Zdravím ,prosím o kontrolu logu .Díky.Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01
Ran by Martina (administrator) on MARTINA-PC on 27-03-2014 16:30:57
Running from C:\Users\Martina\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
() C:\ProgramData\HiSuiteOuc\HiSuiteOuc.exe
() C:\ProgramData\HandSetService\HuaweiHiSuiteService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Realtek) C:\Program Files\ZyXEL\NWD2205\RtlService.exe
(Chris Pietschmann (http://pietschsoft.com)) C:\Program Files\Virtual Router\VirtualRouterService.exe
(Conexant Systems, Inc.) C:\Windows\system32\DRIVERS\xaudio.exe
(Alexandr Irza) C:\Program Files\Volume2\Volume2.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
() C:\Users\Martina\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Program Files\maucampo\updatemaucampo.exe
(Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\IELowutil.exe
(forum.viry.cz) C:\Users\Martina\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Volume2] - C:\Program Files\Volume2\Volume2.exe [4710912 2013-02-10] (Alexandr Irza)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [5110672 2013-09-12] (ESET)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [ApnUpdater] - C:\Program Files\Ask.com\Updater\Updater.exe [1573576 2012-12-05] (Ask)
HKLM\...\Run: [seznam-listicka-distribuce] - C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Runonce: [hugefiles2] - [X]
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\Run: [Volume2] - C:\Program Files\Volume2\Volume2.exe [4710912 2013-02-10] (Alexandr Irza)
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\Run: [IDMan] - C:\Program Files\Internet Download Manager\IDMan.exe [3825232 2014-02-05] (Tonec Inc.)
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\Run: [cz.seznam.software.autoupdate] - C:\Users\Martina\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\Run: [cz.seznam.software.szndesktop] - C:\Users\Martina\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\Policies\Explorer: [HideSCAVolume] 0
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: F - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {1d5665b9-9f9f-11e3-a741-cfa12d180de5} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {1d5665ce-9f9f-11e3-a741-cfa12d180de5} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {3826fb09-898c-11e3-98ab-99d65bc8811f} - F:\AutoRun.exe
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {88b140b9-7475-11e3-887e-fece130faa1e} - E:\setup.exe
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {c5c60855-71d1-11e3-985c-cf170782a917} - F:\AutoRun.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyServer: http=http://127.0.0.1:9880
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?l=dis&o=14597
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchinweb.info/?pid= ... Z&unqvl=47
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
SearchScopes: HKLM - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchinweb.info/?l=1& ... Z&unqvl=47
SearchScopes: HKLM - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchinweb.info/?l=1& ... Z&unqvl=47
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTe ... 3&tsp=5194
SearchScopes: HKCU - {E8D07CFE-480E-43B4-BE71-C75AB18CA5D5} URL = http://websearch.ask.com/redirect?clien ... A12968E691
BHO: maucampo - {5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} - C:\Program Files\maucampo\maucampobho.dll (maucampo)
BHO: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Handler: gcf - {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files\Google\Chrome Frame\Application\32.0.1700.107\npchrome_frame.dll (Google Inc.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.17.3
FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default
FF user.js: detected! => C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\user.js
FF SearchEngineOrder.1: Ask.com
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "WebSearch");: user_pref("browser.search.order.1,S", "WebSearch");
FF NetworkProxy: "gopher", ""
FF NetworkProxy: "gopher_port", 0
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "type", 0
FF NewTab: hxxp://www.buenosearch.com/?babsrc=NT_ss&mntrI ... 3&tsp=5194
FF Homepage: hxxp://www.search.ask.com/?l=dis&o=14597
FF SelectedSearchEngine: Ask.com
FF DefaultSearchEngine: Ask.com
FF Keyword.URL: hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=FF&o=14594&locale=en_EU&apn_uid=65978D52-AAE1-4157-A352-43BAC3647EE6&apn_ptnrs=%5EFV&apn_sauid=1E74989B-B0F9-44B7-A0DD-DAA12968E691&apn_dtid=%5EYYYYYY%5EYY%5ECZ&&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll No File
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\searchplugins\WebSearch.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Firedive Downloader V9.0 - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\d135fde7-acda-4677-b8c2-429639a4b476@e7f1eb2f-e6c0-4429-8016-f171dbfcdb99.com [2014-03-22]
FF Extension: SNT - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\rnyoy-f@mzawzhsnks.co.uk [2014-01-29]
FF Extension: Ask Toolbar - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\toolbar@ask.com [2014-03-24]
FF Extension: 50CoUpons - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\yeee@aaekrb.edu [2014-03-16]
FF Extension: Seznam lištička - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-03-26]
FF Extension: GoPhotoIt - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\gophoto@gophoto.it.xpi [2013-08-08]
FF Extension: Personas Plus - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\personas@christopher.beard.xpi [2014-01-20]
FF Extension: Turn Off the Lights - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\stefanvandamme@stefanvd.net.xpi [2014-01-20]
FF Extension: Pirrit Suggestor - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\suggestor@suggestor.pirrit.com.xpi [2014-03-02]
FF Extension: Quick Translator - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi [2014-01-20]
FF Extension: maucampo - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\{ef8714df-a44b-464c-9034-549a70dc4cd7}.xpi [2014-03-25]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-03-09]
FF HKCU\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Martina\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Martina\AppData\Roaming\IDM\idmmzcc5 [2014-02-08]
FF HKCU\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Martina\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Martina\AppData\Roaming\IDM\idmmzcc5 [2014-02-08]
Chrome:
=======
CHR HomePage: hxxp://www.seznam.cz/?clid=13415
CHR Extension: (Google Docs) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-27]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-03-27]
CHR Extension: (YouTube) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-27]
CHR Extension: (Google Search) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-27]
CHR Extension: (50CoUpons) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\djegngipomhfebdhboodakimialkkkni [2014-03-06]
CHR Extension: (Play to XBMC) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncjhcjfnnooidlkijollckpakkebden [2014-03-03]
CHR Extension: (Firedive Downloader V9.0) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianpkncpdncekpjnlflanaomeeenkehn [2014-03-24]
CHR Extension: (YTBooKMark) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieomlnadcclnohookofeaicpcnnlnfpp [2014-01-29]
CHR Extension: (IDM Integration Module) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn [2014-02-08]
CHR Extension: (Google Play) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2014-03-03]
CHR Extension: (APK Downloader) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnbkiaddgodnooflghhbdpbdheanmpjp [2014-02-19]
CHR Extension: (Peněženka Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-27]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-03-03]
CHR Extension: (GoPhoto.it) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-03-22]
CHR Extension: (Gmail) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-27]
CHR HKLM\...\Chrome\Extension: [aaaapoldfpilohhfkhihnhdckpackghi] - C:\Users\Martina\AppData\Local\APN\GoogleCRXs\aaaapoldfpilohhfkhihnhdckpackghi_7.15.12.0.crx [2014-03-24]
CHR HKLM\...\Chrome\Extension: [acfoobbgoakpihljnfedbcfaipcdlfhk] - C:\Users\Martina\AppData\Roaming\BabSolution\CR\bueno.crx [2014-03-22]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2014-02-05]
CHR HKLM\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files\Gophoto.it\gophotoit16.crx [2013-08-08]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
========================== Services (Whitelisted) =================
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1337752 2013-09-12] (ESET)
R2 HiSuiteOuc.exe; C:\ProgramData\HiSuiteOuc\HiSuiteOuc.exe [116032 2014-01-28] ()
R2 HPSLPSVC; C:\Users\Martina\AppData\Local\Temp\7zS13F7\hpslpsvc32.dll [701288 2013-07-19] (Hewlett-Packard Co.)
R2 HuaweiHiSuiteService.exe; C:\ProgramData\HandSetService\HuaweiHiSuiteService.exe [164672 2014-01-28] ()
R2 Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [255376 2012-04-05] (Acer Incorporated)
R2 Realtek11nCU; C:\Program Files\ZyXEL\NWD2205\RtlService.exe [36864 2010-04-16] (Realtek)
S3 SystemExplorerHelpService; C:\Program Files\System Explorer\service\SystemExplorerService.exe [567256 2012-11-25] (Mister Group)
R2 Update maucampo; C:\Program Files\maucampo\updatemaucampo.exe [348440 2014-03-25] ()
R2 Virtual Router; C:\Program Files\Virtual Router\VirtualRouterService.exe [12288 2013-02-10] (Chris Pietschmann (http://pietschsoft.com))
S2 5dee0f7c; "C:\Windows\system32\rundll32.exe" "c:\progra~1\gssupp~1\AssistantSvc.dll",service
S4 PirritUpdater; C:\Program Files\Pirrit\AutoUpdater.exe [X]
==================== Drivers (Whitelisted) ====================
S3 Andbus; C:\Windows\System32\DRIVERS\lgandbus.sys [14336 2012-03-02] (LG Electronics Inc.)
S3 AndDiag; C:\Windows\System32\DRIVERS\lganddiag.sys [20736 2012-03-02] (LG Electronics Inc.)
S3 AndGps; C:\Windows\System32\DRIVERS\lgandgps.sys [20096 2012-03-02] (LG Electronics Inc.)
S3 ANDModem; C:\Windows\System32\DRIVERS\lgandmodem.sys [25088 2012-03-02] (LG Electronics Inc.)
S3 androidusb; C:\Windows\System32\Drivers\lgandadb.sys [25728 2012-03-02] (Google Inc)
R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1570304 2011-04-20] (Atheros Communications, Inc.)
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [14528 2014-02-26] (Glarysoft Ltd)
S3 BTHprint; C:\Windows\System32\DRIVERS\bthprint.sys [50688 2009-07-14] (Microsoft Corporation)
R1 dk2drv; C:\Windows\SYSTEM32\Drivers\dk2drv.sys [49720 2014-01-03] (Data Encryption Systems Limited)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [188808 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [134248 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [174400 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [37416 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [49240 2013-09-17] (ESET)
R3 LgBttPort; C:\Windows\System32\DRIVERS\lgbtport.sys [12160 2009-09-29] (LG Electronics Inc.)
R3 lgbusenum; C:\Windows\System32\DRIVERS\lgbtbus.sys [10496 2009-09-29] (LG Electronics Inc.)
R3 LGVMODEM; C:\Windows\System32\DRIVERS\lgvmodem.sys [12928 2009-09-29] (LG Electronics Inc.)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [457984 2007-09-10] (PixArt Imaging Inc.)
S3 PRODIGY; C:\Windows\System32\Drivers\PRODIGY.SYS [32377 2006-08-29] (B-phreaks)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [15688 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] ()
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [636008 2010-07-13] (Realtek Semiconductor Corporation )
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [112096 2012-02-09] (Power Software Ltd)
R0 UBND; C:\Windows\System32\DRIVERS\ubnd.sys [7808 2014-01-09] (UniversalBox)
S3 UBNRedir; C:\Windows\System32\DRIVERS\ubnredir.sys [6784 2014-01-09] (UniversalBox)
S3 vsbus; C:\Windows\System32\DRIVERS\vsb.sys [15264 2008-07-23] ()
S3 vserial; C:\Windows\System32\DRIVERS\vserial.sys [47744 2008-07-23] ()
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [X]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2011-10-24] (Huawei Technologies Co., Ltd.)
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-27 16:30 - 2014-03-27 16:31 - 00020052 _____ () C:\Users\Martina\Desktop\FRST.txt
2014-03-27 16:30 - 2014-03-27 16:30 - 00000000 ____D () C:\FRST
2014-03-27 16:28 - 2014-03-27 16:27 - 00112640 _____ (forum.viry.cz) C:\Users\Martina\Desktop\FRSTLauncher.exe
2014-03-27 16:27 - 2014-03-27 16:27 - 01145856 _____ (Farbar) C:\Users\Martina\Desktop\FRST.exe
2014-03-27 14:13 - 2014-03-27 14:13 - 00000000 ____D () C:\Windows\LastGood
2014-03-26 22:24 - 2014-03-26 22:25 - 00000000 ____D () C:\Program Files\maucampo
2014-03-26 22:23 - 2014-03-26 22:23 - 00000000 ____D () C:\Program Files\Seznam.cz
2014-03-26 21:50 - 2014-03-26 21:51 - 00000000 ____D () C:\Users\Martina\Downloads\THE-ROOM2-APK+DATA
2014-03-26 20:10 - 2014-03-26 20:10 - 00342280 _____ (Puresafe) C:\Users\Martina\Downloads\THE-ROOM2-APK DATA.rar.exe
2014-03-26 18:36 - 2014-03-26 21:47 - 287614964 _____ () C:\Users\Martina\Downloads\THE-ROOM2-APK+DATA.rar
2014-03-26 18:28 - 2014-03-26 18:29 - 00236928 _____ () C:\Users\Martina\Downloads\THE-ROOM2-APK_DATA_downloader-6NKhZf01.exe
2014-03-26 15:07 - 2014-03-26 15:12 - 01373696 _____ () C:\Users\Martina\Downloads\VirtualRouterInstaller_2.msi
2014-03-25 23:08 - 2014-03-25 23:08 - 00000037 ___SH () C:\Users\Martina\AppData\Local\134e6589520e51682091c0.32666518
2014-03-25 23:08 - 2014-03-25 23:08 - 00000000 ____D () C:\Users\Martina\AppData\Local\MetaGeek, LLC
2014-03-25 22:58 - 2014-03-25 23:08 - 00000000 ____D () C:\Users\Martina\AppData\Local\MetaGeek,_LLC
2014-03-25 22:58 - 2014-03-25 22:58 - 00000037 ___SH () C:\Users\Martina\AppData\Local\70149b02515b3bb20dd492.47983420
2014-03-25 22:52 - 2014-03-25 23:07 - 00002471 _____ () C:\Users\Public\Desktop\Chanalyzer.lnk
2014-03-25 22:52 - 2014-03-25 22:52 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\MetaGeek
2014-03-25 22:51 - 2014-03-25 22:52 - 00000000 ____D () C:\Program Files\MetaGeek
2014-03-25 22:51 - 2014-03-25 22:51 - 00002937 _____ () C:\Users\Martina\Desktop\inSSIDer Office.lnk
2014-03-25 22:51 - 2014-03-25 22:51 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetaGeek
2014-03-25 22:43 - 2014-03-25 22:44 - 32313344 _____ () C:\Users\Martina\Downloads\Chanalyzer-Installer.msi
2014-03-25 22:43 - 2014-03-25 22:44 - 06082560 _____ () C:\Users\Martina\Downloads\inSSIDerOffice.msi
2014-03-24 13:13 - 2014-03-24 13:13 - 00000000 ____D () C:\Program Files\Ask.com
2014-03-24 13:12 - 2014-03-24 13:12 - 00000000 ____D () C:\Users\Martina\AppData\Local\APN
2014-03-24 13:12 - 2014-03-24 13:12 - 00000000 ____D () C:\ProgramData\Ask
2014-03-24 12:22 - 2014-03-24 12:22 - 00000000 ____D () C:\Users\Martina\Documents\FormatFactory
2014-03-24 12:18 - 2014-03-25 11:20 - 00000000 ____D () C:\FFOutput
2014-03-24 12:17 - 2014-03-24 12:17 - 00001152 _____ () C:\Users\Martina\Desktop\Format Factory.lnk
2014-03-24 12:17 - 2014-03-24 12:17 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-03-24 12:16 - 2014-03-24 12:16 - 00000000 ____D () C:\Program Files\FreeTime
2014-03-24 10:57 - 2014-03-24 11:01 - 22351872 _____ () C:\Users\Martina\Downloads\ffactory-setup.exe
2014-03-24 09:30 - 2014-03-24 09:30 - 00261208 _____ (LG Electronics) C:\Users\Martina\Downloads\B2CAppSetup (1).exe
2014-03-23 17:23 - 2014-03-23 17:23 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2014-03-23 17:21 - 2014-03-26 22:07 - 00000000 ____D () C:\Users\Martina\Documents\HiSuite
2014-03-23 17:21 - 2014-03-23 17:21 - 00000945 _____ () C:\Users\Public\Desktop\HiSuite.lnk
2014-03-23 17:21 - 2014-03-23 17:21 - 00000000 ____D () C:\ProgramData\HiSuiteOuc
2014-03-23 17:21 - 2014-03-23 17:21 - 00000000 ____D () C:\ProgramData\HandSetService
2014-03-23 17:20 - 2014-03-24 09:14 - 00000000 ____D () C:\Users\Martina\AppData\Local\HiSuite
2014-03-23 17:18 - 2012-02-08 10:06 - 00245376 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_quusbnet.sys
2014-03-23 17:18 - 2011-10-24 05:04 - 00195200 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_quusbmdm.sys
2014-03-23 17:18 - 2011-10-24 04:51 - 00102272 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_usbdev.sys
2014-03-23 17:18 - 2010-02-19 00:00 - 01302600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFUpdate_01007.dll
2014-03-23 17:18 - 2010-02-19 00:00 - 01112288 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
2014-03-23 17:18 - 2010-02-19 00:00 - 01112288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll
2014-03-23 17:18 - 2010-02-19 00:00 - 00581192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WinUSBCoInstaller.dll
2014-03-23 17:17 - 2014-03-23 17:21 - 00000000 ____D () C:\Program Files\HiSuite
2014-03-23 17:17 - 2010-02-19 00:00 - 00581192 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller.dll
2014-03-23 16:35 - 2014-03-23 17:16 - 36283976 _____ () C:\Users\Martina\Downloads\HiSuiteSetup_v1.8.10.26.06.zip
2014-03-22 22:06 - 2014-03-26 22:27 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\MyPhoneExplorer
2014-03-22 22:05 - 2014-03-22 22:05 - 00002011 _____ () C:\Users\Public\Desktop\MyPhoneExplorer.lnk
2014-03-22 22:05 - 2014-03-22 22:05 - 00000000 ____D () C:\Program Files\MyPhoneExplorer
2014-03-22 21:59 - 2014-03-22 22:03 - 07441760 _____ () C:\Users\Martina\Downloads\MyPhoneExplorer_Setup_1.8.5_2.exe
2014-03-22 11:50 - 2014-03-22 12:00 - 00000000 ____D () C:\Program Files\Kingo Android ROOT
2014-03-22 11:50 - 2014-03-22 11:50 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\ZJMedia
2014-03-22 11:50 - 2014-03-22 11:50 - 00000000 ____D () C:\Users\Martina\AppData\Local\ZJMedia
2014-03-22 11:42 - 2014-03-22 11:42 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\BabSolution
2014-03-22 11:42 - 2014-03-22 11:42 - 00000000 ____D () C:\Program Files\Gophoto.it
2014-03-22 11:41 - 2014-03-27 11:58 - 00002450 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job
2014-03-22 11:41 - 2014-03-27 11:58 - 00001576 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-updater.job
2014-03-22 11:41 - 2014-03-27 11:58 - 00001520 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job
2014-03-22 11:41 - 2014-03-27 11:58 - 00001410 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job
2014-03-22 11:40 - 2014-03-27 11:58 - 00003136 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job
2014-03-22 11:40 - 2014-03-26 12:09 - 00000000 ____D () C:\Program Files\Firedive Downloader V9.0
2014-03-22 11:38 - 2014-03-22 11:38 - 00000000 ____D () C:\Users\Martina\AppData\Local\Cool_Mirage
2014-03-22 02:39 - 2014-03-22 02:39 - 07441760 _____ () C:\Users\Martina\Downloads\MyPhoneExplorer_Setup_1.8.5.exe
2014-03-21 16:24 - 2014-03-21 16:34 - 67963216 _____ () C:\Users\Martina\Downloads\Nokia_PC_Suite_ALL_2.exe
2014-03-21 16:12 - 2014-03-21 16:34 - 00001996 _____ () C:\Users\Public\Desktop\Nokia PC Suite.lnk
2014-03-21 16:12 - 2014-03-21 16:12 - 00000000 ____D () C:\Program Files\Common Files\PCSuite
2014-03-18 09:34 - 2014-03-18 09:34 - 00000000 ____D () C:\Users\Martina\AppData\Local\Apple
2014-03-17 13:19 - 2014-03-17 13:22 - 00000000 ____D () C:\Users\Martina\Documents\BlackMirrorIII
2014-03-17 13:14 - 2014-03-17 13:14 - 00000777 _____ () C:\Users\Martina\Desktop\Posel Smrti 3.lnk
2014-03-17 13:07 - 2014-03-17 13:07 - 00000000 ____D () C:\TopCD
2014-03-17 12:49 - 2014-03-17 12:56 - 00000000 ____D () C:\Users\Martina\Downloads\Posel-Smrti-III.-CZ-dub.-(flaming-foot)_2
2014-03-16 23:36 - 2014-03-17 12:15 - 4207771648 _____ () C:\Users\Martina\Downloads\Posel-Smrti-III.-CZ-dub.-(flaming-foot)_2.iso
2014-03-16 15:37 - 2014-03-16 16:15 - 00000000 ____D () C:\Users\Martina\android-sdk-windows
2014-03-16 15:04 - 2014-03-16 15:04 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2014-03-16 13:23 - 2014-03-16 13:23 - 00000000 ____D () C:\Users\Martina\AppData\Local\Macromedia
2014-03-14 19:06 - 2014-03-14 19:07 - 10855280 _____ (Acresso Software Inc. ) C:\Users\Martina\Downloads\LGUnitedMobileDriver_S4981MAN36AP22_ML_WHQL_Ver_3.6_2.exe
2014-03-14 18:30 - 2014-03-14 18:30 - 00000000 ____D () C:\Program Files\adt-bundle-windows-x86-20131030
2014-03-14 16:50 - 2014-03-14 16:52 - 00000000 ____D () C:\Users\Martina\Desktop\Nová složka
2014-03-12 13:30 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-12 13:30 - 2014-03-01 05:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-12 13:30 - 2014-03-01 05:10 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-12 13:30 - 2014-03-01 04:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-12 13:30 - 2014-03-01 04:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-12 13:30 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-12 13:30 - 2014-03-01 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-12 13:30 - 2014-03-01 04:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-12 13:30 - 2014-03-01 04:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-12 13:30 - 2014-03-01 04:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-12 13:30 - 2014-03-01 04:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-12 13:30 - 2014-03-01 04:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-12 13:30 - 2014-03-01 04:31 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-12 13:30 - 2014-03-01 04:25 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-12 13:30 - 2014-03-01 04:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-12 13:30 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-12 13:30 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-12 13:30 - 2014-03-01 04:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-12 13:30 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-12 13:30 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-12 13:30 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-12 13:30 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-12 13:08 - 2014-01-09 03:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-03-12 13:05 - 2014-02-07 02:07 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-12 13:05 - 2014-02-04 03:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-12 13:05 - 2014-02-04 03:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-12 13:05 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-12 13:05 - 2014-01-28 03:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-12 12:34 - 2014-03-12 12:34 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\ESET
2014-03-12 12:33 - 2014-03-26 22:06 - 00000000 ____D () C:\Users\Martina\AppData\Local\VirtualStore
2014-03-12 12:33 - 2014-03-12 12:33 - 00000000 ____D () C:\ProgramData\IDM
2014-03-11 23:50 - 2014-03-11 23:50 - 00000000 ____D () C:\ProgramData\GlarySoft
2014-03-11 23:49 - 2014-03-26 15:36 - 00000320 _____ () C:\Windows\Tasks\GlaryInitialize 4.job
2014-03-11 23:49 - 2014-03-11 23:49 - 00001034 _____ () C:\Users\Public\Desktop\Glary Utilities 4.lnk
2014-03-11 23:49 - 2014-03-11 23:49 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\GlarySoft
2014-03-11 23:49 - 2014-02-26 06:39 - 00101664 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2014-03-11 23:49 - 2014-02-26 06:17 - 00014528 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys
2014-03-11 23:48 - 2014-03-26 15:35 - 00000000 ____D () C:\Program Files\Glary Utilities 4
2014-03-11 23:47 - 2014-03-11 23:48 - 12393008 _____ () C:\Users\Martina\Downloads\gu4setup.exe
2014-03-11 20:32 - 2012-08-23 15:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-03-11 20:32 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-03-11 20:32 - 2012-08-23 14:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-03-11 20:32 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-03-11 20:32 - 2012-08-23 11:08 - 02739712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-03-11 20:31 - 2013-10-02 01:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-03-11 20:31 - 2013-10-02 01:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-11 20:31 - 2013-10-02 01:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-11 20:31 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-03-11 20:31 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-03-11 20:31 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-03-11 20:31 - 2013-10-02 00:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-03-11 20:31 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-03-11 20:31 - 2013-10-02 00:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-03-11 20:31 - 2013-10-01 23:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-03-11 20:31 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-03-11 20:30 - 2014-03-11 20:30 - 00000000 ____D () C:\Program Files\CONEXANT
2014-03-11 20:29 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-03-11 20:27 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-03-11 18:52 - 2014-03-11 18:52 - 00000000 ____D () C:\Program Files\The Adventure Company
2014-03-09 15:02 - 2014-03-09 15:02 - 00000003 _____ () C:\Users\Martina\stut
2014-03-09 15:00 - 2014-03-26 15:35 - 00000479 _____ () C:\Users\Martina\rgut
2014-03-09 14:48 - 2014-03-09 14:48 - 00000000 ____D () C:\Users\Martina\AppData\Local\ESET
2014-03-09 14:39 - 2014-03-09 14:39 - 00000000 ____D () C:\ProgramData\ESET
2014-03-09 14:39 - 2014-03-09 14:39 - 00000000 ____D () C:\Program Files\ESET
2014-03-09 14:28 - 2014-03-09 14:28 - 00000000 ____D () C:\Users\Martina\Downloads\Eset-Smart-Security-7-&-ESET-NOD32-Antivirus-7-CZ-(x86,-x64Bit)-100%-Work-(2014)-CZ
2014-03-09 14:27 - 2014-03-09 14:27 - 00000000 ____D () C:\Users\Martina\Documents\Kontakty
2014-03-09 14:20 - 2014-03-09 14:12 - 336831919 _____ () C:\Users\Martina\Downloads\Eset-Smart-Security-7-&-ESET-NOD32-Antivirus-7-CZ-(x86,-x64Bit)-100%-Work-(2014)-CZ.rar
2014-03-09 13:42 - 2014-03-09 13:42 - 00000000 ____D () C:\Windows\system32\bitstreams
2014-03-09 13:42 - 2013-12-10 00:30 - 10236928 ____S () C:\Windows\system32\acumncqqbvfv.exe
2014-03-09 13:42 - 2013-10-26 20:30 - 00972814 ____S () C:\Windows\system32\dcgmncqqbvfv.exe
2014-03-09 13:42 - 2013-10-26 20:30 - 00538126 ____S () C:\Windows\system32\libcurl-4.dll
2014-03-09 13:42 - 2013-10-26 20:30 - 00192512 ____S () C:\Windows\system32\libidn-11.dll
2014-03-09 13:42 - 2013-10-26 20:30 - 00171008 ____S (The libssh2 library, http://www.libssh2.org/) C:\Windows\system32\libssh2.dll
2014-03-09 13:42 - 2013-10-26 20:30 - 00133632 ____S () C:\Windows\system32\librtmp.dll
2014-03-09 13:42 - 2013-10-26 20:30 - 00044727 ____S () C:\Windows\system32\diablo130302.cl
2014-03-09 13:42 - 2013-10-26 20:30 - 00043810 ____S () C:\Windows\system32\poclbm130302.cl
2014-03-09 13:42 - 2013-10-26 20:30 - 00030802 ____S () C:\Windows\system32\diakgcn121016.cl
2014-03-09 13:42 - 2013-10-26 20:30 - 00023825 ____S () C:\Windows\system32\scrypt130511.cl
2014-03-09 13:42 - 2013-10-26 20:30 - 00013062 ____S () C:\Windows\system32\phatk121016.cl
2014-03-09 13:42 - 2013-07-18 16:06 - 00187904 ____S () C:\Windows\system32\lcpmncqqbvfv.exe
2014-03-09 13:42 - 2013-06-12 15:15 - 00119888 ____S (Open Source Software community LGPL) C:\Windows\system32\pthreadGC2.dll
2014-03-09 13:42 - 2013-06-12 15:15 - 00100864 ____S () C:\Windows\system32\zlib1.dll
2014-03-09 13:42 - 2012-09-25 23:46 - 00472424 ____S (NVIDIA Corporation) C:\Windows\system32\cudart32_50_35.dll
2014-03-09 13:42 - 2012-05-27 01:36 - 00055808 ____S (Open Source Software community LGPL) C:\Windows\system32\pthreadVC2.dll
2014-03-08 23:19 - 2014-03-08 23:19 - 00000000 ____D () C:\Program Files\ffdshow
2014-03-08 23:19 - 2013-01-06 22:22 - 00112640 _____ () C:\Windows\system32\ff_vfw.dll
2014-03-08 23:17 - 2014-03-08 23:18 - 04700665 _____ (ffdshow ) C:\Users\Martina\Downloads\ffdshow_rev4500_20130106.exe
2014-03-08 18:47 - 2014-03-08 18:47 - 00121361 _____ () C:\Users\Martina\Downloads\FExplorer_english_117.SIS
2014-03-08 17:32 - 2014-03-08 17:35 - 50281664 _____ () C:\Users\Martina\Downloads\NokiaSoftwareUpdaterSetup_CZ.exe
2014-03-08 17:31 - 2014-03-08 17:31 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf
2014-03-08 17:29 - 2014-03-08 17:29 - 00000000 ____D () C:\ProgramData\PC Suite
2014-03-08 17:27 - 2014-03-08 17:27 - 00000000 ____D () C:\Program Files\PC Connectivity Solution
2014-03-08 17:27 - 2012-06-11 11:33 - 00019072 _____ (Nokia) C:\Windows\system32\Drivers\pccsmcfd.sys
2014-03-08 17:21 - 2014-03-08 17:25 - 67963216 _____ () C:\Users\Martina\Downloads\Nokia_PC_Suite_ALL.exe
2014-03-06 14:57 - 2014-03-11 17:30 - 00000000 ____D () C:\ProgramData\50CoUpons
2014-03-05 15:02 - 2014-03-05 15:02 - 00000000 ____D () C:\Users\Martina\Downloads\BootableUSB
2014-03-05 15:01 - 2014-03-05 15:02 - 01473404 _____ () C:\Users\Martina\Downloads\BootableUSB.zip
2014-03-04 12:18 - 2011-02-22 13:38 - 00026208 _____ (NT Kernel Resources) C:\Windows\system32\Drivers\ndisrd.sys
2014-03-04 03:06 - 2014-03-04 12:28 - 00000143 _____ () C:\Users\Martina\Desktop\prikazy wifi hotspot.txt
2014-03-03 23:44 - 2014-03-03 23:44 - 00000202 _____ () C:\Users\Martina\.swfinfo
2014-03-03 19:08 - 2014-03-03 19:08 - 00041797 _____ () C:\Users\Martina\Downloads\repository.xbmc.skins.staging-frodo1.0.0.zip
2014-03-03 18:36 - 2014-03-03 18:38 - 59604731 _____ () C:\Users\Martina\Downloads\xbmc-12.3_2.exe
2014-03-03 18:11 - 2014-03-21 15:54 - 195368221 _____ () C:\Windows\MEMORY.DMP
2014-03-03 00:41 - 2014-03-03 00:41 - 00000000 ____D () C:\Users\Martina\Downloads\xirruswifimonitorgadget1.01
2014-03-03 00:05 - 2014-03-03 00:05 - 00000517 _____ () C:\Windows\system32\FLSINST.LOG
2014-03-02 23:59 - 2014-03-02 23:59 - 04765152 _____ (Piriform Ltd) C:\Users\Martina\Downloads\ccsetup411.exe
2014-03-02 17:50 - 2013-09-30 16:26 - 02881848 _____ () C:\Windows\system32\pwNative.exe
2014-03-02 17:50 - 2013-09-30 16:26 - 00015688 ____N () C:\Windows\system32\pwdrvio.sys
2014-03-02 17:50 - 2013-09-30 16:26 - 00010320 ____N () C:\Windows\system32\pwdspio.sys
2014-03-02 17:40 - 2014-03-02 17:40 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\FLEXnet
2014-03-02 17:33 - 2014-03-02 17:33 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Vodafone
2014-03-02 17:31 - 2014-03-02 17:31 - 00000000 ____D () C:\Users\Martina\AppData\Local\{01A9A77D-6AAA-4910-89DD-AA1CF94D5618}
2014-03-02 17:24 - 2014-03-02 17:24 - 00000000 ____D () C:\Program Files\WinRST
2014-03-02 17:23 - 2014-03-02 17:23 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Pirrit
2014-03-02 16:24 - 2014-03-02 16:24 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\SuperHideIP
2014-03-02 16:21 - 2014-03-02 16:21 - 00001185 _____ () C:\Users\Martina\Desktop\AIDA64 Extreme Edition.lnk
2014-03-02 16:21 - 2014-03-02 16:21 - 00000961 _____ () C:\Users\Public\Desktop\PowerISO.lnk
2014-03-02 16:21 - 2014-03-02 16:21 - 00000000 ____D () C:\Program Files\PowerISO
2014-03-02 16:21 - 2014-03-02 16:21 - 00000000 ____D () C:\Program Files\FinalWire
2014-03-02 10:52 - 2014-03-02 10:53 - 07118322 _____ () C:\Users\Martina\Downloads\VKF_1.0.4_ViperS_5.1.0.rar
2014-03-01 16:11 - 2014-03-01 12:17 - 04613777 _____ (Magical Jelly Bean) C:\Users\Martina\Downloads\WiFiPasswordRevealerInstaller.exe
2014-03-01 16:08 - 2013-08-17 10:43 - 01742528 _____ () C:\Users\Martina\Downloads\xirruswifimonitorgadget1.01.zip
2014-03-01 16:06 - 2014-03-02 16:19 - 00000000 ____D () C:\Users\Martina\Downloads\aida64extreme280
2014-03-01 16:06 - 2012-09-02 03:11 - 10811999 _____ (ChattChitto RG©) C:\Users\Martina\Downloads\PowerISO-v5.0-+serial.exe
2014-02-27 20:19 - 2014-02-27 20:19 - 00245080 _____ () C:\Users\Martina\Desktop\moje tel.cislo email.odt
==================== One Month Modified Files and Folders =======
2014-03-27 16:31 - 2014-03-27 16:30 - 00020052 _____ () C:\Users\Martina\Desktop\FRST.txt
2014-03-27 16:30 - 2014-03-27 16:30 - 00000000 ____D () C:\FRST
2014-03-27 16:28 - 2013-12-27 13:49 - 01664309 _____ () C:\Windows\WindowsUpdate.log
2014-03-27 16:27 - 2014-03-27 16:28 - 00112640 _____ (forum.viry.cz) C:\Users\Martina\Desktop\FRSTLauncher.exe
2014-03-27 16:27 - 2014-03-27 16:27 - 01145856 _____ (Farbar) C:\Users\Martina\Desktop\FRST.exe
2014-03-27 16:20 - 2013-12-27 14:58 - 00000250 _____ () C:\Windows\Tasks\RtlVistaStart.job
2014-03-27 16:05 - 2014-01-13 16:05 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-27 15:59 - 2013-12-27 14:38 - 01584554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-27 15:54 - 2013-12-27 16:25 - 00000942 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-27 14:13 - 2014-03-27 14:13 - 00000000 ____D () C:\Windows\LastGood
2014-03-27 12:44 - 2013-12-27 16:25 - 00000938 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-27 11:58 - 2014-03-22 11:41 - 00002450 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job
2014-03-27 11:58 - 2014-03-22 11:41 - 00001576 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-updater.job
2014-03-27 11:58 - 2014-03-22 11:41 - 00001520 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job
2014-03-27 11:58 - 2014-03-22 11:41 - 00001410 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job
2014-03-27 11:58 - 2014-03-22 11:40 - 00003136 _____ () C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job
2014-03-26 22:27 - 2014-03-22 22:06 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\MyPhoneExplorer
2014-03-26 22:25 - 2014-03-26 22:24 - 00000000 ____D () C:\Program Files\maucampo
2014-03-26 22:23 - 2014-03-26 22:23 - 00000000 ____D () C:\Program Files\Seznam.cz
2014-03-26 22:23 - 2014-02-04 03:29 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Seznam.cz
2014-03-26 22:07 - 2014-03-23 17:21 - 00000000 ____D () C:\Users\Martina\Documents\HiSuite
2014-03-26 22:06 - 2014-03-12 12:33 - 00000000 ____D () C:\Users\Martina\AppData\Local\VirtualStore
2014-03-26 21:51 - 2014-03-26 21:50 - 00000000 ____D () C:\Users\Martina\Downloads\THE-ROOM2-APK+DATA
2014-03-26 21:48 - 2014-01-21 15:47 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\DMCache
2014-03-26 21:47 - 2014-03-26 18:36 - 287614964 _____ () C:\Users\Martina\Downloads\THE-ROOM2-APK+DATA.rar
2014-03-26 20:10 - 2014-03-26 20:10 - 00342280 _____ (Puresafe) C:\Users\Martina\Downloads\THE-ROOM2-APK DATA.rar.exe
2014-03-26 20:07 - 2014-01-21 15:47 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\IDM
2014-03-26 18:29 - 2014-03-26 18:28 - 00236928 _____ () C:\Users\Martina\Downloads\THE-ROOM2-APK_DATA_downloader-6NKhZf01.exe
2014-03-26 16:18 - 2013-12-31 17:09 - 00000000 ____D () C:\Windows\Minidump
2014-03-26 16:15 - 2009-07-14 05:34 - 00014448 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-26 16:15 - 2009-07-14 05:34 - 00014448 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-26 15:36 - 2014-03-11 23:49 - 00000320 _____ () C:\Windows\Tasks\GlaryInitialize 4.job
2014-03-26 15:35 - 2014-03-11 23:48 - 00000000 ____D () C:\Program Files\Glary Utilities 4
2014-03-26 15:35 - 2014-03-09 15:00 - 00000479 _____ () C:\Users\Martina\rgut
2014-03-26 15:29 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-26 15:25 - 2013-12-27 18:10 - 00000518 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-03-26 15:19 - 2014-02-04 03:52 - 00000000 ____D () C:\Program Files\Virtual Router
2014-03-26 15:12 - 2014-03-26 15:07 - 01373696 _____ () C:\Users\Martina\Downloads\VirtualRouterInstaller_2.msi
2014-03-26 14:58 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-26 12:09 - 2014-03-22 11:40 - 00000000 ____D () C:\Program Files\Firedive Downloader V9.0
2014-03-25 23:08 - 2014-03-25 23:08 - 00000037 ___SH () C:\Users\Martina\AppData\Local\134e6589520e51682091c0.32666518
2014-03-25 23:08 - 2014-03-25 23:08 - 00000000 ____D () C:\Users\Martina\AppData\Local\MetaGeek, LLC
2014-03-25 23:08 - 2014-03-25 22:58 - 00000000 ____D () C:\Users\Martina\AppData\Local\MetaGeek,_LLC
2014-03-25 23:07 - 2014-03-25 22:52 - 00002471 _____ () C:\Users\Public\Desktop\Chanalyzer.lnk
2014-03-25 22:58 - 2014-03-25 22:58 - 00000037 ___SH () C:\Users\Martina\AppData\Local\70149b02515b3bb20dd492.47983420
2014-03-25 22:52 - 2014-03-25 22:52 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\MetaGeek
2014-03-25 22:52 - 2014-03-25 22:51 - 00000000 ____D () C:\Program Files\MetaGeek
2014-03-25 22:51 - 2014-03-25 22:51 - 00002937 _____ () C:\Users\Martina\Desktop\inSSIDer Office.lnk
2014-03-25 22:51 - 2014-03-25 22:51 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetaGeek
2014-03-25 22:44 - 2014-03-25 22:43 - 32313344 _____ () C:\Users\Martina\Downloads\Chanalyzer-Installer.msi
2014-03-25 22:44 - 2014-03-25 22:43 - 06082560 _____ () C:\Users\Martina\Downloads\inSSIDerOffice.msi
2014-03-25 11:20 - 2014-03-24 12:18 - 00000000 ____D () C:\FFOutput
2014-03-24 13:47 - 2014-01-23 11:41 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\DivX
2014-03-24 13:13 - 2014-03-24 13:13 - 00000000 ____D () C:\Program Files\Ask.com
2014-03-24 13:12 - 2014-03-24 13:12 - 00000000 ____D () C:\Users\Martina\AppData\Local\APN
2014-03-24 13:12 - 2014-03-24 13:12 - 00000000 ____D () C:\ProgramData\Ask
2014-03-24 12:22 - 2014-03-24 12:22 - 00000000 ____D () C:\Users\Martina\Documents\FormatFactory
2014-03-24 12:17 - 2014-03-24 12:17 - 00001152 _____ () C:\Users\Martina\Desktop\Format Factory.lnk
2014-03-24 12:17 - 2014-03-24 12:17 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-03-24 12:16 - 2014-03-24 12:16 - 00000000 ____D () C:\Program Files\FreeTime
2014-03-24 11:01 - 2014-03-24 10:57 - 22351872 _____ () C:\Users\Martina\Downloads\ffactory-setup.exe
2014-03-24 09:30 - 2014-03-24 09:30 - 00261208 _____ (LG Electronics) C:\Users\Martina\Downloads\B2CAppSetup (1).exe
2014-03-24 09:20 - 2014-02-01 12:58 - 00002411 _____ () C:\Windows\system32\lgAxconfig.ini
2014-03-24 09:19 - 2014-02-01 12:59 - 00000831 _____ () C:\Users\Martina\Desktop\LGMobile Support Tool.lnk
2014-03-24 09:14 - 2014-03-23 17:20 - 00000000 ____D () C:\Users\Martina\AppData\Local\HiSuite
2014-03-23 17:23 - 2014-03-23 17:23 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2014-03-23 17:21 - 2014-03-23 17:21 - 00000945 _____ () C:\Users\Public\Desktop\HiSuite.lnk
2014-03-23 17:21 - 2014-03-23 17:21 - 00000000 ____D () C:\ProgramData\HiSuiteOuc
2014-03-23 17:21 - 2014-03-23 17:21 - 00000000 ____D () C:\ProgramData\HandSetService
2014-03-23 17:21 - 2014-03-23 17:17 - 00000000 ____D () C:\Program Files\HiSuite
2014-03-23 17:16 - 2014-03-23 16:35 - 36283976 _____ () C:\Users\Martina\Downloads\HiSuiteSetup_v1.8.10.26.06.zip
2014-03-22 22:05 - 2014-03-22 22:05 - 00002011 _____ () C:\Users\Public\Desktop\MyPhoneExplorer.lnk
2014-03-22 22:05 - 2014-03-22 22:05 - 00000000 ____D () C:\Program Files\MyPhoneExplorer
2014-03-22 22:03 - 2014-03-22 21:59 - 07441760 _____ () C:\Users\Martina\Downloads\MyPhoneExplorer_Setup_1.8.5_2.exe
2014-03-22 12:00 - 2014-03-22 11:50 - 00000000 ____D () C:\Program Files\Kingo Android ROOT
2014-03-22 11:50 - 2014-03-22 11:50 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\ZJMedia
2014-03-22 11:50 - 2014-03-22 11:50 - 00000000 ____D () C:\Users\Martina\AppData\Local\ZJMedia
2014-03-22 11:42 - 2014-03-22 11:42 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\BabSolution
2014-03-22 11:42 - 2014-03-22 11:42 - 00000000 ____D () C:\Program Files\Gophoto.it
2014-03-22 11:38 - 2014-03-22 11:38 - 00000000 ____D () C:\Users\Martina\AppData\Local\Cool_Mirage
2014-03-22 02:39 - 2014-03-22 02:39 - 07441760 _____ () C:\Users\Martina\Downloads\MyPhoneExplorer_Setup_1.8.5.exe
2014-03-21 17:14 - 2014-01-09 19:34 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-21 16:34 - 2014-03-21 16:24 - 67963216 _____ () C:\Users\Martina\Downloads\Nokia_PC_Suite_ALL_2.exe
2014-03-21 16:34 - 2014-03-21 16:12 - 00001996 _____ () C:\Users\Public\Desktop\Nokia PC Suite.lnk
2014-03-21 16:12 - 2014-03-21 16:12 - 00000000 ____D () C:\Program Files\Common Files\PCSuite
2014-03-21 16:12 - 2014-01-09 20:45 - 00000000 ____D () C:\Program Files\Common Files\Nokia
2014-03-21 16:12 - 2013-12-27 16:01 - 00000000 ____D () C:\Program Files\Nokia
2014-03-21 15:54 - 2014-03-03 18:11 - 195368221 _____ () C:\Windows\MEMORY.DMP
2014-03-18 09:34 - 2014-03-18 09:34 - 00000000 ____D () C:\Users\Martina\AppData\Local\Apple
2014-03-17 13:22 - 2014-03-17 13:19 - 00000000 ____D () C:\Users\Martina\Documents\BlackMirrorIII
2014-03-17 13:14 - 2014-03-17 13:14 - 00000777 _____ () C:\Users\Martina\Desktop\Posel Smrti 3.lnk
2014-03-17 13:07 - 2014-03-17 13:07 - 00000000 ____D () C:\TopCD
2014-03-17 12:56 - 2014-03-17 12:49 - 00000000 ____D () C:\Users\Martina\Downloads\Posel-Smrti-III.-CZ-dub.-(flaming-foot)_2
2014-03-17 12:15 - 2014-03-16 23:36 - 4207771648 _____ () C:\Users\Martina\Downloads\Posel-Smrti-III.-CZ-dub.-(flaming-foot)_2.iso
2014-03-16 21:53 - 2014-01-22 17:40 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\XBMC
2014-03-16 17:58 - 2014-02-01 12:57 - 00000000 ____D () C:\ProgramData\LGMOBILEAX
2014-03-16 16:51 - 2014-02-22 00:38 - 00000000 ____D () C:\Users\Martina\.android
2014-03-16 16:51 - 2013-12-27 14:29 - 00000000 ____D () C:\Users\Martina
2014-03-16 16:15 - 2014-03-16 15:37 - 00000000 ____D () C:\Users\Martina\android-sdk-windows
2014-03-16 15:04 - 2014-03-16 15:04 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2014-03-16 13:23 - 2014-03-16 13:23 - 00000000 ____D () C:\Users\Martina\AppData\Local\Macromedia
2014-03-16 13:22 - 2014-01-01 22:18 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Mozilla
2014-03-14 19:07 - 2014-03-14 19:06 - 10855280 _____ (Acresso Software Inc. ) C:\Users\Martina\Downloads\LGUnitedMobileDriver_S4981MAN36AP22_ML_WHQL_Ver_3.6_2.exe
2014-03-14 18:30 - 2014-03-14 18:30 - 00000000 ____D () C:\Program Files\adt-bundle-windows-x86-20131030
2014-03-14 16:52 - 2014-03-14 16:50 - 00000000 ____D () C:\Users\Martina\Desktop\Nová složka
2014-03-14 16:50 - 2014-01-02 19:01 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Adobe
2014-03-14 00:10 - 2014-01-09 19:32 - 00000000 ____D () C:\Users\Martina\AppData\Local\Adobe
2014-03-13 09:51 - 2014-02-22 00:38 - 00000000 ____D () C:\Users\Martina\AppData\Local\Mobogenie
2014-03-13 00:41 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-03-13 00:02 - 2009-07-14 05:33 - 00296920 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-12 19:05 - 2014-01-13 16:05 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-12 19:05 - 2014-01-13 16:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-12 13:38 - 2013-12-27 17:56 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-12 13:32 - 2013-12-27 17:56 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-12 12:34 - 2014-03-12 12:34 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\ESET
2014-03-12 12:34 - 2014-02-20 13:50 - 00002458 __RSH () C:\ProgramData\ntuser.pol
2014-03-12 12:33 - 2014-03-12 12:33 - 00000000 ____D () C:\ProgramData\IDM
2014-03-12 00:29 - 2013-12-27 16:04 - 00000000 ____D () C:\Program Files\Google
2014-03-11 23:58 - 2014-01-20 00:05 - 00000000 ____D () C:\Users\Martina\Logitech
2014-03-11 23:57 - 2014-01-29 16:13 - 00000000 ____D () C:\ProgramData\InstallMate
2014-03-11 23:57 - 2014-01-13 22:49 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Nokia
2014-03-11 23:57 - 2014-01-04 14:10 - 00000000 ____D () C:\Users\Martina\AppData\Local\cache
2014-03-11 23:57 - 2014-01-03 21:20 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\NaviFirmPlus
2014-03-11 23:57 - 2013-12-27 20:09 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Apple Computer
2014-03-11 23:57 - 2013-12-27 16:04 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Skype
2014-03-11 23:57 - 2013-12-27 16:04 - 00000000 ____D () C:\Users\Martina\AppData\Local\Google
2014-03-11 23:57 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-03-11 23:57 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Default
2014-03-11 23:50 - 2014-03-11 23:50 - 00000000 ____D () C:\ProgramData\GlarySoft
2014-03-11 23:49 - 2014-03-11 23:49 - 00001034 _____ () C:\Users\Public\Desktop\Glary Utilities 4.lnk
2014-03-11 23:49 - 2014-03-11 23:49 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\GlarySoft
2014-03-11 23:48 - 2014-03-11 23:47 - 12393008 _____ () C:\Users\Martina\Downloads\gu4setup.exe
2014-03-11 20:30 - 2014-03-11 20:30 - 00000000 ____D () C:\Program Files\CONEXANT
2014-03-11 18:52 - 2014-03-11 18:52 - 00000000 ____D () C:\Program Files\The Adventure Company
2014-03-11 18:47 - 2014-01-04 14:10 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\newnext.me
2014-03-11 17:30 - 2014-03-06 14:57 - 00000000 ____D () C:\ProgramData\50CoUpons
2014-03-11 17:11 - 2014-02-08 21:25 - 00000000 ____D () C:\Program Files\Internet Download Manager 2013 cz
2014-03-09 15:02 - 2014-03-09 15:02 - 00000003 _____ () C:\Users\Martina\stut
2014-03-09 14:48 - 2014-03-09 14:48 - 00000000 ____D () C:\Users\Martina\AppData\Local\ESET
2014-03-09 14:39 - 2014-03-09 14:39 - 00000000 ____D () C:\ProgramData\ESET
2014-03-09 14:39 - 2014-03-09 14:39 - 00000000 ____D () C:\Program Files\ESET
2014-03-09 14:28 - 2014-03-09 14:28 - 00000000 ____D () C:\Users\Martina\Downloads\Eset-Smart-Security-7-&-ESET-NOD32-Antivirus-7-CZ-(x86,-x64Bit)-100%-Work-(2014)-CZ
2014-03-09 14:27 - 2014-03-09 14:27 - 00000000 ____D () C:\Users\Martina\Documents\Kontakty
2014-03-09 14:12 - 2014-03-09 14:20 - 336831919 _____ () C:\Users\Martina\Downloads\Eset-Smart-Security-7-&-ESET-NOD32-Antivirus-7-CZ-(x86,-x64Bit)-100%-Work-(2014)-CZ.rar
2014-03-09 13:42 - 2014-03-09 13:42 - 00000000 ____D () C:\Windows\system32\bitstreams
2014-03-08 23:19 - 2014-03-08 23:19 - 00000000 ____D () C:\Program Files\ffdshow
2014-03-08 23:18 - 2014-03-08 23:17 - 04700665 _____ (ffdshow ) C:\Users\Martina\Downloads\ffdshow_rev4500_20130106.exe
2014-03-08 19:40 - 2014-01-13 22:46 - 00000000 ____D () C:\ProgramData\Installations
2014-03-08 18:47 - 2014-03-08 18:47 - 00121361 _____ () C:\Users\Martina\Downloads\FExplorer_english_117.SIS
2014-03-08 18:29 - 2014-01-13 22:52 - 00000000 __SHD () C:\Users\Martina\Phone Browser
2014-03-08 17:35 - 2014-03-08 17:32 - 50281664 _____ () C:\Users\Martina\Downloads\NokiaSoftwareUpdaterSetup_CZ.exe
2014-03-08 17:32 - 2014-01-13 22:49 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\PC Suite
2014-03-08 17:31 - 2014-03-08 17:31 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf
2014-03-08 17:29 - 2014-03-08 17:29 - 00000000 ____D () C:\ProgramData\PC Suite
2014-03-08 17:27 - 2014-03-08 17:27 - 00000000 ____D () C:\Program Files\PC Connectivity Solution
2014-03-08 17:25 - 2014-03-08 17:21 - 67963216 _____ () C:\Users\Martina\Downloads\Nokia_PC_Suite_ALL.exe
2014-03-06 14:57 - 2014-01-29 16:14 - 00000000 ____D () C:\ProgramData\30946ef5afe6a32c
2014-03-05 15:02 - 2014-03-05 15:02 - 00000000 ____D () C:\Users\Martina\Downloads\BootableUSB
2014-03-05 15:02 - 2014-03-05 15:01 - 01473404 _____ () C:\Users\Martina\Downloads\BootableUSB.zip
2014-03-04 12:28 - 2014-03-04 03:06 - 00000143 _____ () C:\Users\Martina\Desktop\prikazy wifi hotspot.txt
2014-03-03 23:44 - 2014-03-03 23:44 - 00000202 _____ () C:\Users\Martina\.swfinfo
2014-03-03 19:08 - 2014-03-03 19:08 - 00041797 _____ () C:\Users\Martina\Downloads\repository.xbmc.skins.staging-frodo1.0.0.zip
2014-03-03 18:38 - 2014-03-03 18:36 - 59604731 _____ () C:\Users\Martina\Downloads\xbmc-12.3_2.exe
2014-03-03 03:07 - 2013-12-27 14:57 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-03-03 00:41 - 2014-03-03 00:41 - 00000000 ____D () C:\Users\Martina\Downloads\xirruswifimonitorgadget1.01
2014-03-03 00:13 - 2014-01-20 00:04 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-03-03 00:05 - 2014-03-03 00:05 - 00000517 _____ () C:\Windows\system32\FLSINST.LOG
2014-03-03 00:00 - 2013-12-27 16:01 - 00000961 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-03 00:00 - 2013-12-27 16:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-02 23:59 - 2014-03-02 23:59 - 04765152 _____ (Piriform Ltd) C:\Users\Martina\Downloads\ccsetup411.exe
2014-03-02 17:40 - 2014-03-02 17:40 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\FLEXnet
2014-03-02 17:33 - 2014-03-02 17:33 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Vodafone
2014-03-02 17:31 - 2014-03-02 17:31 - 00000000 ____D () C:\Users\Martina\AppData\Local\{01A9A77D-6AAA-4910-89DD-AA1CF94D5618}
2014-03-02 17:24 - 2014-03-02 17:24 - 00000000 ____D () C:\Program Files\WinRST
2014-03-02 17:23 - 2014-03-02 17:23 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\Pirrit
2014-03-02 16:24 - 2014-03-02 16:24 - 00000000 ____D () C:\Users\Martina\AppData\Roaming\SuperHideIP
2014-03-02 16:21 - 2014-03-02 16:21 - 00001185 _____ () C:\Users\Martina\Desktop\AIDA64 Extreme Edition.lnk
2014-03-02 16:21 - 2014-03-02 16:21 - 00000961 _____ () C:\Users\Public\Desktop\PowerISO.lnk
2014-03-02 16:21 - 2014-03-02 16:21 - 00000000 ____D () C:\Program Files\PowerISO
2014-03-02 16:21 - 2014-03-02 16:21 - 00000000 ____D () C:\Program Files\FinalWire
2014-03-02 16:19 - 2014-03-01 16:06 - 00000000 ____D () C:\Users\Martina\Downloads\aida64extreme280
2014-03-02 10:53 - 2014-03-02 10:52 - 07118322 _____ () C:\Users\Martina\Downloads\VKF_1.0.4_ViperS_5.1.0.rar
2014-03-01 12:17 - 2014-03-01 16:11 - 04613777 _____ (Magical Jelly Bean) C:\Users\Martina\Downloads\WiFiPasswordRevealerInstaller.exe
2014-03-01 05:30 - 2014-03-12 13:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-01 05:11 - 2014-03-12 13:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-01 05:10 - 2014-03-12 13:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-01 04:52 - 2014-03-12 13:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-01 04:51 - 2014-03-12 13:30 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-01 04:47 - 2014-03-12 13:30 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-01 04:43 - 2014-03-12 13:30 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-01 04:43 - 2014-03-12 13:30 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-01 04:40 - 2014-03-12 13:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-01 04:38 - 2014-03-12 13:30 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-01 04:38 - 2014-03-12 13:30 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-01 04:37 - 2014-03-12 13:30 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-01 04:31 - 2014-03-12 13:30 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-01 04:25 - 2014-03-12 13:30 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-01 04:16 - 2014-03-12 13:30 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-01 04:14 - 2014-03-12 13:30 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-01 04:03 - 2014-03-12 13:30 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-01 04:00 - 2014-03-12 13:30 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-01 03:57 - 2014-03-12 13:30 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-01 03:32 - 2014-03-12 13:30 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-01 03:27 - 2014-03-12 13:30 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-01 03:25 - 2014-03-12 13:30 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-27 20:19 - 2014-02-27 20:19 - 00245080 _____ () C:\Users\Martina\Desktop\moje tel.cislo email.odt
2014-02-27 15:00 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-26 06:39 - 2014-03-11 23:49 - 00101664 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2014-02-26 06:17 - 2014-03-11 23:49 - 00014528 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys
Some content of TEMP:
====================
C:\Users\Martina\AppData\Local\Temp\FLVPlayerSetup.exe
C:\Users\Martina\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\Martina\AppData\Local\Temp\maucampoSetup.exe
C:\Users\Martina\AppData\Local\Temp\UpdateCheckerSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-chromeinstaller.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-codedownloader.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-enabler.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-firefoxinstaller.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-updater.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-updater.exe
Task: C:\Windows\Tasks\GlaryInitialize 4.job => C:\Program Files\Glary Utilities 4\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RtlVistaStart.job => C:\Program Files\ZyXEL\NWD2205\NWD2205.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Martina\Desktop" je 886 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon
"C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXMediaServer
C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate
"C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper
"C:\Program Files\iTunes\iTunesHelper.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncerwqgvSrv
C:\Windows\inf\mncerwqgv.vbe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileConnect
%programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mobilegeni daemon
C:\Program Files\Mobogenie\DaemonProcess.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msuvhtSrv
C:\Windows\inf\msuvht.vbe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NextLive
C:\Windows\system32\rundll32.exe "C:\Users\Martina\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe
C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSU_agent
"C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor
C:\Windows\PixArt\PAC7302\Monitor.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE
C:\Program Files\PowerISO\PWRISOVM.EXE -startup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
"C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive
"C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt
"C:\Program Files\AVG Secure Search\vprot.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Empowering Technology Launcher.lnk
C:\Acer\EMPOWE~1\EAPLAU~1.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Virtual Router Manager.lnk
C:\Windows\INSTAL~1\{BE905~1\_118D1~1.EXE
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Wireless N USB Utility.lnk
C:\PROGRA~1\ZyXEL\NWD2205\NWD2205.exe
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\\Program Files\\Logitech\\Logitech Harmony Remote Software 7\\HarmonyRemote.exe"="C:\\Program Files\\Logitech\\Logitech Harmony Remote Software 7\\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\Logitech\\Logitech Harmony Remote Software 7\\HarmonyRemote.exe"="C:\\Program Files\\Logitech\\Logitech Harmony Remote Software 7\\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Seká se notebook
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Seká se notebook
- Přílohy
-
- Addition.rar
- (5.73 KiB) Staženo 37 x
-
Rudy
- Site Admin
- Příspěvky: 119535
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Seká se notebook
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
C:\Program Files\maucampo
HKLM\...\Run: [] - [X]
HKLM\...\Run: [ApnUpdater] - C:\Program Files\Ask.com\Updater\Updater.exe [1573576 2012-12-05] (Ask)
C:\Program Files\Ask.com\Updater
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: F - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {1d5665b9-9f9f-11e3-a741-cfa12d180de5} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {1d5665ce-9f9f-11e3-a741-cfa12d180de5} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {3826fb09-898c-11e3-98ab-99d65bc8811f} - F:\AutoRun.exe
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {88b140b9-7475-11e3-887e-fece130faa1e} - E:\setup.exe
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {c5c60855-71d1-11e3-985c-cf170782a917} - F:\AutoRun.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?l=dis&o=14597
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchinweb.info/?pid= ... Z&unqvl=47
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
SearchScopes: HKLM - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchinweb.info/?l=1& ... Z&unqvl=47
SearchScopes: HKLM - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchinweb.info/?l=1& ... Z&unqvl=47
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTe ... 3&tsp=5194
SearchScopes: HKCU - {E8D07CFE-480E-43B4-BE71-C75AB18CA5D5} URL = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=&apn_ptnrs=^FV&apn_dtid=^YYYYYY^YY^CZ&apn_uid=65978D52-AAE1-4157-A352-43BAC3647EE6&apn_sauid=1E74989B-B0F9-44B7-A0DD-DAA12968E691
BHO: maucampo - {5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} - C:\Program Files\maucampo\maucampobho.dll (maucampo)
BHO: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
C:\Program Files\Ask.com
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default
FF user.js: detected! => C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\user.js
FF SearchEngineOrder.1: Ask.com
FF NewTab: hxxp://www.buenosearch.com/?babsrc=NT_s ... 3&tsp=5194
FF Homepage: hxxp://www.search.ask.com/?l=dis&o=14597
FF SelectedSearchEngine: Ask.com
FF DefaultSearchEngine: Ask.com
FF Keyword.URL: hxxp://websearch.ask.com/redirect?clien ... Y%5ECZ&&q=
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll No File
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll No File
FF Extension: Firedive Downloader V9.0 - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\d135fde7-acda-4677-b8c2-429639a4b476@e7f1eb2f-e6c0-4429-8016-f171dbfcdb99.com [2014-03-22]
FF Extension: SNT - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\rnyoy-f@mzawzhsnks.co.uk [2014-01-29]
FF Extension: Ask Toolbar - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\toolbar@ask.com [2014-03-24]
FF Extension: 50CoUpons - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\yeee@aaekrb.edu [2014-03-16]
FF Extension: Turn Off the Lights - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\stefanvandamme@stefanvd.net.xpi [2014-01-20]
FF Extension: Pirrit Suggestor - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\suggestor@suggestor.pirrit.com.xpi [2014-03-02]
CHR Extension: (50CoUpons) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\djegngipomhfebdhboodakimialkkkni [2014-03-06]
CHR Extension: (Play to XBMC) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncjhcjfnnooidlkijollckpakkebden [2014-03-03]
CHR Extension: (Firedive Downloader V9.0) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianpkncpdncekpjnlflanaomeeenkehn [2014-03-24]
CHR Extension: (YTBooKMark) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieomlnadcclnohookofeaicpcnnlnfpp [2014-01-29]
CHR Extension: (APK Downloader) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnbkiaddgodnooflghhbdpbdheanmpjp [2014-02-19]
S2 5dee0f7c; "C:\Windows\system32\rundll32.exe" "c:\progra~1\gssupp~1\AssistantSvc.dll",service
S4 PirritUpdater; C:\Program Files\Pirrit\AutoUpdater.exe [X]
C:\ProgramData\Ask
C:\Windows\system32\acumncqqbvfv.exe
C:\Windows\system32\dcgmncqqbvfv.exe
C:\Windows\system32\lcpmncqqbvfv.exe
C:\Users\Martina\Downloads\xirruswifimonitorgadget1.01
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job
C:\Windows\Tasks\Firedive Downloader V9.0-updater.job
C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job
C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job
C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job
C:\Users\Martina\AppData\Roaming\Pirrit
C:\Users\Martina\AppData\Local\Temp
Task: C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-chromeinstaller.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-codedownloader.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-enabler.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-firefoxinstaller.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-updater.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-updater.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Seká se notebook
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-03-2014 01
Ran by Martina at 2014-03-27 21:56:32 Run:1
Running from C:\Users\Martina\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
C:\Program Files\maucampo
HKLM\...\Run: [] - [X]
HKLM\...\Run: [ApnUpdater] - C:\Program Files\Ask.com\Updater\Updater.exe [1573576 2012-12-05] (Ask)
C:\Program Files\Ask.com\Updater
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: F - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {1d5665b9-9f9f-11e3-a741-cfa12d180de5} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {1d5665ce-9f9f-11e3-a741-cfa12d180de5} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {3826fb09-898c-11e3-98ab-99d65bc8811f} - F:\AutoRun.exe
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {88b140b9-7475-11e3-887e-fece130faa1e} - E:\setup.exe
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {c5c60855-71d1-11e3-985c-cf170782a917} - F:\AutoRun.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?l=dis&o=14597
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchinweb.info/?pid= ... Z&unqvl=47
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
SearchScopes: HKLM - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchinweb.info/?l=1& ... Z&unqvl=47
SearchScopes: HKLM - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchinweb.info/?l=1& ... Z&unqvl=47
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTe ... 3&tsp=5194
SearchScopes: HKCU - {E8D07CFE-480E-43B4-BE71-C75AB18CA5D5} URL = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=&apn_ptnrs=^FV&apn_dtid=^YYYYYY^YY^CZ&apn_uid=65978D52-AAE1-4157-A352-43BAC3647EE6&apn_sauid=1E74989B-B0F9-44B7-A0DD-DAA12968E691
BHO: maucampo - {5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} - C:\Program Files\maucampo\maucampobho.dll (maucampo)
BHO: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
C:\Program Files\Ask.com
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default
FF user.js: detected! => C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\user.js
FF SearchEngineOrder.1: Ask.com
FF NewTab: hxxp://www.buenosearch.com/?babsrc=NT_s ... 3&tsp=5194
FF Homepage: hxxp://www.search.ask.com/?l=dis&o=14597
FF SelectedSearchEngine: Ask.com
FF DefaultSearchEngine: Ask.com
FF Keyword.URL: hxxp://websearch.ask.com/redirect?clien ... Y%5ECZ&&q=
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll No File
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll No File
FF Extension: Firedive Downloader V9.0 - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\d135fde7-acda-4677-b8c2-429639a4b476@e7f1eb2f-e6c0-4429-8016-f171dbfcdb99.com [2014-03-22]
FF Extension: SNT - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\rnyoy-f@mzawzhsnks.co.uk [2014-01-29]
FF Extension: Ask Toolbar - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\toolbar@ask.com [2014-03-24]
FF Extension: 50CoUpons - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\yeee@aaekrb.edu [2014-03-16]
FF Extension: Turn Off the Lights - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\stefanvandamme@stefanvd.net.xpi [2014-01-20]
FF Extension: Pirrit Suggestor - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\suggestor@suggestor.pirrit.com.xpi [2014-03-02]
CHR Extension: (50CoUpons) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\djegngipomhfebdhboodakimialkkkni [2014-03-06]
CHR Extension: (Play to XBMC) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncjhcjfnnooidlkijollckpakkebden [2014-03-03]
CHR Extension: (Firedive Downloader V9.0) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianpkncpdncekpjnlflanaomeeenkehn [2014-03-24]
CHR Extension: (YTBooKMark) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieomlnadcclnohookofeaicpcnnlnfpp [2014-01-29]
CHR Extension: (APK Downloader) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnbkiaddgodnooflghhbdpbdheanmpjp [2014-02-19]
S2 5dee0f7c; "C:\Windows\system32\rundll32.exe" "c:\progra~1\gssupp~1\AssistantSvc.dll",service
S4 PirritUpdater; C:\Program Files\Pirrit\AutoUpdater.exe [X]
C:\ProgramData\Ask
C:\Windows\system32\acumncqqbvfv.exe
C:\Windows\system32\dcgmncqqbvfv.exe
C:\Windows\system32\lcpmncqqbvfv.exe
C:\Users\Martina\Downloads\xirruswifimonitorgadget1.01
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job
C:\Windows\Tasks\Firedive Downloader V9.0-updater.job
C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job
C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job
C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job
C:\Users\Martina\AppData\Roaming\Pirrit
C:\Users\Martina\AppData\Local\Temp
Task: C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-chromeinstaller.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-codedownloader.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-enabler.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-firefoxinstaller.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-updater.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-updater.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
*****************
C:\Program Files\maucampo => Moved successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater => Value deleted successfully.
C:\Program Files\Ask.com\Updater => Moved successfully.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-76810935-2558592190-357856752-1000 => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1d5665b9-9f9f-11e3-a741-cfa12d180de5} => Key deleted successfully.
HKCR\CLSID\{1d5665b9-9f9f-11e3-a741-cfa12d180de5} => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1d5665ce-9f9f-11e3-a741-cfa12d180de5} => Key deleted successfully.
HKCR\CLSID\{1d5665ce-9f9f-11e3-a741-cfa12d180de5} => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3826fb09-898c-11e3-98ab-99d65bc8811f} => Key deleted successfully.
HKCR\CLSID\{3826fb09-898c-11e3-98ab-99d65bc8811f} => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{88b140b9-7475-11e3-887e-fece130faa1e} => Key deleted successfully.
HKCR\CLSID\{88b140b9-7475-11e3-887e-fece130faa1e} => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c5c60855-71d1-11e3-985c-cf170782a917} => Key deleted successfully.
HKCR\CLSID\{c5c60855-71d1-11e3-985c-cf170782a917} => Key not found.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00000000-6E41-4FD3-8538-502F5495E5FC} => Value deleted successfully.
HKCR\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E8D07CFE-480E-43B4-BE71-C75AB18CA5D5} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{E8D07CFE-480E-43B4-BE71-C75AB18CA5D5} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} => Key not found.
HKCR\CLSID\{5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} => Value deleted successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
C:\Program Files\Ask.com => Moved successfully.
C:\Program Files\Ask.com => Should not be moved.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\user.js => Moved successfully.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox newtab deleted successfully.
Firefox homepage deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox DefaultSearchEngine deleted successfully.
Firefox Keyword.URL deleted successfully.
HKCU\Software\MozillaPlugins\@catalinahub.com/CatalinaGroup Update;version=3 => Key deleted successfully.
C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll not found.
HKCU\Software\MozillaPlugins\@catalinahub.com/CatalinaGroup Update;version=9 => Key deleted successfully.
C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll not found.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\d135fde7-acda-4677-b8c2-429639a4b476@e7f1eb2f-e6c0-4429-8016-f171dbfcdb99.com => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\rnyoy-f@mzawzhsnks.co.uk => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\toolbar@ask.com => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\yeee@aaekrb.edu => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\stefanvandamme@stefanvd.net.xpi => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\suggestor@suggestor.pirrit.com.xpi => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\djegngipomhfebdhboodakimialkkkni => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncjhcjfnnooidlkijollckpakkebden => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianpkncpdncekpjnlflanaomeeenkehn => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieomlnadcclnohookofeaicpcnnlnfpp => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnbkiaddgodnooflghhbdpbdheanmpjp => Moved successfully.
5dee0f7c => Service deleted successfully.
PirritUpdater => Service deleted successfully.
C:\ProgramData\Ask => Moved successfully.
C:\Windows\system32\acumncqqbvfv.exe => Moved successfully.
C:\Windows\system32\dcgmncqqbvfv.exe => Moved successfully.
C:\Windows\system32\lcpmncqqbvfv.exe => Moved successfully.
C:\Users\Martina\Downloads\xirruswifimonitorgadget1.01 => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-updater.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job => Moved successfully.
C:\Users\Martina\AppData\Roaming\Pirrit => Moved successfully.
"C:\Users\Martina\AppData\Local\Temp" directory move:
C:\Users\Martina\AppData\Local\Temp\75FBDBED-C1B6-4541-B55B-3B4D2D133B3E.Diagnose.0.etl => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\adb.log => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\DMIF986.tmp => Moved successfully.
Could not move "C:\Users\Martina\AppData\Local\Temp\etilqs_LccUcva9CZUV7qd" => Scheduled to move on reboot.
C:\Users\Martina\AppData\Local\Temp\FLVPlayerSetup.exe => Moved successfully.
Could not move "C:\Users\Martina\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\Martina\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\log3 => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\maucampoSetup.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\modules00 => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\modules11 => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\UpdateCheckerSetup.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\wmplog01.sqm => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\wmplog02.sqm => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\wmplog03.sqm => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\_iu14D2N.tmp => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\~18C9.tmp => Moved successfully.
Could not move "C:\Users\Martina\AppData\Local\Temp\~DF5397FCF48A08B15C.TMP" => Scheduled to move on reboot.
C:\Users\Martina\AppData\Local\Temp\~nsu.tmp\Au_.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\WPDNSE\{00000B4A-0001-0001-0000-000000000000}\Instructions.txt => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\WPDNSE\{00000B4A-0001-0001-0000-000000000000}\THE-ROOM2-APK-Andropalace.net.apk => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\nszA720.tmp\nsProcess.dll => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\nsq823.tmp\biSetup46974.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\nsd5FFE.tmp\biSetup17441.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\7zS13F7\HPSLPSVC32.DLL => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\7092_6240\crl-set => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\7092_6240\manifest.fingerprint => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\7092_6240\manifest.json => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\6168_5152\crl-set => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\6168_5152\manifest.fingerprint => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\6168_5152\manifest.json => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\3544_25496\crl-set => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\3544_25496\manifest.fingerprint => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\3544_25496\manifest.json => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\1780_4589\crl-set => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\1780_4589\manifest.fingerprint => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\1780_4589\manifest.json => Moved successfully.
Could not move "C:\Users\Martina\AppData\Local\Temp" directory. => Scheduled to move on reboot.
C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job not found.
C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job not found.
C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job not found.
C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job not found.
C:\Windows\Tasks\Firedive Downloader V9.0-updater.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-03-27 22:00:13)<=
C:\Users\Martina\AppData\Local\Temp\etilqs_LccUcva9CZUV7qd => Is moved successfully.
C:\Users\Martina\AppData\Local\Temp\FXSAPIDebugLogFile.txt => Is moved successfully.
C:\Users\Martina\AppData\Local\Temp\~DF5397FCF48A08B15C.TMP => Is moved successfully.
C:\Users\Martina\AppData\Local\Temp => Moved successfully.
==== End of Fixlog ====
Ran by Martina at 2014-03-27 21:56:32 Run:1
Running from C:\Users\Martina\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
C:\Program Files\maucampo
HKLM\...\Run: [] - [X]
HKLM\...\Run: [ApnUpdater] - C:\Program Files\Ask.com\Updater\Updater.exe [1573576 2012-12-05] (Ask)
C:\Program Files\Ask.com\Updater
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: F - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {1d5665b9-9f9f-11e3-a741-cfa12d180de5} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {1d5665ce-9f9f-11e3-a741-cfa12d180de5} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {3826fb09-898c-11e3-98ab-99d65bc8811f} - F:\AutoRun.exe
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {88b140b9-7475-11e3-887e-fece130faa1e} - E:\setup.exe
HKU\S-1-5-21-76810935-2558592190-357856752-1000\...\MountPoints2: {c5c60855-71d1-11e3-985c-cf170782a917} - F:\AutoRun.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?l=dis&o=14597
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchinweb.info/?pid= ... Z&unqvl=47
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
SearchScopes: HKLM - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchinweb.info/?l=1& ... Z&unqvl=47
SearchScopes: HKLM - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.searchinweb.info/?l=1& ... Z&unqvl=47
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTe ... 3&tsp=5194
SearchScopes: HKCU - {E8D07CFE-480E-43B4-BE71-C75AB18CA5D5} URL = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=&apn_ptnrs=^FV&apn_dtid=^YYYYYY^YY^CZ&apn_uid=65978D52-AAE1-4157-A352-43BAC3647EE6&apn_sauid=1E74989B-B0F9-44B7-A0DD-DAA12968E691
BHO: maucampo - {5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} - C:\Program Files\maucampo\maucampobho.dll (maucampo)
BHO: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
C:\Program Files\Ask.com
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default
FF user.js: detected! => C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\user.js
FF SearchEngineOrder.1: Ask.com
FF NewTab: hxxp://www.buenosearch.com/?babsrc=NT_s ... 3&tsp=5194
FF Homepage: hxxp://www.search.ask.com/?l=dis&o=14597
FF SelectedSearchEngine: Ask.com
FF DefaultSearchEngine: Ask.com
FF Keyword.URL: hxxp://websearch.ask.com/redirect?clien ... Y%5ECZ&&q=
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll No File
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll No File
FF Extension: Firedive Downloader V9.0 - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\d135fde7-acda-4677-b8c2-429639a4b476@e7f1eb2f-e6c0-4429-8016-f171dbfcdb99.com [2014-03-22]
FF Extension: SNT - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\rnyoy-f@mzawzhsnks.co.uk [2014-01-29]
FF Extension: Ask Toolbar - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\toolbar@ask.com [2014-03-24]
FF Extension: 50CoUpons - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\yeee@aaekrb.edu [2014-03-16]
FF Extension: Turn Off the Lights - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\stefanvandamme@stefanvd.net.xpi [2014-01-20]
FF Extension: Pirrit Suggestor - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\suggestor@suggestor.pirrit.com.xpi [2014-03-02]
CHR Extension: (50CoUpons) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\djegngipomhfebdhboodakimialkkkni [2014-03-06]
CHR Extension: (Play to XBMC) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncjhcjfnnooidlkijollckpakkebden [2014-03-03]
CHR Extension: (Firedive Downloader V9.0) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianpkncpdncekpjnlflanaomeeenkehn [2014-03-24]
CHR Extension: (YTBooKMark) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieomlnadcclnohookofeaicpcnnlnfpp [2014-01-29]
CHR Extension: (APK Downloader) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnbkiaddgodnooflghhbdpbdheanmpjp [2014-02-19]
S2 5dee0f7c; "C:\Windows\system32\rundll32.exe" "c:\progra~1\gssupp~1\AssistantSvc.dll",service
S4 PirritUpdater; C:\Program Files\Pirrit\AutoUpdater.exe [X]
C:\ProgramData\Ask
C:\Windows\system32\acumncqqbvfv.exe
C:\Windows\system32\dcgmncqqbvfv.exe
C:\Windows\system32\lcpmncqqbvfv.exe
C:\Users\Martina\Downloads\xirruswifimonitorgadget1.01
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job
C:\Windows\Tasks\Firedive Downloader V9.0-updater.job
C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job
C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job
C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job
C:\Users\Martina\AppData\Roaming\Pirrit
C:\Users\Martina\AppData\Local\Temp
Task: C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-chromeinstaller.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-codedownloader.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-enabler.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-firefoxinstaller.exe
Task: C:\Windows\Tasks\Firedive Downloader V9.0-updater.job => C:\Program Files\Firedive Downloader V9.0\Firedive Downloader V9.0-updater.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
*****************
C:\Program Files\maucampo => Moved successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater => Value deleted successfully.
C:\Program Files\Ask.com\Updater => Moved successfully.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-76810935-2558592190-357856752-1000 => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1d5665b9-9f9f-11e3-a741-cfa12d180de5} => Key deleted successfully.
HKCR\CLSID\{1d5665b9-9f9f-11e3-a741-cfa12d180de5} => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1d5665ce-9f9f-11e3-a741-cfa12d180de5} => Key deleted successfully.
HKCR\CLSID\{1d5665ce-9f9f-11e3-a741-cfa12d180de5} => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3826fb09-898c-11e3-98ab-99d65bc8811f} => Key deleted successfully.
HKCR\CLSID\{3826fb09-898c-11e3-98ab-99d65bc8811f} => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{88b140b9-7475-11e3-887e-fece130faa1e} => Key deleted successfully.
HKCR\CLSID\{88b140b9-7475-11e3-887e-fece130faa1e} => Key not found.
HKU\S-1-5-21-76810935-2558592190-357856752-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c5c60855-71d1-11e3-985c-cf170782a917} => Key deleted successfully.
HKCR\CLSID\{c5c60855-71d1-11e3-985c-cf170782a917} => Key not found.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00000000-6E41-4FD3-8538-502F5495E5FC} => Value deleted successfully.
HKCR\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E8D07CFE-480E-43B4-BE71-C75AB18CA5D5} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{E8D07CFE-480E-43B4-BE71-C75AB18CA5D5} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} => Key not found.
HKCR\CLSID\{5d7d4fb9-aca5-4013-8879-c58dcd4df9f1} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} => Value deleted successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
C:\Program Files\Ask.com => Moved successfully.
C:\Program Files\Ask.com => Should not be moved.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\user.js => Moved successfully.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox newtab deleted successfully.
Firefox homepage deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox DefaultSearchEngine deleted successfully.
Firefox Keyword.URL deleted successfully.
HKCU\Software\MozillaPlugins\@catalinahub.com/CatalinaGroup Update;version=3 => Key deleted successfully.
C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll not found.
HKCU\Software\MozillaPlugins\@catalinahub.com/CatalinaGroup Update;version=9 => Key deleted successfully.
C:\Users\Martina\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll not found.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\d135fde7-acda-4677-b8c2-429639a4b476@e7f1eb2f-e6c0-4429-8016-f171dbfcdb99.com => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\rnyoy-f@mzawzhsnks.co.uk => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\toolbar@ask.com => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\yeee@aaekrb.edu => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\stefanvandamme@stefanvd.net.xpi => Moved successfully.
C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\fc5ibqs6.default\Extensions\suggestor@suggestor.pirrit.com.xpi => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\djegngipomhfebdhboodakimialkkkni => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncjhcjfnnooidlkijollckpakkebden => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianpkncpdncekpjnlflanaomeeenkehn => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieomlnadcclnohookofeaicpcnnlnfpp => Moved successfully.
C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnbkiaddgodnooflghhbdpbdheanmpjp => Moved successfully.
5dee0f7c => Service deleted successfully.
PirritUpdater => Service deleted successfully.
C:\ProgramData\Ask => Moved successfully.
C:\Windows\system32\acumncqqbvfv.exe => Moved successfully.
C:\Windows\system32\dcgmncqqbvfv.exe => Moved successfully.
C:\Windows\system32\lcpmncqqbvfv.exe => Moved successfully.
C:\Users\Martina\Downloads\xirruswifimonitorgadget1.01 => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-updater.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job => Moved successfully.
C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job => Moved successfully.
C:\Users\Martina\AppData\Roaming\Pirrit => Moved successfully.
"C:\Users\Martina\AppData\Local\Temp" directory move:
C:\Users\Martina\AppData\Local\Temp\75FBDBED-C1B6-4541-B55B-3B4D2D133B3E.Diagnose.0.etl => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\adb.log => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\DMIF986.tmp => Moved successfully.
Could not move "C:\Users\Martina\AppData\Local\Temp\etilqs_LccUcva9CZUV7qd" => Scheduled to move on reboot.
C:\Users\Martina\AppData\Local\Temp\FLVPlayerSetup.exe => Moved successfully.
Could not move "C:\Users\Martina\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\Martina\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\log3 => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\maucampoSetup.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\modules00 => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\modules11 => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\UpdateCheckerSetup.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\wmplog01.sqm => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\wmplog02.sqm => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\wmplog03.sqm => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\_iu14D2N.tmp => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\~18C9.tmp => Moved successfully.
Could not move "C:\Users\Martina\AppData\Local\Temp\~DF5397FCF48A08B15C.TMP" => Scheduled to move on reboot.
C:\Users\Martina\AppData\Local\Temp\~nsu.tmp\Au_.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\WPDNSE\{00000B4A-0001-0001-0000-000000000000}\Instructions.txt => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\WPDNSE\{00000B4A-0001-0001-0000-000000000000}\THE-ROOM2-APK-Andropalace.net.apk => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\nszA720.tmp\nsProcess.dll => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\nsq823.tmp\biSetup46974.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\nsd5FFE.tmp\biSetup17441.exe => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\7zS13F7\HPSLPSVC32.DLL => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\7092_6240\crl-set => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\7092_6240\manifest.fingerprint => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\7092_6240\manifest.json => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\6168_5152\crl-set => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\6168_5152\manifest.fingerprint => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\6168_5152\manifest.json => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\3544_25496\crl-set => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\3544_25496\manifest.fingerprint => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\3544_25496\manifest.json => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\1780_4589\crl-set => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\1780_4589\manifest.fingerprint => Moved successfully.
C:\Users\Martina\AppData\Local\Temp\1780_4589\manifest.json => Moved successfully.
Could not move "C:\Users\Martina\AppData\Local\Temp" directory. => Scheduled to move on reboot.
C:\Windows\Tasks\Firedive Downloader V9.0-chromeinstaller.job not found.
C:\Windows\Tasks\Firedive Downloader V9.0-codedownloader.job not found.
C:\Windows\Tasks\Firedive Downloader V9.0-enabler.job not found.
C:\Windows\Tasks\Firedive Downloader V9.0-firefoxinstaller.job not found.
C:\Windows\Tasks\Firedive Downloader V9.0-updater.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-03-27 22:00:13)<=
C:\Users\Martina\AppData\Local\Temp\etilqs_LccUcva9CZUV7qd => Is moved successfully.
C:\Users\Martina\AppData\Local\Temp\FXSAPIDebugLogFile.txt => Is moved successfully.
C:\Users\Martina\AppData\Local\Temp\~DF5397FCF48A08B15C.TMP => Is moved successfully.
C:\Users\Martina\AppData\Local\Temp => Moved successfully.
==== End of Fixlog ====
-
Rudy
- Site Admin
- Příspěvky: 119535
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Seká se notebook
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Seká se notebook
Tak to nastala je to mnohem lepší.Moc díky .Jenom se chci zeptat ,když se náhodou stane,jestli můžu hned mazat položky ,které mi hodí eset do karantény.A to už bude vše.
-
Rudy
- Site Admin
- Příspěvky: 119535
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Seká se notebook
Karanténu AV lze mazat kdykoli. Pokud tam soubory ponecháte, nebudou nebezpečné, adresář karantény má zvláštní režim, v němž jakýkoli soubor tam uložený, nelze spustit. Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Seká se notebook
A ještě něco čím smažu všechny ty FRST soubory a logy?
-
Rudy
- Site Admin
- Příspěvky: 119535
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Seká se notebook
Standardně smazáním do koše.Gina33 píše:A ještě něco čím smažu všechny ty FRST soubory a logy?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?