam.cz\szninstall.exe" [2013-05-16 1062472]
"cz.seznam.software.szndesktop"="c:\users\Ondra\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" [2013-04-12 92664]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2015-08-19 2899136]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2015-09-04 3638256]
"MK LOL"="c:\program files (x86)\MKJogo\MK IM\Bin\MKIM.exe" [2015-06-10 1092296]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-02-26 31344744]
"Dropbox Update"="c:\users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe" [2015-06-19 134512]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"="c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe" [2012-07-26 508656]
"332BigDog"="c:\program files (x86)\USB Camera2\VM332STI.EXE" [2012-03-20 548864]
"YouCam Mirage"="c:\program files (x86)\Lenovo\YouCam\YCMMirage.exe" [2012-07-27 136488]
"YouCam Tray"="c:\program files (x86)\Lenovo\YouCam\YouCamTray.exe" [2012-07-27 167024]
"UpdateP2GShortCut"="c:\program files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2012-04-19 217088]
"RemoteControl10"="c:\program files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe" [2012-03-29 91432]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"WinampAgent"="c:\program files (x86)\Winamp\winampa.exe" [2011-12-09 74752]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-10-11 59280]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-03-21 1061960]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2014-09-26 271744]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-12-13 3838800]
"4StoryPrePatch"="c:\program files (x86)\GameforgeLive\Games\CZE_ces\4Story\PrePatch.exe" [2014-04-24 327680]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-05-18 5515496]
.
c:\users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Ondra\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2015-7-28 39175960]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"DisableCAD"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R1 {24720a6a-1c0d-497f-a74e-2030c479b761}Gw64;{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64;c:\windows\system32\drivers\{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64.sys;c:\windows\SYSNATIVE\drivers\{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64.sys [x]
R1 {70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64;{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64;c:\windows\system32\drivers\{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64.sys;c:\windows\SYSNATIVE\drivers\{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64.sys [x]
R1 {857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64;{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64;c:\windows\system32\drivers\{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64.sys;c:\windows\SYSNATIVE\drivers\{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64.sys [x]
R1 {9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64;{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64;c:\windows\system32\drivers\{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64.sys;c:\windows\SYSNATIVE\drivers\{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64.sys [x]
R1 {db97384e-1f00-468a-bbb9-c073b671999e}Gw64;{db97384e-1f00-468a-bbb9-c073b671999e}Gw64;c:\windows\system32\drivers\{db97384e-1f00-468a-bbb9-c073b671999e}Gw64.sys;c:\windows\SYSNATIVE\drivers\{db97384e-1f00-468a-bbb9-c073b671999e}Gw64.sys [x]
R1 {f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64;{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64;c:\windows\system32\drivers\{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64.sys;c:\windows\SYSNATIVE\drivers\{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64.sys [x]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 tor;Tor Win32 Service;c:\program files (x86)\Tor\tor.exe;c:\program files (x86)\Tor\tor.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files (x86)\Garena Plus\Room\safedrv.sys;c:\program files (x86)\Garena Plus\Room\safedrv.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUVStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUVStor.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssudserd.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\System32\drivers\dtsoftbus01.sys;c:\windows\SYSNATIVE\drivers\dtsoftbus01.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe;c:\windows\SYSNATIVE\CxAudMsg64.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 ZAtheros Bt&Wlan Coex Agent;ZAtheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys;c:\windows\SYSNATIVE\drivers\AcpiVpc.sys [x]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]
S3 vm332avs;Lenovo Camera2;c:\windows\System32\Drivers\vm332avs.sys;c:\windows\SYSNATIVE\Drivers\vm332avs.sys [x]
S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\System32\drivers\WUDFRd.sys;c:\windows\SYSNATIVE\drivers\WUDFRd.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-09-02 20:29 997704 ----a-w- c:\program files (x86)\Google\Chrome\Application\45.0.2454.85\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-06-10 c:\windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2013-03-13 16:16]
.
2015-08-15 c:\windows\Tasks\DLL-Files.Com Fixer_Updates.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2013-03-13 16:16]
.
2015-09-04 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002Core.job
- c:\users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19 08:47]
.
2015-09-04 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002UA.job
- c:\users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19 08:47]
.
2015-08-30 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002Core.job
- c:\users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-06-03 17:14]
.
2015-09-04 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002UA.job
- c:\users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-06-03 17:14]
.
2015-09-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-13 06:24]
.
2015-09-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-13 06:24]
.
2015-09-01 c:\windows\Tasks\Norton Security Scan for Ondra.job
- c:\progra~2\NORTON~2\Engine\410~1.28\Nss.exe [2014-04-06 06:04]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-05-18 16:32 722400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 226328 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 226328 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 226328 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 226328 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp]
@="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}"
[HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending]
@="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}"
[HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot]
@="{A759AFF6-5851-457D-A540-F4ECED148351}"
[HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared]
@="{1574C9EF-7D58-488F-B358-8B78C1538F51}"
[HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-07 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-07 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-07 440640]
"SmartAudio"="c:\program files\CONEXANT\SAII\SACpl.exe" [2012-06-13 1647616]
"cAudioFilterAgent"="c:\program files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe" [2012-06-14 887968]
"BtvStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2012-08-20 127616]
"Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2012-10-19 17080376]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2012-10-19 191544]
"WrtMon.exe"="c:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2006-09-20 20480]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://searchsimple-a.akamaihd.net/?affID=mt-re
mLocal Page = c:\windows\SysWOW64\blank.htm
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mSearch Page = hxxp://www.google.com
uInternet Settings,ProxyServer = 127.0.0.1:8118
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 1.1.1.1 1.1.1.10
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKCU-Run-GoogleChromeAutoLaunch_4A843355F8030D5EB910D792C116EA6D - c:\program files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
Wow6432Node-HKCU-Run-Yahoo! Search - c:\users\Ondra\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\dsrlte.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-ApnTBMon - c:\program files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
HKLM_Wow6432Node-ActiveSetup-installed components - c:\program files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
AddRemove-GotClip - c:\program files (x86)\GotClip\uninstall.exe
AddRemove-Prompt Downloader - c:\program files (x86)\Prompt Downloader\uninstall.exe
AddRemove-SereneScreen Marine Aquarium Time 2_is1 - c:\program files (x86)\SereneScreen\Marine Aquarium Time 2\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Celkový čas: 2015-09-04 18:51:07
ComboFix-quarantined-files.txt 2015-09-04 16:51
.
Před spuštěním: 286 496 870 400 bytes free
Po spuštění: 286 408 048 640 bytes free
.
- - End Of File - - 6695E470E21CB10CC8BAA371355DBB73
Nahoru
Uživatelský avatar
Marek-26
Přítel fóra
Přítel fóra
Příspěvky: 1000
Registrován: 16 pro 2006 15:53
Bydliště: Brüx/Praha

Re: Prosím o kotrolu logu - part1

#7 Příspěvek od Marek-26 »

Otevřete si Poznámkový blok

do něj zkopírujte skript z následujícího okna:

Kód: Vybrat vše


KillAll::

Folder::
c:\programdata\2WinManPro2
c:\program files (x86)\0b19452d-7570-45e0-b1eb-dc53d0adbfb9
c:\users\Ondra\AppData\Roaming\Network Menager
c:\users\Ondra\AppData\Local\Facebook\
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002UA.job


File::
c:\windows\prleth.sys
c:\windows\hgfs.sys
c:\windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
c:\windows\system32\drivers\{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64.sys
c:\windows\SYSNATIVE\drivers\{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64.sys
c:\windows\system32\drivers\{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64.sys
c:\windows\SYSNATIVE\drivers\{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64.sys
c:\windows\system32\drivers\{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64.sys
c:\windows\SYSNATIVE\drivers\{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64.sys
c:\windows\system32\drivers\{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64.sys
c:\windows\SYSNATIVE\drivers\{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64.sys
c:\windows\system32\drivers\{db97384e-1f00-468a-bbb9-c073b671999e}Gw64.sys
c:\windows\SYSNATIVE\drivers\{db97384e-1f00-468a-bbb9-c073b671999e}Gw64.sys
c:\windows\system32\drivers\{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64.sys
c:\windows\SYSNATIVE\drivers\{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64.sys

Reg::
[-HKEY_CURRENT_USER\Software\Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Pando Media Booster"= -

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"= -
"seznam-listicka-distribuce"= -
"SunJavaUpdateSched"= -

Driver::
{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64
{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64
{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64
{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64
{db97384e-1f00-468a-bbb9-c073b671999e}Gw64
{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64
ulozte vami vytvoreny textovy soubor jako CFScript.txt na plochu

po ulozeni uchopte vami vytvoreny skript levym tlacitkem mysi a presunte jej nad ikonu Combofixu, nad niz skript upustte:

Obrázek

po aplikaci by na vas mel vybafnout dalsi log, vlozte jej sem :)

Upozorneni: je mozne, ze po aplikaci skriptu a restartu nenabehnou Windows, v takovem pripade znovu restartujte, po restartu mackejte F8 a zvolte Posledni znamou fukncni konfiguraci :)
Nahoru
Mufff
Návštěvník
Návštěvník
Příspěvky: 92
Registrován: 14 dub 2009 15:12

Re: Prosím o kotrolu logu - part1

#8 Příspěvek od Mufff »

Zdravím. Zasílám nový log.


ComboFix 15-09-03.01 - Ondra . 09. 2015 20:49:38.2.2 - x64
Microsoft Windows 8 6.2.9200.0.1250.420.1029.18.3960.2127 [GMT 2:00]
Spuštěný z: c:\users\Ondra\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Ondra\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\hgfs.sys"
"c:\windows\prleth.sys"
"c:\windows\system32\drivers\{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64.sys"
"c:\windows\system32\drivers\{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64.sys"
"c:\windows\system32\drivers\{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64.sys"
"c:\windows\system32\drivers\{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64.sys"
"c:\windows\system32\drivers\{db97384e-1f00-468a-bbb9-c073b671999e}Gw64.sys"
"c:\windows\system32\drivers\{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64.sys"
"c:\windows\system32\drivers\{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64.sys"
"c:\windows\system32\drivers\{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64.sys"
"c:\windows\system32\drivers\{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64.sys"
"c:\windows\system32\drivers\{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64.sys"
"c:\windows\system32\drivers\{db97384e-1f00-468a-bbb9-c073b671999e}Gw64.sys"
"c:\windows\system32\drivers\{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64.sys"
"c:\windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\0b19452d-7570-45e0-b1eb-dc53d0adbfb9
c:\programdata\2WinManPro2
c:\programdata\2WinManPro2\ProtectWindowsManager.exe
c:\programdata\2WinManPro2\updateconf
c:\users\Ondra\AppData\Local\Facebook
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\FacebookCrashHandler.exe
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdate.exe
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdateHelper.msi
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ar.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bg.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bn.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ca.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_cs.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_da.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_de.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_el.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en-GB.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es-419.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_et.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fa.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fi.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fil.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fr.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_gu.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hi.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hr.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hu.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_id.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_is.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_it.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_iw.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ja.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_kn.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ko.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lt.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lv.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ml.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_mr.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ms.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_nl.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_no.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_or.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pl.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-BR.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-PT.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ro.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ru.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sk.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sl.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sr.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sv.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ta.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_te.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_th.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_tr.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_uk.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ur.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_vi.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-CN.dll
c:\users\Ondra\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-TW.dll
c:\users\Ondra\AppData\Local\Facebook\Update\FacebookUpdate.exe
c:\users\Ondra\AppData\Local\Facebook\Video\Common\FacebookVideoCalling
c:\users\Ondra\AppData\Local\Facebook\Video\Common\fb#3aac5aejkazzpndafo1bxh6olhfhmjmalydbjrb2bhu8gk0dkqp4iga258zdr9rqbrl_k\config.lck
c:\users\Ondra\AppData\Local\Facebook\Video\Common\fb#3aac5aejkazzpndafo1bxh6olhfhmjmalydbjrb2bhu8gk0dkqp4iga258zdr9rqbrl_k\config.xml
c:\users\Ondra\AppData\Local\Facebook\Video\Common\fb#3aac5aejkazzpndafo1bxh6olhfhmjmalydbjrb2bhu8gk0dkqp4iga258zdr9rqbrl_k\contactgroup256.dbb
c:\users\Ondra\AppData\Local\Facebook\Video\Common\fb#3aac5aejkazzpndafo1bxh6olhfhmjmalydbjrb2bhu8gk0dkqp4iga258zdr9rqbrl_k\index2.dat
c:\users\Ondra\AppData\Local\Facebook\Video\Common\fb#3aac5aejkazzpndafo1bxh6olhfhmjmalydbjrb2bhu8gk0dkqp4iga258zdr9rqbrl_k\main.lock
c:\users\Ondra\AppData\Local\Facebook\Video\Common\fb#3aac5aejkazzpndafo1bxh6olhfhmjmalydbjrb2bhu8gk0dkqp4iga258zdr9rqbrl_k\profile256.dbb
c:\users\Ondra\AppData\Local\Facebook\Video\Common\shared.lck
c:\users\Ondra\AppData\Local\Facebook\Video\Common\shared.xml
c:\users\Ondra\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
c:\users\Ondra\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe
c:\users\Ondra\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
c:\users\Ondra\AppData\Local\Facebook\Video\Skype\third-party_attributions.txt
c:\users\Ondra\AppData\Roaming\Network Menager
c:\users\Ondra\AppData\Roaming\Network Menager\trz4920.tmp
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_{24720a6a-1c0d-497f-a74e-2030c479b761}Gw64
-------\Service_{70a16b63-7ec8-4c35-a1de-12751e3d9375}Gw64
-------\Service_{857b30e2-58a8-4390-9fe4-040508fe0dcc}Gw64
-------\Service_{9f2ac096-af5a-4c47-ab9d-0efd1379eed3}Gw64
-------\Service_{db97384e-1f00-468a-bbb9-c073b671999e}Gw64
-------\Service_{f3e41bda-246e-4159-bfab-605b34e2ce62}Gw64
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-08-05 do 2015-09-05 )))))))))))))))))))))))))))))))
.
.
2015-09-05 19:02 . 2015-09-05 19:02 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2015-09-05 19:02 . 2015-09-05 19:02 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-09-04 11:47 . 2015-09-04 12:16 -------- d-----w- C:\AdwCleaner
2015-09-04 06:11 . 2015-09-04 09:42 -------- d-----w- c:\program files\trend micro
2015-09-04 06:11 . 2015-09-04 06:20 -------- d-----w- C:\rsit
2015-08-29 10:46 . 2015-08-13 12:34 19292160 ----a-w- c:\windows\system32\mshtml.dll
2015-08-29 10:45 . 2015-08-13 10:49 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2015-08-29 10:45 . 2015-08-13 10:44 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2015-08-18 12:41 . 2015-08-18 12:41 -------- d-----w- c:\users\Ondra\AppData\Local\CEF
2015-08-14 09:19 . 2015-08-14 09:19 -------- d-----w- c:\users\Ondra\AppData\Local\Opera Software
2015-08-14 09:19 . 2015-08-14 09:19 -------- d-----w- c:\users\Ondra\AppData\Roaming\Opera Software
2015-08-14 09:15 . 2015-08-18 12:44 -------- d-----w- c:\program files (x86)\Opera
2015-08-14 09:14 . 2015-08-14 09:14 0 ----a-w- c:\windows\prleth.sys
2015-08-14 09:14 . 2015-08-14 09:14 0 ----a-w- c:\windows\hgfs.sys
2015-08-14 08:56 . 2015-08-14 08:56 -------- d-----w- c:\program files (x86)\Origin Games
2015-08-14 08:31 . 2015-08-14 08:40 -------- d-----w- c:\program files (x86)\The Sims 4
2015-08-13 15:53 . 2015-07-30 13:11 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 15:53 . 2015-07-30 13:10 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 15:46 . 2015-07-13 21:05 54272 ----a-w- c:\windows\system32\basesrv.dll
2015-08-13 15:46 . 2015-07-13 21:05 48128 ----a-w- c:\windows\system32\csrsrv.dll
2015-08-13 15:40 . 2015-07-15 16:09 6969688 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-08-13 15:40 . 2015-07-15 16:06 1824296 ----a-w- c:\windows\system32\ntdll.dll
2015-08-13 15:40 . 2015-07-15 13:29 1333248 ----a-w- c:\windows\system32\sysmain.dll
2015-08-13 15:40 . 2015-07-15 16:09 95064 ----a-w- c:\windows\system32\drivers\mountmgr.sys
2015-08-13 15:40 . 2015-07-15 13:49 1410000 ----a-w- c:\windows\SysWow64\ntdll.dll
2015-08-13 15:40 . 2015-07-15 19:06 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\mountmgr.sys.mui
2015-08-13 15:40 . 2015-07-15 13:36 2560 ----a-w- c:\windows\system32\drivers\en-US\mountmgr.sys.mui
2015-08-13 15:38 . 2015-07-01 13:00 227328 ----a-w- c:\windows\system32\WebClnt.dll
2015-08-13 15:38 . 2015-07-01 11:42 198656 ----a-w- c:\windows\SysWow64\WebClnt.dll
2015-08-13 15:38 . 2015-07-01 12:58 104448 ----a-w- c:\windows\system32\davclnt.dll
2015-08-13 15:38 . 2015-07-01 11:41 86016 ----a-w- c:\windows\SysWow64\davclnt.dll
2015-08-13 15:18 . 2015-07-09 21:46 5982208 ----a-w- c:\windows\system32\mstscax.dll
2015-08-13 15:18 . 2015-07-09 20:17 5095424 ----a-w- c:\windows\SysWow64\mstscax.dll
2015-08-13 15:18 . 2015-07-09 20:16 269824 ----a-w- c:\windows\SysWow64\aaclient.dll
2015-08-13 15:18 . 2015-07-09 21:44 322560 ----a-w- c:\windows\system32\aaclient.dll
2015-08-13 15:15 . 2015-05-11 22:49 527704 ----a-w- c:\windows\system32\mcupdate_GenuineIntel.dll
2015-08-13 15:14 . 2015-07-28 14:13 1116160 ----a-w- c:\windows\system32\appraiser.dll
2015-08-13 15:14 . 2015-07-28 14:13 774144 ----a-w- c:\windows\system32\invagent.dll
2015-08-13 15:14 . 2015-07-28 14:13 743424 ----a-w- c:\windows\system32\generaltel.dll
2015-08-13 15:14 . 2015-07-28 14:13 437248 ----a-w- c:\windows\system32\devinv.dll
2015-08-13 15:14 . 2015-07-28 13:12 1148416 ----a-w- c:\windows\system32\aeinv.dll
2015-08-13 15:14 . 2015-07-28 16:25 25776 ----a-w- c:\windows\system32\CompatTelRunner.exe
2015-08-13 15:14 . 2015-07-28 14:13 69120 ----a-w- c:\windows\system32\acmigration.dll
2015-08-13 15:05 . 2015-07-29 13:52 1840640 ----a-w- c:\windows\system32\DWrite.dll
2015-08-13 15:05 . 2015-07-27 22:40 4064768 ----a-w- c:\windows\system32\win32k.sys
2015-08-13 15:04 . 2015-07-29 13:52 1280000 ----a-w- c:\windows\system32\FntCache.dll
2015-08-13 15:04 . 2015-07-29 14:45 1412608 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-08-13 15:04 . 2015-07-27 22:40 366592 ----a-w- c:\windows\system32\atmfd.dll
2015-08-13 15:04 . 2015-07-29 14:45 35328 ----a-w- c:\windows\SysWow64\atmlib.dll
2015-08-13 15:04 . 2015-07-29 13:52 46080 ----a-w- c:\windows\system32\atmlib.dll
2015-08-13 15:04 . 2015-07-27 22:42 304128 ----a-w- c:\windows\SysWow64\atmfd.dll
2015-08-13 14:54 . 2015-07-09 20:18 233984 ----a-w- c:\windows\SysWow64\notepad.exe
2015-08-13 14:54 . 2015-07-09 21:47 243712 ----a-w- c:\windows\system32\notepad.exe
2015-08-13 14:54 . 2015-07-09 21:47 243712 ----a-w- c:\windows\notepad.exe
2015-08-13 14:53 . 2015-07-13 21:23 1744384 ----a-w- c:\windows\SysWow64\msxml6.dll
2015-08-13 14:53 . 2015-07-13 21:05 2340864 ----a-w- c:\windows\system32\msxml6.dll
2015-08-13 14:53 . 2015-07-13 21:23 1422336 ----a-w- c:\windows\SysWow64\msxml3.dll
2015-08-13 14:53 . 2015-07-13 21:05 1850880 ----a-w- c:\windows\system32\msxml3.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-08-29 06:53 . 2014-11-25 18:16 269992 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin
2015-08-26 07:36 . 2015-04-21 16:01 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2015-08-13 16:19 . 2013-01-11 19:46 132483416 ----a-w- c:\windows\system32\MRT.exe
2015-08-13 07:55 . 2015-06-09 18:01 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2015-08-08 02:27 . 2015-02-20 16:08 177632 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-08-08 02:27 . 2015-02-20 16:08 793544 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-06-29 13:27 . 2015-07-26 11:54 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-06-28 16:33 . 2015-05-18 16:32 442264 ----a-w- c:\windows\system32\drivers\aswsp.sys
2015-06-27 16:36 . 2015-07-26 06:52 171352 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2015-06-27 13:56 . 2015-07-26 06:52 452608 ----a-w- c:\windows\SysWow64\SHCore.dll
2015-06-27 13:55 . 2015-07-26 06:52 273920 ----a-w- c:\windows\SysWow64\msv1_0.dll
2015-06-27 13:55 . 2015-07-26 06:52 668160 ----a-w- c:\windows\SysWow64\kerberos.dll
2015-06-27 13:46 . 2015-07-26 06:52 588800 ----a-w- c:\windows\system32\SHCore.dll
2015-06-27 13:46 . 2015-07-26 06:52 1314816 ----a-w- c:\windows\system32\rpcrt4.dll
2015-06-27 13:46 . 2015-07-26 06:52 318464 ----a-w- c:\windows\system32\msv1_0.dll
2015-06-27 13:46 . 2015-07-26 06:52 829952 ----a-w- c:\windows\system32\kerberos.dll
2015-06-27 13:23 . 2015-07-26 06:52 694784 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2015-06-25 18:29 . 2015-07-26 06:52 210432 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2015-06-25 18:27 . 2015-07-26 06:52 281600 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2015-06-17 14:13 . 2015-07-26 06:47 1150264 ----a-w- c:\windows\SysWow64\ole32.dll
2015-06-17 13:44 . 2015-07-26 06:47 1567560 ----a-w- c:\windows\system32\ole32.dll
2015-06-15 15:22 . 2015-07-26 06:47 62976 ----a-w- c:\windows\SysWow64\msiexec.exe
2015-06-15 15:22 . 2015-07-26 06:47 8858112 ----a-w- c:\windows\SysWow64\twinui.dll
2015-06-15 15:22 . 2015-07-26 06:47 2416640 ----a-w- c:\windows\SysWow64\msi.dll
2015-06-15 15:22 . 2015-07-26 06:47 2037760 ----a-w- c:\windows\SysWow64\authui.dll
2015-06-15 15:21 . 2015-07-26 06:47 124416 ----a-w- c:\windows\system32\msiexec.exe
2015-06-15 15:20 . 2015-07-26 06:47 10116608 ----a-w- c:\windows\system32\twinui.dll
2015-06-15 15:20 . 2015-07-26 06:47 2886144 ----a-w- c:\windows\system32\msi.dll
2015-06-15 15:20 . 2015-07-26 06:48 97280 ----a-w- c:\windows\system32\mshtmled.dll
2015-06-15 15:20 . 2015-07-26 06:48 255488 ----a-w- c:\windows\system32\iedkcs32.dll
2015-06-15 15:19 . 2015-07-26 06:48 281600 ----a-w- c:\windows\system32\dxtrans.dll
2015-06-15 15:19 . 2015-07-26 06:47 2307072 ----a-w- c:\windows\system32\authui.dll
2015-06-15 15:19 . 2015-07-26 06:48 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2015-06-11 20:29 . 2015-07-26 06:47 1302528 ----a-w- c:\windows\system32\gdi32.dll
2015-06-11 16:27 . 2015-07-26 06:47 1024000 ----a-w- c:\windows\SysWow64\gdi32.dll
2015-06-09 13:57 . 2015-07-26 06:47 3248640 ----a-w- c:\windows\system32\rdpcorets.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 189464 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 189464 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 189464 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2013-03-03 3093624]
"cz.seznam.software.autoupdate"="c:\users\Ondra\AppData\Roaming\Seznam.cz\szninstall.exe" [2013-05-16 1062472]
"cz.seznam.software.szndesktop"="c:\users\Ondra\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" [2013-04-12 92664]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2015-08-19 2899136]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2015-09-04 3638256]
"MK LOL"="c:\program files (x86)\MKJogo\MK IM\Bin\MKIM.exe" [2015-06-10 1092296]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-02-26 31344744]
"Dropbox Update"="c:\users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe" [2015-06-19 134512]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"="c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe" [2012-07-26 508656]
"332BigDog"="c:\program files (x86)\USB Camera2\VM332STI.EXE" [2012-03-20 548864]
"YouCam Mirage"="c:\program files (x86)\Lenovo\YouCam\YCMMirage.exe" [2012-07-27 136488]
"YouCam Tray"="c:\program files (x86)\Lenovo\YouCam\YouCamTray.exe" [2012-07-27 167024]
"UpdateP2GShortCut"="c:\program files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2012-04-19 217088]
"RemoteControl10"="c:\program files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe" [2012-03-29 91432]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"WinampAgent"="c:\program files (x86)\Winamp\winampa.exe" [2011-12-09 74752]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-10-11 59280]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-03-21 1061960]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2014-09-26 271744]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-12-13 3838800]
"4StoryPrePatch"="c:\program files (x86)\GameforgeLive\Games\CZE_ces\4Story\PrePatch.exe" [2014-04-24 327680]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-05-18 5515496]
.
c:\users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Ondra\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2015-7-28 39175960]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"DisableCAD"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files (x86)\Garena Plus\Room\safedrv.sys;c:\program files (x86)\Garena Plus\Room\safedrv.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUVStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUVStor.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssudserd.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\System32\drivers\dtsoftbus01.sys;c:\windows\SYSNATIVE\drivers\dtsoftbus01.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe;c:\windows\SYSNATIVE\CxAudMsg64.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 tor;Tor Win32 Service;c:\program files (x86)\Tor\tor.exe;c:\program files (x86)\Tor\tor.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 ZAtheros Bt&Wlan Coex Agent;ZAtheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys;c:\windows\SYSNATIVE\drivers\AcpiVpc.sys [x]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]
S3 vm332avs;Lenovo Camera2;c:\windows\System32\Drivers\vm332avs.sys;c:\windows\SYSNATIVE\Drivers\vm332avs.sys [x]
S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\System32\drivers\WUDFRd.sys;c:\windows\SYSNATIVE\drivers\WUDFRd.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2015-06-10 c:\windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2013-03-13 16:16]
.
2015-08-15 c:\windows\Tasks\DLL-Files.Com Fixer_Updates.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2013-03-13 16:16]
.
2015-09-04 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002Core.job
- c:\users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19 08:47]
.
2015-09-05 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1843301906-2347557181-1909311434-1002UA.job
- c:\users\Ondra\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19 08:47]
.
2015-09-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-13 06:24]
.
2015-09-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-13 06:24]
.
2015-09-01 c:\windows\Tasks\Norton Security Scan for Ondra.job
- c:\progra~2\NORTON~2\Engine\410~1.28\Nss.exe [2014-04-06 06:04]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-05-18 16:32 722400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 226328 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 226328 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 226328 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-08-14 08:16 226328 ----a-w- c:\users\Ondra\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp]
@="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}"
[HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending]
@="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}"
[HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot]
@="{A759AFF6-5851-457D-A540-F4ECED148351}"
[HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared]
@="{1574C9EF-7D58-488F-B358-8B78C1538F51}"
[HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-07 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-07 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-07 440640]
"SmartAudio"="c:\program files\CONEXANT\SAII\SACpl.exe" [2012-06-13 1647616]
"cAudioFilterAgent"="c:\program files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe" [2012-06-14 887968]
"ETDCtrl"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"BtvStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2012-08-20 127616]
"Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2012-10-19 17080376]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2012-10-19 191544]
"WrtMon.exe"="c:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2006-09-20 20480]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mSearch Page = hxxp://www.google.com
uInternet Settings,ProxyServer = 127.0.0.1:8118
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-GotClip - c:\program files (x86)\GotClip\uninstall.exe
AddRemove-Prompt Downloader - c:\program files (x86)\Prompt Downloader\uninstall.exe
AddRemove-SereneScreen Marine Aquarium Time 2_is1 - c:\program files (x86)\SereneScreen\Marine Aquarium Time 2\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\windows\System32\spool\drivers\x64\3\WrtProc.exe
c:\users\Ondra\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
c:\users\Ondra\AppData\Roaming\Dropbox\bin\Dropbox.exe
c:\program files (x86)\Steam\bin\steamwebhelper.exe
c:\program files (x86)\Common Files\Steam\SteamService.exe
c:\program files (x86)\Common Files\Java\Java Update\jucheck.exe
c:\program files\lenovo\lenovo solution center\lsc.exe
.
**************************************************************************
.
Celkový čas: 2015-09-05 21:32:32 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-09-05 19:32
ComboFix2.txt 2015-09-04 16:51
.
Před spuštěním: 287 823 015 936 bytes free
Po spuštění: 290 482 319 360 bytes free
.
- - End Of File - - A9D64407054F2290C1174A2314F663B3
Nahoru
Uživatelský avatar
Marek-26
Přítel fóra
Přítel fóra
Příspěvky: 1000
Registrován: 16 pro 2006 15:53
Bydliště: Brüx/Praha

Re: Prosím o kotrolu logu - part1

#9 Příspěvek od Marek-26 »

Zeptám se, internet již funguje?
Nahoru
Mufff
Návštěvník
Návštěvník
Příspěvky: 92
Registrován: 14 dub 2009 15:12

Re: Prosím o kotrolu logu - part1

#10 Příspěvek od Mufff »

Zdravím. Internet už šlape, ale jak v Opeře, tak v Chromu se mi otevírají nová okna s prapodivnými obsahy... :-)
Nahoru
Uživatelský avatar
Marek-26
Přítel fóra
Přítel fóra
Příspěvky: 1000
Registrován: 16 pro 2006 15:53
Bydliště: Brüx/Praha

Re: Prosím o kotrolu logu - part1

#11 Příspěvek od Marek-26 »

Co si mám představit pod prapodivným obsahem? :)
Nahoru
Mufff
Návštěvník
Návštěvník
Příspěvky: 92
Registrován: 14 dub 2009 15:12

Re: Prosím o kotrolu logu - part1

#12 Příspěvek od Mufff »

Zdravím.

Např.: https://vkx.survivesovershadowing.com/t ... 0xMDQzIn1d.

Spustí sesamovlně s Opeře, ze které jsem nalogovaný na forum.
Nahoru
Mufff
Návštěvník
Návštěvník
Příspěvky: 92
Registrován: 14 dub 2009 15:12

Re: Prosím o kotrolu logu - part1

#13 Příspěvek od Mufff »

Ještě toto:
http://cs.reimageplus.com/land/sys/inde ... 4oSHETxY99

toto:
http://cs.reimageplus.com/lp/slm/index. ... ki10le5qfa

a toto:
http://www.aliexpress.com/af/category/5 ... -mq3jAUNja

atd.
Nahoru
Uživatelský avatar
Marek-26
Přítel fóra
Přítel fóra
Příspěvky: 1000
Registrován: 16 pro 2006 15:53
Bydliště: Brüx/Praha

Re: Prosím o kotrolu logu - part1

#14 Příspěvek od Marek-26 »

Klikněte na MBAM v mém podpisu a postupujte dle návodu.
Nahoru
Mufff
Návštěvník
Návštěvník
Příspěvky: 92
Registrován: 14 dub 2009 15:12

Re: Prosím o kotrolu logu - part1

#15 Příspěvek od Mufff »

Zdravím. MBAM log se nejvejde do jedné zprávy, proto jej dělím do dvou a je:

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 7. 9. 2015
Čas skenování: 6:49
Protokol: Malwarebytes_log.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.09.06.05
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: Ondra

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 723121
Uplynulý čas: 4 hod, 54 min, 55 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 34
PUP.Optional.Bandoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{D1DAC034-9FD9-4C13-A388-D2E10E57707F}, , [b1fc64c8e1aa7eb8ad64cb0d837fd030],
PUP.Optional.SpeedAnalysis3, HKLM\SOFTWARE\CLASSES\Speed Analysis 3.ScriptHostObject, , [cde037f52566e15535486679b44e25db],
PUP.Optional.SpeedAnalysis3, HKLM\SOFTWARE\CLASSES\Speed Analysis 3.ScriptHostObject.1, , [2489002cef9c76c03b42904f768c966a],
PUP.Optional.SpeedAnalysis3, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Speed Analysis 3.ScriptHostObject, , [2489002cef9c76c03b42904f768c966a],
PUP.Optional.SpeedAnalysis3, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Speed Analysis 3.ScriptHostObject.1, , [2489002cef9c76c03b42904f768c966a],
PUP.Optional.SpeedAnalysis3, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Speed Analysis 3.ScriptHostObject, , [2489002cef9c76c03b42904f768c966a],
PUP.Optional.SpeedAnalysis3, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Speed Analysis 3.ScriptHostObject.1, , [2489002cef9c76c03b42904f768c966a],
PUP.Optional.DataMngr, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\${dtUserElevationPolicyID}, , [9e0f9795f695bd79706c259d4eb6d22e],
PUP.Optional.AmiUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\amiupdaterExd, , [f5b8929ad8b3ef476c9b1763857f6997],
PUP.Optional.AmiUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\amiupdaterExi, , [56571b11068556e0ab5c80fabf45bf41],
PUP.Optional.Cinema, HKLM\SOFTWARE\WOW6432NODE\CinemaP-1.9cV14.08-nv, , [5d5069c3dbb065d1e0fb6a16709452ae],
PUP.Optional.Cinema, HKLM\SOFTWARE\WOW6432NODE\CinemaP-1.9cV14.08-nv-ie, , [e1cc78b4721943f3ca11d1afc53fa858],
PUP.Optional.DataMngr, HKLM\SOFTWARE\WOW6432NODE\DataMngr, , [c2eb48e41576290d736779490400cc34],
PUP.Optional.MediaWatch, HKLM\SOFTWARE\WOW6432NODE\MediaWatchV1, , [3b72d359810a05317a77297235cf44bc],
PUP.Optional.WebExpEnhanced, HKLM\SOFTWARE\WOW6432NODE\WebexpEnhancedV1, , [9b1295972368d75f5719b50519eb8b75],
PUP.Optional.MoviesToolBar, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\aaaaabcbmongicmdegkmmfgdickgnnob, , [cfdef933e7a456e0ad59adf3a75d7a86],
PUP.Optional.Babylon, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\boipimhfjpakfgckhbljjengakjhkcbp, , [733a66c693f89b9bf15b304b7e867b85],
PUP.Optional.BetterSurf, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\dedmngkbaffkenlfdcbganndoghblmap, , [48650428e4a774c2cd97c9b300046d93],
PUP.Optional.ZulaGames, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\gflandjopdloblmlcoiidmncpinmmacn, , [2489ab8191fa5cda00c89627be46b54b],
PUP.Optional.SweetIM, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\jcdgjdiieiljkfkdcloehkohchhpekkn, , [1a93b5771a71d95d198db300ed17a15f],
PUP.Optional.SpeedAnalysis3, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\mbmpjbkgemhgalmeiigcdljkccfcafoj, , [04a9e24a4546c86e6ca49021669e42be],
PUP.Optional.BetterSurf, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\mmifolfpllfdhilecpdpmemhelmanajl, , [387565c783080a2c590f2e4e4bb9ae52],
PUP.Optional.MediaWatch, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\BFCKOOPBDFMCPLKHENFIGGMLENLHDHME, , [b2fb1418107bf93de40be4b733d1c13f],
PUP.Optional.RichMediaView, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\HPMGJIMFBGFFMAIODMBMLEANONALONCO, , [b8f52408aae1db5bdeb67a2f44c003fd],
PUP.Optional.WebExpEnhanced, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\LBKCEHACNGMIAIIEAICLOEMLLHDHOBKO, , [5c518e9e593213239ed0dddd040006fa],
PUP.Optional.DataMngr, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\${dtUserElevationPolicyID}, , [dad346e63e4da78f4399caf85fa5ad53],
PUP.Optional.Bandoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A3734B7C-153D-47E3-B12C-395CF3F65082}, , [fcb11913bfcc03332d4d4b302adaf20e],
PUP.Optional.Bandoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{EC68E512-F671-42AA-8803-0FF28BA58710}, , [6845de4eaeddd85ee397bcbfaa5a52ae],
PUP.Optional.ASK.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4F524A2D-5350-4500-76A7-A758B70C2201}, , [cfde3def4e3ddd597760a41e8084e51b],
PUP.Optional.Cinema, HKU\S-1-5-18\SOFTWARE\CinemaP-1.9cV14.08-nv-ie, , [208d87a50487df57b31f364aef150af6],
PUP.Optional.Cinema, HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\SOFTWARE\CinemaP-1.9cV14.08-nv, , [8528c06cccbf71c5587a2b553dc77b85],
PUP.Optional.Cinema, HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\SOFTWARE\CinemaP-1.9cV14.08-nv-ie, , [317cee3e8dfe9f97438f314f1fe5e719],
PUP.Optional.IlividTB, HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\SOFTWARE\ilividmoviestoolbarha, , [c6e772bafe8d46f0192e346158ac728e],
PUP.Optional.SearchSimple, HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{1A192FC0-C27B-4603-B7D0-FE77DEE8912B}, , [eebf9e8e92f9d1656d16f1bb8f757987],

Hodnoty registru: 10
PUP.Optional.Bandoo, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\aaaaabcbmongicmdegkmmfgdickgnnob|path, C:\Users\Ondra\AppData\Local\ilividmoviestoolbar181\GC\toolbar.crx, , [5e4f72baa2e967cff57d6b10689c1ee2]
PUP.Optional.MediaWatch, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bfckoopbdfmcplkhenfiggmlenlhdhme|path, C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home666\ch\MediaWatchV1home666.crx, , [b2fb1418107bf93de40be4b733d1c13f]
PUP.Optional.RichMediaView, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\hpmgjimfbgffmaiodmbmleanonalonco|path, C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release1\ch\RichMediaViewV1release1.crx, , [b8f52408aae1db5bdeb67a2f44c003fd]
PUP.Optional.WebExpEnhanced, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\lbkcehacngmiaiieaicloemllhdhobko|path, C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha864\ch\WebexpEnhancedV1alpha864.crx, , [5c518e9e593213239ed0dddd040006fa]
PUP.Optional.Bandoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A3734B7C-153D-47E3-B12C-395CF3F65082}|AppPath, C:\PROGRA~2\MOVIES~1\Datamngr\SRTOOL~1\IE, , [fcb11913bfcc03332d4d4b302adaf20e]
PUP.Optional.Bandoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{EC68E512-F671-42AA-8803-0FF28BA58710}|AppPath, C:\PROGRA~2\MOVIES~1\Datamngr\SRTOOL~2\IE, , [6845de4eaeddd85ee397bcbfaa5a52ae]
PUP.Optional.ASK.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4F524A2D-5350-4500-76A7-A758B70C2201}|InstallSource, C:\ProgramData\APN\APN-Stub\ORJ-SPE\, , [cfde3def4e3ddd597760a41e8084e51b]
PUP.Optional.SearchSimple, HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{1A192FC0-C27B-4603-B7D0-FE77DEE8912B}|URL, http://searchsimple-a.akamaihd.net/?aff ... rms}&r=690, , [eebf9e8e92f9d1656d16f1bb8f757987]
PUP.Optional.SearchSimple, HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{1A192FC0-C27B-4603-B7D0-FE77DEE8912B}|FaviconURL, http://searchsimple-a.akamaihd.net/favicon.ico, , [3a73d9534c3f85b11c677636b64e7c84]
PUM.Bad.Proxy, HKU\S-1-5-21-1843301906-2347557181-1909311434-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|ProxyServer, 127.0.0.1:8118, , [d1dc2efe5c2f310543a241296b9957a9]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 228
PUP.Optional.Amonetize, C:\Users\Ondra\AppData\Local\22095, , [3677f03c95f658de68cfdd4756ad0cf4],
PUP.Optional.DataMngr, C:\ProgramData\Datamngr, , [6c415ecee2a9a78fd7cbb0d851b39d63],
PUP.Optional.OffersWizard, C:\Program Files (x86)\Common Files\Config, , [406d39f37615191dfc95adf5d1338977],
PUP.Optional.SweetIM, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}, , [6647f438ed9e5dd9910d971c659f2fd1],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\appdata, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\appdata\Mozilla, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\appdata\Mozilla\Firefox, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\appdata\Mozilla\Firefox\Profiles, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\appdata\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\appdata\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\extensions, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\common appdata, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\common appdata\AskPartnerNetwork, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\common appdata\AskPartnerNetwork\Toolbar, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\common appdata\AskPartnerNetwork\Toolbar\Shared, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\common appdata\AskPartnerNetwork\Toolbar\Shared\CRX, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\common appdata\AskPartnerNetwork\Toolbar\{PartnerID}, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\common appdata\AskPartnerNetwork\Toolbar\{PartnerID}\CRX, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\common appdata\AskPartnerNetwork\Toolbar\{PartnerID}\CRX\{Crx_Version}, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\program files, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\program files\AskPartnerNetwork, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\program files\AskPartnerNetwork\ChromeUtils, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\program files\AskPartnerNetwork\Toolbar, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\program files\AskPartnerNetwork\Toolbar\Updater, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\program files\AskPartnerNetwork\Toolbar\Updater\IDC, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\program files\AskPartnerNetwork\Toolbar\Updater\{PartnerID}, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\program files\AskPartnerNetwork\Toolbar\{PartnerID}, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Source\program files\VNT, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.APNToolBar.Gen, C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\ORJ-SPE, , [06a740ec6c1f37ff367df8ffa2608b75],
PUP.Optional.DataMngr, C:\Users\Ondra\AppData\LocalLow\DataMngr, , [a30a6ebeccbf49ed52f4d92e1ee517e9],
PUP.Optional.SpeedAnalysis, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com, , [e3cab07ca3e865d1604cfa229073da26],
PUP.Optional.SpeedAnalysis, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com\chrome, , [e3cab07ca3e865d1604cfa229073da26],
PUP.Optional.SpeedAnalysis, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com\chrome\content, , [e3cab07ca3e865d1604cfa229073da26],
PUP.Optional.SpeedAnalysis, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com\chrome\content\mz, , [e3cab07ca3e865d1604cfa229073da26],
PUP.Optional.SpeedAnalysis, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\speedanalysis03@SpeedAnalysis.com\chrome\skin, , [e3cab07ca3e865d1604cfa229073da26],
PUP.Optional.SweetIM, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn, , [cfdec8640e7d4beb4d77021b09fae31d],
PUP.Optional.SweetIM, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.2.0.0_0, , [cfdec8640e7d4beb4d77021b09fae31d],
PUP.Optional.ZulaGames, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com, , [fcb181ab6d1e6acc74c625fde122669a],
PUP.Optional.ZulaGames, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com\chrome, , [fcb181ab6d1e6acc74c625fde122669a],
PUP.Optional.ZulaGames, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com\chrome\content, , [fcb181ab6d1e6acc74c625fde122669a],
PUP.Optional.ZulaGames, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com\chrome\content\mz, , [fcb181ab6d1e6acc74c625fde122669a],
PUP.Optional.ZulaGames, C:\Users\Ondra\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com\chrome\skin, , [fcb181ab6d1e6acc74c625fde122669a],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\adapter, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\abstractbutton, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\abstractbutton\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\alert, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\alert\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\embedhtml, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\embedhtml\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\embedhtml\html, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\embedhtml\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\embedscript, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\embedscript\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\embedscript\html, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\embedscript\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\flare, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\flare\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\flare\icons, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\generic, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\generic\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\link, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\link\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\menu, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\menu\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\menu\css, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\menu\html, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\menu\images, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\menu\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\rss, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\rss\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\thirdparty, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\thirdparty\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\uninstall, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\uninstall\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\weather, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\components\weather\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\common, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\radio, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\radio\css, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\radio\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\rss, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\rss\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\test, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\topapps, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\topapps\css, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\topapps\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\weather, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\weather\css, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\common\widget-api\widgets\weather\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\api, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\api\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\api\window, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\defaultSearch, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\defaultSearch\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\defaultSearch\foreground, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\moviereviews, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\moviereviews\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\moviereviews\css, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\moviereviews\html, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\moviereviews\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\radio, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\radio\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\radio\css, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\radio\foreground, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\radio\radioWrapper, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\search, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\search\background, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\search\html, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\supertab, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\supertab\css, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\supertab\html, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\components\supertab\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\icons, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\images, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\js, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\native, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\native\libs, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\shared, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd\12.9.6.8658_0\_metadata, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpnknncniillgijdlegfdffoheonaddd, , [5c515eced5b68bab43d86a35e71e758b],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\adapter, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\abstractbutton, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\abstractbutton\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\alert, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\alert\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\embedhtml, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\embedhtml\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\embedhtml\html, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\embedhtml\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\embedscript, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\embedscript\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\embedscript\html, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\embedscript\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\flare, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\flare\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\flare\icons, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\generic, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\generic\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\link, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\link\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\menu, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\menu\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\menu\css, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\menu\html, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\menu\images, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\menu\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\rss, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\rss\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\thirdparty, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\thirdparty\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\uninstall, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\uninstall\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\weather, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\components\weather\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\common, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\radio, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\radio\css, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\radio\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\rss, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\rss\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\test, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\topapps, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\topapps\css, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\topapps\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\weather, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\weather\css, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\common\widget-api\widgets\weather\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\api, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\api\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\api\window, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\defaultSearch, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\defaultSearch\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\defaultSearch\foreground, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\moviereviews, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\moviereviews\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\moviereviews\css, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\moviereviews\html, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\moviereviews\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\radio, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\radio\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\radio\css, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\radio\foreground, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\radio\radioWrapper, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\search, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\search\background, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\search\html, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\supertab, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\supertab\css, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\supertab\html, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\components\supertab\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\icons, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\images, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\js, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\native, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\native\libs, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\shared, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb\12.10.6.15045_0\_metadata, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.MindSpark, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjcoccminpbgmiffhifdcnelpojeeb, , [812c43e942495cda7ba06936c83d58a8],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0\js, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0\js\api, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0\js\lib, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0\js\lib\popupResource, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0\extensionData, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0\extensionData\plugins, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0\extensionData\userCode, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0\icons, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CrossRider, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi\1.26.87_0\icons\actions, , [397444e87c0f2214f7f99904f90c16ea],
PUP.Optional.CouponTime, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\oeechonpcbbgpbcofpgaedjajhhhmolf\1.0.1_0, , [c4e90f1d4a41c373cd1d7825c4412ad6],
PUP.Optional.CouponTime, C:\Users\Ondra\AppData\Roaming\Opera Software\Opera Stable\Extensions\oeechonpcbbgpbcofpgaedjajhhhmolf, , [c4e90f1d4a41c373cd1d7825c4412ad6],

Soubory: 725
PUP.Optional.Amonetize, C:\Users\Ondra\AppData\Local\22095\a31050.exe, , [dcd10f1db7d410266954d658629feb15],
PUP.Optional.Somoto, C:\Users\Ondra\AppData\Local\Application Data\Bundled software uninstaller\bi_client.exe, , [733a8d9f5a317db97087893551b0b34d],
PUP.Optional.SweetIM, C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.2.0.0_0\mgHelperGCFB.dll, , [4e5fe24a2764f640b05663264eb7e41c],
Adware.InstallBrain, C:\Users\Ondra\Downloads\PdfSpeedSetup.exe, , [c8e525079fecdc5af72cf4ece11fe719],
PUP.Optional.OpenCandy, C:\Users\Ondra\Downloads\DTLite-setup.exe, , [9e0fb874b9d270c6a6cd97f229dc9070],
PUP.Optional.APNToolBar, C:\AdwCleaner\Quarantine\C\Program Files (x86)\AskPartnerNetwork\Toolbar\APNSetup.exe.vir, , [d7d67ab24645c96de3c6feba8879f010],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-1-6.exe.vir, , [45689b9193f8a69059aff4a2a5609c64],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-1-7.exe.vir, , [fbb2a88493f8b97d9c6cf79f3cc95da3],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-10.exe.vir, , [2b82e8447219eb4bb355771ff4117090],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-11.exe.vir, , [b2fb60cc2764dc5a2bdd1185cd38e41c],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-3.exe.vir, , [3e6f6cc05b3074c2fb0d2175a16408f8],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-5.exe.vir, , [05a88ca042493ff7848460363cc97090],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\be818199-9f84-451e-b8d9-88604ee38008-6.exe.vir, , [cae334f8e9a20630de2ab0e626df21df],
PUP.Optional.Nova, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\bf027f71-5ddc-425c-a99b-314590e1b3d9.dll.vir, , [882542eabccf9b9ba9b15d60768bda26],
PUP.Optional.Downloader, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\Uninstall.exe.vir, , [d8d5ff2d9deef1457cd2ceec42bf6f91],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\UninstallBrw.exe.vir, , [1796ae7ed3b854e20dfbe1b550b5df21],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV14.08\utils.exe.vir, , [35789d8f1c6f52e4897f6630af5610f0],
PUP.Optional.BrowseFox, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Coupon Time\CouponTimeUninstall.exe.vir, , [07a6072556353afc52addeabc14026da],
PUP.Optional.Sanbreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Coupon Time\bin\plugins\CouponTime.OfSvc.dll.vir, , [208d6fbd5e2dca6ca798615dc33e34cc],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe.vir, , [bfeee3499dee1224ca3ad3c312f3cd33],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe.vir, , [0aa32a023f4c4cea003e7b066e9337c9],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\chrome_elf.dll.vir, , [ab02c7651d6e51e5fc08a0f610f508f8],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\delegate_execute.exe.vir, , [901dff2df2994ceaf80c7d19f4117987],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\metro_driver.dll.vir, , [3974b478acdfee489f65b5e10df87090],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\nacl64.exe.vir, , [cbe21c104b404cea7094badc13f2f50b],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe.vir, , [3f6e3bf1a7e45dd91ee8672f3fc65ba5],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\setup.exe.vir, , [555854d85a31e155c73f5b3bfd08f808],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\7z.dll.vir, , [15981616f596ad89284ba2f748bd29d7],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\Chrome-NativeMessagingDispatcher.exe.vir, , [ab02c8646e1d72c48de6940542c3ec14],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\DesktopSdk.dll.vir, , [911c0b213a512d0963101d7c01046d93],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\EliteUnzip.exe.vir, , [b0fdd953a3e8c076fd76a9f0ee171ce4],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\IAC.Helpers.dll.vir, , [cedfb874c2c967cf512278210bfa2bd5],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\LogicNP.FileView.WPF.dll.vir, , [9419b17b4a416cca3d365d3c2adba060],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\LogicNP.FolderView.WPF.dll.vir, , [3a739f8d612adb5b7af9376211f49769],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\LogicNP.ShComboBox.WPF.dll.vir, , [ac01ef3d5e2d280e74ff8316cb3ab44c],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\NativeMessagingDispatcher.dll.vir, , [8a232507a6e548ee8e5438849f62b24e],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\RebootRequired.exe.vir, , [2588a587a2e9c96d83f0415856af817f],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\Resources.dll.vir, , [aeff9d8fa5e647efbbb8ecadf70e966a],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\SevenZipSharp.dll.vir, , [dad3d65695f6c274581b9207976e1ae6],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\UnifiedLogging.dll.vir, , [7c31c369dead37ff3d36badf0df838c8],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\uninstall.exe.vir, , [199455d70b8048ee5a19c1d813f2b44c],
PUP.Optional.MindSpark, C:\AdwCleaner\Quarantine\C\Program Files (x86)\EliteUnzip\Verify.dll.vir, , [b4f938f41e6d58deb0c38b0e32d34bb5],
PUP.Adware.Gotclip.ScamLotto, C:\AdwCleaner\Quarantine\C\Program Files (x86)\GotClip\Uninstall.exe.vir, , [c7e6200ca3e8ea4c433b137d57a97a86],
PUP.Optional.MoviesToolBar, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Movies Toolbar\Datamngr\SRTOOL~1\IE\uninstall.exe.vir, , [5c51939947443501cbbae1b5bc49f10f],
PUP.Optional.MoviesToolBar, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Movies Toolbar\Datamngr\SRTOOL~2\GC\uninstall.exe.vir, , [b7f6a5877912ad89b2d35244b3526997],
PUP.Optional.MoviesToolBar, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Movies Toolbar\Datamngr\SRTOOL~2\IE\uninstall.exe.vir, , [cbe254d8a0eba88e7b0a078f2fd64ab6],
PUP.Optional.Bandoo, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Movies Toolbar\Datamngr\x64\apcrtldr.dll.vir, , [139a111b068582b44e4d5c3ce42159a7],
PUP.Optional.BestToolBar, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Speed Analysis 3\BackgroundHost.exe.vir, , [c7e6af7d79121422fcfe3222d42c7d83],
PUP.Optional.BestToolBar, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Speed Analysis 3\BackgroundHost64.exe.vir, , [b8f5d557fe8d0d290cee540032ce1ce4],
PUP.Optional.BestToolBars, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Speed Analysis 3\ScriptHost.dll.vir, , [beef250788032511ce031f995ca5bb45],
PUP.Optional.BestToolBars, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Speed Analysis 3\ScriptHost64.dll.vir, , [01acf23a3a51072f824ff4c4f70a06fa],
PUP.Optional.7Go, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Speed Analysis 3\uninst.exe.vir, , [466751db503b45f1e2a8576128d917e9],
PUP.Optional.SpeedTest, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Speed Analysis 3\uninstall.exe.vir, , [8c218e9e4f3c4de983b870e9e51b21df],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Communicator\mgcommon.dll.vir, , [1c91ea42117a9a9c9571d8b165a0d42c],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Communicator\mgcommunication.dll.vir, , [00adfd2fa3e8e6509274f6938c7944bc],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Communicator\mgsimcommon.dll.vir, , [e0cd6fbd1c6ff145da2c8306d82d0cf4],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Communicator\mgxml_wrapper.dll.vir, , [64499894c1ca67cfd1358405709558a8],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe.vir, , [2b827bb13e4d0531d135840563a2e719],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Communicator\resources\sqlite\mgSqlite3.dll.vir, , [3a731d0ff6951521bb4bf891e61fe61a],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mghooking.dll.vir, , [a30ae34963283cfac640b0d99d6847b9],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\ContentPackagesActivationHandler.exe.vir, , [04a965c7a7e42d0957af1475ac5947b9],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgAdaptersProxy.dll.vir, , [d2db41eb91fa79bd887e1a6fb2533fc1],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgArchive.dll.vir, , [931a09233a5106301ceafd8c8e77b44c],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgcommon.dll.vir, , [822bc16b028953e381855d2c907533cd],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgcommunication.dll.vir, , [2b82b27a4d3eee4859adb8d130d5b24e],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgconfig.dll.vir, , [a805082490fbc1757591365353b2b34d],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgFlashPlayer.dll.vir, , [d7d650dcd9b2d66047bfbecbb35227d9],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgICQAuto.dll.vir, , [bfee7cb0bad11c1a44c23d4cfe079f61],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgICQMessengerAdapter.dll.vir, , [139a9993f19a4cea6a9c4742b05511ef],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mglogger.dll.vir, , [e8c535f78ffc7eb85caa820708fd9967],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgMediaPlayer.dll.vir, , [5954c4686a21a096fc0a9cedd5301de3],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgMsnAuto.dll.vir, , [941943e9d5b6142201050a7f679e35cb],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgMsnMessengerAdapter.dll.vir, , [b8f5e349c6c55bdb976f9dec986de020],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgsimcommon.dll.vir, , [c4e92dff7318d36360a6404909fccb35],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgSweetIM.dll.vir, , [a30a8aa296f56ec8a561e8a116ef9f61],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgUpdateSupport.dll.vir, , [aeffbd6ffe8d8ea8769065244bba936d],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgxml_wrapper.dll.vir, , [e2cbbc705e2d62d4b94d375251b424dc],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgYahooAuto.dll.vir, , [1d9089a36625f244a75f434648bd49b7],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\mgYahooMessengerAdapter.dll.vir, , [208d3cf0701b241205018dfcc73e41bf],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\SweetIM.exe.vir, , [416cec40c1caf93ddd291d6c768f4fb1],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Messenger\resources\sqlite\mgSqlite3.dll.vir, , [56579c9068237eb8010543461aeb7d83],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\ClearHist.exe.vir, , [06a76cc05d2e45f170969dece025cd33],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgcommon.dll.vir, , [05a8df4ded9e6fc75da9b5d43acbc33d],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgconfig.dll.vir, , [dad35ad2ccbf87aff01690f938cd629e],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll.vir, , [3f6ed458bdceac8a3bcbaddcbb4a22de],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe.vir, , [dad33def2665f145d234b9d0897c4db3],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mghooking.dll.vir, , [1499a9830d7ef343e71f1a6fd72ef808],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mglogger.dll.vir, , [74395ece800bf73f54b2fc8d38cd9967],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll.vir, , [d9d456d6b3d87cba23e3226760a529d7],
PUP.Optional.SweetPacks, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll.vir, , [dfcead7f246747ef5d523e4a887d22de],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll.vir, , [298462ca2665fc3ac34350394bbab050],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll.vir, , [98158d9f731841f5c640008930d57789],
PUP.Optional.Delta.ShrtCln, C:\AdwCleaner\Quarantine\C\ProgramData\DSearchLink\DSearchLink.exe.vir, , [634a37f51f6c2d09c8361ae8a362c23e],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Users\Ondra\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.2.0.0_0\mgHelperGCFB.dll.vir, , [c4e9fd2fc2c9c86ecd39404912f30000],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.2.0.0_0\mgHelperGCFB.dll.vir, , [56572a02a6e5d660e81eaedb5fa6b24e],
PUP.Optional.PayByAds, C:\AdwCleaner\Quarantine\C\Users\Ondra\AppData\Local\pay-by-ads\Yahoo! Search\1.3.26.12\dsrlte.exe.vir, , [6e3f7bb1dcafed4909c395c3e818a15f],
PUP.Optional.PayByAds, C:\AdwCleaner\Quarantine\C\Users\Ondra\AppData\Local\pay-by-ads\Yahoo! Search\1.3.26.12\dsrsetup.exe.vir, , [406d44e8b5d69a9cc309ec6ccd338f71],
PUP.Optional.Montiera, C:\AdwCleaner\Quarantine\C\Users\Ondra\AppData\Local\pay-by-ads\Yahoo! Search\1.3.26.12\hlpr64.exe.vir, , [248970bc375443f3a8f5c8df0bf6946c],
PUP.Optional.Amonetize, C:\AdwCleaner\Quarantine\C\Users\Ondra\AppData\Local\SwvUpdater\Updater.exe.vir, , [34799597800bbe78884025cc51af8c74],
PUP.Optional.OpenCandy, C:\AdwCleaner\Quarantine\C\Users\Ondra\AppData\Roaming\OpenCandy\OpenCandy_FE7BC3D0964840F4AFBCF2F0437EC42C\LatestDLMgr.exe.vir, , [14990527206b40f6394cb7067e8304fc],
PUP.Optional.Elex, C:\AdwCleaner\Quarantine\C\Users\Ondra\AppData\Roaming\oursurfing\UninstallManager.exe.vir, , [89242408117ad066d5407d3917eae020],
PUP.Optional.NetFilter, C:\AdwCleaner\Quarantine\C\windows\Sysnative\drivers\nethfdrv.sys.vir, , [bcf186a66d1e5ed85b4ea2b3847cd62a],
PUP.Optional.SweetIM, C:\AdwCleaner\Quarantine\C\windows\SysWOW64\jmdp\stij.exe.vir, , [1f8e78b43c4f1521dda24dff2cd95da3],
PUP.Optional.Bandoo, C:\Qoobox\Quarantine\C\Program Files (x86)\Movies App\Datamngr\DatamngrCoordinator.exe.vir, , [c1ec32fa0f7c68cebe0bbbfd6c956d93],
PUP.Optional.Bandoo, C:\Qoobox\Quarantine\C\Program Files (x86)\Movies App\Datamngr\MoviesAppHelper.dll.vir, , [e1cc5fcd2863b383504b7424f213a759],
PUP.Optional.Bandoo, C:\Qoobox\Quarantine\C\Program Files (x86)\Movies App\Datamngr\setmgrc3.cfg.vir, , [bcf188a41e6ddc5a4b7ee7d112efac54],
PUP.Optional.Bandoo, C:\Qoobox\Quarantine\C\Program Files (x86)\Movies App\Datamngr\Uninstall.exe.vir, , [228be94397f4b383d1caceca26df7888],
PUP.Optional.Bandoo, C:\Qoobox\Quarantine\C\Program Files (x86)\Movies App\Datamngr\x64\setmgrc3.cfg.vir, , [77366bc1adde2610cffa645453aee11f],
PUP.Optional.WProtectManager, C:\Qoobox\Quarantine\C\ProgramData\2WinManPro2\ProtectWindowsManager.exe.vir, , [cfdeb17bd6b53501a4737f1be71e58a8],
BitcoinMiner, C:\Windows\Inf\msawjmmj\msawjmmj.exe, , [edc0da52513a5fd75e54b4258d7336ca],
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“