Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Trojský kůň JS/Kryptik.CO

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Mitsu
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 15 pro 2015 22:44

Trojský kůň JS/Kryptik.CO

#1 Příspěvek od Mitsu »

Dobrý den,
jsem tu nováček, ale mám poměrně zavirovaný počítač (možná je to důvod, proč mi selhala instalace Win10...?) a sama se v tom moc nevyznám, jediné, co se mi s tím udělalo je teda to, že se mi to v ESETU zavřelo do karantény... potřebovala bych nějakou radu pochopitelnou trošku pro holky :oops:

Netuším, co tento trojský kůň způsobuje, ale asi mi zpomaluje počítač, což ci myslím, že asi je zpomalený no... já se moc omlouvám za svoji neznalost, ale moc ráda bych se chtěla starat o svůj počítač a stát se někdy programátorkou...

Budu ráda za jakoukoliv pomoc, děkuji!

Tady je log z FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-12-2015
Ran by MaiLinhVi (administrator) on ADMIN-PC (15-12-2015 22:55:54)
Running from C:\Users\MaiLinhVi\Desktop
Loaded Profiles: MaiLinhVi (Available Profiles: admin & MaiLinhVi & Majka & Administrator)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(WinAbility® Software Corporation) C:\PROGRAMS\FGUARD\FGKey64.exe
(ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe
() C:\Users\Majka\AppData\Local\Seznam.cz\bin\postak.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(LINE Corporation) D:\Downloads\LINE\Line.exe
() C:\Users\MaiLinhVi\AppData\Local\Viber\Viber.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\lync.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
(Creative Technology Ltd.) C:\Windows\OEM02Mon.exe
(Nokia) C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ucmapi.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_235.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_235.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\winword.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\winword.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(forum.viry.cz) C:\Users\MaiLinhVi\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NVHotkey] => rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
HKLM\...\Run: [FG_Monitor] => C:\PROGRAMS\FGUARD\FGKey64.exe [144456 2007-02-24] (WinAbility® Software Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe [4148664 2013-10-07] (ESET)
HKLM-x32\...\Run: [OEM02Mon.exe] => C:\Windows\OEM02Mon.exe
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [NokiaMServer] => C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [NSU_agent] => C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe [190768 2012-02-28] ()
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [PC Suite Tray] => C:\Users\MaiLinhVi\Desktop\Downloads\Nokia PC Suite 7\PCSuite.exe [1500160 2011-06-16] (Nokia)
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [Seznam Postak] => C:\Users\Majka\AppData\Local\Seznam.cz\bin\postak.exe [491040 2012-01-10] ()
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [swg] => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [Line] => D:\Downloads\LINE\Line.exe [17456664 2015-12-07] (LINE Corporation)
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [Viber] => C:\Users\MaiLinhVi\AppData\Local\Viber\Viber.exe [51657424 2015-11-09] ()
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [Zoner Photo Studio Autoupdate] => "C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [Dropbox Update] => C:\Users\MaiLinhVi\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-07-25] (Dropbox, Inc.)
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [Lync] => C:\Program Files\Microsoft Office 15\root\office15\lync.exe [24055464 2015-10-20] (Microsoft Corporation)
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50754688 2015-12-01] (Skype Technologies S.A.)
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\MaiLinhVi\AppData\Local\MEGAsync\ShellExtX64.dll No File
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\MaiLinhVi\AppData\Local\MEGAsync\ShellExtX64.dll No File
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\MaiLinhVi\AppData\Local\MEGAsync\ShellExtX64.dll No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\MaiLinhVi\AppData\Local\MEGAsync\ShellExtX32.dll No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\MaiLinhVi\AppData\Local\MEGAsync\ShellExtX32.dll No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\MaiLinhVi\AppData\Local\MEGAsync\ShellExtX32.dll No File
ShellIconOverlayIdentifiers-x32: [AAADesktopTips] -> {4562B511-62E9-4533-B7B2-56A8BB10B482} => C:\Users\Public\Thunder Network\KanKan\reghelper\xappex.1.1.1.73.(492).dll [2013-07-22] (深圳市迅雷网络技术有限公司)
Startup: C:\Users\MaiLinhVi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-12-12]
ShortcutTarget: Dropbox.lnk -> C:\Users\MaiLinhVi\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\MaiLinhVi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2015-11-08]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
Startup: C:\Users\MaiLinhVi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk [2015-04-07]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicyUsers\S-1-5-21-291474276-2071678850-1047628788-1007\User: Restriction <======= ATTENTION
GroupPolicyUsers\S-1-5-21-291474276-2071678850-1047628788-1004\User: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog9-x64 12 C:\Program Files (x86)\VMware\VMware Server\x64\vsocklib.dll No File
Winsock: Catalog9-x64 13 C:\Program Files (x86)\VMware\VMware Server\x64\vsocklib.dll No File
Tcpip\Parameters: [DhcpNameServer] 172.18.0.5 172.19.4.1 172.18.0.6
Tcpip\..\Interfaces\{53445778-203B-4259-B250-0B44CB7B2632}: [DhcpNameServer] 172.18.0.5 172.19.4.1 172.18.0.6

Internet Explorer:
==================
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.cz/
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
URLSearchHook: HKLM-x32 -> Default = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 - (No Name) - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - No File
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> DefaultScope {0D96972B-505E-43C8-8D2F-0DAAEF41139D} URL = hxxp://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=196149&p={searchTerms}
SearchScopes: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM ... -SearchBox
SearchScopes: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> {0916c519-1bf3-425b-a6de-93464400cde2} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=IEListicka_12
SearchScopes: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> {0D96972B-505E-43C8-8D2F-0DAAEF41139D} URL = hxxp://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=196149&p={searchTerms}
SearchScopes: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> {38c65396-c0ef-4b49-b451-97531647e30c} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... isticka_12
SearchScopes: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> {720f3daa-b949-467e-98ce-f68894b8f06f} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=IEListicka_12
SearchScopes: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> {7b8f3ebf-0455-4c61-b1c4-af63f57ada06} URL = hxxp://www.firmy.cz/phr/{searchTerms}?sourceid=IEListicka_12
SearchScopes: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> {F714F5B7-E4D2-4DB1-96B3-F45AE05068AE} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Hled%C3%A1n%C3%AD&search={searchTerms}
BHO: No Name -> {004B0726-A010-4ABF-8556-FCDB7F1FCA1E} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-10-13] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-10-13] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-10-13] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2009-09-26] (Sun Microsystems, Inc.)
BHO-x32: SingleInstance Class -> {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll [2011-03-16] (Yahoo! Inc)
Toolbar: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> No Name - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
Toolbar: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> No Name - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - No File
Toolbar: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> No Name - {414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - No File
Toolbar: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-291474276-2071678850-1047628788-1004 -> No Name - {30F9B915-B755-4826-820B-08FBA6BD249D} - No File
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/s ... ab_nvd.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-09-01] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-09] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-09] ()
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [2009-05-26] (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-09-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-09-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.)
FF Plugin-x32: @xunlei.com/DapCtrl -> C:\Program Files (x86)\Common Files\Thunder Network\KanKan\npDapCtrl.3.1.0.7.(495).dll [No File]
FF Plugin-x32: @xunlei.com/npxluser -> C:\Program Files (x86)\Common Files\Thunder Network\UserAgent\npxluser2.0.2.2.dll [2013-08-12] (Thunder Networking Technologies,LTD)
FF Plugin-x32: @xunlei.com/npxunlei;version=1.0.0.2 -> D:\Downloads\Data\npxunlei1.0.0.2.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-291474276-2071678850-1047628788-1004: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\MaiLinhVi\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-27] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeploytk.dll [2009-09-26] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npfiller.dll [2010-03-29] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Extension: Rikaichan - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{0AA9101C-D3C1-4129-A9B7-D778C6A17F82} [2015-07-21]
FF Extension: Online Convert - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\firefox@online-convert.com.xpi [2015-07-21]
FF Extension: 1-Click Dailymotion Video Downloader - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\DailymotionVideoDownloader@PeterOlayev.com.xpi [2015-07-21]
FF Extension: New Tab Wallpapers - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a5312b79-bf0d-4825-a25f-b33d67d4a58a}.xpi [2015-07-21]
FF Extension: YouTube to MP3 - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\youtube2mp3@mondayx.de.xpi [2015-07-21]
FF Extension: Long URL Please - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\longurlplease@darragh.curran.xpi [2015-07-21]
FF Extension: MEGA EXTENSION - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\firefox@mega.co.nz.xpi [2015-07-21]
FF Extension: Rikaichan Japanese-English Dictionary File - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\rikaichan-jpen@polarcloud.com [2015-08-19]
FF Extension: Rikaichan Japanese Names Dictionary File - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\rikaichan-jpnames@polarcloud.com [2015-08-19]
FF Extension: User Agent Switcher - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi [2015-08-19]
FF Extension: Tab Mix Plus - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-09-03]
FF Extension: Greasemonkey - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-22]
FF Extension: NoScript - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-11-24]
FF Extension: Seznam lištička - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2015-11-25]
FF Extension: Personas Plus - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\personas@christopher.beard.xpi [2015-12-04]
FF Extension: WOT - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-09]
FF Extension: No Name - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\Extensions\elemhidehelper@adblockplus.org.xpi [2015-11-26] [not signed]
FF Extension: No Name - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\Extensions\firefox@zenmate.com.xpi [2015-12-04] [not signed]
FF Extension: No Name - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\Extensions\jid0-hyjN250ZzTOOX3evFwwAQBxE4ik@jetpack.xpi [2015-07-21] [not signed]
FF Extension: DuckDuckGo Plus - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2015-07-21]
FF Extension: No Name - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\Extensions\wisestamp@wisestamp.com.xpi [2015-12-11] [not signed]
FF Extension: Flagfox - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2015-12-04]
FF Extension: Blue Fox - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\Extensions\{241aae70-0022-11de-87af-0800200c9a66} [2015-07-21] [not signed]
FF Extension: Video DownloadHelper - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-30]
FF Extension: Adblock Plus - C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-26]
FF Extension: 602XML Filler - C:\Program Files (x86)\Mozilla Firefox\extensions\xmlfiller@software602.cz [2015-11-07] [not signed]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-11-07] [not signed]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-11-07] [not signed]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] [not signed]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird
FF Extension: ESET Endpoint Security Extension - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird [2015-01-23] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}] - C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension
FF Extension: Firefox Synchronisation Extension - C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension [2011-04-22] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Users\MaiLinhVi\Desktop\Downloads\Nokia PC Suite 7\bkmrksync => not found
FF HKLM-x32\...\Thunderbird\Extensions: [{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}] - C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension
FF Extension: Thunderbird Address Book Synchronisation Extension - C:\Program Files (x86)\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension [2011-04-22] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird
FF HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\MaiLinhVi\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\MaiLinhVi\AppData\Roaming\IDM\idmmzcc5 [2014-01-18] [not signed]
FF HKU\S-1-5-21-291474276-2071678850-1047628788-1004\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\MaiLinhVi\AppData\Roaming\IDM\idmmzcc5

Chrome:
=======
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.796\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.80\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Disk Google) - C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2015-11-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-20]
CHR Extension: (rikaikun) - C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp [2014-12-28]
CHR Extension: (Skype Click to Call) - C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-11-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-12-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-06]
CHR HKU\S-1-5-21-291474276-2071678850-1047628788-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\MAILIN~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-06-13]
CHR HKU\S-1-5-21-291474276-2071678850-1047628788-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [73728 2010-04-14] (Software602 a.s.) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448 2015-10-14] (Google Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2797752 2015-10-13] (Microsoft Corporation)
S3 EhttpSrv; C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe [42048 2013-10-07] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [1025584 2013-10-07] (ESET)
S3 ESHASRV; C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe [191368 2013-10-07] (ESET)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128 2011-05-24] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed]
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
R2 SDDUpdate; C:\SNDA\SDUpdate\SDDUpdateSvc.dll [227224 2013-08-13] (SNDA)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-06] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 bcm44amd64; C:\Windows\System32\DRIVERS\b44amd64.sys [87552 2009-06-10] (Broadcom Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [219184 2013-10-25] (ESET)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [185224 2013-09-09] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [155896 2013-09-09] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [147096 2013-09-09] (ESET)
R2 FGUARD64; C:\PROGRAMS\FGUARD\FGUARD64.SYS [72064 2007-02-24] (WinAbility® Software Corporation)
R3 OEM02Dev; C:\Windows\System32\DRIVERS\OEM02Dev.sys [266624 2007-10-10] (Creative Technology Ltd.)
R3 OEM02Vfx; C:\Windows\System32\DRIVERS\OEM02Vfx.sys [12288 2007-03-05] (EyePower Games Pte. Ltd.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-15 22:55 - 2015-12-15 22:57 - 00038021 _____ C:\Users\MaiLinhVi\Desktop\FRST.txt
2015-12-15 22:54 - 2015-12-15 22:55 - 00000000 ____D C:\FRST
2015-12-15 22:53 - 2015-12-15 22:53 - 00112640 _____ (forum.viry.cz) C:\Users\MaiLinhVi\Desktop\FRSTLauncher.exe
2015-12-15 22:49 - 2015-12-15 22:49 - 02369536 _____ (Farbar) C:\Users\MaiLinhVi\Desktop\FRST64.exe
2015-12-14 21:51 - 2015-12-14 21:51 - 00000000 ___HD C:\OneDriveTemp
2015-12-12 00:12 - 2015-12-12 00:12 - 00000000 ____D C:\Users\MaiLinhVi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-12-10 16:22 - 2015-11-20 19:54 - 03170304 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-12-10 16:22 - 2015-11-20 19:54 - 02609152 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-12-10 16:22 - 2015-11-20 19:54 - 00709632 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-12-10 16:22 - 2015-11-20 19:54 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-12-10 16:22 - 2015-11-20 19:54 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-12-10 16:22 - 2015-11-20 19:54 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-12-10 16:22 - 2015-11-20 19:54 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-12-10 16:22 - 2015-11-20 19:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-12-10 16:22 - 2015-11-20 19:54 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-12-10 16:22 - 2015-11-20 19:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-12-10 16:22 - 2015-11-20 19:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-12-10 16:22 - 2015-11-20 19:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-12-10 16:22 - 2015-11-20 19:34 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-12-10 16:22 - 2015-11-20 19:34 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-12-10 16:22 - 2015-11-20 19:34 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-12-10 16:22 - 2015-11-20 19:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-12-10 16:22 - 2015-11-05 20:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-12-10 16:22 - 2015-11-05 20:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-12-10 16:22 - 2015-11-03 20:04 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-12-10 16:22 - 2015-11-03 20:04 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2015-12-10 16:22 - 2015-11-03 19:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2015-12-10 16:22 - 2015-11-03 19:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2015-12-10 16:21 - 2015-11-11 19:53 - 01735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-12-10 16:21 - 2015-11-11 19:53 - 00525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-12-10 16:21 - 2015-11-11 19:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-12-10 16:21 - 2015-11-11 19:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2015-12-10 16:21 - 2015-11-05 20:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2015-12-10 16:21 - 2015-11-05 20:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2015-12-10 16:21 - 2015-11-05 10:53 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-12-10 16:20 - 2015-10-09 00:22 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll
2015-12-10 16:20 - 2015-10-09 00:18 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2015-12-10 16:20 - 2015-10-09 00:18 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2015-12-10 16:20 - 2015-10-09 00:18 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2015-12-10 16:20 - 2015-10-09 00:18 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2015-12-10 16:20 - 2015-10-09 00:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2015-12-10 16:20 - 2015-10-09 00:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2015-12-10 16:20 - 2015-10-09 00:17 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2015-12-10 16:20 - 2015-10-08 20:13 - 00419928 _____ C:\Windows\SysWOW64\locale.nls
2015-12-10 16:20 - 2015-10-08 19:52 - 00419928 _____ C:\Windows\system32\locale.nls
2015-12-10 16:19 - 2015-11-10 19:55 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-12-10 16:19 - 2015-11-10 19:55 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-12-10 16:19 - 2015-11-10 19:55 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-12-10 16:19 - 2015-11-10 19:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-12-10 16:19 - 2015-11-10 19:37 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-12-10 16:19 - 2015-11-10 18:47 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-12-10 16:05 - 2015-12-10 16:06 - 00262144 _____ C:\Windows\Minidump\121015-55536-01.dmp
2015-12-10 16:05 - 2015-12-10 16:05 - 00000000 ____D C:\Windows\Minidump
2015-12-09 17:29 - 2015-12-09 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-11-26 07:08 - 2015-11-26 07:08 - 00008192 _____ C:\Windows\system32\config\userdiff
2015-11-25 21:40 - 2015-10-30 08:09 - 00000001 ___SH C:\BOOTNXT
2015-11-25 21:19 - 2015-11-25 21:20 - 00002822 _____ C:\Windows\diagerr.xml
2015-11-25 21:19 - 2015-11-25 21:20 - 00001908 _____ C:\Windows\diagwrn.xml
2015-11-22 00:08 - 2015-11-22 15:37 - 00013340 ____H C:\Users\MaiLinhVi\Documents\~WRL3743.tmp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-15 22:56 - 2011-01-18 19:08 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-15 22:55 - 2010-01-29 21:42 - 00000962 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-291474276-2071678850-1047628788-1001UA.job
2015-12-15 22:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2015-12-15 22:53 - 2015-07-25 21:48 - 00000934 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-291474276-2071678850-1047628788-1004UA1d0c71b4a0158f1.job
2015-12-15 22:53 - 2015-07-25 21:41 - 00000882 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-291474276-2071678850-1047628788-1004Core.job
2015-12-15 22:47 - 2010-06-13 21:37 - 00000000 ____D C:\Users\MaiLinhVi\AppData\Roaming\Skype
2015-12-15 22:43 - 2012-05-25 17:07 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-15 22:15 - 2015-08-31 16:04 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0e3fe60f0caf1.job
2015-12-15 22:09 - 2015-05-17 14:02 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d090a1c0a5e42c.job
2015-12-15 22:07 - 2015-02-06 17:57 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0422df81a9a08.job
2015-12-15 21:39 - 2009-07-14 05:45 - 00014336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-15 21:39 - 2009-07-14 05:45 - 00014336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-15 15:48 - 2014-06-16 16:17 - 00000000 ____D C:\Users\MaiLinhVi\AppData\Roaming\ViberPC
2015-12-15 15:48 - 2012-12-06 15:16 - 00000000 ____D C:\Users\MaiLinhVi\AppData\Roaming\Dropbox
2015-12-15 15:47 - 2015-04-08 15:36 - 00000000 ___RD C:\Users\MaiLinhVi\OneDrive
2015-12-15 15:47 - 2013-06-13 15:33 - 00000000 ___RD C:\Users\MaiLinhVi\Disk Google
2015-12-15 15:39 - 2010-12-07 22:35 - 00000200 _____ C:\Windows\Tasks\AutoKMS.job
2015-12-15 15:39 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-13 22:36 - 2015-04-08 15:36 - 00002196 _____ C:\Users\MaiLinhVi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2015-12-12 01:18 - 2009-08-14 22:41 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-12-11 19:38 - 2009-07-14 05:45 - 02732120 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-11 19:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2015-12-10 21:11 - 2012-01-24 15:31 - 00002104 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-10 16:49 - 2013-08-15 14:13 - 00000000 ____D C:\Windows\system32\MRT
2015-12-10 16:25 - 2009-09-22 19:47 - 140158008 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-12-09 18:43 - 2012-05-25 17:07 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-12-09 18:43 - 2012-05-25 17:07 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-09 18:43 - 2012-05-25 17:07 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-12-09 17:29 - 2014-09-25 15:39 - 00002731 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-09 17:29 - 2014-03-21 18:08 - 00000000 ____D C:\Users\MaiLinhVi\AppData\Local\Skype
2015-12-09 17:29 - 2009-08-12 21:18 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-09 17:29 - 2009-08-12 21:18 - 00000000 ____D C:\ProgramData\Skype
2015-12-09 00:23 - 2013-09-28 14:12 - 00000626 _____ C:\ProgramData\Microsoft\Windows\Start Menu\LINE.lnk
2015-12-09 00:23 - 2013-09-28 14:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LINE
2015-12-07 00:31 - 2010-11-18 15:18 - 00000000 ____D C:\Users\MaiLinhVi\AppData\Roaming\Aegisub
2015-12-04 23:13 - 2015-01-23 22:10 - 00000000 ____D C:\Users\MaiLinhVi\AppData\Local\CrashDumps
2015-12-03 22:51 - 2015-09-18 18:10 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0f234f4710d3c
2015-12-03 22:51 - 2015-09-18 18:10 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f234f4710d3c.job
2015-12-03 22:51 - 2011-01-18 19:08 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-03 22:50 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2015-12-02 13:18 - 2009-10-02 22:06 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-12-01 17:38 - 2015-06-25 20:15 - 00000000 ____D C:\Users\MaiLinhVi\AppData\Local\ElevatedDiagnostics
2015-11-26 22:46 - 2015-09-14 20:30 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-26 19:04 - 2013-06-13 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-11-26 01:00 - 2015-10-30 10:42 - 00000000 ___HD C:\$WINDOWS.~BT
2015-11-25 21:40 - 2008-08-08 13:06 - 00008192 __RSH C:\BOOTSECT.BAK
2015-11-25 21:26 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2015-11-25 21:19 - 2009-08-13 04:34 - 00000000 ____D C:\Windows\Panther
2015-11-25 19:06 - 2015-07-25 18:54 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2015-11-25 18:59 - 2015-09-01 19:00 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-11-23 20:05 - 2015-07-25 20:28 - 00000000 ____D C:\Users\MaiLinhVi\Documents\Visual Studio 2015
2015-11-22 20:04 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2015-11-15 13:55 - 2010-01-29 21:42 - 00000910 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-291474276-2071678850-1047628788-1001Core.job
2015-11-15 11:29 - 2009-07-14 06:08 - 00032546 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Files in the root of some directories =======

2014-04-26 14:16 - 2014-06-03 14:45 - 0003754 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2010-11-18 15:19 - 2013-03-03 16:02 - 0002421 _____ () C:\Users\MaiLinhVi\AppData\Roaming\ASSDraw3.cfg
2010-05-20 16:49 - 2013-12-27 20:07 - 0029184 _____ () C:\Users\MaiLinhVi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-24 16:18 - 2014-11-26 16:14 - 0004990 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\admin\AppData\Local\Temp\AskInstallChecker.exe
C:\Users\admin\AppData\Local\Temp\FP_PL_PFS_INSTALLER.exe
C:\Users\admin\AppData\Local\Temp\ose00000.exe
C:\Users\Administrator\AppData\Local\Temp\BSvcProcessor.exe
C:\Users\Administrator\AppData\Local\Temp\BSvcUpdater.exe
C:\Users\Administrator\AppData\Local\Temp\NEventMessages.dll
C:\Users\MaiLinhVi\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpx5ypt3.dll


Some zero byte size files/folders:
==========================
C:\Windows\System32\mmres.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\0414cUpdateInfo.job => C:\ProgramData\Avg_Update_0414c\0414c_{21F0D53C-0E22-431D-917B-914262E02019}.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-291474276-2071678850-1047628788-1004Core.job => C:\Users\MaiLinhVi\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-291474276-2071678850-1047628788-1004UA1d0c71b4a0158f1.job => C:\Users\MaiLinhVi\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0422df81a9a08.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d090a1c0a5e42c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0e3fe60f0caf1.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f234f4710d3c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-291474276-2071678850-1047628788-1001Core.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-291474276-2071678850-1047628788-1001UA.job => C:\Users\admin\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET Endpoint Antivirus 5.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Endpoint Antivirus 5.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\MaiLinhVi\Desktop" je 2787 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"D:\\Downloads\\Orbitdownloader\\orbitdm.exe"="D:\\Downloads\\Orbitdownloader\\orbitdm.exe:*:Enabled:Orbit"
"D:\\Downloads\\Orbitdownloader\\orbitnet.exe"="D:\\Downloads\\Orbitdownloader\\orbitnet.exe:*:Enabled:Orbit"
"C:\\Program Files (x86)\\FlashGet Network\\FlashGet 3\\FlashGet3.exe"="C:\\Program Files (x86)\\FlashGet Network\\FlashGet 3\\FlashGet3.exe:*:Enabled:Flashget3"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================
Přílohy
Addition.rar
(17.11 KiB) Staženo 50 x
Moc obdivuji lidi, kteří věnují svůj volný čas pomáháním lidí. Je to až neuvěřitelné, že na tomto světě stále existují takoví lidé.
Zasloužíte si obrovský potlesk, klobouk dolů všem. Úcta!
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Trojský kůň JS/Kryptik.CO

#2 Příspěvek od Rudy »

Zdravím!
Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Mitsu
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 15 pro 2015 22:44

Re: Trojský kůň JS/Kryptik.CO

#3 Příspěvek od Mitsu »

Rudy píše:Zdravím!
Jak je na tom váš oper. systém s legalitou?
Dobrý večer!
Opravdu netuším, jak je to s legalitou mého operačního systému, protože všechny věci obstarává můj táta z práce včetně operačního systému nebo antiviru, co se týče tohoto, tak podle něj by měl být legální :oops:
Moc obdivuji lidi, kteří věnují svůj volný čas pomáháním lidí. Je to až neuvěřitelné, že na tomto světě stále existují takoví lidé.
Zasloužíte si obrovský potlesk, klobouk dolů všem. Úcta!
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Trojský kůň JS/Kryptik.CO

#4 Příspěvek od Rudy »

Tak jestli ho v té práci koupil, pak jistě. Udělejte tento sken:

Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s
a klikněte na >Prohledat<. Dejte oba logy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Mitsu
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 15 pro 2015 22:44

Re: Trojský kůň JS/Kryptik.CO

#5 Příspěvek od Mitsu »

Zde je první log z OTL, druhý log přikládám do přílohy. Děkuji vám opravdu moc za váš volný čas a za pomoc, jednoho dne se taky chci dostat na to samé místo jako vy a pomáhat ostatním lidem... Pečlivě se učím základům programování a moc vás obdivuji :oops:
OTL Extras logfile created on: 16.12.2015 23:09:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MaiLinhVi\Desktop\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18097)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 0,89 Gb Available Physical Memory | 22,18% Memory free
7,99 Gb Paging File | 4,07 Gb Available in Paging File | 50,91% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 100,13 Gb Total Space | 4,47 Gb Free Space | 4,46% Space Free | Partition Type: NTFS
Drive D: | 120,14 Gb Total Space | 33,76 Gb Free Space | 28,11% Space Free | Partition Type: NTFS
Drive E: | 10,00 Gb Total Space | 5,05 Gb Free Space | 50,51% Space Free | Partition Type: NTFS
Drive G: | 939,75 Mb Total Space | 104,56 Mb Free Space | 11,13% Space Free | Partition Type: FAT
Drive H: | 3,73 Gb Total Space | 0,00 Gb Free Space | 0,03% Space Free | Partition Type: FAT32
Drive J: | 232,88 Gb Total Space | 6,17 Gb Free Space | 2,65% Space Free | Partition Type: NTFS

Computer Name: ADMIN-PC | User Name: MaiLinhVi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\Downloads\Orbitdownloader\orbitdm.exe" = D:\Downloads\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit
"D:\Downloads\Orbitdownloader\orbitnet.exe" = D:\Downloads\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"D:\Downloads\Orbitdownloader\orbitdm.exe" = D:\Downloads\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit
"D:\Downloads\Orbitdownloader\orbitnet.exe" = D:\Downloads\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{024DE5A9-6C16-4DA9-9204-E758B29C2720}" = lport=139 | protocol=6 | dir=in | app=system |
"{04BE9AB2-AEF0-4927-BA73-91254CE98141}" = lport=2869 | protocol=6 | dir=in | app=system |
"{0DFEAB3C-3667-4195-9969-A80D1B8F5165}" = rport=137 | protocol=17 | dir=out | app=system |
"{127AE2FD-6540-4E6A-83FF-5D230C0CBFA5}" = rport=138 | protocol=17 | dir=out | app=system |
"{14C3AB1F-4A83-47FB-8ACB-36986CCC4847}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{1687BEBE-34C4-4CA7-89FE-7EDAC3E0FEE5}" = lport=138 | protocol=17 | dir=in | app=system |
"{1BA0E5B9-8CE2-4564-9207-3749E431166F}" = lport=10243 | protocol=6 | dir=in | app=system |
"{1ED56FE6-663D-4593-A4FA-6136DDBDF445}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{306AEF41-3C1E-41BC-A8AD-68038A463733}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{323B5995-0A90-4511-8525-400B06A76D07}" = lport=4100 | protocol=17 | dir=in | app=c:\program files (x86)\nch software\vrs\vrs.exe |
"{41FDC881-50EC-4332-8D76-9D3194C7A649}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{547B22BC-6CAC-4472-A456-8C5145CB64A8}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{5BDBE04D-483C-4F58-9546-9B7FCF2B59AE}" = lport=137 | protocol=17 | dir=in | app=system |
"{5D236B03-3C6F-421E-B208-E7190A700A43}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{60049868-D889-460C-872C-6601BE386DB6}" = rport=445 | protocol=6 | dir=out | app=system |
"{662115BB-94FF-44E2-B891-1397601C230F}" = lport=94 | protocol=6 | dir=in | app=c:\program files (x86)\nch software\vrs\vrs.exe |
"{7393FD0B-72CD-47B1-9221-690841CA5D00}" = lport=445 | protocol=6 | dir=in | app=system |
"{765857DE-7BF0-4108-8E82-07D6D08523F6}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{818B63F5-4066-4AB7-BEDA-FBC766B5F919}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8E30784E-742E-4320-8D9A-3108C473B120}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8FAC8D3C-B689-4F0A-B766-40F03E8416E4}" = lport=4100 | protocol=17 | dir=out | app=c:\program files (x86)\nch software\vrs\vrs.exe |
"{954CF649-395F-423C-BBF8-2B1185F06048}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{9DF56E16-8294-4C3D-8B15-922563C56FE9}" = lport=94 | protocol=6 | dir=out | app=c:\program files (x86)\nch software\vrs\vrs.exe |
"{B27DB66F-FD6D-4364-B321-2269022BC64D}" = rport=139 | protocol=6 | dir=out | app=system |
"{C6AF7BAA-6F46-4AB5-B88E-2BFCBD8EF262}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D4011E1C-97ED-4426-B416-5C9EFD63D93F}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{D68648D5-4348-4C31-BC57-56C8CE4F4893}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D81470C5-857F-4E1E-96AB-7990AC539160}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D8F4895F-0D9F-4E28-9FA6-3C20FB2A48B3}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office 15\root\office15\outlook.exe |
"{F20DDDD5-F6C6-469F-B457-F8A99B003A21}" = rport=10243 | protocol=6 | dir=out | app=system |
"{F72EF8A6-C5AB-4B41-8F38-8DE6AA60D373}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{F83A835E-1BD7-401B-A915-1AF7707F0132}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FE68E505-0F24-47CD-9A34-8446DB5D7240}" = lport=3702 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft visual studio 14.0\common7\ide\devenv.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0316412A-8313-4FB1-B4FC-0F9DE5B10480}" = protocol=6 | dir=in | app=c:\program files (x86)\gridservice\peer.exe |
"{13ADB9F4-89B2-480A-8D99-BAA673A9B5BB}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{1544D3CA-26FB-485D-993E-FD4AB4C67418}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{18DAE879-01CD-4B5C-8819-86F05FDF952D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1933BAA3-ED4A-428C-A4F6-ECB62F0ECEBB}" = protocol=6 | dir=in | app=c:\program files\microsoft office 15\root\office15\ucmapi.exe |
"{1BB4BE9F-CA02-4AAF-8A5E-E2F53BFE2C7F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{23DA4FCB-B112-4315-97B2-8D85204C2AAF}" = protocol=17 | dir=in | app=c:\temp\cprogram files (x86)opera\operaupgrader.exe |
"{25078E59-583D-44AC-986B-67A7B01C602B}" = protocol=17 | dir=in | app=c:\users\mailinhvi\appdata\roaming\dropbox\bin\dropbox.exe |
"{2D36F115-F6C1-4D3B-AD81-0A510CF8411D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2F46C382-D81F-4A49-A89C-46C7E263A49C}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.0\aolload.exe |
"{33218944-D806-4AB1-875F-1ECF7BB4F2DB}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{3443A68A-5091-4E77-B9EC-F06E1C36B2A1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{39E839D9-1602-4822-911D-2C8C9F0238C8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4051578A-C291-478B-8197-766DA235DA77}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe |
"{42701A1C-B46F-4CEF-8C71-3693DB30A6E2}" = protocol=17 | dir=in | app=d:\xmp\program\xmp.exe |
"{46421BEE-03AE-465C-ACDA-0D3617D209C3}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{46F4A39E-2BDB-4321-B851-A2D9901C64B2}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.0\aolload.exe |
"{487B6200-52F8-44ED-9459-70F24C1B32F6}" = dir=in | app=c:\users\mailinhvi\appdata\local\microsoft\onedrive\onedrive.exe |
"{4C37DCA1-3B97-42CF-AB2B-EC449D096429}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{4C893BA0-0E9B-44D5-9399-50EE315ACDF7}" = protocol=6 | dir=in | app=c:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe |
"{573F6E3F-0477-404F-B72D-7B0996CE00AC}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{5883CCAE-D33D-48BE-9662-6CBF1D680E35}" = protocol=6 | dir=in | app=d:\xmp\program\xmp.exe |
"{59876F0F-81FF-439C-8858-1E173B3E8835}" = protocol=6 | dir=out | app=system |
"{5AAAC2D4-A077-4087-B086-00D26069DC4E}" = protocol=17 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
"{5C2AE91F-1165-427A-B7B3-AD18FC2A3737}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{5DF6AC27-B337-4CFE-978F-2A91BE8B469F}" = protocol=17 | dir=in | app=c:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe |
"{5F87F607-EE42-4C10-8A90-215A01AF0836}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{62549CC5-BFFB-4EAE-85CE-109261EF5E69}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.0\icq.exe |
"{63EEC2FF-3FF7-4F41-8A7F-F31AB1BBEC90}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{670CFDD6-57C2-4958-BAD3-8F7C29C3335F}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.0\icq.exe |
"{686B0B14-DAE9-422B-A2EE-64FE507BF164}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.0\icq.exe |
"{72CD04D7-5AF9-471F-9413-F73247CA194E}" = protocol=6 | dir=in | app=c:\program files\microsoft office 15\root\office15\lync.exe |
"{751F01D6-2750-4379-AE6C-46D58BDE446D}" = dir=in | app=c:\program files (x86)\google\chrome remote desktop\47.0.2526.18\remoting_host.exe |
"{75EC72AD-9DE9-4A9E-8209-7AD7E6443CB4}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{783E32F9-39B0-463E-BFF4-B97474D3BC3A}" = protocol=6 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{7F340767-C118-4944-B064-5D11B5838F73}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{7F3BDD03-D4AD-4AE8-B406-9D95E8289C50}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{83758752-228E-4734-9C75-9582D01DD44B}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.0\icq.exe |
"{86A44874-1B05-4151-BABC-A2490C044E92}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{86C5368C-CA24-45CC-A40E-DBFB1C4B0239}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8C677A64-4BBB-4E6C-B313-E8FCDE801627}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{8CA31B14-13D0-40FD-96D6-5BA5DB7A5A27}" = protocol=17 | dir=in | app=c:\users\administrator\appdata\roaming\bittorrent\bittorrent.exe |
"{97A607A9-F640-48A7-8E0D-296A4D1EF2AD}" = dir=in | app=c:\program files (x86)\nokia\nokia ovi suite\nokiaovisuite.exe |
"{97FC5DB1-6CFB-4C3C-8127-A03E49CB6E36}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{99ABB571-DF9E-4C49-A855-291AA1C179B7}" = dir=in | app=c:\users\administrator\appdata\local\microsoft\onedrive\onedrive.exe |
"{9A71E306-6E24-4F93-91E3-46C8C70F32F8}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.0\aolload.exe |
"{A2E0C2A3-5A31-44DB-95D3-EF1D219548B5}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A53E6849-10F7-4A43-9C84-EA2C5A5BEEB5}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.0\aolload.exe |
"{A93E8531-011D-49FE-B1EE-746EEF23DE2B}" = protocol=17 | dir=in | app=c:\users\public\thunder network\xmp4\core\program\xmp.exe |
"{A9861D4C-1EE0-42A5-B423-456E4A4486ED}" = protocol=17 | dir=in | app=c:\program files (x86)\gridservice\peer.exe |
"{AA94455A-F5EF-406E-B87E-3EC178AC70AB}" = protocol=17 | dir=in | app=c:\program files\microsoft office 15\root\office15\lync.exe |
"{B11DC32B-D4CC-4119-9670-1FBD716ADF08}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{C3CEE4C9-166C-4E9B-BCE3-EB2BA6DCBBDF}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.0\icq.exe |
"{CC3A2676-8D07-4243-A2A3-B0C11AEE0D11}" = protocol=6 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
"{CCF736D9-8F89-4511-9024-4ABFD433CB82}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CD093636-F8AC-41F2-A8FF-0945596AAA6B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CD32DFE1-B47E-4496-90E4-145FA7457E9A}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe |
"{CF2FBD4F-BD5C-44AF-B80D-B2A6E447246E}" = protocol=6 | dir=in | app=c:\users\public\thunder network\xmp4\core\program\xmp.exe |
"{D35C395A-34E5-4B9A-B48E-10BA6C873AC6}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.0\aolload.exe |
"{D6DBFED2-B500-41CF-816C-463721BCF560}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{D6DE1B8B-8C71-4E17-9173-93C6666039BA}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{D966877E-BD86-430D-AB0A-02863FB14699}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.0\icq.exe |
"{DED27F5C-6845-4606-81F6-D38623A8D5B0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{DF9413F3-5319-4063-941A-9329EE0F7AD9}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{E282D450-BC5B-4325-9DB8-92A809B974B4}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe |
"{E4D3CA07-6177-45F0-8446-EFD69A0E5325}" = dir=in | app=c:\program files (x86)\nokia\nokia ovi suite\nokiaovisuite.exe |
"{E8141AC7-8860-4C3A-9545-831705B35AC5}" = dir=in | app=c:\program files (x86)\skype\plugin manager\skypepm.exe |
"{ED0AADA3-7D12-4BE1-A4DF-DE2590276C25}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{EE983FD5-EBC1-44EF-9719-33C20AB9B01D}" = protocol=17 | dir=in | app=c:\program files\microsoft office 15\root\office15\ucmapi.exe |
"{EEDDA9E9-892F-4B36-9375-A328F7FD1F99}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{F02EC99C-AE65-4C80-B820-CFC52591C5D2}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{F24629C6-7D04-4FCB-9F65-754B1AF3026C}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe |
"{F2F1F079-004F-4045-A5EF-363479FB386E}" = protocol=17 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{F5CE35E3-F2A6-4E13-BA87-1296B7962D94}" = protocol=6 | dir=in | app=c:\users\administrator\appdata\roaming\bittorrent\bittorrent.exe |
"{F63543F5-5F56-4522-A544-D2290E899471}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.0\aolload.exe |
"{FA4B43B5-CAF1-43D5-BAF1-791D2503F544}" = protocol=6 | dir=in | app=c:\temp\cprogram files (x86)opera\operaupgrader.exe |
"{FDC4844C-D280-42BB-ADA6-A435A2E599E4}" = protocol=6 | dir=in | app=c:\users\mailinhvi\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{063E29BC-B0C3-45C9-8990-3630511BD4B3}C:\program files (x86)\nokia\nokia software recovery tool\nokiasoftwarerecoverytool.exe" = protocol=6 | dir=in | app=c:\program files (x86)\nokia\nokia software recovery tool\nokiasoftwarerecoverytool.exe |
"TCP Query User{09341200-A033-449D-9EA2-477CF1CF90BC}C:\users\mailinhvi\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\mailinhvi\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{0F0F9DBB-EBBB-417A-A1D0-72E0B42807CE}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"TCP Query User{180912EE-0D21-48FF-B52C-739B30D5E668}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"TCP Query User{1927F098-E973-45E9-8A3D-45DC590E7224}C:\program files (x86)\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"TCP Query User{23A0A6DD-1650-4B16-82A2-62AC76EFD04A}C:\users\mailinhvi\appdata\local\temp\cprogram files (x86)opera\operaupgrader.exe" = protocol=6 | dir=in | app=c:\users\mailinhvi\appdata\local\temp\cprogram files (x86)opera\operaupgrader.exe |
"TCP Query User{28C8579A-C50B-4C8D-AEE7-2ECB9011C628}D:\downloads\line\line.exe" = protocol=6 | dir=in | app=d:\downloads\line\line.exe |
"TCP Query User{355482C5-80BB-4BBB-BDAE-F6B5F18E484C}C:\users\mailinhvi\appdata\roaming\icq\application\icq7m\icq.exe" = protocol=6 | dir=in | app=c:\users\mailinhvi\appdata\roaming\icq\application\icq7m\icq.exe |
"TCP Query User{37783C07-2F34-42DA-AFA5-49052EFFCDA1}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe" = protocol=6 | dir=in | app=c:\program files (x86)\common files\nokia\fuse\fuseservice.exe |
"TCP Query User{54915B73-9FFE-4EBC-ACB7-6CBD8FBCEE91}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{6D29DA82-AF69-4852-AE86-8629FB9C52EC}C:\temp\cprogram files (x86)opera\operaupgrader.exe" = protocol=6 | dir=in | app=c:\temp\cprogram files (x86)opera\operaupgrader.exe |
"TCP Query User{7B21F969-C308-434E-A939-8A709E47BEA5}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{7BA40391-CFBA-4998-965F-7D1A758953ED}C:\users\mailinhvi\appdata\roaming\icq\application\icq7.4\icq.exe" = protocol=6 | dir=in | app=c:\users\mailinhvi\appdata\roaming\icq\application\icq7.4\icq.exe |
"TCP Query User{82CD0FCA-7425-4381-BEDD-5DBEE3D45910}C:\users\mailinhvi\appdata\roaming\icq\application\icq7.6\icq.exe" = protocol=6 | dir=in | app=c:\users\mailinhvi\appdata\roaming\icq\application\icq7.6\icq.exe |
"TCP Query User{84ABBCFA-9104-4DD4-9298-44E76D5F8F51}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"TCP Query User{94A414DA-F9F4-4641-A1DC-771BD81BC393}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"TCP Query User{95DFC646-FC11-4A98-9FDC-A46E577DDD33}C:\program files (x86)\flashget network\flashget 3\flashget3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\flashget network\flashget 3\flashget3.exe |
"TCP Query User{A42C094C-4778-4600-AF2E-38A7C72415B6}C:\users\mailinhvi\appdata\roaming\bittorrent\bittorrent.exe" = protocol=6 | dir=in | app=c:\users\mailinhvi\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{AC30A109-11C0-4889-AB3B-C72EBD6524C4}C:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe" = protocol=6 | dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe |
"TCP Query User{B6ECFB6D-C2A2-4F6F-9819-6DFF18A9A0A4}C:\users\mailinhvi\appdata\roaming\icq\application\icq7.5\icq.exe" = protocol=6 | dir=in | app=c:\users\mailinhvi\appdata\roaming\icq\application\icq7.5\icq.exe |
"TCP Query User{BA0701A5-F205-41AB-8CB7-63D5363C11EB}D:\downloads\orbitdownloader\orbitnet.exe" = protocol=6 | dir=in | app=d:\downloads\orbitdownloader\orbitnet.exe |
"TCP Query User{BE0135AF-3C64-450D-A776-475BB4E9A029}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"TCP Query User{C018C9AA-CB65-4BF9-86EE-37CDC73ED070}C:\program files (x86)\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"TCP Query User{DAD00CF0-A8D8-4B70-B84D-5F8F15AF34D3}D:\downloads\orbitdownloader\orbitnet.exe" = protocol=6 | dir=in | app=d:\downloads\orbitdownloader\orbitnet.exe |
"TCP Query User{DDA48F36-4AED-403B-9E31-4B47E5CE6390}C:\program files (x86)\yahoo!\messenger\yahoomessenger.exe" = protocol=6 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"TCP Query User{E4D07546-8F1E-444B-8072-8E9BB1878C29}C:\program files (x86)\orbitdownloader\orbitnet.exe" = protocol=6 | dir=in | app=c:\program files (x86)\orbitdownloader\orbitnet.exe |
"TCP Query User{E4F567DF-F10C-479F-9685-007BE923372B}C:\program files (x86)\bittorrent\bittorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
"TCP Query User{EC4B7AAF-6195-424E-A0AF-F0D85C70AF6F}C:\program files (x86)\orbitdownloader\orbitnet.exe" = protocol=6 | dir=in | app=c:\program files (x86)\orbitdownloader\orbitnet.exe |
"TCP Query User{FF257D36-3340-4D8C-A541-1298D253450B}C:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe" = protocol=6 | dir=in | app=c:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe |
"UDP Query User{0F08F2E2-A88A-4B2B-931A-D9EB48F60869}C:\users\mailinhvi\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\mailinhvi\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{2845EA45-8D6C-4AED-9FA9-C9EB96728703}C:\users\mailinhvi\appdata\roaming\icq\application\icq7.6\icq.exe" = protocol=17 | dir=in | app=c:\users\mailinhvi\appdata\roaming\icq\application\icq7.6\icq.exe |
"UDP Query User{287DA373-2410-4FF5-ADEB-2449E0B56717}C:\program files (x86)\nokia\nokia software recovery tool\nokiasoftwarerecoverytool.exe" = protocol=17 | dir=in | app=c:\program files (x86)\nokia\nokia software recovery tool\nokiasoftwarerecoverytool.exe |
"UDP Query User{2E364327-45D1-41F4-B2AF-030906D9BCA2}C:\temp\cprogram files (x86)opera\operaupgrader.exe" = protocol=17 | dir=in | app=c:\temp\cprogram files (x86)opera\operaupgrader.exe |
"UDP Query User{2EB2B8F0-E76D-47EF-866D-4534C6617CA2}C:\program files (x86)\orbitdownloader\orbitnet.exe" = protocol=17 | dir=in | app=c:\program files (x86)\orbitdownloader\orbitnet.exe |
"UDP Query User{3DBE4DA0-F3CA-4399-AF4E-B978F7D01226}C:\program files (x86)\yahoo!\messenger\yahoomessenger.exe" = protocol=17 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"UDP Query User{3E60D10C-AAE7-4850-859F-6ABA94BAC1BD}C:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe" = protocol=17 | dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe |
"UDP Query User{42B7454B-C068-4663-81ED-4CC0D9C92E47}C:\program files (x86)\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"UDP Query User{526B3FC5-0C28-448B-828C-32E9508044AD}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{5FCCF293-E295-4C4E-BE53-8D1F628BFB8C}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{6205644B-6A55-4187-9B56-D891FDE11954}C:\users\mailinhvi\appdata\roaming\icq\application\icq7.5\icq.exe" = protocol=17 | dir=in | app=c:\users\mailinhvi\appdata\roaming\icq\application\icq7.5\icq.exe |
"UDP Query User{71531AF8-0B33-4A1C-8B6D-AB18DECEB706}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{73785824-226F-4F57-B675-B7B902F75545}D:\downloads\orbitdownloader\orbitnet.exe" = protocol=17 | dir=in | app=d:\downloads\orbitdownloader\orbitnet.exe |
"UDP Query User{7BEF44A4-5315-4383-A75C-8BF577E3D917}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"UDP Query User{7FB987D7-E5DA-4BB8-895C-EE05DCF96695}D:\downloads\line\line.exe" = protocol=17 | dir=in | app=d:\downloads\line\line.exe |
"UDP Query User{974ECBD4-7476-49FE-8D26-337EBC26A2F9}C:\program files (x86)\bittorrent\bittorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
"UDP Query User{9E8D0A4C-DCF8-44F8-9CCD-367B15FBE040}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{A2E830DD-0CD3-4710-BE75-CA4F9F4667AC}C:\users\mailinhvi\appdata\roaming\icq\application\icq7.4\icq.exe" = protocol=17 | dir=in | app=c:\users\mailinhvi\appdata\roaming\icq\application\icq7.4\icq.exe |
"UDP Query User{A8046F72-0C4F-472A-A106-B74E67A2372B}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{A95A5316-EB14-4238-95B7-6DF425333E4B}C:\users\mailinhvi\appdata\roaming\bittorrent\bittorrent.exe" = protocol=17 | dir=in | app=c:\users\mailinhvi\appdata\roaming\bittorrent\bittorrent.exe |
"UDP Query User{A9A5679A-7D6A-46A4-9C05-420328AA9D7E}C:\users\mailinhvi\appdata\roaming\icq\application\icq7m\icq.exe" = protocol=17 | dir=in | app=c:\users\mailinhvi\appdata\roaming\icq\application\icq7m\icq.exe |
"UDP Query User{B91F87AF-2F9C-469C-B3CE-47264C2A8038}D:\downloads\orbitdownloader\orbitnet.exe" = protocol=17 | dir=in | app=d:\downloads\orbitdownloader\orbitnet.exe |
"UDP Query User{D90CFBF6-9757-4BB6-A5B3-1144358C34E2}C:\program files (x86)\flashget network\flashget 3\flashget3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\flashget network\flashget 3\flashget3.exe |
"UDP Query User{DF0201B0-011D-4636-B2C2-0E0D6B7711B9}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe" = protocol=17 | dir=in | app=c:\program files (x86)\common files\nokia\fuse\fuseservice.exe |
"UDP Query User{E60E8D9E-754E-40D9-A570-4D37BD039835}C:\program files (x86)\orbitdownloader\orbitnet.exe" = protocol=17 | dir=in | app=c:\program files (x86)\orbitdownloader\orbitnet.exe |
"UDP Query User{EF49EFB2-7D5B-4E3C-844D-7FCD08DE73E6}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{F1467157-5E3F-452E-9ED4-166AF5C27EB1}C:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe" = protocol=17 | dir=in | app=c:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe |
"UDP Query User{FA2D6901-0280-4DA8-857D-974C4F85A398}C:\program files (x86)\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"UDP Query User{FFC16089-D340-4B1B-A19A-C9ADF5BAF2D2}C:\users\mailinhvi\appdata\local\temp\cprogram files (x86)opera\operaupgrader.exe" = protocol=17 | dir=in | app=c:\users\mailinhvi\appdata\local\temp\cprogram files (x86)opera\operaupgrader.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{020CDFE0-C127-4047-B571-37C82396B662}" = Microsoft SQL Server 2014 Transact-SQL ScriptDom
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{08274920-8908-45c2-9258-8ad67ff77b09}.sdb" = IIS Express Application Compatibility Database for x64
"{0D3E9E15-DE7A-300B-96F1-B4AF12B96488}" = Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23026
"{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Windows Live Language Selector
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}" = Microsoft SQL Server 2014 Management Objects (x64)
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1" = Aegisub 3.2.0
"{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{3AE40040-2F48-4617-9228-49E999738BDB}" = Microsoft Visual Studio 2015 Performance Collection Tools - ENU
"{49D665A2-4C2A-476E-9AB8-FCC425F526FC}" = Microsoft SQL Server 2012 Native Client
"{4B7958F6-4943-4903-B379-9180DC8C2105}" = Microsoft Build Tools Language Resources 14.0 (amd64)
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{50813B8C-FCBB-3C61-8039-EAAA93029066}" = Microsoft .NET Framework 4.5.1 (CSY)
"{5247E16E-BCF8-95AB-1653-B3F8FBF8B3F1}" = Windows Software Development Kit DirectX x64 Remote
"{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10
"{55168F96-0BEA-3A05-95C7-D31D211D707E}" = Visual C++ IDE x64 Package
"{55D55008-E5F6-47D6-B16F-B2A40D4D145F}" = 64 Bit HP CIO Components Installer
"{5984D8DA-C1AF-4284-9C88-D7150425B315}" = IIS 10.0 Express
"{599702AA-91EB-38C1-B994-CDE35C57E007}" = Microsoft Visual Studio 2015 VsGraphics Helper Dependencies
"{5B7D3F8B-BDA8-382D-9581-18AA7F1E1358}" = Microsoft Visual Studio Team Foundation Server 2015 Office Integration Language Pack (x64) - ENU
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{62D2E847-606F-49FB-A38B-F9D5AA936331}" = Microsoft Visual Studio 2015 Diagnostic Tools - amd64
"{68BA34E8-9B9D-4A74-83F0-7D366B532D75}" = Microsoft System CLR Types for SQL Server 2014
"{6FDDC552-CEAB-4245-B059-0EAFCC01E9EB}" = ESET Endpoint Antivirus
"{70FF76E1-4F3F-3475-A501-4F1E87D5A938}" = Microsoft Visual Studio Team Foundation Server 2015 Storyboarding Language Pack (x64) - ENU
"{732C5708-B3D0-3A93-B4F2-6BA5FCFC5BA1}" = Microsoft Visual Studio Team Foundation Server 2015 Office Integration (x64)
"{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610
"{78909610-D229-459C-A936-25D92283D3FD}" = Microsoft SQL Server Compact 4.0 SP1 x64 ENU
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{83B181F2-20B8-4F00-8E71-C66E951A8D4F}" = Visual Studio 2015 Prerequisites - ENU Language Pack
"{8C327061-E39D-4696-84A8-E84533ADDD7D}" = ActivePerl 5.16.3 Build 1603 (64-bit)
"{8C918E5B-E238-401F-9F6E-4FB84B024CA2}" = Microsoft Build Tools 14.0 (amd64)
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2010
"{90150000-008F-0000-1000-0000000FF1CE}" = Office 15 Click-to-Run Licensing Component
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.6
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{94A631D5-B30A-3DD8-B65C-1117C09DA73E}" = Microsoft .NET Framework 4.6
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96F4525A-470D-F15C-796E-58D9988C3E5F}" = Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
"{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}" = Microsoft SQL Server 2012 Command Line Utilities
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb" = IIS Express Application Compatibility Database for x86
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{B74B199A-EDD4-B657-E055-327D454402D2}" = Windows Software Development Kit DirectX x64 Remote
"{BBAA137F-CE8A-4A38-A251-C90A228098EB}" = Microsoft Visual Studio 2015 Diagnostic Tools - amd64
"{BC958BD2-5DAC-3862-BB1A-C1BE0790438D}" = Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23026
"{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}" = Microsoft .NET Version Manager (x64) 1.0.0-beta5
"{D4989E74-FBEF-41D8-BBD5-1ABF944C31EE}" = Microsoft Visual Studio 2015 Diagnostic Tools - amd64
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DE38EBD8-25AC-3026-BE14-6F829F7050A6}" = Microsoft Visual Studio Team Foundation Server 2015 Storyboarding (x64)
"{DF32E41C-24AD-4A87-B43A-B38553B1806E}" = Visual Studio 2015 Prerequisites
"{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}" = Microsoft Web Deploy 3.6
"{FCC6E820-B5DB-454E-96E3-B6182DDEEC8D}" = Microsoft Visual Studio 2015 Performance Collection Tools
"72A50F48CC5601190B9C4E74D81161693133E7F7" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9)
"Creative OEM002" = Laptop Integrated Webcam Driver (1.04.01.1011)
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Folder Guard" = Folder Guard
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"NVIDIA Drivers" = NVIDIA Drivers
"O365ProPlusRetail - cs-cz" = Microsoft Office 365 ProPlus - cs-cz
"Recuva" = Recuva
"Windows Movie Maker" = Windows Movie Maker
"WinRAR archiver" = WinRAR archiver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02138196-59F1-3672-9FB9-BF868075952E}" = Microsoft Visual Studio 2015 Team Explorer Language Pack - ENU
"{021C4C4F-C93C-4425-BFFD-C2D16776BFAE}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{030A6785-C3A9-37DA-8530-444C320629FA}" = Microsoft Visual Studio 2015 Shell (Minimum)
"{08600005-5228-4BF6-845E-E9A957AFDCB4}" = OviMPlatform
"{09F18A53-B4AC-4B87-A782-5D22AA02C8A2}" = Microsoft Visual Studio 2015 Profiling Tools
"{0A3B508E-5638-4471-BCC9-954E1868CB86}" = WCF Data Services Tools for Microsoft Visual Studio 2015
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0DD140D3-9563-481E-AA75-BA457CBDAEF2}" = PC Inspector File Recovery
"{1066AB1A-C1E7-384E-9A1F-39D2C25471BD}" = Microsoft Visual Studio 2015 XAML Designer
"{12D99739-FFD3-3761-8AA6-F929E0FE407E}" = Multi-Device Hybrid Apps using C# - Templates - ENU
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{14F4ED5C-AE31-4111-BDBB-EE62CA295CC8}" = Microsoft Visual Studio 2015 Diagnostic Tools - x86
"{1690CE56-2231-4E59-9006-A0876D949EA8}" = Tools for .Net 3.5
"{173D2989-6B09-3A90-8819-A53E43F99818}" = Microsoft Visual Studio 2015 Devenv Resources
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{19A5926D-66E1-46FC-854D-163AA10A52D3}" = Microsoft .NET Framework 4.5.1 SDK
"{1A6302B8-FD7B-32F9-ACC1-7C0B776D21A2}" = Visual C++ IDE Common Package
"{1A8A9739-BAD7-491F-B5B9-A79A2B965422}" = Entity Framework 6.1.3 Tools for Visual Studio 2015
"{1B87EE82-EB1D-442C-90A3-D86B08E9B7A1}" = Microsoft Visual Studio Connected Services
"{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}" = Google Drive
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}" = AzureTools.Notifications
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2079BC7F-41D0-3CE8-BB24-D1DC292DE4C8}" = Visual C++ IDE Debugger Package
"{21373064-AD95-48DB-A32E-0D9E08EF7355}" = Prerequisites for SSDT
"{216094CE-EC45-4372-B6C6-0F2B8DE52679}" = Microsoft Azure Shared Components for Visual Studio 2015 - v1.5
"{246124C5-600E-44F2-8E09-940E27DB1D01}" = Microsoft VisualStudio JavaScript Project System
"{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1" = Aegisub 3.2.2
"{24D8C6FB-19E6-3E96-A94F-D4FCE4CBC6D0}" = Visual C++ Library PGO X86 Package
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16
"{2774595F-BC2A-4B12-A25B-0C37A37049B0}" = Microsoft SQL Server 2014 Management Objects
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{28191B83-1D60-44B6-9B08-E854EF6632D5}" = Ovi Desktop Sync Engine
"{281A7FBF-9E98-4639-AC73-D205BBF979AA}" = USB Serial Port Driver
"{2881AB98-8978-4C01-87FD-30DF4631FA88}" = Microsoft Visual Studio 2015 XAML Application Timeline - ENU
"{290FC320-2F5A-329E-8840-C4193BD7A9EE}" = Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU)
"{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}" = Microsoft .NET Framework 4.6 Targeting Pack
"{2FB312D3-E28F-3094-B6ED-47000F25D193}" = Microsoft NuGet - Visual Studio 2015
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{33187B46-F813-428A-8EE0-4B721B838C2C}_is1" = MiniTool Power Data Recovery - Bootable Media Builder 6.8
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{37E53780-3944-4A6A-842F-727128E8616E}" = Blend for Visual Studio SDK for .NET 4.5
"{37F52A5D-1940-3CEC-AD6A-36C7EA3C3554}" = Visual C++ IDE Debugger Resource Package
"{384BAE4F-6233-3E67-99A3-87268642493D}" = Visual C++ MSBuild Base Package
"{3882E617-A19F-38D0-8ED9-6F0DBC348A34}" = Microsoft ASP.NET and Web Tools 2015 - Visual Studio 2015
"{3BDC2F21-C038-48E2-AFFC-EFE7A49BE75B}" = Microsoft Visual Studio 2015 Performance Debugger Web Views
"{3C0FA0FD-3422-3D08-B1F9-BF34BE7DE12B}" = Visual C++ IDE Base Package
"{3D3CEBE6-40EA-4C48-97FD-73828281AB4A}" = Microsoft .NET Framework 4.6 Targeting Pack (ENU)
"{3FC42713-B6E7-49AA-A553-A224FE9828A8}" = Nokia Ovi Suite
"{3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B}" = Azure AD Authentication Connected Service
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{42AF2A8C-6EBB-3D2E-9BF1-6135379FBABC}" = Windows Espc Package
"{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}" = PreEmptive Analytics Visual Studio Components
"{4443D3F4-A231-35CC-8471-CB60F8A3FE3B}" = Microsoft Visual Studio 2015 Shell (Minimum) Interop Assemblies
"{47D08E7A-92A1-489B-B0BF-415516497BCE}" = Microsoft SQL Server 2014 T-SQL Language Service
"{4E62123C-4C0D-4123-A8A2-C0103B92D7EA}" = Should I Remove It
"{4FB6F27D-8B6C-3433-B447-25FCA242985F}" = Visual C++ Compiler/Tools X86 Base Resource Package
"{50b32652-69d2-4b93-9316-edcd12067b8b}" = Microsoft Visual Studio Community 2015
"{5536AAD4-740A-4577-843D-4281D3F30726}" = Microsoft Azure Mobile Services Tools for Visual Studio - v1.4
"{56AD3004-0B49-967F-F682-B05650B61A78}" = Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
"{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
"{5730588A-33CA-373C-9D70-F716605B57D2}" = Microsoft Help Viewer 2.2
"{58246C80-3941-4B69-AE31-264644E2ADB8}" = Microsoft SQL Server Data Tools - enu (14.0.50616.0)
"{5A4D001F-645A-303A-BD3A-39A2EE60F022}" = Visual C++ MSBuild Base Resource Package
"{5B47029B-1E62-30FF-906E-694851C22782}" = Roslyn Language Services - x86
"{5C0F50FF-52F8-31E5-842D-7882941FAD39}" = Visual C++ IDE Core Professional Plus Resource Package
"{5C4DD346-D2B9-3B7B-9320-A90049D5E48B}" = Microsoft Visual Studio Community 2015 - ENU
"{5D4875F6-89D1-4E9C-B7B9-9164C9D20C9C}" = Kaspersky Security Scan
"{5F867E41-0322-3590-B09E-B2D318CEBBF1}" = Visual C++ MSBuild X86 Package
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{61A70737-1FE8-E16A-8791-5C8D54990F5B}" = Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2015 - ENU
"{62A6BB84-126D-3132-A4F2-B250BFB9AB3F}" = Visual C++ MSBuild X64 Package
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{67A74EC1-A89D-3553-B38D-D17D4991CD2F}" = Microsoft Visual Studio 2015 SDK - ENU
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A0C6700-EA93-372C-8871-DCCF13D160A4}" = Microsoft .NET Framework 4.5.1 Multi-Targeting Pack
"{6B0DC474-A5F0-4091-8913-25E9DA2E7F53}" = Asoftech Photo Recovery
"{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}" = Roslyn Language Services - x86
"{6C1BF658-4F11-34A1-8941-6A7C7F2B8817}" = Microsoft Blend for Visual Studio 2015 - ENU
"{6C5F8503-55D2-4398-858C-362B7A7AF51C}" = Firebird SQL Server - MAGIX Edition
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6E3FB6C9-8C3C-45D4-BD9E-AECA430EE8E0}" = TypeScript Power Tool
"{700FCCBE-AC0B-39BD-91C7-089459AFFCA6}" = Microsoft Blend for Visual Studio 2015
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7130468A-F53F-4698-8C09-A339EA3B05E6}" = Nokia Software Updater
"{718FFB65-F6E4-4D62-861F-ED10ED32C936}" = Microsoft System CLR Types for SQL Server 2014
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{743FC372-B1A2-3A5A-BF20-E2AF24435685}" = Visual C++ IDE Professional Core Package
"{74d0e5db-b326-4dae-a6b2-445b9de1836e}" = Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{791295AE-3B0A-3222-9E69-26C8C106E8D1}" = Team Explorer for Microsoft Visual Studio 2015
"{7f51bdb9-ee21-49ee-94d6-90afc321780e}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
"{7f54b430-3428-4775-aeae-531e46185ec6}" = TypeScript Tools for Microsoft Visual Studio 2015 1.5.3.0
"{7FF53256-7BAF-3EFA-91B4-DB65F37EB5E9}" = Microsoft Visual Studio 2015 Shell (Minimum) Resources
"{80025584-1880-35C4-AF00-D315726DD3B0}" = Visual C++ Compiler/Tools X86 Base Package
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{88EB38EF-4D2C-436D-ABD3-56B232674062}" = ICQ7
"{892994D3-5963-4877-A8DB-629607E8E928}" = 602XML Filler
"{8A56053B-10D9-333C-802F-FD804C4D6D35}" = Visual C++ MSBuild ARM Package
"{8ADD5526-3DEC-4151-AC39-DEE5CADBCFDC}" = WinUSB Compatible ID Drivers
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90150000-008C-0000-0000-0000000FF1CE}" = Office 15 Click-to-Run Extensibility Component
"{90150000-008C-0405-0000-0000000FF1CE}" = Office 15 Click-to-Run Localization Component
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{9194A7D4-9FAC-41E5-A98C-C40D457D5D48}" = Microsoft Visual Studio 2015 Diagnostic Tools - x86
"{919C67A9-2DE8-4929-A910-CB85E009B5CB}" = Microsoft Visual Studio 2015 Preparation
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{93A31A4A-197C-43F0-9687-7FFC47C33D44}" = Microsoft Visual Studio 2015 Preparation
"{93CC1063-02A1-4F25-A13A-C351A10D84DD}" = Microsoft Visual Studio Services Hub
"{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{976C3D92-0DEC-37A6-A870-FF4FC18CD029}" = Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps
"{98495159-3149-4678-A995-DFF1A02F7DCB}" = Microsoft VisualStudio JavaScript Language Service
"{9890DF1A-10E9-4236-94B1-1EFAA4099F13}" = Dotfuscator and Analytics Community Edition 5.18.1
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B3A1C97-A361-463E-8817-444F9F88CDFE}" = Microsoft Expression Blend SDK for .NET 4
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9E40E17C-E055-3955-8D8D-DD15A9CAA250}" = Visual C++ Compiler/Tools X86 Base Resource Package
"{9E99CC49-D305-4D42-AC34-6C732062B142}" = Microsoft Visual Studio 2015 Preparation
"{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}" = Test Tools for Microsoft Visual Studio 2015
"{9ED72246-E35D-4B03-8369-605E82465A29}" = Emergency Download Driver
"{9F429DF7-F8DD-4980-9673-E6DACA012F6C}" = Application Insights Tools for Visual Studio 2015
"{A00EC54A-CE16-4CF6-A14A-5CF81A1FE03F}" = Microsoft Azure Mobile Services SDK V2.0
"{A0B1E1BF-BEF5-4748-800B-E54ED9CDF8CE}" = WinUSB Drivers ext
"{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
"{A1CB8286-CFB3-A985-D799-721A0F2A27F3}" = Windows Software Development Kit DirectX x86 Remote
"{A223B446-EC3D-3031-828D-5188800AB782}" = Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU)
"{A2563E55-3BEC-3828-8D67-E5E8B9E8B675}" = Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23026
"{A2AA4204-C05A-4013-888A-AD153139297F}" = PC Connectivity Solution
"{A36A0728-3557-407E-A25C-2F8EDE6EC858}" = Microsoft Visual Studio 2015 XAML Visual Diagnostics
"{A4495E4F-5218-48FB-8AD2-F3076011B9E1}" = Microsoft Azure Mobile Services Connected Service
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A6030DAD-1600-F767-C8DD-C722ADFE8FBC}" = Windows Software Development Kit DirectX x86 Remote
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A7E88B38-6886-4474-9D85-A8ABE5FCD80E}" = Microsoft Build Tools Language Resources 14.0 (x86)
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC76BA86-7AD7-1029-7B44-AC0F074E4100}" = Adobe Acrobat Reader DC - Czech
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B4455386-EEC8-3ADB-B63B-F10F108D04A9}" = Visual C++ IDE Base Package
"{B57097EF-5F38-348C-8081-4D0F0B78757E}" = Microsoft Agents for Visual Studio 2015 Preview - ENU
"{B5915D37-0637-4A26-A3AA-C5DC9F856370}" = Microsoft .NET Framework 4.6 SDK
"{B7D4B08A-9D89-4369-B51C-92CF8C03D2F8}" = WinUsb CoInstallers
"{B8D84F70-0296-11E2-8DF5-F04DA23A5C58}" = MSVCRT Redists
"{B941AFB4-8851-33A1-9E72-0C33D463C41C}" = Microsoft .NET Framework 4.5.2 Multi-Targeting Pack
"{BB5E57BD-2E5E-4EF4-A7AE-08CB03102E06}" = MAGIX Music Maker Silver
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{BE960C1C-7BAD-3DE6-8B1A-2616FE532845}" = Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23026
"{C11CD3FC-F7A0-3A92-8B38-02D5E6C79FAE}" = Microsoft Portable Library Multi-Targeting Pack
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C6A4A3DF-5A1E-4825-8D38-E5B00C196B31}" = Microsoft Azure Storage Connected Service
"{C70B8F90-5AEA-4938-BA56-AFD05ECF3075}" = Microsoft Visual Studio 2015 XAML Application Timeline
"{C74AF26E-5E70-30CA-AC13-FA13A8D3BAC9}" = Visual C++ IDE Common Resource Package
"{C9A87D86-FDFD-418B-BF96-EF09320973B3}" = PC Inspector smart recovery
"{C9DF9BC6-B08D-4547-BD97-F2BBBCC370FB}" = Microsoft Visual Studio 2015 Windows Diagnostic Tools - ENU
"{CA6344FA-570D-4F9E-88F0-C88D919A680B}" = Microsoft Visual Studio 2015 XAML Visual Diagnostics - ENU
"{CBA11DAA-A427-4292-A9E4-760263E0D2B9}" = Microsoft Visual Studio 2015 Diagnostic Tools - x86
"{CDF9E1C8-4B97-4F8B-A848-7DD0E8BEB89F}" = Chrome Remote Desktop Host
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{CE37CE67-2660-30EE-805B-78829CC3554B}" = Microsoft Agents for Visual Studio 2015 Preview
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CE9BDD0F-BAF3-474D-B6D8-15B84BDAB229}" = Windows Phone app for desktop
"{CF652E2D-6128-49E9-833E-F131C4FC42CA}" = ChessBase 10
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D0D14551-3A2D-433B-861F-F4DCE5422759}" = Nokia PC Suite
"{D1437F51-786A-4F57-A99C-F8E94FBA1BD8}" = Microsoft Build Tools 14.0 (x86)
"{D1E9367F-5F7C-4019-96B7-45967FD60DB4}" = Microsoft.VisualStudio.Office365
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D3517C62-68A5-37CF-92F7-93C029A89681}" = Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU)
"{D3FE4937-CB7C-3FE3-8521-7643B86E6AAA}" = Visual C++ IDE Base Resource Package
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D5B11428-F4C4-4FC2-AF89-4D2163BD1D28}" = ChessBase 10
"{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}" = WCF Data Services 5.6.4 Runtime
"{DCAD89A6-1B28-4C9E-81E4-A3101703CAD5}" = Microsoft Visual Studio 2015 Windows Diagnostic Tools
"{DD1865F0-AD73-40FB-B23E-1822E02396FF}" = NVIDIA PhysX
"{DE064F60-6522-3310-9665-B5E3E78B3638}" = Microsoft Visual Studio Community 2015
"{DEAC33A4-FB05-32C6-8AAD-7FB26A8767E6}" = Windows Phone SDK 8.0 Assemblies for Visual Studio 2015
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E2E81BA0-07B8-36E7-B860-822059039AE4}" = Microsoft Visual Studio 2015 XAML Designer - ENU
"{E328A1B9-686E-4FDE-A513-77F74C48BB1C}" = edu-learning pro MS Office 2010 CZ
"{E41854EE-D8A6-4E03-B42D-E0006C24A306}" = Microsoft Visual Studio 2015 Test Tools Language Pack - ENU
"{e46eca4f-393b-40df-9f49-076faf788d83}" = Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
"{E5628C7D-AF4C-36EE-8EA3-CCA584355DC8}" = Visual C++ Compiler/Tools X86 Base Package
"{E6D09370-D4B1-3421-A0F6-45DF6999EBED}" = Visual C++ IDE Base Resource Package
"{EA2C2406-C25C-4845-842F-360EFEA4CDCE}" = TypeScript Tools for Microsoft Visual Studio 2015
"{EC04E080-8898-35F1-90C7-E5965C68A0DC}" = Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FC1F3422-0C94-3178-AD95-3EA889DF55AF}" = Microsoft Visual Studio 2015 Devenv
"{FC94D188-1E08-3707-9D23-F41178D44664}" = Windows Espc Resource Package
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.16
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 20 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 20 NPAPI
"Audio Record Wizard" = Audio Record Wizard
"AV MP3 Player-Morpher" = AV MP3 Player-Morpher
"AV Video Karaoke Maker" = AV Video Karaoke Maker
"AV Voice Changer Software DIAMOND 8.0" = AV Voice Changer Software DIAMOND 8.0
"Avidemux 2.5" = Avidemux 2.5 (32-bit)
"Avidemux 2.5 (64-bit)" = Avidemux 2.5
"AviSynth" = AviSynth 2.5
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2013-05-30
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Epic Pen_is1" = Epic Pen
"ExpressBurn" = Express Burn
"Free Video to GIF Converter_is1" = 2.0
"Google Chrome" = Google Chrome
"Grey Olltwit's Sylvester & Tweety Game" = Grey Olltwit's Sylvester & Tweety Game
"HandBrake" = HandBrake 0.9.5
"KaraFun Player_is1" = KaraFun Player
"KaraFun_is1" = KaraFun 1.18
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.0.0 (Full)
"LINE" = LINE
"MAGIX_{BB5E57BD-2E5E-4EF4-A7AE-08CB03102E06}" = MAGIX Music Maker Silver
"MediaCoder" = MediaCoder 0.8.28.5582
"Mgeni" = Mgeni Snapshot (10-22-2009)
"Microsoft Help Viewer 2.2" = Microsoft Help Viewer 2.2
"MKVtoolnix" = MKVToolNix 7.7.0 (64bit)
"Mozilla Firefox 42.0 (x86 cs)" = Mozilla Firefox 42.0 (x86 cs)
"Mozilla Thunderbird (8.0)" = Mozilla Thunderbird (8.0)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Nokia Ovi Suite" = Nokia Ovi Suite
"Nokia PC Suite" = Nokia PC Suite
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"PhotoScape" = PhotoScape
"Polipo" = Polipo 1.0.4.1
"Revo Uninstaller" = Revo Uninstaller 1.89
"Security Task Manager" = Security Task Manager 1.8d
"SPlayer" = SPlayer
"SubtitleEdit_is1" = Subtitle Edit v3.1
"Subway Surfers_is1" = Subway Surfers
"Switch" = Switch Sound File Converter
"SystemRequirementsLab" = System Requirements Lab
"TrueCrypt" = TrueCrypt
"Vidalia" = Vidalia 0.2.12
"VLC media player" = VLC media player 1.0.1
"WavePad" = WavePad Sound Editor
"WinLiveSuite" = Windows Live Essentials
"Xvid Video Codec 1.3.3" = Xvid Video Codec
"Yahoo! Messenger" = Yahoo! Messenger
"ZonerCallisto5_CZ_is1" = Zoner Callisto 5 FREE

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4
"{781B39EC-2E18-41FC-9B00-B84E4FFCA85F}" = ICQ7M
"BitTorrent" = BitTorrent
"Dropbox" = Dropbox
"GoldWave v5.68" = GoldWave v5.68
"OneDriveSetup.exe" = Microsoft OneDrive
"Pixillion" = Pixillion Image Converter
"Recordpad" = RecordPad Sound Recorder
"szn-software-listicka" = Seznam Lištička (Pouze já.)
"szn-software-postak" = Seznam Pošťák (Pouze já.)
"ToneGen" = NCH Tone Generator
"UnityWebPlayer" = Unity Web Player
"Viber" = Viber

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 13.12.2015 11:07:48 | Computer Name = admin-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro C:\Program Files\Microsoft Office
15\root\office15\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo
zásady C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL na řádku 1.
Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". Definice
je UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 14.12.2015 16:51:58 | Computer Name = admin-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro C:\Program Files\Microsoft Office
15\root\office15\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo
zásady C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL na řádku 1.
Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". Definice
je UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 14.12.2015 16:52:39 | Computer Name = admin-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro C:\Program Files\Microsoft Office
15\root\office15\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo
zásady C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL na řádku 1.
Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". Definice
je UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 14.12.2015 17:02:25 | Computer Name = admin-PC | Source = Office Software Protection Platform Service | ID = 16385
Description = Failed to schedule Software Protection service for re-start at 2015-12-14T22:56:25Z.
Error Code: 0x80071A90.

Error - 15.12.2015 10:48:27 | Computer Name = admin-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro C:\Program Files\Microsoft Office
15\root\office15\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo
zásady C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL na řádku 1.
Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". Definice
je UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 15.12.2015 17:58:14 | Computer Name = admin-PC | Source = MsiInstaller | ID = 11606
Description =

Error - 15.12.2015 17:58:14 | Computer Name = admin-PC | Source = MsiInstaller | ID = 11606
Description =

Error - 16.12.2015 16:53:06 | Computer Name = admin-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro C:\Program Files\Microsoft Office
15\root\office15\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo
zásady C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL na řádku 1.
Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". Definice
je UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 16.12.2015 16:53:47 | Computer Name = admin-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro C:\Program Files\Microsoft Office
15\root\office15\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo
zásady C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL na řádku 1.
Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". Definice
je UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 16.12.2015 16:53:49 | Computer Name = admin-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro C:\Program Files\Microsoft Office
15\root\office15\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo
zásady C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL na řádku 1.
Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". Definice
je UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.

[ Kaspersky Event Log Events ]
Error - 15.1.2015 11:24:18 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

Error - 16.1.2015 7:30:54 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

Error - 17.1.2015 9:58:40 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

Error - 18.1.2015 9:39:51 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

Error - 19.1.2015 10:43:27 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

Error - 20.1.2015 10:42:04 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

Error - 21.1.2015 10:26:01 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

Error - 22.1.2015 11:14:52 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

Error - 23.1.2015 8:27:58 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

Error - 23.1.2015 12:05:45 | Computer Name = admin-PC | Source = avp | ID = 135732
Description =

[ Media Center Events ]
Error - 29.11.2010 10:55:54 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 15:55:53 - Error connecting to the internet. 15:55:54 - Unable
to contact server..

Error - 29.11.2010 10:56:34 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 15:56:23 - Error connecting to the internet. 15:56:23 - Unable
to contact server..

Error - 2.1.2011 9:59:36 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 14:59:35 - Error connecting to the internet. 14:59:36 - Unable
to contact server..

Error - 2.1.2011 10:00:21 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 15:00:06 - Error connecting to the internet. 15:00:06 - Unable
to contact server..

Error - 4.1.2011 9:56:56 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 14:56:56 - Error connecting to the internet. 14:56:56 - Unable
to contact server..

Error - 4.1.2011 9:57:38 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 14:57:25 - Error connecting to the internet. 14:57:25 - Unable
to contact server..

Error - 6.1.2011 10:00:08 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 15:00:08 - Error connecting to the internet. 15:00:08 - Unable
to contact server..

Error - 6.1.2011 10:01:02 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 15:00:37 - Error connecting to the internet. 15:00:37 - Unable
to contact server..

Error - 7.6.2011 8:59:24 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 14:59:24 - Error connecting to the internet. 14:59:24 - Unable
to contact server..

Error - 7.6.2011 9:00:08 | Computer Name = admin-PC | Source = MCUpdate | ID = 0
Description = 14:59:54 - Error connecting to the internet. 14:59:54 - Unable
to contact server..

[ OSession Events ]
Error - 8.5.2014 10:47:28 | Computer Name = admin-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 1826
seconds with 600 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 15.12.2015 14:54:08 | Computer Name = admin-PC | Source = DCOM | ID = 10016
Description =

Error - 15.12.2015 17:53:30 | Computer Name = admin-PC | Source = DCOM | ID = 10016
Description =

Error - 15.12.2015 17:58:19 | Computer Name = admin-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error - 15.12.2015 19:12:54 | Computer Name = admin-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Instalace se nezdařila: Instalování následující aktualizace se nezdařilo
z důvodu chyby (0x80070643): Cumulative Security Update for Internet Explorer 11
for Windows 7 for x64-based Systems (KB3104002).

Error - 16.12.2015 16:58:27 | Computer Name = admin-PC | Source = DCOM | ID = 10016
Description =

Error - 16.12.2015 17:01:47 | Computer Name = admin-PC | Source = DCOM | ID = 10016
Description =

Error - 16.12.2015 17:11:59 | Computer Name = admin-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error - 16.12.2015 17:16:40 | Computer Name = admin-PC | Source = DCOM | ID = 10016
Description =

Error - 16.12.2015 17:34:12 | Computer Name = admin-PC | Source = DCOM | ID = 10016
Description =

Error - 16.12.2015 19:13:38 | Computer Name = admin-PC | Source = DCOM | ID = 10016
Description =


< End of report >
Přílohy
OTL.rar
(35.39 KiB) Staženo 61 x
Moc obdivuji lidi, kteří věnují svůj volný čas pomáháním lidí. Je to až neuvěřitelné, že na tomto světě stále existují takoví lidé.
Zasloužíte si obrovský potlesk, klobouk dolů všem. Úcta!
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Trojský kůň JS/Kryptik.CO

#6 Příspěvek od Rudy »

Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text:
:OTL
SRV - [2013.01.31 09:38:54 | 003,289,208 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-291474276-2071678850-1047628788-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
IE - HKU\S-1-5-21-291474276-2071678850-1047628788-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?FORM=WLETDF& ... -SearchBox
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll File not found
FF - HKLM\Software\MozillaPlugins\@xunlei.com/DapCtrl: C:\Program Files (x86)\Common Files\Thunder Network\KanKan\npDapCtrl.3.1.0.7.(495).dll File not found
FF - HKLM\Software\MozillaPlugins\@xunlei.com/npxunlei;version=1.0.0.2: D:\Downloads\Data\npxunlei1.0.0.2.dll File not found
[2009.10.25 13:38:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Extensions
[2015.12.15 23:10:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions
[2015.11.22 00:44:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
CHR - Extension: No name found = C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\
CHR - Extension: No name found = C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\
CHR - Extension: No name found = C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp\0.8.9_0\
CHR - Extension: No name found = C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.5.0.9082_0\
CHR - Extension: No name found = C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_1\
CHR - Extension: No name found = C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
O2:64bit: - BHO: (no name) - {004B0726-A010-4ABF-8556-FCDB7F1FCA1E} - No CLSID value found.
O2:64bit: - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004\..\Toolbar\WebBrowser: (no name) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - No CLSID value found.
O3 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
O3 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004\..\Toolbar\WebBrowser: (no name) - {414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - No CLSID value found.
O3 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found.
O3 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE" File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\RunOnce: [Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64" File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\RunOnce: [Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64" File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\RunOnce: [Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64" File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\RunOnce: [Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64" File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\RunOnce: [Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\RunOnce: [Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64" File not found
O4 - HKU\S-1-5-21-291474276-2071678850-1047628788-1004..\RunOnce: [Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64" File not found
O8:64bit: - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm File not found
O8:64bit: - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - CC:\Program Files (x86)\VMware\VMware Server\x64\vsocklib.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000013 - CC:\Program Files (x86)\VMware\VMware Server\x64\vsocklib.dll File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\osf - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

:files
C:\ProgramData\Skype\Toolbars
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
[CreateRestorePoint]
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Mitsu
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 15 pro 2015 22:44

Re: Trojský kůň JS/Kryptik.CO

#7 Příspěvek od Mitsu »

Naskytl se mi drobný problém - po restsrtu mi vůbec nefunguje wifi a internet, nelze otevřít ani Ovládací panel s Cenrem připojení k síti, nemohu vám bez internetu poslat log :oops:
Moc obdivuji lidi, kteří věnují svůj volný čas pomáháním lidí. Je to až neuvěřitelné, že na tomto světě stále existují takoví lidé.
Zasloužíte si obrovský potlesk, klobouk dolů všem. Úcta!
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Trojský kůň JS/Kryptik.CO

#8 Příspěvek od Rudy »

Zkuste obnovu systému k datu, kdy korektně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Mitsu
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 15 pro 2015 22:44

Re: Trojský kůň JS/Kryptik.CO

#9 Příspěvek od Mitsu »

Dobrý večer, mohla bych se zeptat, jak to mohu provést? :oops: Moc se omlouvám za komplikace :oops:
Moc obdivuji lidi, kteří věnují svůj volný čas pomáháním lidí. Je to až neuvěřitelné, že na tomto světě stále existují takoví lidé.
Zasloužíte si obrovský potlesk, klobouk dolů všem. Úcta!
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Trojský kůň JS/Kryptik.CO

#10 Příspěvek od Rudy »

Startmenu>programy>příslušenství>systémové nástroje>obnovení systému.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Mitsu
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 15 pro 2015 22:44

Re: Trojský kůň JS/Kryptik.CO

#11 Příspěvek od Mitsu »

Obnovení sytému proběhlo sice úspěšně, ale nenastaly žádné změny :oops: Internet stále nejede, Ovládací panel a některé jeho části také nefungují... :oops:
Moc obdivuji lidi, kteří věnují svůj volný čas pomáháním lidí. Je to až neuvěřitelné, že na tomto světě stále existují takoví lidé.
Zasloužíte si obrovský potlesk, klobouk dolů všem. Úcta!
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Trojský kůň JS/Kryptik.CO

#12 Příspěvek od Rudy »

Zkuste to ještě jednou k nějakému staršímu bodu obnovy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Mitsu
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 15 pro 2015 22:44

Re: Trojský kůň JS/Kryptik.CO

#13 Příspěvek od Mitsu »

Mrkla jsem se na jiné body, ale kromě toho samého bodu (po OTL) a bodu první obnovy se tam jiný nenašel :o
Moc obdivuji lidi, kteří věnují svůj volný čas pomáháním lidí. Je to až neuvěřitelné, že na tomto světě stále existují takoví lidé.
Zasloužíte si obrovský potlesk, klobouk dolů všem. Úcta!
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Trojský kůň JS/Kryptik.CO

#14 Příspěvek od Rudy »

Zkuste Startmenu>přík řádek>(napsat)>netsh winsock reset. Odentrujte. Pak totéž znovu s příkazem: netsh int ip reset . Opět odentrujte. Restartujte a vyzkoušejte připojení k internetu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Mitsu
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 15 pro 2015 22:44

Re: Trojský kůň JS/Kryptik.CO

#15 Příspěvek od Mitsu »

Skvělé, internet už funguje skvěle, děkuji oc za radu!
Jinak, zde je ten log po opravě z OTL
All processes killed
========== OTL ==========
Service Skype C2C Service stopped successfully!
Service Skype C2C Service deleted successfully!
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKU\S-1-5-21-291474276-2071678850-1047628788-1004\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@xunlei.com/DapCtrl\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@xunlei.com/npxunlei;version=1.0.0.2\ deleted successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Extensions folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\META-INF folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\skin folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\locale\cs-CZ folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\locale folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content\speedDial\skin folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content\speedDial\img folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content\speedDial\css folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content\speedDial folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content\SearchBar folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content\options\help folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content\options folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content\libs\JAK folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content\libs folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome\content folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\include folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\accessible\28_28 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\accessible\24_24 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\accessible\16_16\plain folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\accessible\16_16 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\accessible folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\32_32 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\28_28 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\24_24 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\16_16\plain folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion\16_16 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fusion folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fonts\Open Sans folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\fonts folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\c\accessible folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\c folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\b\ws folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\b\welcometips folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\b\accessible folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin\b folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\skin folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\META-INF folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\zh-TW folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\zh-CN folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\uk-UA folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\tr-TR folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\sv-SE folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\ru-RU folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\pt-BR folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\pl-PL folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\ko-KR folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\ja-JP folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\it-IT folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\hi-IN folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\fr-FR folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\fi-FI folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\es-ES folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\en-US folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\de-DE folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale\cs-CZ folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\locale folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\content\rw folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\content\libs folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\content\injections folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}\content folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{241aae70-0022-11de-87af-0800200c9a66}\chrome folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{241aae70-0022-11de-87af-0800200c9a66} folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{0AA9101C-D3C1-4129-A9B7-D778C6A17F82}\META-INF folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{0AA9101C-D3C1-4129-A9B7-D778C6A17F82}\defaults\preferences folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{0AA9101C-D3C1-4129-A9B7-D778C6A17F82}\defaults folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{0AA9101C-D3C1-4129-A9B7-D778C6A17F82}\chrome folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\{0AA9101C-D3C1-4129-A9B7-D778C6A17F82} folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\rikaichan-jpnames@polarcloud.com\META-INF folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\rikaichan-jpnames@polarcloud.com\chrome folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\rikaichan-jpnames@polarcloud.com folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\rikaichan-jpen@polarcloud.com\META-INF folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\rikaichan-jpen@polarcloud.com\chrome folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions\rikaichan-jpen@polarcloud.com folder moved successfully.
C:\Users\MaiLinhVi\AppData\Roaming\Mozilla\Firefox\Profiles\crbspp43.default-1437488347773\extensions folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_metadata folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\zh_TW folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\zh_CN folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\vi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\uk folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\tr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\th folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sv folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\sk folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ru folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ro folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\pt_PT folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\pt_BR folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\pl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\no folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\nl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ms folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\lv folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\lt folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ko folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ja folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\it folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\id folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\hu folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\hr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\hi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\he folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\fr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\fil folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\fi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\eu folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\et folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\es_419 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\es folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\en_US folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\en_GB folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\el folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\de folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\da folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\cs folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ca folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\bg folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales\ar folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\_locales folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_metadata folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\zh_TW folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\zh_CN folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\vi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\uk folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\tr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\th folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\te folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\ta folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\sw folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\sv folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\sr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\sl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\sk folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\ru folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\ro folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\pt_PT folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\pt_BR folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\pl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\nl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\nb folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\ms folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\mr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\ml folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\lv folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\lt folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\ko folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\kn folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\ja folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\it folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\id folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\hu folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\hr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\hi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\he folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\gu folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\fr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\fil folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\fi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\fake_bidi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\fa folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\et folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\es_419 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\es folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\en_GB folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\en folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\el folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\de folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\da folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\cs folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\ca folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\bn folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\bg folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\ar folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales\am folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0\_locales folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\47.0.2526.28_0 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_metadata folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\zu folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\zh_TW folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\zh_HK folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\zh_CN folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\vi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ur folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\uk folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\tr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\th folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\te folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ta folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\sw folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\sv folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\sr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\sl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\sk folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\si folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ru folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ro folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\pt_PT folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\pt_BR folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\pl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\no folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\nl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ne folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ms folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\mr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\mn folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ml folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\lv folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\lt folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\lo folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ko folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\kn folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\km folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ka folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ja folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\iw folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\it folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\is folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\id folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\hy folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\hu folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\hr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\hi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\gu folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\gl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\fr_CA folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\fr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\fil folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\fi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\fa folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\eu folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\et folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\es_419 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\es folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\en_US folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\en_GB folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\el folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\de folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\da folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\cs folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ca folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\bn folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\bg folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\az folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\ar folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\am folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales\af folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\_locales folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp\0.8.9_0\_metadata folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp\0.8.9_0\images folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp\0.8.9_0\data folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp\0.8.9_0\css folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp\0.8.9_0 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.5.0.9082_0\_metadata folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.5.0.9082_0 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_1\_metadata folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_1\images folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_1 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_metadata folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\zh_TW folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\zh_CN folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\vi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\uk folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\tr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\th folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\sv folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\sr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\sl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\sk folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ru folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ro folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\pt_PT folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\pt_BR folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\pl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\nl folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\nb folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\lv folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\lt folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ko folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ja folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\it folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\id folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\hu folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\hr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\hi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\fr folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\fil folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\fi folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\et folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\es_419 folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\es folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\en_GB folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\en folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\el folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\de folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\da folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\cs folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\ca folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales\bg folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\_locales folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\images folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\html folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\css folder moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0 folder moved successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{004B0726-A010-4ABF-8556-FCDB7F1FCA1E}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{004B0726-A010-4ABF-8556-FCDB7F1FCA1E}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3041D03E-FD4B-44E0-B742-2D9B88305F98} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3041D03E-FD4B-44E0-B742-2D9B88305F98}\ not found.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3}\ not found.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}\ not found.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\BlueStacks Agent deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\Run\\IDMan deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\Run\\swg deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate deleted successfully.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64 deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64 deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64 deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64 deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64 deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64 deleted successfully.
Registry value HKEY_USERS\S-1-5-21-291474276-2071678850-1047628788-1004\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall C:\Users\MaiLinhVi\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64 deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Download all links with IDM\ deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Download with IDM\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000012\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000013\ deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\grooveLocalGWS\ deleted successfully.
File Protocol\Handler\grooveLocalGWS - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
File Protocol\Handler\ms-help - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\osf\ deleted successfully.
File Protocol\Handler\osf - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
File C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skypec2c\ deleted successfully.
File C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
File Protocol\Handler\wlpg - No CLSID value found not found.
C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skypec2c\ not found.
Invalid CLSID key: C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
File C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
========== FILES ==========
C:\ProgramData\Skype\Toolbars\Skype C2C Service folder moved successfully.
C:\ProgramData\Skype\Toolbars folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: admin
->Temp folder emptied: 306899276 bytes
->Temporary Internet Files folder emptied: 90622475 bytes
->Java cache emptied: 60401867 bytes
->FireFox cache emptied: 8864432 bytes
->Google Chrome cache emptied: 37054216 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 762 bytes

User: Administrator
->Temp folder emptied: 181132243 bytes
->Temporary Internet Files folder emptied: 57514399 bytes
->FireFox cache emptied: 24661991 bytes
->Google Chrome cache emptied: 9752167 bytes
->Flash cache emptied: 1188 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: MaiLinhVi
->Temp folder emptied: 228873995 bytes
->Temporary Internet Files folder emptied: 1061533433 bytes
->Java cache emptied: 28769580 bytes
->FireFox cache emptied: 207599497 bytes
->Google Chrome cache emptied: 114453515 bytes
->Opera cache emptied: 3907132 bytes
->Flash cache emptied: 1270786 bytes

User: Majka
->Temp folder emptied: 138606166 bytes
->Temporary Internet Files folder emptied: 75676274 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 98023678 bytes
->Google Chrome cache emptied: 6721685 bytes
->Opera cache emptied: 155690367 bytes
->Flash cache emptied: 67850 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 5345152380 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50461 bytes
RecycleBin emptied: 2512547702 bytes

Total Files Cleaned = 10 258,00 mb


[EMPTYFLASH]

User: admin
->Flash cache emptied: 0 bytes

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: Default

User: Default User

User: MaiLinhVi
->Flash cache emptied: 0 bytes

User: Majka
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 12172015_172342

Files\Folders moved on Reboot...
C:\Users\MaiLinhVi\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\MaiLinhVi\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\Low\SkypeClickToCall\Logs\AutoUpdateSvc.log scheduled to be moved on reboot.
C:\Windows\temp\ADMIN-PC-20151217-1711a.log moved successfully.
File\Folder C:\Windows\temp\officeclicktorun.exe_c2ruidll(20151217171134870).log not found!
File\Folder C:\Windows\temp\officeclicktorun.exe_streamserver(20151217171136870).log not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Moc obdivuji lidi, kteří věnují svůj volný čas pomáháním lidí. Je to až neuvěřitelné, že na tomto světě stále existují takoví lidé.
Zasloužíte si obrovský potlesk, klobouk dolů všem. Úcta!
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“