VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o pomoc, ak nejaká je...

https://forum.viry.cz:443/viewtopic.php?t=137700

Stránka 1 z 2

Prosím o pomoc, ak nejaká je...

Napsal: 28 dub 2014 14:41
od jacho6380
Dobry den, dostal sa mi od kamaratovho syna notebook do ruky a je neskutocne zahadzany bordrlom, boot trva asi 5 minuz, AVG mi nasiel jeden vir ktory sa mi podarilo odinstalovat ale je to aj tak hroza. V ovladacich paneloch v programoch a sucastiach sa nednic odinstalovat lebo tam zobrazuje len 8 systemovych veci a ostatne cop je nainstalovane nieje vidiet ani cez cc cleaner
prikladam log

Logfile of random's system information tool 1.08 (written by random/random)
Run by Lenovo at 2014-04-27 15:25:48
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 388 GB (81%) free of 477 GB
Total RAM: 3662 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:29:23, on 27. 4. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal

Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\1.3.25.203\CatalinaCrashHandler.exe
C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\8hbrmon.exe
C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\8hSrchMn.exe
C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
C:\Program Files (x86)\Iminent\Iminent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Iminent\Iminent.Messengers.exe
C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
C:\Windows\SysWOW64\WScript.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera_crashreporter.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files\trend micro\Lenovo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.tb.ask.com/index.jhtml?n=77 ... AD1F198781
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dogpile.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} - C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\8hSrcAs.dll
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ScorpionSaver - {10AD2C61-0898-4348-8600-14A342F22AC3} - C:\Program Files (x86)\ScorpionSaver\IECore.dll
O2 - BHO: BetterSrf - {1824FF90-C98E-48A6-838F-E3B6572B0C77} - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ie\BetterSrf.dll
O2 - BHO: MediaViewerV1alpha620 - {269946d6-86ed-41b2-b587-a6ce72b7ec99} - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha620\ie\MediaViewerV1alpha620.dll
O2 - BHO: Movies Toolbar (Dist. by Bandoo Media, Inc.) - {3d86a75b-cb6b-4764-885d-ca6336f04ba2} - C:\PROGRA~2\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll
O2 - BHO: MediaBuzzV1mode2066 - {537e5bc8-460c-4298-bfba-1a553d361dd5} - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ie\MediaBuzzV1mode2066.dll
O2 - BHO: MediaViewV1alpha3973 - {573f9e29-f450-407e-8a12-805be4f0947e} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3973\ie\MediaViewV1alpha3973.dll
O2 - BHO: MediaViewV1alpha5731 - {6e8600a4-b509-4b92-a6f4-3bb3a3c1ea6d} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha5731\ie\MediaViewV1alpha5731.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: MediaWatchV1home567 - {7df9fe8e-2468-43e1-8889-9d1078381147} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home567\ie\MediaWatchV1home567.dll
O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O2 - BHO: WebexpEnhancedV1alpha976 - {a21ae159-55fe-46a2-b529-3ddd8dc80fdc} - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha976\ie\WebexpEnhancedV1alpha976.dll
O2 - BHO: Search Assistant BHO - {a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} - C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\8hSrcAs.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: VideoPlayerV3beta33 - {ca9b5875-3bd3-4da3-8261-2388d26a1a91} - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta33\ie\VideoPlayerV3beta33.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.8.28.2\bh\Softonic.dll
O2 - BHO: MediaPlayerV1alpha434 - {f19b1f16-aae9-4c8c-8405-648c7aa15014} - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha434\ie\MediaPlayerV1alpha434.dll
O2 - BHO: Toolbar BHO - {fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} - C:\PROGRA~2\ALLIN1~1\bar\3.bin\8hbar.dll
O3 - Toolbar: Allin1Convert - {cd1a63ba-a08c-431b-9a34-f240aadc728d} - C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\8hbar.dll
O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.8.28.2\SoftonicTlbr.dll
O3 - Toolbar: Movies Toolbar (Dist. by Bandoo Media, Inc.) - {3d86a75b-cb6b-4764-885d-ca6336f04ba2} - C:\PROGRA~2\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll
O3 - Toolbar: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Allin1Convert_8h Browser Plugin Loader] C:\PROGRA~2\ALLIN1~1\bar\3.bin\8hbrmon.exe
O4 - HKLM\..\Run: [Allin1Convert Search Scope Monitor] "C:\PROGRA~2\ALLIN1~1\bar\3.bin\8hsrchmn.exe" /m=2 /w /h
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [Iminent] C:\Program Files (x86)\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"
O4 - HKLM\..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"
O4 - HKLM\..\Run: [MSHostSrv] C:\Windows\inf\cssi.vbe
O4 - HKLM\..\Run: [mncqnmptpSrv] C:\Windows\system32\mncqnmptp.vbe
O4 - HKLM\..\Run: [mncvupjmlSrv] C:\Windows\system32\mncvupjml.vbe
O4 - HKLM\..\Run: [Printsrv] c:\Windows\System32\Printing_Admin_Scripts\en-US\driverupd.vbs
O4 - HKLM\..\Run: [MSStp] C:\Windows\inf\msstp.vbe
O4 - HKLM\..\Run: [mncsiqaSrv] C:\Windows\system32\mncsiqa.vbe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iLivid] "C:\Users\Lenovo\AppData\Local\iLivid\iLivid.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_332B101ED56858E0765C41199BCD4350] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [CatalinaGroup Update] "C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe" /c
O4 - HKCU\..\Run: [iMesh] "C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe" --lightmode
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-825478306-3476294081-1402375209-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-825478306-3476294081-1402375209-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.0.0\ViProtocol.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Allin1ConvertService (Allin1Convert_8hService) - COMPANYVERS_NAME - C:\PROGRA~2\ALLIN1~1\bar\3.bin\8hbarsvc.exe
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: Datamngr Coordinator (DatamngrCoordinator) - iMesh Inc - C:\Program Files (x86)\Music Toolbar\Datamngr\DatamngrCoordinator.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Level Quality Watcher - Unknown owner - C:\Program Files\Level Quality Watcher\v1.01\levelqualitywatcher64.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SProtection - Iminent - C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: ValBioService - Validity Sensors, Inc. - C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe
O23 - Service: Validity WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\Windows\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater18.0.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Mobile Broadband Service (WMCoreService) - Ericsson AB - C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 20308 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-95194822-af94-4d5a-95f2-ea5f35bf27c1 -SystemEventPortName:HostProcess-5ef53674-c0fa-445c-b1b9-7d8c0d5ef051 -IoCancelEventPortName:HostProcess-373a6aae-e36a-45ac-8c1f-8a5d2203ea11 -NonStateChangingEventPortName:HostProcess-e2dfe8e7-9ca8-4226-9f43-8309fb3f90b4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6eed646b-b737-4506-8ec7-6f2f33b63948 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 25664592
\??\C:\Windows\system32\conhost.exe "-1017825208349854108946740231854104059-1068524485-1723308421-1860245415-1865852779
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\PROGRA~2\ALLIN1~1\bar\3.bin\8hbarsvc.exe
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Music Toolbar\Datamngr\DatamngrCoordinator.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Music Toolbar\Datamngr\DatamngrCoordinator.exe" -monitor 452
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Level Quality Watcher\v1.01\levelqualitywatcher64.exe" run options=01110010000000000000000000000000 sourceguid=6FDCD233----
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe"
C:\Windows\system32\valWBFPolicyService.exe
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe"
"C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe" servicemode
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\loggingserver.exe" 72648 "C:\ProgramData\AVG Secure Search\Logger\logger.properties"
\??\C:\Windows\system32\conhost.exe "5976219551486592414113051523-655253700651456675-12633658202074105392-1959349531
C:\PROGRA~1\LENOVO\HOTKEY\tpnumlk.exe
C:\Windows\Explorer.EXE
"C:\Windows\system32\Dwm.exe"
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-131929691617505706751232738680-1599267293-637066584986695822-455575374-1234683810
"C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe"
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
C:\PROGRA~1\LENOVO\HOTKEY\tpnumlkd.exe
"C:\Program Files\Lenovo Fingerprint Reader\SwipeMonitor.exe" ytidilav
\??\C:\Windows\system32\conhost.exe "-871044371-1823785352-15122644031697786641-913717055631328841332821880934090620
"taskhost.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"
"C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\AppIntegrator64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\1.3.25.203\CatalinaCrashHandler.exe" /crashhandler
"C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe" --lightmode
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\8hbrmon.exe"
"C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\8hSrchMn.exe" /m=2 /w /h
"C:\Program Files (x86)\Music Toolbar\Datamngr\DatamngrUI.exe"
"C:\Program Files (x86)\Mobogenie\DaemonProcess.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Iminent\Iminent.exe" /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5380.0.909387146\1291726738" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,28 --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Iminent\Iminent.Messengers.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"
"C:\Windows\System32\WScript.exe" "C:\Windows\inf\msstp.vbe"
"C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe" -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Control/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_58/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/UMAStability/SeparateLog/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="5380.2.1881117831\1374230500" /prefetch:673131151
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
taskeng.exe {41EC1CD7-9A9E-440F-B815-B59529409C2A}
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Control/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_58/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/UMAStability/SeparateLog/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="5380.4.449988428\1623871518" /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe" -Embedding
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
C:\Windows\system32\msiexec.exe /V
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --ran-launcher /crash-reporter-parent-id=3272
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --type=gpu-process --channel="3272.0.131853908\812536951" --crash-reporter-pid=7792 --disable-image-transport-surface --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,27 --reduce-gpu-sandbox --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --crash-reporter-pid=7792 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --enable-threaded-compositing --enable-deadline-scheduling --extension-process --disable-client-side-phishing-detection --disable-delegated-renderer --crash-reporter-pid=7792 --channel="3272.2.684419333\476687376" /prefetch:673131151
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --enable-threaded-compositing --enable-deadline-scheduling --disable-client-side-phishing-detection --enable-ignore-autocomplete-off --disable-delegated-renderer --crash-reporter-pid=7792 --channel="3272.4.1062779050\2010912383" /prefetch:673131151
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --enable-threaded-compositing --enable-deadline-scheduling --disable-client-side-phishing-detection --enable-ignore-autocomplete-off --disable-delegated-renderer --crash-reporter-pid=7792 --channel="3272.10.581228726\1786632608" /prefetch:673131151
"C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgfws.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgemca.exe"
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=19c68061-fd39-446b-be57-be7fba32dc79 /coreSdkOptions=4126 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\5bd1d34a-09f9-4030-9a93-bf18f5ba1312-18c4-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\"
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=a309c352-da0c-455e-86be-385440fcef2f /coreSdkOptions=4114 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\309e6e29-7d65-4e4e-8db2-0e08e5394a0a-11fc-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\"
"C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY /updatefinished
C:\Windows\system32\AUDIODG.EXE 0x9e4
"C:\Users\Lenovo\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000Core.job
C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Torntv V6.0-chromeinstaller.job
C:\Windows\tasks\Torntv V6.0-updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-06 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-11-20 6270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-06 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10AD2C61-0898-4348-8600-14A342F22AC3}]
ScorpionSaver - C:\Program Files (x86)\ScorpionSaver\IECore.dll [2013-12-02 87560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1824FF90-C98E-48A6-838F-E3B6572B0C77}]
Better Surf Plus - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ie\BetterSrf.dll [2013-12-09 86528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{269946d6-86ed-41b2-b587-a6ce72b7ec99}]
Media Viewer - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha620\ie\MediaViewerV1alpha620.dll [2014-02-23 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3d86a75b-cb6b-4764-885d-ca6336f04ba2}]
Movies Toolbar (Dist. by Bandoo Media, Inc.) - C:\PROGRA~2\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll [2013-08-20 92560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{537e5bc8-460c-4298-bfba-1a553d361dd5}]
Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ie\MediaBuzzV1mode2066.dll [2014-04-23 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{573f9e29-f450-407e-8a12-805be4f0947e}]
Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3973\ie\MediaViewV1alpha3973.dll [2014-02-27 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6e8600a4-b509-4b92-a6f4-3bb3a3c1ea6d}]
Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha5731\ie\MediaViewV1alpha5731.dll [2014-02-27 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7df9fe8e-2468-43e1-8889-9d1078381147}]
Media Watch - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home567\ie\MediaWatchV1home567.dll [2014-03-20 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a21ae159-55fe-46a2-b529-3ddd8dc80fdc}]
Webexp Enhanced - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha976\ie\WebexpEnhancedV1alpha976.dll [2013-12-19 87552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797}]
Search Assistant BHO - C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\8hSrcAs.dll [2013-11-20 62864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2013-11-20 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ca9b5875-3bd3-4da3-8261-2388d26a1a91}]
Video Player - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta33\ie\VideoPlayerV3beta33.dll [2014-01-07 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}]
Softonic Helper Object - C:\Program Files (x86)\Softonic\Softonic\1.8.28.2\bh\Softonic.dll [2013-11-12 273920]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f19b1f16-aae9-4c8c-8405-648c7aa15014}]
Media Player - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha434\ie\MediaPlayerV1alpha434.dll [2014-01-28 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d}]
Toolbar BHO - C:\PROGRA~2\ALLIN1~1\bar\3.bin\8hbar.dll [2013-11-20 716360]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{cd1a63ba-a08c-431b-9a34-f240aadc728d} - Allin1Convert - C:\Program Files (x86)\Allin1Convert_8h\bar\3.bin\8hbar.dll [2013-11-20 716360]
{5018CFD2-804D-4C99-9F81-25EAEA2769DE} - Softonic Toolbar - C:\Program Files (x86)\Softonic\Softonic\1.8.28.2\SoftonicTlbr.dll [2013-11-12 290816]
{3d86a75b-cb6b-4764-885d-ca6336f04ba2} - Movies Toolbar (Dist. by Bandoo Media, Inc.) - C:\PROGRA~2\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll [2013-08-20 92560]
{95B7759C-8C7F-4BF1-B163-73684A933233}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"BLEServicesCtrl"=C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-05-31 184112]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-06-18 11586944]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-26 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-26 441152]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2012-08-23 4805936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-02-11 3015408]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-11-08 1028384]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2013-11-08 1064224]
"Allin1Convert Home Page Guard 64 bit"=C:\PROGRA~2\ALLIN1~1\bar\3.bin\AppIntegrator64.exe [2013-11-20 548936]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-07-03 3673184]
"iLivid"=C:\Users\Lenovo\AppData\Local\iLivid\iLivid.exe -autorun []
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2014-01-07 1815464]
"GoogleChromeAutoLaunch_332B101ED56858E0765C41199BCD4350"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-04-02 841032]
"CatalinaGroup Update"=C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-01-05 147440]
"iMesh"=C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe [2013-11-21 31010816]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2013\avgui.exe [2014-01-21 4411952]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-08-31 508144]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-21 291648]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2013-03-12 548864]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"Allin1Convert_8h Browser Plugin Loader"=C:\PROGRA~2\ALLIN1~1\bar\3.bin\8hbrmon.exe [2013-11-20 30096]
"Allin1Convert Search Scope Monitor"=C:\PROGRA~2\ALLIN1~1\bar\3.bin\8hsrchmn.exe [2013-11-20 44784]
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [2013-11-21 747712]
"Iminent"=C:\Program Files (x86)\Iminent\Iminent.exe [2013-11-17 1074736]
"IminentMessenger"=C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [2013-11-17 884784]
"vProt"=C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2014-03-04 2539544]
"MSHostSrv"=C:\Windows\inf\cssi.vbe [2014-01-12 2334]
"mncqnmptpSrv"=C:\Windows\system32\mncqnmptp.vbe []
"mncvupjmlSrv"=C:\Windows\system32\mncvupjml.vbe []
"Printsrv"=c:\Windows\System32\Printing_Admin_Scripts\en-US\driverupd.vbs []
"MSStp"=C:\Windows\inf\msstp.vbe [2014-03-05 1584]
"mncsiqaSrv"=C:\Windows\system32\mncsiqa.vbe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-25 441856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-04-27 15:25:49 ----D---- C:\Program Files\trend micro
2014-04-27 15:25:48 ----D---- C:\rsit
2014-04-27 15:11:35 ----D---- C:\ProgramData\2340
2014-04-26 17:00:07 ----D---- C:\Program Files\CCleaner
2014-04-25 13:47:47 ----A---- C:\Windows\system32\drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys
2014-04-25 13:14:15 ----D---- C:\Program Files (x86)\MediaBuzzV1
2014-04-24 17:01:04 ----A---- C:\Windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2014-04-23 17:58:41 ----D---- C:\Users\Lenovo\AppData\Roaming\glister
2014-04-15 13:35:26 ----A---- C:\Windows\system32\drivers\avgtdia.sys
2014-04-07 15:21:14 ----D---- C:\ProgramData\Datamngr
2014-04-06 01:13:35 ----A---- C:\Windows\system32\javaws.exe
2014-04-06 01:13:10 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2014-04-06 01:13:09 ----A---- C:\Windows\system32\javaw.exe
2014-04-06 01:13:08 ----A---- C:\Windows\system32\java.exe
2014-04-06 01:12:44 ----D---- C:\Program Files\Java
2014-04-05 10:55:28 ----D---- C:\Users\Lenovo\AppData\Roaming\MusicNet
2014-04-05 10:54:55 ----D---- C:\Program Files (x86)\iMesh Applications
2014-04-05 10:53:40 ----D---- C:\Program Files (x86)\Music Toolbar
2014-04-05 10:45:01 ----D---- C:\Program Files (x86)\InstallConverter
2014-04-05 10:44:40 ----D---- C:\Program Files (x86)\InstallConverter bundle uninstaller
2014-03-31 14:09:19 ----D---- C:\Users\Lenovo\AppData\Roaming\ftblauncher
2014-03-28 21:39:16 ----AS---- C:\Windows\SYSWOW64\lcpmncvupjml.exe
2014-03-28 21:39:16 ----AS---- C:\Windows\SYSWOW64\dcgmncvupjml.exe
2014-03-28 21:39:16 ----AS---- C:\Windows\SYSWOW64\acumncvupjml.exe
2014-03-28 21:39:15 ----D---- C:\Program Files (x86)\Minecraft 1.7.2 warez Launcher
2014-03-28 20:38:24 ----AS---- C:\Windows\SYSWOW64\lcpmncqnmptp.exe
2014-03-28 20:38:24 ----AS---- C:\Windows\SYSWOW64\dcgmncqnmptp.exe
2014-03-28 20:38:23 ----AS---- C:\Windows\SYSWOW64\acumncqnmptp.exe
2014-03-28 20:38:22 ----D---- C:\Program Files (x86)\MINECRAFT 1 7 2 plna hra zdarma
2014-03-28 20:03:14 ----D---- C:\Users\Lenovo\AppData\Roaming\skyz
2014-03-28 20:02:41 ----D---- C:\Minecraft_Backup

======List of files/folders modified in the last 1 months======

2014-04-27 15:27:42 ----D---- C:\Windows\Temp
2014-04-27 15:25:49 ----RD---- C:\Program Files
2014-04-27 15:24:35 ----SHD---- C:\Windows\Installer
2014-04-27 15:24:15 ----D---- C:\ProgramData\MFAData
2014-04-27 15:23:20 ----D---- C:\Windows\system32\drivers
2014-04-27 15:13:22 ----D---- C:\Program Files (x86)\Steam
2014-04-27 15:11:35 ----HD---- C:\ProgramData
2014-04-27 15:11:10 ----A---- C:\Windows\SYSWOW64\log.txt
2014-04-27 15:08:38 ----D---- C:\ProgramData\NVIDIA
2014-04-27 15:08:07 ----D---- C:\Windows\system32\config
2014-04-27 15:06:45 ----D---- C:\Windows\winsxs
2014-04-27 15:06:29 ----D---- C:\Windows\SYSWOW64\en-US
2014-04-27 15:06:28 ----D---- C:\Windows\system32\en-US
2014-04-27 15:06:27 ----D---- C:\Windows\SysWOW64
2014-04-27 15:06:26 ----D---- C:\Windows\System32
2014-04-27 15:06:26 ----D---- C:\Windows\AppPatch
2014-04-27 15:06:23 ----D---- C:\Windows\SYSWOW64\drivers
2014-04-27 15:06:23 ----D---- C:\Windows\system32\DriverStore
2014-04-26 17:08:49 ----RD---- C:\Program Files (x86)
2014-04-26 17:00:10 ----D---- C:\Windows\system32\Tasks
2014-04-26 16:53:29 ----SHD---- C:\System Volume Information
2014-04-26 16:45:26 ----D---- C:\Windows\SYSWOW64\NV
2014-04-26 16:45:25 ----D---- C:\Windows\system32\NV
2014-04-25 21:26:05 ----D---- C:\Program Files (x86)\Counter-Strike 1.6 Standalone
2014-04-25 13:15:34 ----A---- C:\extensions.ini
2014-04-25 13:10:22 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-04-25 13:10:22 ----D---- C:\Program Files\Internet Explorer
2014-04-25 13:10:20 ----D---- C:\Windows\system32\sk-SK
2014-04-25 13:10:20 ----D---- C:\Windows\PolicyDefinitions
2014-04-25 13:10:16 ----D---- C:\Program Files (x86)\Internet Explorer
2014-04-24 23:13:48 ----D---- C:\Windows\system32\NDF
2014-04-24 20:04:13 ----D---- C:\Windows
2014-04-24 20:02:03 ----D---- C:\Windows\inf
2014-04-24 19:54:48 ----D---- C:\temp
2014-04-24 19:50:17 ----D---- C:\Program Files\ScorpionSaver Services
2014-04-24 16:59:04 ----D---- C:\Program Files (x86)\Common Files
2014-04-21 20:38:39 ----D---- C:\Users\Lenovo\AppData\Roaming\.minecraft
2014-04-21 15:01:51 ----A---- C:\Windows\win.ini
2014-04-21 14:47:29 ----D---- C:\Windows\system32\catroot2
2014-04-16 18:44:26 ----D---- C:\Users\Lenovo\AppData\Roaming\Skype
2014-04-12 11:28:28 ----D---- C:\Windows\system32\catroot
2014-04-12 11:27:18 ----D---- C:\ProgramData\Microsoft Help
2014-04-12 11:22:03 ----D---- C:\Windows\system32\MRT
2014-04-12 11:21:53 ----A---- C:\Windows\system32\MRT.exe
2014-04-06 14:33:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-04-06 14:31:24 ----D---- C:\Program Files (x86)\Minecraft 1.4.7
2014-04-06 14:31:23 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-04-03 18:59:33 ----D---- C:\Program Files (x86)\Opera
2014-03-28 21:51:59 ----AD---- C:\Windows\bitstreams
2014-03-28 21:19:41 ----D---- C:\Windows\Prefetch
2014-03-28 21:16:39 ----RD---- C:\Program Files (x86)\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-07-20 71480]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-07-20 311608]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-07-01 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-10-23 45880]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-21 19264]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-10-23 32544]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-07-04 564824]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2012-09-04 50296]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-11-25 246072]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-07-20 206648]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2014-04-15 240952]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2014-03-04 50976]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-07-04 283064]
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222;F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Music Toolbar\Datamngr\x64\setmgrc1.cfg [2014-04-06 36248]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2012-07-18 198144]
R3 BCM43XX;Broadcom 802.11 - ovládač sieťového adaptéru; C:\Windows\system32\DRIVERS\bcmwl664.sys [2013-07-03 6059112]
R3 btwsecfl;Bluetooth USB Security Filter; C:\Windows\system32\drivers\btwsecfl.sys [2012-09-19 72056]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\Windows\System32\Drivers\btwusb.sys [2012-10-18 62840]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-09-20 1609376]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2013-09-05 54528]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-25 9000256]
R3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-21 357184]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-21 789824]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-09-28 39200]
R3 RSP2STOR;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2013-05-16 288840]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-06-13 726160]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-02-11 31984]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-02-11 469232]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2013-03-01 1045248]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2012-07-18 198144]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 Allin1Convert_8hService;Allin1ConvertService; C:\PROGRA~2\ALLIN1~1\bar\3.bin\8hbarsvc.exe [2013-11-20 44752]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-07-18 659472]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [2013-10-23 1432080]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-06-18 1095616]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-06-18 1333184]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-06-18 1124288]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-08-23 135984]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-03-03 1363584]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-03-03 1748608]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DatamngrCoordinator;Datamngr Coordinator; C:\Program Files (x86)\Music Toolbar\Datamngr\DatamngrCoordinator.exe [2014-04-06 3544088]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-08-23 629040]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2013-09-05 66344]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-19 634632]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-20 129856]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-20 166720]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2013-04-19 127072]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-10 136288]
R2 Level Quality Watcher;Level Quality Watcher; C:\Program Files\Level Quality Watcher\v1.01\levelqualitywatcher64.exe [2013-12-10 513528]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-20 277824]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-11-08 15125280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-23 922912]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-11-08 1914656]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-08-23 149296]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2013-04-19 145808]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2013-04-19 125504]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-20 365376]
R2 ValBioService;ValBioService; C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe [2013-03-19 23600]
R2 valWBFPolicyService;Validity WBF Policy Service; C:\Windows\system32\valWBFPolicyService.exe [2013-03-19 28160]
R2 vToolbarUpdater18.0.0;vToolbarUpdater18.0.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe [2014-03-04 1759768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-06-08 201376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-30 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S2 SProtection;SProtection; C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe [2014-03-27 2931008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12 257928]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-26 276288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-30 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-08-23 272688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-01-07 569768]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-07-04 1255736]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Re: Prosím o pomoc, ak nejaká je...

Napsal: 28 dub 2014 14:45
od vyosek
Zdravim :)

:arrow: Ta verze windows Ultimate je legalni?? Tohle nejsou zcela bezne domaci verze :?:

Re: Prosím o pomoc, ak nejaká je...

Napsal: 28 dub 2014 14:51
od jacho6380
Ano, je to windows kupovany na moju firmu Michal Vincek - MobiCom, licencia na 5 PC

Re: Prosím o pomoc, ak nejaká je...

Napsal: 28 dub 2014 14:52
od vyosek
:arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Re: Prosím o pomoc, ak nejaká je...

Napsal: 28 dub 2014 18:14
od jacho6380
Tak ten prvy program chvilu nieco robil, potom si vypytal restart a po restarte iba tmava obrazovka prikazoveho riadku a nic ani ziadny log

z druheho programu prikladam log:

# AdwCleaner v3.204 - Report created 28/04/2014 at 17:15:43
# Updated 26/04/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Lenovo - LENOVO-PC
# Running from : C:\Users\Lenovo\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : Allin1Convert_8hService
[#] Service Deleted : DatamngrCoordinator
Service Deleted : Level Quality Watcher
[#] Service Deleted : SProtection

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\Allin1Convert_8h
Folder Deleted : C:\Program Files (x86)\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files (x86)\BetterSurf
Folder Deleted : C:\Program Files (x86)\Better-Surf
Folder Deleted : C:\Program Files (x86)\iMesh Applications
Folder Deleted : C:\Program Files (x86)\Iminent
Folder Deleted : C:\Program Files (x86)\Level Quality Watcher
Folder Deleted : C:\Program Files (x86)\MediaPlayerV1
Folder Deleted : C:\Program Files (x86)\MediaViewerV1
Folder Deleted : C:\Program Files (x86)\MediaViewV1
Folder Deleted : C:\Program Files (x86)\MediaWatchV1
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\Movies Toolbar
[!] Folder Deleted : C:\Program Files (x86)\Music Toolbar
Folder Deleted : C:\Program Files (x86)\ScorpionSaver
Folder Deleted : C:\Program Files (x86)\SecretSauce
Folder Deleted : C:\Program Files (x86)\Softonic
Folder Deleted : C:\Program Files (x86)\TornTV.com
Folder Deleted : C:\Program Files (x86)\VideoPlayerV3
Folder Deleted : C:\Program Files (x86)\WebexpEnhancedV1
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Common Files\Umbrella
Folder Deleted : C:\Program Files\Level Quality Watcher
Folder Deleted : C:\Program Files\ScorpionSaver Services
Folder Deleted : C:\Users\Lenovo\.android
[!] Folder Deleted : C:\Users\Lenovo\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Lenovo\AppData\Local\b1e
Folder Deleted : C:\Users\Lenovo\AppData\Local\iLivid
Folder Deleted : C:\Users\Lenovo\AppData\Local\ilividmoviestoolbarha
Folder Deleted : C:\Users\Lenovo\AppData\Local\iMesh
Folder Deleted : C:\Users\Lenovo\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Lenovo\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Lenovo\AppData\Local\Temp\Iminent
Folder Deleted : C:\Users\Lenovo\AppData\Local\Temp\mt_ffx
Folder Deleted : C:\Users\Lenovo\AppData\LocalLow\Allin1Convert_8h
Folder Deleted : C:\Users\Lenovo\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Lenovo\AppData\LocalLow\ilividmoviestoolbarha
Folder Deleted : C:\Users\Lenovo\AppData\LocalLow\searchresultstb
Folder Deleted : C:\Users\Lenovo\AppData\LocalLow\Softonic
Folder Deleted : C:\Users\Lenovo\AppData\Roaming\Iminent
Folder Deleted : C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Deleted : C:\Users\Lenovo\Documents\Mobogenie
Folder Deleted : C:\Users\wangjihua\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob
Folder Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
Folder Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmhfbmpdiffkamakhdbcgojfnbnlcenm
Folder Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oclgomenfkljhfkfflghppidonpkljjg
Folder Deleted : C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco
File Deleted : C:\Windows\SysWOW64\AdpeakProxy.ini
File Deleted : C:\Windows\SysWOW64\AdpeakProxyOff.ini
File Deleted : C:\Windows\System32\AdpeakProxy.ini
File Deleted : C:\Windows\System32\AdpeakProxy64.dll
File Deleted : C:\Windows\System32\AdpeakProxyOff.ini
File Deleted : C:\Users\Lenovo\daemonprocess.txt
File Deleted : C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk
File Deleted : C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iMesh.lnk

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [ext@bettersurfplus.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
Key Deleted : HKCU\Software\Google\Chrome\Extensions\hmhfbmpdiffkamakhdbcgojfnbnlcenm
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hmhfbmpdiffkamakhdbcgojfnbnlcenm
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\poheodfamflhhhdcmjfeggbgigeefaco
Key Deleted : HKCU\Software\Classes\iLivid.torrent
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid]
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.dynamicbarbutton
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.dynamicbarbutton.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.feedmanager
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.feedmanager.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.htmlmenu
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.htmlmenu.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.htmlpanel
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.htmlpanel.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.multiplebutton
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.multiplebutton.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.pseudotransparentplugin
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.pseudotransparentplugin.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.radio
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.radio.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.radiosettings
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.radiosettings.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.scriptbutton
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.scriptbutton.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.settingsplugin
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.settingsplugin.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.skinlauncher
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.skinlauncher.1
Key Deleted : HKLM\SOFTWARE\Classes\Allin1Convert_8h.SkinLauncherSettings
Key Deleted : HKLM\SOFTWARE\Classes\Allin1Convert_8h.SkinLauncherSettings.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.thirdpartyinstaller
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.thirdpartyinstaller.1
Key Deleted : HKLM\SOFTWARE\Classes\Allin1Convert_8h.ToolbarProtector
Key Deleted : HKLM\SOFTWARE\Classes\Allin1Convert_8h.ToolbarProtector.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.urlalertbutton
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.urlalertbutton.1
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.xmlsessionplugin
Key Deleted : HKLM\SOFTWARE\Classes\allin1convert_8h.xmlsessionplugin.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DiscoveryHelper.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GIFAnimator.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\iMesh.exe
Key Deleted : HKLM\SOFTWARE\Classes\AppID\IMTrProgress.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\IMWeb.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Launcher.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL
Key Deleted : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery
Key Deleted : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery.1
Key Deleted : HKLM\SOFTWARE\Classes\iLivid.torrent
Key Deleted : HKLM\SOFTWARE\Classes\iMesh.AudioCD
Key Deleted : HKLM\SOFTWARE\Classes\iMesh.Device
Key Deleted : HKLM\SOFTWARE\Classes\iMesh.file
Key Deleted : HKLM\SOFTWARE\Classes\Iminent
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
Key Deleted : HKLM\SOFTWARE\Classes\imweb.imwebcontrol
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMPlayCDAudioOnArrival
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMRipCDAudioOnArrival
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMShowCDAudioOnArrival
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMShowVolumeOnArrival
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@Allin1Convert_8h.com/Plugin
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FC41815-FA4C-4F8B-B143-2C045C8EA2FC}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{969D2C61-9B16-407C-86B7-397BF4579BE6}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A7DDCBDE-5C86-415C-8A37-763AE183E7E4}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10AD2C61-0898-4348-8600-14A342F22AC3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1604FC43-3A1E-4C6B-850D-70C8A858C61A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1824FF90-C98E-48A6-838F-E3B6572B0C77}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{248B3E95-17A4-482D-A8A8-6B3DF4D05C35}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{250B71CD-97CA-40A5-834F-265719A62CAF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27F49273-DE3A-4111-90F9-6C474C37AEFB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{39D4F1A1-A94D-4B7D-BF1D-7446308800ED}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{443321F7-E46C-42F8-812B-F35E98CBB44F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{474597C5-AB09-49D6-A4D5-2E8D7341384E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5CDE4714-32DC-473C-8194-0645E62C2E96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7CAEFAFC-9A1E-4BCC-94DD-BC7D8D52717A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7EB7381C-FB01-47FC-9C42-ED64122C1B92}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{889F49D2-6CEA-40BE-BE5F-7217485F9745}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8F83D657-5993-4FFA-9AEE-DA0B20D828A7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{950F80EF-32C2-47DD-9C35-9576E21EE66E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AF60F89A-4645-4381-8C7F-B8FEAB385445}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B6F8DA9F-2696-419E-A8A3-19BE41EF51BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C8EF8F70-3807-424A-83F7-DA06FD4DACF9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD1A63BA-A08C-431B-9A34-F240AADC728D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE0F6787-9D1C-42B7-A0B9-EAC630F87902}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E4EF697F-434B-4DC7-A464-4412462206DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF3F28C8-0330-4D18-B901-D24CB83E5AA1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF5DB804-585B-472E-B415-BC63F8F01BF6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F2C368C5-9F44-4D43-89F3-A1CC87F1DA96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F99DDD9A-07D0-47AB-86F1-193533DD2C60}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{53F6A516-3DCC-48F4-835C-6C670CB39CEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{69D3F709-9DE2-479F-980F-532D46895703}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{16976E15-10EA-44FD-804A-6ECBC9EBBFC7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2561FD25-FE31-4E56-A120-AF7FEAAE3124}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4BD0FCFF-AD64-4315-9F2C-960EF3C21623}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{507C73BB-FC69-425E-8A49-9204F886B328}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6EC57031-1740-4151-93C5-C465D6063DD2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{76FC1003-0825-48BD-B59B-3B7A5754972C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{969D2C61-9B16-407C-86B7-397BF4579BE6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99C22A61-21BA-4F81-85FF-CDC9EB5DB10B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9D217B94-6FC9-44FE-94B1-30C711871266}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A147AA03-820F-4A0F-9F34-D6CB4004A2F9}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B48AC2CD-9662-47E0-A3C0-3B01BB3F463E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BE698E51-830B-447A-954D-901D6E05DDE2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BEAA0C04-ED15-4C17-800B-28716025A4E4}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BFCF748F-A56E-451F-AA45-0D7EB699E416}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D09139AB-0ACB-4F22-B9AE-816E6838A814}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D617CF84-B0BC-441F-9984-B676AFBA1E8D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC96F516-51B2-4B46-8451-8665F5A6BA2B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F07FBD3E-2048-44A4-9065-71BF551E2672}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10AD2C61-0898-4348-8600-14A342F22AC3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1824FF90-C98E-48A6-838F-E3B6572B0C77}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10AD2C61-0898-4348-8600-14A342F22AC3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1824FF90-C98E-48A6-838F-E3B6572B0C77}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7CAEFAFC-9A1E-4BCC-94DD-BC7D8D52717A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CD1A63BA-A08C-431B-9A34-F240AADC728D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10AD2C61-0898-4348-8600-14A342F22AC3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1824FF90-C98E-48A6-838F-E3B6572B0C77}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{474597C5-AB09-49D6-A4D5-2E8D7341384E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CD1A63BA-A08C-431B-9A34-F240AADC728D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{27F49273-DE3A-4111-90F9-6C474C37AEFB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7CAEFAFC-9A1E-4BCC-94DD-BC7D8D52717A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7EB7381C-FB01-47FC-9C42-ED64122C1B92}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424C-BB9F-74C6899B9F92}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AF60F89A-4645-4381-8C7F-B8FEAB385445}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419E-A8A3-19BE41EF51BD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E4EF697F-434B-4DC7-A464-4412462206DB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F99DDD9A-07D0-47AB-86F1-193533DD2C60}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4E42-A125-57C0A11DBCDE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{248B3E95-17A4-482D-A8A8-6B3DF4D05C35}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{53F6A516-3DCC-48F4-835C-6C670CB39CEA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3D86A75B-CB6B-4764-885D-CA6336F04BA2}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{5018CFD2-804D-4C99-9F81-25EAEA2769DE}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{CD1A63BA-A08C-431B-9A34-F240AADC728D}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{2C353E32-B8AC-4B82-B988-4C2D3394388A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{474597C5-AB09-49D6-A4D5-2E8D7341384E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{950F80EF-32C2-47DD-9C35-9576E21EE66E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{53F6A516-3DCC-48F4-835C-6C670CB39CEA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{69D3F709-9DE2-479F-980F-532D46895703}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\Adpeak, Inc.
Key Deleted : HKCU\Software\allin1convert_8h
Key Deleted : HKCU\Software\APN DTX
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Imesh
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\ScorpionSaver
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\AppDataLow\Software\allin1convert_8h
Key Deleted : HKCU\Software\AppDataLow\Software\Scorpion Saver
Key Deleted : HKCU\Software\AppDataLow\Software\ScorpionSaver
Key Deleted : HKLM\Software\Adpeak, Inc.
Key Deleted : HKLM\Software\allin1convert_8h
Key Deleted : HKLM\Software\AVG SafeGuard toolbar
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\BetterSurf
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\Imesh
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\MediaPlayerV1
Key Deleted : HKLM\Software\MediaViewerV1
Key Deleted : HKLM\Software\MediaViewV1
Key Deleted : HKLM\Software\MediaWatchV1
Key Deleted : HKLM\Software\Softonic
Key Deleted : HKLM\Software\Umbrella
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\allin1convert_8hbar uninstall firefox
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Imesh
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic
Key Deleted : [x64] HKLM\SOFTWARE\Adpeak, Inc.
Key Deleted : [x64] HKLM\SOFTWARE\LevelQualityWatcher
Key Deleted : [x64] HKLM\SOFTWARE\Scorpion Saver
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6E810AB6-F34E-49A3-A93F-9E503660F718}
Key Deleted : HKLM\Software\Classes\Installer\Features\6BA018E6E43F3A949AF3E90563067F81
Key Deleted : HKLM\Software\Classes\Installer\Products\6BA018E6E43F3A949AF3E90563067F81

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]

*************************

AdwCleaner[R0].txt - [50554 octets] - [28/04/2014 17:15:04]
AdwCleaner[S0].txt - [49056 octets] - [28/04/2014 17:15:43]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [49117 octets] ##########

Re: Prosím o pomoc, ak nejaká je...

Napsal: 28 dub 2014 18:41
od vyosek
:arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: Prosím o pomoc, ak nejaká je...

Napsal: 28 dub 2014 19:45
od jacho6380
Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by Lenovo on po 28. 04. 2014 at 20:15:17,53.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Lenovo\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

28. 4. 2014 20:16:04 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\SearchScopes\{C36B9B53-1395-4B0A-B00D-3CE1BEEA9BE7} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a21ae159-55fe-46a2-b529-3ddd8dc80fdc} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a21ae159-55fe-46a2-b529-3ddd8dc80fdc} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ca9b5875-3bd3-4da3-8261-2388d26a1a91} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ca9b5875-3bd3-4da3-8261-2388d26a1a91} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{f19b1f16-aae9-4c8c-8405-648c7aa15014} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{f19b1f16-aae9-4c8c-8405-648c7aa15014} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{269946d6-86ed-41b2-b587-a6ce72b7ec99} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{269946d6-86ed-41b2-b587-a6ce72b7ec99} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{573f9e29-f450-407e-8a12-805be4f0947e} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{573f9e29-f450-407e-8a12-805be4f0947e} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e8600a4-b509-4b92-a6f4-3bb3a3c1ea6d} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6e8600a4-b509-4b92-a6f4-3bb3a3c1ea6d} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7df9fe8e-2468-43e1-8889-9d1078381147} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7df9fe8e-2468-43e1-8889-9d1078381147} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{a21ae159-55fe-46a2-b529-3ddd8dc80fdc} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a21ae159-55fe-46a2-b529-3ddd8dc80fdc} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ca9b5875-3bd3-4da3-8261-2388d26a1a91} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ca9b5875-3bd3-4da3-8261-2388d26a1a91} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{f19b1f16-aae9-4c8c-8405-648c7aa15014} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f19b1f16-aae9-4c8c-8405-648c7aa15014} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{269946d6-86ed-41b2-b587-a6ce72b7ec99} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{269946d6-86ed-41b2-b587-a6ce72b7ec99} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{573f9e29-f450-407e-8a12-805be4f0947e} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{573f9e29-f450-407e-8a12-805be4f0947e} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{6e8600a4-b509-4b92-a6f4-3bb3a3c1ea6d} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6e8600a4-b509-4b92-a6f4-3bb3a3c1ea6d} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{7df9fe8e-2468-43e1-8889-9d1078381147} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7df9fe8e-2468-43e1-8889-9d1078381147} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A88DE8D3-9C38-4F0D-8981-A4C17F7677A1} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{a21ae159-55fe-46a2-b529-3ddd8dc80fdc} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{ca9b5875-3bd3-4da3-8261-2388d26a1a91} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{f19b1f16-aae9-4c8c-8405-648c7aa15014} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{269946d6-86ed-41b2-b587-a6ce72b7ec99} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{573f9e29-f450-407e-8a12-805be4f0947e} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{6e8600a4-b509-4b92-a6f4-3bb3a3c1ea6d} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{7df9fe8e-2468-43e1-8889-9d1078381147} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{E87806B5-E908-45FD-AF5E-957D83E58E68} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{A88DE8D3-9C38-4F0D-8981-A4C17F7677A1} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{F051F6BF-82D9-49A7-9E6C-BA63CDB487D2} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{1824FF90-C98E-48A6-838F-E3B6572B0C77} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{474597C5-AB09-49D6-A4D5-2E8D7341384E} deleted successfully
HKEY_USERS\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\12x3q4@3244516.com deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@WebexpEnhancedV1alpha976.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@VideoPlayerV3beta33.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaPlayerV1alpha434.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaViewerV1alpha620.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaViewV1alpha3973.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaViewV1alpha5731.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaWatchV1home567.net deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.1.0 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater18.1.0 deleted successfully

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Torntv V6.0 deleted
C:\PROGRA~2\iVIDI.org plugin deleted
C:\PROGRA~2\Notificatoin deleted
C:\extensions.sqlite deleted
C:\extensions.ini deleted
C:\PROGRA~3\Datamngr deleted
C:\PROGRA~3\Wincert deleted
C:\PROGRA~3\Iminent deleted
C:\PROGRA~3\AVG Secure Search deleted
C:\PROGRA~3\AVG SafeGuard toolbar deleted
C:\Windows\Installer\{6E810AB6-F34E-49A3-A93F-9E503660F718} deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar deleted
C:\Windows\tasks\Torntv V6.0-chromeinstaller.job deleted
C:\Windows\tasks\Torntv V6.0-updater.job deleted
C:\windows\SysNative\tasks\Torntv V6.0-chromeinstaller deleted
C:\windows\SysNative\tasks\Torntv V6.0-updater deleted
C:\prefs.js deleted
C:\Users\wangjihua deleted
C:\Windows\Syswow64\InstallUtil.InstallLog deleted
"C:\Windows\Installer\8daedb.msi" deleted
"c:\Windows\Installer\612e3a.msi" deleted
"c:\Windows\Installer\2f15370.msi" deleted
"c:\Windows\Installer\9b6c6f.msi" deleted
"C:\Users\Lenovo\AppData\Roaming\zujEu" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"ext@MediaBuzzV1mode2066.net"="C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ff" [25. 04. 2014 13:14]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bcjakkfdcjlgakfalanjkiafoaolckhe - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home567\ch\MediaWatchV1home567.crx[]
chccmdmgeoiichmkbccdaoemnnhbdkph - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ch\MediaBuzzV1mode2066.crx[23. 04. 2014 21:33]
giacfgjdclhnmkacnfbaljbmpnelflol - C:\Program Files (x86)\iVIDI.org plugin\ividiplg.crx[]
imomfglhofcbdgljeaicbnnojjddnkfg - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha976\ch\WebexpEnhancedV1alpha976.crx[]
jegpendoohnjpfealgfpjofajggbifag - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3973\ch\MediaViewV1alpha3973.crx[]
kehljoocmkefibhlmkllehkgmlpjfdae - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta33\ch\VideoPlayerV3beta33.crx[]
lcdlaojlfiebjnpblnifagokphfjgcdn - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha5731\ch\MediaViewV1alpha5731.crx[]
lekbgnbpdipfikibajfmkijbolhkplhp - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha620\ch\MediaViewerV1alpha620.crx[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[03. 03. 2014 10:53]
mmifolfpllfdhilecpdpmemhelmanajl - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ch\BetterSurfPlus.crx[]

Save to 4shared - Lenovo\AppData\Local\CatalinaGroup\Citrio\User Data\Default\Extensions\adnkagodbfngmdajbbocegjnllfmdaie
Downloads - Lenovo\AppData\Local\CatalinaGroup\Citrio\User Data\Default\Extensions\dcagnhpbnggmbihndfkkhfjojgbaaedo
Proxy - Lenovo\AppData\Local\CatalinaGroup\Citrio\User Data\Default\Extensions\hpofinfdicogoakggciidggcikhgklcj
Branding - Lenovo\AppData\Local\CatalinaGroup\Citrio\User Data\Default\Extensions\oocjgdbfocddoflggljlfmpapfiiccak
Torntv V6.0 - Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\ahmilhmcinpmpohfoiccaplbhgelbnim
Media Watch - Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\bcjakkfdcjlgakfalanjkiafoaolckhe
Media Buzz - Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\chccmdmgeoiichmkbccdaoemnnhbdkph
iVIDI.org plugin - Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\giacfgjdclhnmkacnfbaljbmpnelflol
Webexp Enhanced - Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\imomfglhofcbdgljeaicbnnojjddnkfg
Video Player - Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\kehljoocmkefibhlmkllehkgmlpjfdae
Media View - Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\lcdlaojlfiebjnpblnifagokphfjgcdn
Skype Click to Call - Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Better Surf Plus - Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\mmifolfpllfdhilecpdpmemhelmanajl

==== Chrome Fix ======================

C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\bcjakkfdcjlgakfalanjkiafoaolckhe deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\giacfgjdclhnmkacnfbaljbmpnelflol deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\imomfglhofcbdgljeaicbnnojjddnkfg deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\jegpendoohnjpfealgfpjofajggbifag deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\kehljoocmkefibhlmkllehkgmlpjfdae deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\lcdlaojlfiebjnpblnifagokphfjgcdn deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\lekbgnbpdipfikibajfmkijbolhkplhp deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\mmifolfpllfdhilecpdpmemhelmanajl deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Extensions\ahmilhmcinpmpohfoiccaplbhgelbnim deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Local Storage\chrome-extension_ahmilhmcinpmpohfoiccaplbhgelbnim_0.localstorage deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Local Storage\chrome-extension_ahmilhmcinpmpohfoiccaplbhgelbnim_0.localstorage-journal deleted successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Local Extension Settings\ahmilhmcinpmpohfoiccaplbhgelbnim deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.dogpile.com/"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.dogpile.com/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{98CFA880-0172-4B9D-A4DF-DD011A02F86F}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"
{98CFA880-0172-4B9D-A4DF-DD011A02F86F} Dogpile Url="http://www.dogpile.com/search/web?fcoid ... earchTerms}"

==== Reset Google Chrome ======================

C:\Users\Lenovo\AppData\Local\CatalinaGroup\Citrio\User Data\Default\Preferences was reset successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Preferences was reset successfully
C:\Users\Lenovo\AppData\Local\CatalinaGroup\Citrio\User Data\Default\Web Data was reset successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\61386F821F8B50E4ABFD24BDCE4BF0E0 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3A9F56B942D9A2546BFE41756DE52495 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6BA018E6E43F3A949AF3E90563067F81 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A1F1E372A1B7C6347A384A8A9CA70D63 deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google\Chrome\ExtensionInstallForcelist deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bcjakkfdcjlgakfalanjkiafoaolckhe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\giacfgjdclhnmkacnfbaljbmpnelflol deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\imomfglhofcbdgljeaicbnnojjddnkfg deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jegpendoohnjpfealgfpjofajggbifag deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kehljoocmkefibhlmkllehkgmlpjfdae deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\lcdlaojlfiebjnpblnifagokphfjgcdn deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\lekbgnbpdipfikibajfmkijbolhkplhp deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\mmifolfpllfdhilecpdpmemhelmanajl deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{28F68316-B8F1-4E05-BADF-42DBECB40F0E} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Video Player deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilividmoviestoolbarhaCR deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilividmoviestoolbarhaIE deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Torntv V6.0 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{273E1F1A-7B1A-436C-A783-A4A8C97AD036} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9B65F9A3-9D24-452A-B6EF-1457D65E4259} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\61386F821F8B50E4ABFD24BDCE4BF0E0 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\3A9F56B942D9A2546BFE41756DE52495 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\A1F1E372A1B7C6347A384A8A9CA70D63 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Lenovo\AppData\Local\CatalinaGroup\Citrio\User Data\Default\Cache emptied successfully
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=318 folders=75 27566093 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Lenovo\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

Re: Prosím o pomoc, ak nejaká je...

Napsal: 28 dub 2014 22:45
od vyosek
Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

Re: Prosím o pomoc, ak nejaká je...

Napsal: 07 kvě 2014 17:23
od jacho6380
Logfile of random's system information tool 1.08 (written by random/random)
Run by Lenovo at 2014-05-07 18:23:02
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 389 GB (82%) free of 477 GB
Total RAM: 3662 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:23:12, on 7. 5. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\1.3.25.203\CatalinaCrashHandler.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera_crashreporter.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe
C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
C:\Program Files\trend micro\Lenovo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: MediaBuzzV1mode2066 - {537e5bc8-460c-4298-bfba-1a553d361dd5} - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ie\MediaBuzzV1mode2066.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MSHostSrv] C:\Windows\inf\cssi.vbe
O4 - HKLM\..\Run: [mncqnmptpSrv] C:\Windows\system32\mncqnmptp.vbe
O4 - HKLM\..\Run: [mncvupjmlSrv] C:\Windows\system32\mncvupjml.vbe
O4 - HKLM\..\Run: [Printsrv] c:\Windows\System32\Printing_Admin_Scripts\en-US\driverupd.vbs
O4 - HKLM\..\Run: [MSStp] C:\Windows\inf\msstp.vbe
O4 - HKLM\..\Run: [mncsiqaSrv] C:\Windows\system32\mncsiqa.vbe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_332B101ED56858E0765C41199BCD4350] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [CatalinaGroup Update] "C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe" /c
O4 - HKCU\..\Run: [iMesh] "C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe" --lightmode
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-825478306-3476294081-1402375209-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-825478306-3476294081-1402375209-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: ValBioService - Validity Sensors, Inc. - C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe
O23 - Service: Validity WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\Windows\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Mobile Broadband Service (WMCoreService) - Ericsson AB - C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 15440 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7be166bd-1709-411b-9143-dda12afad55a -SystemEventPortName:HostProcess-283e7b63-e2ef-4a5e-8928-b0a31c59ac54 -IoCancelEventPortName:HostProcess-0e5a58eb-0da5-4a54-862e-c0b5b2f5a98e -NonStateChangingEventPortName:HostProcess-379c79da-808c-4996-a96d-849ec384cfda -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bede754b-b805-42f7-8c03-9bf0bf2d5e73 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 27589712
\??\C:\Windows\system32\conhost.exe "-15118034271099424380-787484054-40669162011087363422087998967-2076644033-121014866
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgfws.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"taskhost.exe"
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"
C:\Windows\SysWOW64\SAsrv.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "44337353715837165432123513977-6567629941895621366-85477752420045901012127993989
"C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\1.3.25.203\CatalinaCrashHandler.exe" /crashhandler
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
C:\PROGRA~1\LENOVO\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\LENOVO\HOTKEY\tpnumlk.exe
C:\Windows\system32\valWBFPolicyService.exe
"C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe" servicemode
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
taskeng.exe {2E1929F0-56B8-4249-AA90-6E66E9696C5F}
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe" -Embedding
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --ran-launcher /crash-reporter-parent-id=6012
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --type=gpu-process --channel="6012.0.976536392\1287126900" --crash-reporter-pid=6208 --disable-image-transport-surface --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,27 --reduce-gpu-sandbox --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --crash-reporter-pid=6208 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --enable-threaded-compositing --enable-deadline-scheduling --extension-process --disable-client-side-phishing-detection --disable-delegated-renderer --crash-reporter-pid=6208 --channel="6012.2.1899545965\1027677642" /prefetch:673131151
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --enable-threaded-compositing --enable-deadline-scheduling --disable-client-side-phishing-detection --enable-ignore-autocomplete-off --disable-delegated-renderer --crash-reporter-pid=6208 --channel="6012.3.1908613995\885498617" /prefetch:673131151
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=sk --enable-threaded-compositing --enable-deadline-scheduling --disable-client-side-phishing-detection --enable-ignore-autocomplete-off --disable-delegated-renderer --crash-reporter-pid=6208 --channel="6012.4.844653316\683080902" /prefetch:673131151
"C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe" /command_id=1e16c46d-c090-4921-81c8-321e39ae7c02 /client_id=da7f3410-65f0-4b28-9e3e-b534881fd545
taskeng.exe {CAD1D4B5-E9B1-4FA6-B588-E1F7A55B412E}
taskeng.exe {AAD60C3A-D4FB-44D9-908B-E17392585E11}
C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe /c
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe" -Embedding
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
C:\Windows\system32\AUDIODG.EXE 0xa58
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe10_ Global\UsGthrCtrlFltPipeMssGthrPipe10 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\wuauclt.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe" --type=plugin --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll" --lang=sk --channel="6012.12.684405318\1730536960" --crash-reporter-pid=6208 /prefetch:-390060480
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\Lenovo\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000Core.job
C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-06 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-11-20 6270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-06 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{537e5bc8-460c-4298-bfba-1a553d361dd5}]
Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ie\MediaBuzzV1mode2066.dll [2014-04-23 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2013-11-20 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-08 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"BLEServicesCtrl"=C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-05-31 184112]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-06-18 11586944]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-26 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-26 441152]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2012-08-23 4805936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-02-11 3015408]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-11-08 1028384]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2013-11-08 1064224]
"Allin1Convert Home Page Guard 64 bit"=C:\PROGRA~2\ALLIN1~1\bar\3.bin\AppIntegrator64.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-07-03 3673184]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2014-01-07 1815464]
"GoogleChromeAutoLaunch_332B101ED56858E0765C41199BCD4350"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-04-02 841032]
"CatalinaGroup Update"=C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-01-05 147440]
"iMesh"=C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe --lightmode []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2013\avgui.exe [2014-01-21 4411952]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-08-31 508144]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-21 291648]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2013-03-12 548864]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"MSHostSrv"=C:\Windows\inf\cssi.vbe [2014-01-12 2334]
"mncqnmptpSrv"=C:\Windows\system32\mncqnmptp.vbe []
"mncvupjmlSrv"=C:\Windows\system32\mncvupjml.vbe []
"Printsrv"=c:\Windows\System32\Printing_Admin_Scripts\en-US\driverupd.vbs []
"MSStp"=C:\Windows\inf\msstp.vbe [2014-03-05 1584]
"mncsiqaSrv"=C:\Windows\system32\mncsiqa.vbe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-25 441856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger="tasklist.exe

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-04-28 20:23:59 ----D---- C:\zoek
2014-04-28 20:14:45 ----D---- C:\zoek_backup
2014-04-28 17:15:21 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-04-28 17:14:55 ----D---- C:\AdwCleaner
2014-04-28 16:39:36 ----D---- C:\ProgramData\24DC
2014-04-28 16:02:16 ----D---- C:\Windows\ERUNT
2014-04-27 15:25:49 ----D---- C:\Program Files\trend micro
2014-04-27 15:25:48 ----D---- C:\rsit
2014-04-26 17:00:07 ----D---- C:\Program Files\CCleaner
2014-04-25 13:47:47 ----A---- C:\Windows\system32\drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys
2014-04-25 13:14:15 ----D---- C:\Program Files (x86)\MediaBuzzV1
2014-04-24 17:01:04 ----A---- C:\Windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2014-04-23 17:58:41 ----D---- C:\Users\Lenovo\AppData\Roaming\glister
2014-04-15 13:35:26 ----A---- C:\Windows\system32\drivers\avgtdia.sys

======List of files/folders modified in the last 1 months======

2014-05-07 18:23:12 ----D---- C:\Windows\Prefetch
2014-05-07 18:22:17 ----D---- C:\Windows\Temp
2014-05-07 18:21:28 ----RD---- C:\Program Files (x86)
2014-05-07 18:20:44 ----D---- C:\Windows\system32\catroot
2014-05-07 18:20:38 ----D---- C:\Windows\winsxs
2014-05-07 18:20:34 ----D---- C:\Windows\system32\config
2014-05-07 18:19:52 ----D---- C:\Windows\SysWOW64
2014-05-07 18:19:45 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-04-29 03:31:01 ----A---- C:\Windows\SYSWOW64\log.txt
2014-04-28 20:29:53 ----D---- C:\Windows
2014-04-28 20:25:32 ----SHD---- C:\Windows\Installer
2014-04-28 20:25:30 ----RD---- C:\Users
2014-04-28 20:25:30 ----D---- C:\Windows\system32\Tasks
2014-04-28 20:25:29 ----HD---- C:\ProgramData
2014-04-28 20:25:29 ----D---- C:\Windows\Tasks
2014-04-28 20:16:14 ----D---- C:\Windows\system32\drivers\etc
2014-04-28 20:16:11 ----D---- C:\ProgramData\MFAData
2014-04-28 20:16:01 ----SHD---- C:\System Volume Information
2014-04-28 19:15:04 ----D---- C:\Program Files (x86)\Steam
2014-04-28 17:56:36 ----D---- C:\ProgramData\NVIDIA
2014-04-28 17:53:49 ----D---- C:\Windows\rescache
2014-04-28 17:26:14 ----D---- C:\Windows\System32
2014-04-28 17:15:59 ----RD---- C:\Program Files
2014-04-28 17:15:59 ----D---- C:\Program Files (x86)\Common Files
2014-04-28 16:09:10 ----D---- C:\Windows\SYSWOW64\NV
2014-04-28 16:09:10 ----D---- C:\Windows\system32\NV
2014-04-27 15:23:20 ----D---- C:\Windows\system32\drivers
2014-04-27 15:06:29 ----D---- C:\Windows\SYSWOW64\en-US
2014-04-27 15:06:28 ----D---- C:\Windows\system32\en-US
2014-04-27 15:06:26 ----D---- C:\Windows\AppPatch
2014-04-27 15:06:23 ----D---- C:\Windows\SYSWOW64\drivers
2014-04-27 15:06:23 ----D---- C:\Windows\system32\DriverStore
2014-04-25 21:26:05 ----D---- C:\Program Files (x86)\Counter-Strike 1.6 Standalone
2014-04-25 13:10:22 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-04-25 13:10:22 ----D---- C:\Program Files\Internet Explorer
2014-04-25 13:10:20 ----D---- C:\Windows\system32\sk-SK
2014-04-25 13:10:20 ----D---- C:\Windows\PolicyDefinitions
2014-04-25 13:10:16 ----D---- C:\Program Files (x86)\Internet Explorer
2014-04-24 23:13:48 ----D---- C:\Windows\system32\NDF
2014-04-24 20:02:03 ----D---- C:\Windows\inf
2014-04-24 19:54:48 ----D---- C:\temp
2014-04-21 20:38:39 ----D---- C:\Users\Lenovo\AppData\Roaming\.minecraft
2014-04-21 15:01:51 ----A---- C:\Windows\win.ini
2014-04-21 14:47:29 ----D---- C:\Windows\system32\catroot2
2014-04-16 18:44:26 ----D---- C:\Users\Lenovo\AppData\Roaming\Skype
2014-04-12 11:27:18 ----D---- C:\ProgramData\Microsoft Help
2014-04-12 11:26:29 ----D---- C:\Windows\system32\MRT
2014-04-12 11:21:53 ----A---- C:\Windows\system32\MRT.exe
2014-04-08 14:38:31 ----D---- C:\Minecraft_Backup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-07-20 71480]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-07-20 311608]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-07-01 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-10-23 45880]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-21 19264]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-10-23 32544]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-07-04 564824]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2012-09-04 50296]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-11-25 246072]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-07-20 206648]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2014-04-15 240952]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2014-04-28 50464]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-07-04 283064]
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222;F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Music Toolbar\Datamngr\x64\setmgrc1.cfg []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2012-07-18 198144]
R3 BCM43XX;Broadcom 802.11 - ovládač sieťového adaptéru; C:\Windows\system32\DRIVERS\bcmwl664.sys [2013-07-03 6059112]
R3 btwsecfl;Bluetooth USB Security Filter; C:\Windows\system32\drivers\btwsecfl.sys [2012-09-19 72056]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\Windows\System32\Drivers\btwusb.sys [2012-10-18 62840]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-09-20 1609376]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2013-09-05 54528]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-25 9000256]
R3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-21 357184]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-21 789824]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-09-28 39200]
R3 RSP2STOR;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2013-05-16 288840]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-06-13 726160]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-02-11 31984]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-02-11 469232]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2013-03-01 1045248]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2012-07-18 198144]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-07-18 659472]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [2013-10-23 1432080]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-06-18 1095616]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-06-18 1333184]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-06-18 1124288]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-08-23 135984]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-03-03 1363584]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-03-03 1748608]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-08-23 629040]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2013-09-05 66344]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-19 634632]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-20 129856]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-20 166720]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2013-04-19 127072]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-10 136288]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-20 277824]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-11-08 15125280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-23 922912]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-11-08 1914656]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-08-23 149296]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2013-04-19 145808]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2013-04-19 125504]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-20 365376]
R2 valWBFPolicyService;Validity WBF Policy Service; C:\Windows\system32\valWBFPolicyService.exe [2013-03-19 28160]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-30 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S2 ValBioService;ValBioService; C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe [2013-03-19 23600]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-07 257712]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-26 276288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-30 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-08-23 272688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-01-07 569768]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-07-04 1255736]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Re: Prosím o pomoc, ak nejaká je...

Napsal: 07 kvě 2014 17:24
od vyosek
Tohle je RSIT, ja bych radsi FRST...a po tydnu neaktivity budem asi zacit skoro od znovu :?:

Re: Prosím o pomoc, ak nejaká je...

Napsal: 07 kvě 2014 18:28
od jacho6380
Nebojte sa s notebookom sa nic nerobilo, ako som ho vtedy vypol tak som sa k nemu dostal az teraz.




Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-05-2014
Ran by Lenovo (administrator) on LENOVO-PC on 07-05-2014 19:19:47
Running from C:\Users\Lenovo\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Catalina Group Ltd.) C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\1.3.25.203\CatalinaCrashHandler.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlk.exe
() C:\Windows\System32\valWBFPolicyService.exe
(Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
() C:\Program Files (x86)\Opera\20.0.1387.91\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.91\opera.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-14] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184112 2012-05-31] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11586944 2012-06-18] (Motorola Solutions, Inc.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [IntelPROSet] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [4805936 2012-08-23] (Intel(R) Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3015408 2013-02-11] (Synaptics Incorporated)
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1064224 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [Allin1Convert Home Page Guard 64 bit] => "C:\PROGRA~2\ALLIN1~1\bar\3.bin\AppIntegrator64.exe"
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411952 2014-01-21] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508144 2012-08-31] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-21] (Intel Corporation)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2013-03-12] (Vimicro)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [MSHostSrv] => C:\Windows\inf\cssi.vbe [2334 2014-01-12] ()
HKLM-x32\...\Run: [mncqnmptpSrv] => C:\Windows\system32\mncqnmptp.vbe
HKLM-x32\...\Run: [mncvupjmlSrv] => C:\Windows\system32\mncvupjml.vbe
HKLM-x32\...\Run: [Printsrv] => c:\Windows\System32\Printing_Admin_Scripts\en-US\driverupd.vbs
HKLM-x32\...\Run: [MSStp] => C:\Windows\inf\msstp.vbe [1584 2014-03-05] ()
HKLM-x32\...\Run: [mncsiqaSrv] => C:\Windows\system32\mncsiqa.vbe
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [1815464 2014-01-07] (Valve Corporation)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [GoogleChromeAutoLaunch_332B101ED56858E0765C41199BCD4350] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032 2014-04-24] (Google Inc.)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [CatalinaGroup Update] => C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [147440 2014-01-05] (Catalina Group Ltd.)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [iMesh] => "C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe" --lightmode
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\MountPoints2: {1a2eb00c-eebe-11e2-a112-28d2440e3727} - F:\AutoRun.exe
HKU\S-1-5-21-825478306-3476294081-1402375209-1004\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-05-17] (Lenovo)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-10-23] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-10-23] (NVIDIA Corporation)
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
HKLM\...\AppCertDlls: [x64] -> c:\program files (x86)\music toolbar\datamngr\x64\apcrtldr.dll <===== ATTENTION
HKLM\...\AppCertDlls: [x86] -> c:\program files (x86)\music toolbar\datamngr\apcrtldr.dll <===== ATTENTION
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0D1B9E74B878CE01
SearchScopes: HKLM-x32 - {98CFA880-0172-4B9D-A4DF-DD011A02F86F} URL = ${SEARCH_URL}{searchTerms}
SearchScopes: HKCU - DefaultScope {98CFA880-0172-4B9D-A4DF-DD011A02F86F} URL = http://www.dogpile.com/search/web?fcoid ... earchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {98CFA880-0172-4B9D-A4DF-DD011A02F86F} URL = http://www.dogpile.com/search/web?fcoid ... earchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Media Buzz - {537e5bc8-460c-4298-bfba-1a553d361dd5} - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ie\MediaBuzzV1mode2066.dll ()
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.10.1.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll (Catalina Group Ltd.)
FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\1.3.25.203\npCatalinaUpdate3.dll (Catalina Group Ltd.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lenovo\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: iMeshPlugin - C:\Program Files (x86)\iMesh Applications\iMesh\npiMeshPlugin.dll No File
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaBuzzV1mode2066.net] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ff
FF Extension: Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ff [2014-04-25]

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob [2013-12-02]
CHR Extension: (Google Docs) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-30]
CHR Extension: (Google Drive) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-30]
CHR Extension: (YouTube) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-30]
CHR Extension: (Media Buzz) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\chccmdmgeoiichmkbccdaoemnnhbdkph [2014-04-25]
CHR Extension: (Google Search) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-30]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf [2013-11-20]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmhfbmpdiffkamakhdbcgojfnbnlcenm [2013-11-20]
CHR Extension: (Skype Click to Call) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-02-14]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-04]
CHR Extension: (Google Wallet) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-30]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oclgomenfkljhfkfflghppidonpkljjg [2013-12-19]
CHR Extension: (Gmail) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-30]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco [2013-12-06]
CHR HKLM-x32\...\Chrome\Extension: [chccmdmgeoiichmkbccdaoemnnhbdkph] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ch\MediaBuzzV1mode2066.crx [2014-04-23]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 avgfws; C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [1432080 2013-10-23] (AVG Technologies CZ, s.r.o.)
U2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-11-20] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-20] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-20] (Intel Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-10] (Lenovo Group Limited)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272688 2012-08-23] ()
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
S2 ValBioService; C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe [23600 2013-03-19] (Validity Sensors, Inc.)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [28160 2013-03-19] ()
R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [689560 2012-10-18] (Ericsson AB)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3342640 2012-08-23] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [50296 2012-09-04] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2014-04-15] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-04-28] (AVG Technologies)
R3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [62840 2012-10-18] (Broadcom Corporation.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-07-04] (Disc Soft Ltd)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
R3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [288840 2013-05-16] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [31984 2013-02-11] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-07-04] (Duplex Secure Ltd.)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [1045248 2013-03-01] (Vimicro Corporation)
R1 {f551efce-3692-4ed5-8201-c1c7dbef1744}w64; C:\Windows\System32\drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys [61112 2014-04-24] (StdLib)
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Music Toolbar\Datamngr\x64\setmgrc1.cfg [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-07 19:19 - 2014-05-07 19:20 - 00024340 _____ () C:\Users\Lenovo\Desktop\FRST.txt
2014-05-07 19:19 - 2014-05-07 19:19 - 00000000 ____D () C:\FRST
2014-05-07 19:14 - 2014-05-07 19:14 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\FRSTLauncher (1).exe
2014-05-07 19:05 - 2014-05-07 19:05 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\index (1).php
2014-05-07 19:01 - 2014-05-07 19:01 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\index.php
2014-05-07 18:24 - 2014-05-07 18:24 - 17931952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-05-07 18:21 - 2014-05-07 18:22 - 02063872 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe
2014-05-07 18:20 - 2014-05-07 18:20 - 00000000 _____ () C:\Users\Lenovo\Downloads\FRSTLauncher.exe
2014-04-28 20:23 - 2014-04-28 20:27 - 00000566 _____ () C:\folders.log
2014-04-28 20:23 - 2014-04-28 20:27 - 00000000 ____D () C:\zoek
2014-04-28 20:15 - 2014-04-28 20:27 - 00024257 _____ () C:\zoek-results.log
2014-04-28 20:14 - 2014-04-28 20:26 - 00000000 ____D () C:\zoek_backup
2014-04-28 20:13 - 2014-04-28 20:13 - 01285120 _____ () C:\Users\Lenovo\Desktop\zoek.exe
2014-04-28 17:15 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-04-28 17:14 - 2014-04-28 17:26 - 00000000 ____D () C:\AdwCleaner
2014-04-28 16:39 - 2014-04-28 16:39 - 00000000 ____D () C:\ProgramData\24DC
2014-04-28 16:02 - 2014-04-28 16:02 - 00000000 ____D () C:\Windows\ERUNT
2014-04-28 16:00 - 2014-04-28 16:01 - 00001873 _____ () C:\Users\Lenovo\Desktop\JRT_NEW.exe
2014-04-28 15:59 - 2014-04-28 15:59 - 01329501 _____ () C:\Users\Lenovo\Desktop\adwcleaner.exe
2014-04-28 15:59 - 2014-04-28 15:59 - 01016261 _____ (Thisisu) C:\Users\Lenovo\Desktop\JRT.exe
2014-04-27 15:25 - 2014-05-07 18:23 - 00000000 ____D () C:\Program Files\trend micro
2014-04-27 15:25 - 2014-04-27 15:29 - 00000000 ____D () C:\rsit
2014-04-27 15:25 - 2014-04-27 15:25 - 00832273 _____ () C:\Users\Lenovo\Desktop\RSITx64.exe
2014-04-26 17:00 - 2014-04-26 17:00 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-04-26 17:00 - 2014-04-26 17:00 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-26 17:00 - 2014-04-26 17:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-04-26 17:00 - 2014-04-26 17:00 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-26 16:59 - 2014-04-26 16:59 - 04745984 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup413 (1).exe
2014-04-26 16:58 - 2014-04-26 16:59 - 04745984 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup413.exe
2014-04-25 13:47 - 2014-04-24 12:19 - 00061112 _____ (StdLib) C:\Windows\system32\Drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys
2014-04-25 13:14 - 2014-04-25 13:14 - 00000000 ____D () C:\Program Files (x86)\MediaBuzzV1
2014-04-24 17:01 - 2014-04-24 17:01 - 00721856 _____ () C:\Windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2014-04-24 17:01 - 2014-04-24 17:01 - 00002118 _____ () C:\Users\Lenovo\Desktop\Counter-Strike 1.6 Standalone.lnk
2014-04-24 17:01 - 2014-04-24 17:01 - 00000000 ____D () C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 Standalone
2014-04-23 18:09 - 2014-04-23 18:23 - 345524205 _____ () C:\Users\Lenovo\Downloads\counter-strike-1-6-non-steam_1.6standalone.exe
2014-04-23 17:58 - 2014-04-23 18:07 - 00000000 ____D () C:\Users\Lenovo\AppData\Roaming\glister
2014-04-22 17:38 - 2014-04-22 17:38 - 00003000 _____ () C:\Windows\System32\Tasks\{6AFF009D-60F9-4D2E-9B94-C4A82E341DB5}
2014-04-21 14:49 - 2014-04-21 14:49 - 00252248 _____ () C:\Users\Lenovo\Downloads\8D0D.tmp
2014-04-18 18:37 - 2014-04-20 22:08 - 00000000 ____D () C:\Users\Lenovo\Desktop\pesnicky do htc(cka)
2014-04-16 17:34 - 2014-04-16 17:34 - 02401074 _____ () C:\Users\Lenovo\Desktop\launcher^FTB_Launcher.exe
2014-04-15 13:35 - 2014-04-15 13:35 - 00240952 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgtdia.sys

==================== One Month Modified Files and Folders =======

2014-05-07 19:20 - 2014-05-07 19:19 - 00024340 _____ () C:\Users\Lenovo\Desktop\FRST.txt
2014-05-07 19:19 - 2014-05-07 19:19 - 00000000 ____D () C:\FRST
2014-05-07 19:17 - 2014-01-05 15:12 - 00000942 _____ () C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000UA.job
2014-05-07 19:14 - 2014-05-07 19:14 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\FRSTLauncher (1).exe
2014-05-07 19:14 - 2013-07-04 17:09 - 00000000 ____D () C:\ldiag
2014-05-07 19:13 - 2013-11-30 20:13 - 00000266 _____ () C:\Windows\Tasks\AutoKMS.job
2014-05-07 19:05 - 2014-05-07 19:05 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\index (1).php
2014-05-07 19:01 - 2014-05-07 19:01 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\index.php
2014-05-07 19:00 - 2013-07-03 11:19 - 01632203 _____ () C:\Windows\WindowsUpdate.log
2014-05-07 18:29 - 2014-01-05 15:12 - 00000890 _____ () C:\Windows\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000Core.job
2014-05-07 18:26 - 2013-11-30 20:10 - 00002195 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-07 18:26 - 2013-11-30 20:09 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-07 18:25 - 2013-11-30 20:09 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-07 18:24 - 2014-05-07 18:24 - 17931952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-05-07 18:24 - 2013-07-07 15:46 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-07 18:24 - 2013-07-07 15:46 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-07 18:24 - 2013-07-07 15:46 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-07 18:24 - 2013-07-07 15:46 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-07 18:23 - 2014-04-27 15:25 - 00000000 ____D () C:\Program Files\trend micro
2014-05-07 18:23 - 2009-07-14 06:45 - 00021280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-07 18:23 - 2009-07-14 06:45 - 00021280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-07 18:22 - 2014-05-07 18:21 - 02063872 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe
2014-05-07 18:20 - 2014-05-07 18:20 - 00000000 _____ () C:\Users\Lenovo\Downloads\FRSTLauncher.exe
2014-05-07 18:20 - 2013-11-30 20:09 - 00003932 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-07 18:20 - 2013-11-30 20:09 - 00003680 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-07 18:19 - 2013-07-03 12:51 - 00003978 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{AB93E417-10A6-41A0-BD4F-C4F5F07A8925}
2014-04-28 20:27 - 2014-04-28 20:23 - 00000566 _____ () C:\folders.log
2014-04-28 20:27 - 2014-04-28 20:23 - 00000000 ____D () C:\zoek
2014-04-28 20:27 - 2014-04-28 20:15 - 00024257 _____ () C:\zoek-results.log
2014-04-28 20:26 - 2014-04-28 20:14 - 00000000 ____D () C:\zoek_backup
2014-04-28 20:16 - 2013-07-03 11:34 - 00000000 ____D () C:\ProgramData\MFAData
2014-04-28 20:13 - 2014-04-28 20:13 - 01285120 _____ () C:\Users\Lenovo\Desktop\zoek.exe
2014-04-28 19:15 - 2013-12-10 19:26 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-04-28 17:59 - 2014-03-19 19:56 - 00000965 _____ () C:\Users\Lenovo\rgut
2014-04-28 17:56 - 2014-01-04 19:08 - 00000000 ____D () C:\Users\Lenovo\AppData\Local\AVG SafeGuard toolbar
2014-04-28 17:56 - 2013-11-18 21:24 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-28 17:56 - 2010-11-21 05:47 - 00252526 _____ () C:\Windows\PFRO.log
2014-04-28 17:56 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-28 17:56 - 2009-07-14 06:51 - 00072144 _____ () C:\Windows\setupact.log
2014-04-28 17:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-28 17:26 - 2014-04-28 17:14 - 00000000 ____D () C:\AdwCleaner
2014-04-28 17:26 - 2013-07-03 11:22 - 00000000 ____D () C:\Users\Lenovo
2014-04-28 16:41 - 2014-01-04 19:07 - 00050464 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2014-04-28 16:39 - 2014-04-28 16:39 - 00000000 ____D () C:\ProgramData\24DC
2014-04-28 16:09 - 2013-11-18 21:47 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-04-28 16:09 - 2013-11-18 21:47 - 00000000 ____D () C:\Windows\system32\NV
2014-04-28 16:02 - 2014-04-28 16:02 - 00000000 ____D () C:\Windows\ERUNT
2014-04-28 16:01 - 2014-04-28 16:00 - 00001873 _____ () C:\Users\Lenovo\Desktop\JRT_NEW.exe
2014-04-28 15:59 - 2014-04-28 15:59 - 01329501 _____ () C:\Users\Lenovo\Desktop\adwcleaner.exe
2014-04-28 15:59 - 2014-04-28 15:59 - 01016261 _____ (Thisisu) C:\Users\Lenovo\Desktop\JRT.exe
2014-04-27 15:29 - 2014-04-27 15:25 - 00000000 ____D () C:\rsit
2014-04-27 15:25 - 2014-04-27 15:25 - 00832273 _____ () C:\Users\Lenovo\Desktop\RSITx64.exe
2014-04-26 17:00 - 2014-04-26 17:00 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-04-26 17:00 - 2014-04-26 17:00 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-26 17:00 - 2014-04-26 17:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-04-26 17:00 - 2014-04-26 17:00 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-26 16:59 - 2014-04-26 16:59 - 04745984 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup413 (1).exe
2014-04-26 16:59 - 2014-04-26 16:58 - 04745984 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup413.exe
2014-04-25 21:26 - 2013-12-04 17:45 - 00000000 ____D () C:\Program Files (x86)\Counter-Strike 1.6 Standalone
2014-04-25 13:15 - 2014-01-30 14:13 - 00001462 __RSH () C:\ProgramData\ntuser.pol
2014-04-25 13:14 - 2014-04-25 13:14 - 00000000 ____D () C:\Program Files (x86)\MediaBuzzV1
2014-04-25 13:10 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-04-25 13:10 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-04-25 13:10 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-24 23:13 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-24 17:01 - 2014-04-24 17:01 - 00721856 _____ () C:\Windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2014-04-24 17:01 - 2014-04-24 17:01 - 00002118 _____ () C:\Users\Lenovo\Desktop\Counter-Strike 1.6 Standalone.lnk
2014-04-24 17:01 - 2014-04-24 17:01 - 00000000 ____D () C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 Standalone
2014-04-24 12:19 - 2014-04-25 13:47 - 00061112 _____ (StdLib) C:\Windows\system32\Drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys
2014-04-23 18:23 - 2014-04-23 18:09 - 345524205 _____ () C:\Users\Lenovo\Downloads\counter-strike-1-6-non-steam_1.6standalone.exe
2014-04-23 18:07 - 2014-04-23 17:58 - 00000000 ____D () C:\Users\Lenovo\AppData\Roaming\glister
2014-04-22 17:38 - 2014-04-22 17:38 - 00003000 _____ () C:\Windows\System32\Tasks\{6AFF009D-60F9-4D2E-9B94-C4A82E341DB5}
2014-04-21 20:38 - 2013-12-08 20:30 - 00000000 ____D () C:\Users\Lenovo\AppData\Roaming\.minecraft
2014-04-21 15:01 - 2009-07-14 04:34 - 00000678 _____ () C:\Windows\win.ini
2014-04-21 14:49 - 2014-04-21 14:49 - 00252248 _____ () C:\Users\Lenovo\Downloads\8D0D.tmp
2014-04-20 22:08 - 2014-04-18 18:37 - 00000000 ____D () C:\Users\Lenovo\Desktop\pesnicky do htc(cka)
2014-04-16 18:44 - 2013-07-06 10:15 - 00000000 ____D () C:\Users\Lenovo\AppData\Roaming\Skype
2014-04-16 17:34 - 2014-04-16 17:34 - 02401074 _____ () C:\Users\Lenovo\Desktop\launcher^FTB_Launcher.exe
2014-04-16 11:39 - 2013-07-14 13:10 - 00000000 ____D () C:\Users\Lenovo\Documents\Súbory programu Outlook
2014-04-15 13:35 - 2014-04-15 13:35 - 00240952 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgtdia.sys
2014-04-12 11:27 - 2013-07-04 21:14 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-12 11:26 - 2013-07-20 21:33 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-12 11:21 - 2013-07-04 01:31 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-11 21:04 - 2014-04-06 14:32 - 01771520 _____ (TeamExtreme) C:\Users\Lenovo\Desktop\minecraft-1.6.2.exe
2014-04-08 14:38 - 2014-03-28 20:02 - 00000000 ____D () C:\Minecraft_Backup

Some content of TEMP:
====================
C:\Users\Lenovo\AppData\Local\Temp\20140104180648.38.exe
C:\Users\Lenovo\AppData\Local\Temp\2txfse0a.dll
C:\Users\Lenovo\AppData\Local\Temp\3mecv4sl.dll
C:\Users\Lenovo\AppData\Local\Temp\7za.exe
C:\Users\Lenovo\AppData\Local\Temp\appinstal1.exe
C:\Users\Lenovo\AppData\Local\Temp\avnnza5p.dll
C:\Users\Lenovo\AppData\Local\Temp\b3lmnkqc.dll
C:\Users\Lenovo\AppData\Local\Temp\c0moc1pd.dll
C:\Users\Lenovo\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Lenovo\AppData\Local\Temp\GUR1867.exe
C:\Users\Lenovo\AppData\Local\Temp\GURBE2F.exe
C:\Users\Lenovo\AppData\Local\Temp\GURC4F.exe
C:\Users\Lenovo\AppData\Local\Temp\GURD0F4.exe
C:\Users\Lenovo\AppData\Local\Temp\hijackthis.exe
C:\Users\Lenovo\AppData\Local\Temp\i4jdel0.exe
C:\Users\Lenovo\AppData\Local\Temp\i4jdel1.exe
C:\Users\Lenovo\AppData\Local\Temp\iupdate.exe
C:\Users\Lenovo\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Lenovo\AppData\Local\Temp\jz4ebpih.dll
C:\Users\Lenovo\AppData\Local\Temp\kvvc2i5t.dll
C:\Users\Lenovo\AppData\Local\Temp\l3ajn5a3.dll
C:\Users\Lenovo\AppData\Local\Temp\m1rydvje.dll
C:\Users\Lenovo\AppData\Local\Temp\Minecraft Full Free.exe
C:\Users\Lenovo\AppData\Local\Temp\Mobogenie_Setup_2-1-23_517.exe
C:\Users\Lenovo\AppData\Local\Temp\NirCmd.exe
C:\Users\Lenovo\AppData\Local\Temp\nndt0txv.dll
C:\Users\Lenovo\AppData\Local\Temp\oi_{7EFEBA22-3642-40F3-AAC3-2831C0AEF87C}.exe
C:\Users\Lenovo\AppData\Local\Temp\ose00000.exe
C:\Users\Lenovo\AppData\Local\Temp\Quarantine.exe
C:\Users\Lenovo\AppData\Local\Temp\r1dkc1pk.dll
C:\Users\Lenovo\AppData\Local\Temp\remove.exe
C:\Users\Lenovo\AppData\Local\Temp\RFCPLSVR.dll
C:\Users\Lenovo\AppData\Local\Temp\RFCPLSVR64.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra2.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra264.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra64.dll
C:\Users\Lenovo\AppData\Local\Temp\s5opfw4i.dll
C:\Users\Lenovo\AppData\Local\Temp\sed.exe
C:\Users\Lenovo\AppData\Local\Temp\set-app.exe
C:\Users\Lenovo\AppData\Local\Temp\setapp.exe
C:\Users\Lenovo\AppData\Local\Temp\Setup-a.exe
C:\Users\Lenovo\AppData\Local\Temp\Setup1.exe
C:\Users\Lenovo\AppData\Local\Temp\Setup2.exe
C:\Users\Lenovo\AppData\Local\Temp\shortcut.exe
C:\Users\Lenovo\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Lenovo\AppData\Local\Temp\Softonic_chr_1-8-28-2.exe
C:\Users\Lenovo\AppData\Local\Temp\srwt2eh1.dll
C:\Users\Lenovo\AppData\Local\Temp\swxcacls.exe
C:\Users\Lenovo\AppData\Local\Temp\Tsu1DC6A6C0.dll
C:\Users\Lenovo\AppData\Local\Temp\Tsu4A3AD055.dll
C:\Users\Lenovo\AppData\Local\Temp\Tsu4D39498D.dll
C:\Users\Lenovo\AppData\Local\Temp\Tsu53E1A26F.dll
C:\Users\Lenovo\AppData\Local\Temp\TsuF9D32B9B.dll
C:\Users\Lenovo\AppData\Local\Temp\UNT4445.exe
C:\Users\Lenovo\AppData\Local\Temp\UNT4447.exe
C:\Users\Lenovo\AppData\Local\Temp\v2famlxn.dll
C:\Users\Lenovo\AppData\Local\Temp\zoek-delete.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-28 17:46

==================== End Of Log ============================

Re: Prosím o pomoc, ak nejaká je...

Napsal: 08 kvě 2014 06:32
od vyosek
:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
KLM-x32\...\Run: [MSHostSrv] => C:\Windows\inf\cssi.vbe [2334 2014-01-12] ()
HKLM-x32\...\Run: [mncqnmptpSrv] => C:\Windows\system32\mncqnmptp.vbe
HKLM-x32\...\Run: [mncvupjmlSrv] => C:\Windows\system32\mncvupjml.vbe
HKLM-x32\...\Run: [Printsrv] => c:\Windows\System32\Printing_Admin_Scripts\en-US\driverupd.vbs
HKLM-x32\...\Run: [MSStp] => C:\Windows\inf\msstp.vbe [1584 2014-03-05] ()
HKLM-x32\...\Run: [mncsiqaSrv] => C:\Windows\system32\mncsiqa.vbe
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [1815464 2014-01-07] (Valve Corporation)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [GoogleChromeAutoLaunch_332B101ED56858E0765C41199BCD4350] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032 2014-04-24] (Google Inc.)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [CatalinaGroup Update] => C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [147440 2014-01-05] (Catalina Group Ltd.)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [iMesh] => "C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe" --lightmode
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\MountPoints2: {1a2eb00c-eebe-11e2-a112-28d2440e3727} - F:\AutoRun.exe
HKU\S-1-5-21-825478306-3476294081-1402375209-1004\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-05-17] (Lenovo)
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
HKLM\...\AppCertDlls: [x64] -> c:\program files (x86)\music toolbar\datamngr\x64\apcrtldr.dll <===== ATTENTION
HKLM\...\AppCertDlls: [x86] -> c:\program files (x86)\music toolbar\datamngr\apcrtldr.dll <===== ATTENTION
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0D1B9E74B878CE01
SearchScopes: HKLM-x32 - {98CFA880-0172-4B9D-A4DF-DD011A02F86F} URL = ${SEARCH_URL}{searchTerms}
SearchScopes: HKCU - DefaultScope {98CFA880-0172-4B9D-A4DF-DD011A02F86F} URL = http://www.dogpile.com/search/web?fcoid ... =27&ql=&q={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {98CFA880-0172-4B9D-A4DF-DD011A02F86F} URL = http://www.dogpile.com/search/web?fcoid ... =27&ql=&q={searchTerms}
BHO-x32: Media Buzz - {537e5bc8-460c-4298-bfba-1a553d361dd5} - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ie\MediaBuzzV1mode2066.dll ()

FF Plugin HKCU: iMeshPlugin - C:\Program Files (x86)\iMesh Applications\iMesh\npiMeshPlugin.dll No File
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaBuzzV1mode2066.net] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ff
FF Extension: Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ff [2014-04-25]

CHR HKLM-x32\...\Chrome\Extension: [chccmdmgeoiichmkbccdaoemnnhbdkph] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ch\MediaBuzzV1mode2066.crx [2014-04-23]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR Extension: (Media Buzz) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\chccmdmgeoiichmkbccdaoemnnhbdkph [2014-04-25]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmhfbmpdiffkamakhdbcgojfnbnlcenm [2013-11-20]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-04]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oclgomenfkljhfkfflghppidonpkljjg [2013-12-19]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco [2013-12-06]

DisableService: c2cautoupdatesvc
DisableService: c2cpnrsvc

R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Music Toolbar\Datamngr\x64\setmgrc1.cfg [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

C:\Windows\inf\cssi.vbe
C:\Windows\system32\mncqnmptp.vbe
C:\Windows\system32\mncvupjml.vbe
C:\Windows\inf\msstp.vbe
C:\Windows\system32\mncsiqa.vbe
c:\program files (x86)\music toolbar
C:\Program Files (x86)\MediaBuzzV1
2014-05-07 19:14 - 2014-05-07 19:14 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\FRSTLauncher (1).exe
2014-05-07 19:05 - 2014-05-07 19:05 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\index (1).php
2014-05-07 19:01 - 2014-05-07 19:01 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\index.php
2014-05-07 18:24 - 2014-05-07 18:24 - 17931952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-05-07 18:20 - 2014-05-07 18:20 - 00000000 _____ () C:\Users\Lenovo\Downloads\FRSTLauncher.exe
2014-04-28 20:23 - 2014-04-28 20:27 - 00000566 _____ () C:\folders.log
2014-04-28 20:23 - 2014-04-28 20:27 - 00000000 ____D () C:\zoek
2014-04-28 20:15 - 2014-04-28 20:27 - 00024257 _____ () C:\zoek-results.log
2014-04-28 20:14 - 2014-04-28 20:26 - 00000000 ____D () C:\zoek_backup
2014-04-28 20:13 - 2014-04-28 20:13 - 01285120 _____ () C:\Users\Lenovo\Desktop\zoek.exe
2014-04-28 16:00 - 2014-04-28 16:01 - 00001873 _____ () C:\Users\Lenovo\Desktop\JRT_NEW.exe
2014-04-28 15:59 - 2014-04-28 15:59 - 01329501 _____ () C:\Users\Lenovo\Desktop\adwcleaner.exe
2014-04-28 15:59 - 2014-04-28 15:59 - 01016261 _____ (Thisisu) C:\Users\Lenovo\Desktop\JRT.exe
2014-04-27 15:25 - 2014-04-27 15:25 - 00832273 _____ () C:\Users\Lenovo\Desktop\RSITx64.exe
2014-04-26 16:59 - 2014-04-26 16:59 - 04745984 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup413 (1).exe
2014-04-26 16:58 - 2014-04-26 16:59 - 04745984 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup413.exe
2014-05-07 19:13 - 2013-11-30 20:13 - 00000266 _____ () C:\Windows\Tasks\AutoKMS.job
2014-04-28 17:56 - 2014-01-04 19:08 - 00000000 ____D () C:\Users\Lenovo\AppData\Local\AVG SafeGuard toolbar
C:\Users\Lenovo\AppData\Local\Temp\20140104180648.38.exe
C:\Users\Lenovo\AppData\Local\Temp\2txfse0a.dll
C:\Users\Lenovo\AppData\Local\Temp\3mecv4sl.dll
C:\Users\Lenovo\AppData\Local\Temp\7za.exe
C:\Users\Lenovo\AppData\Local\Temp\appinstal1.exe
C:\Users\Lenovo\AppData\Local\Temp\avnnza5p.dll
C:\Users\Lenovo\AppData\Local\Temp\b3lmnkqc.dll
C:\Users\Lenovo\AppData\Local\Temp\c0moc1pd.dll
C:\Users\Lenovo\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Lenovo\AppData\Local\Temp\GUR1867.exe
C:\Users\Lenovo\AppData\Local\Temp\GURBE2F.exe
C:\Users\Lenovo\AppData\Local\Temp\GURC4F.exe
C:\Users\Lenovo\AppData\Local\Temp\GURD0F4.exe
C:\Users\Lenovo\AppData\Local\Temp\hijackthis.exe
C:\Users\Lenovo\AppData\Local\Temp\i4jdel0.exe
C:\Users\Lenovo\AppData\Local\Temp\i4jdel1.exe
C:\Users\Lenovo\AppData\Local\Temp\iupdate.exe
C:\Users\Lenovo\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Lenovo\AppData\Local\Temp\jz4ebpih.dll
C:\Users\Lenovo\AppData\Local\Temp\kvvc2i5t.dll
C:\Users\Lenovo\AppData\Local\Temp\l3ajn5a3.dll
C:\Users\Lenovo\AppData\Local\Temp\m1rydvje.dll
C:\Users\Lenovo\AppData\Local\Temp\Minecraft Full Free.exe
C:\Users\Lenovo\AppData\Local\Temp\Mobogenie_Setup_2-1-23_517.exe
C:\Users\Lenovo\AppData\Local\Temp\NirCmd.exe
C:\Users\Lenovo\AppData\Local\Temp\nndt0txv.dll
C:\Users\Lenovo\AppData\Local\Temp\oi_{7EFEBA22-3642-40F3-AAC3-2831C0AEF87C}.exe
C:\Users\Lenovo\AppData\Local\Temp\ose00000.exe
C:\Users\Lenovo\AppData\Local\Temp\Quarantine.exe
C:\Users\Lenovo\AppData\Local\Temp\r1dkc1pk.dll
C:\Users\Lenovo\AppData\Local\Temp\remove.exe
C:\Users\Lenovo\AppData\Local\Temp\RFCPLSVR.dll
C:\Users\Lenovo\AppData\Local\Temp\RFCPLSVR64.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra2.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra264.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra64.dll
C:\Users\Lenovo\AppData\Local\Temp\s5opfw4i.dll
C:\Users\Lenovo\AppData\Local\Temp\sed.exe
C:\Users\Lenovo\AppData\Local\Temp\set-app.exe
C:\Users\Lenovo\AppData\Local\Temp\setapp.exe
C:\Users\Lenovo\AppData\Local\Temp\Setup-a.exe
C:\Users\Lenovo\AppData\Local\Temp\Setup1.exe
C:\Users\Lenovo\AppData\Local\Temp\Setup2.exe
C:\Users\Lenovo\AppData\Local\Temp\shortcut.exe
C:\Users\Lenovo\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Lenovo\AppData\Local\Temp\Softonic_chr_1-8-28-2.exe
C:\Users\Lenovo\AppData\Local\Temp\srwt2eh1.dll
C:\Users\Lenovo\AppData\Local\Temp\swxcacls.exe
C:\Users\Lenovo\AppData\Local\Temp\Tsu1DC6A6C0.dll
C:\Users\Lenovo\AppData\Local\Temp\Tsu4A3AD055.dll
C:\Users\Lenovo\AppData\Local\Temp\Tsu4D39498D.dll
C:\Users\Lenovo\AppData\Local\Temp\Tsu53E1A26F.dll
C:\Users\Lenovo\AppData\Local\Temp\TsuF9D32B9B.dll
C:\Users\Lenovo\AppData\Local\Temp\UNT4445.exe
C:\Users\Lenovo\AppData\Local\Temp\UNT4447.exe
C:\Users\Lenovo\AppData\Local\Temp\v2famlxn.dll
C:\Users\Lenovo\AppData\Local\Temp\zoek-delete.exe
 C:\Windows\SYSWOW64\lcpmncvupjml.exe
C:\Windows\SYSWOW64\dcgmncvupjml.exe
C:\Windows\SYSWOW64\acumncvupjml.exe
C:\Windows\SYSWOW64\lcpmncqnmptp.exe
C:\Windows\SYSWOW64\dcgmncqnmptp.exe
C:\Windows\SYSWOW64\acumncqnmptp.exe

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000Core.job
C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Torntv V6.0-chromeinstaller.job
C:\Windows\tasks\Torntv V6.0-updater.job

Hosts:
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt

Re: Prosím o pomoc, ak nejaká je...

Napsal: 08 kvě 2014 06:59
od jacho6380
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-05-2014
Ran by Lenovo at 2014-05-08 07:54:45 Run:1
Running from C:\Users\Lenovo\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
KLM-x32\...\Run: [MSHostSrv] => C:\Windows\inf\cssi.vbe [2334 2014-01-12] ()
HKLM-x32\...\Run: [mncqnmptpSrv] => C:\Windows\system32\mncqnmptp.vbe
HKLM-x32\...\Run: [mncvupjmlSrv] => C:\Windows\system32\mncvupjml.vbe
HKLM-x32\...\Run: [Printsrv] => c:\Windows\System32\Printing_Admin_Scripts\en-US\driverupd.vbs
HKLM-x32\...\Run: [MSStp] => C:\Windows\inf\msstp.vbe [1584 2014-03-05] ()
HKLM-x32\...\Run: [mncsiqaSrv] => C:\Windows\system32\mncsiqa.vbe
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [1815464 2014-01-07] (Valve Corporation)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [GoogleChromeAutoLaunch_332B101ED56858E0765C41199BCD4350] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032 2014-04-24] (Google Inc.)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [CatalinaGroup Update] => C:\Users\Lenovo\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [147440 2014-01-05] (Catalina Group Ltd.)
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\Run: [iMesh] => "C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe" --lightmode
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\...\MountPoints2: {1a2eb00c-eebe-11e2-a112-28d2440e3727} - F:\AutoRun.exe
HKU\S-1-5-21-825478306-3476294081-1402375209-1004\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-05-17] (Lenovo)
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
HKLM\...\AppCertDlls: [x64] -> c:\program files (x86)\music toolbar\datamngr\x64\apcrtldr.dll <===== ATTENTION
HKLM\...\AppCertDlls: [x86] -> c:\program files (x86)\music toolbar\datamngr\apcrtldr.dll <===== ATTENTION
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0D1B9E74B878CE01
SearchScopes: HKLM-x32 - {98CFA880-0172-4B9D-A4DF-DD011A02F86F} URL = ${SEARCH_URL}{searchTerms}
SearchScopes: HKCU - DefaultScope {98CFA880-0172-4B9D-A4DF-DD011A02F86F} URL = http://www.dogpile.com/search/web?fcoid ... =27&ql=&q={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {98CFA880-0172-4B9D-A4DF-DD011A02F86F} URL = http://www.dogpile.com/search/web?fcoid ... =27&ql=&q={searchTerms}
BHO-x32: Media Buzz - {537e5bc8-460c-4298-bfba-1a553d361dd5} - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ie\MediaBuzzV1mode2066.dll ()

FF Plugin HKCU: iMeshPlugin - C:\Program Files (x86)\iMesh Applications\iMesh\npiMeshPlugin.dll No File
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaBuzzV1mode2066.net] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ff
FF Extension: Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ff [2014-04-25]

CHR HKLM-x32\...\Chrome\Extension: [chccmdmgeoiichmkbccdaoemnnhbdkph] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ch\MediaBuzzV1mode2066.crx [2014-04-23]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR Extension: (Media Buzz) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\chccmdmgeoiichmkbccdaoemnnhbdkph [2014-04-25]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmhfbmpdiffkamakhdbcgojfnbnlcenm [2013-11-20]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-01-04]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oclgomenfkljhfkfflghppidonpkljjg [2013-12-19]
CHR Extension: (No Name) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco [2013-12-06]

DisableService: c2cautoupdatesvc
DisableService: c2cpnrsvc

R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files (x86)\Music Toolbar\Datamngr\x64\setmgrc1.cfg [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

C:\Windows\inf\cssi.vbe
C:\Windows\system32\mncqnmptp.vbe
C:\Windows\system32\mncvupjml.vbe
C:\Windows\inf\msstp.vbe
C:\Windows\system32\mncsiqa.vbe
c:\program files (x86)\music toolbar
C:\Program Files (x86)\MediaBuzzV1
2014-05-07 19:14 - 2014-05-07 19:14 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\FRSTLauncher (1).exe
2014-05-07 19:05 - 2014-05-07 19:05 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\index (1).php
2014-05-07 19:01 - 2014-05-07 19:01 - 00112640 _____ (forum.viry.cz) C:\Users\Lenovo\Downloads\index.php
2014-05-07 18:24 - 2014-05-07 18:24 - 17931952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-05-07 18:20 - 2014-05-07 18:20 - 00000000 _____ () C:\Users\Lenovo\Downloads\FRSTLauncher.exe
2014-04-28 20:23 - 2014-04-28 20:27 - 00000566 _____ () C:\folders.log
2014-04-28 20:23 - 2014-04-28 20:27 - 00000000 ____D () C:\zoek
2014-04-28 20:15 - 2014-04-28 20:27 - 00024257 _____ () C:\zoek-results.log
2014-04-28 20:14 - 2014-04-28 20:26 - 00000000 ____D () C:\zoek_backup
2014-04-28 20:13 - 2014-04-28 20:13 - 01285120 _____ () C:\Users\Lenovo\Desktop\zoek.exe
2014-04-28 16:00 - 2014-04-28 16:01 - 00001873 _____ () C:\Users\Lenovo\Desktop\JRT_NEW.exe
2014-04-28 15:59 - 2014-04-28 15:59 - 01329501 _____ () C:\Users\Lenovo\Desktop\adwcleaner.exe
2014-04-28 15:59 - 2014-04-28 15:59 - 01016261 _____ (Thisisu) C:\Users\Lenovo\Desktop\JRT.exe
2014-04-27 15:25 - 2014-04-27 15:25 - 00832273 _____ () C:\Users\Lenovo\Desktop\RSITx64.exe
2014-04-26 16:59 - 2014-04-26 16:59 - 04745984 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup413 (1).exe
2014-04-26 16:58 - 2014-04-26 16:59 - 04745984 _____ (Piriform Ltd) C:\Users\Lenovo\Downloads\ccsetup413.exe
2014-05-07 19:13 - 2013-11-30 20:13 - 00000266 _____ () C:\Windows\Tasks\AutoKMS.job
2014-04-28 17:56 - 2014-01-04 19:08 - 00000000 ____D () C:\Users\Lenovo\AppData\Local\AVG SafeGuard toolbar
C:\Users\Lenovo\AppData\Local\Temp\20140104180648.38.exe
C:\Users\Lenovo\AppData\Local\Temp\2txfse0a.dll
C:\Users\Lenovo\AppData\Local\Temp\3mecv4sl.dll
C:\Users\Lenovo\AppData\Local\Temp\7za.exe
C:\Users\Lenovo\AppData\Local\Temp\appinstal1.exe
C:\Users\Lenovo\AppData\Local\Temp\avnnza5p.dll
C:\Users\Lenovo\AppData\Local\Temp\b3lmnkqc.dll
C:\Users\Lenovo\AppData\Local\Temp\c0moc1pd.dll
C:\Users\Lenovo\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Lenovo\AppData\Local\Temp\GUR1867.exe
C:\Users\Lenovo\AppData\Local\Temp\GURBE2F.exe
C:\Users\Lenovo\AppData\Local\Temp\GURC4F.exe
C:\Users\Lenovo\AppData\Local\Temp\GURD0F4.exe
C:\Users\Lenovo\AppData\Local\Temp\hijackthis.exe
C:\Users\Lenovo\AppData\Local\Temp\i4jdel0.exe
C:\Users\Lenovo\AppData\Local\Temp\i4jdel1.exe
C:\Users\Lenovo\AppData\Local\Temp\iupdate.exe
C:\Users\Lenovo\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Lenovo\AppData\Local\Temp\jz4ebpih.dll
C:\Users\Lenovo\AppData\Local\Temp\kvvc2i5t.dll
C:\Users\Lenovo\AppData\Local\Temp\l3ajn5a3.dll
C:\Users\Lenovo\AppData\Local\Temp\m1rydvje.dll
C:\Users\Lenovo\AppData\Local\Temp\Minecraft Full Free.exe
C:\Users\Lenovo\AppData\Local\Temp\Mobogenie_Setup_2-1-23_517.exe
C:\Users\Lenovo\AppData\Local\Temp\NirCmd.exe
C:\Users\Lenovo\AppData\Local\Temp\nndt0txv.dll
C:\Users\Lenovo\AppData\Local\Temp\oi_{7EFEBA22-3642-40F3-AAC3-2831C0AEF87C}.exe
C:\Users\Lenovo\AppData\Local\Temp\ose00000.exe
C:\Users\Lenovo\AppData\Local\Temp\Quarantine.exe
C:\Users\Lenovo\AppData\Local\Temp\r1dkc1pk.dll
C:\Users\Lenovo\AppData\Local\Temp\remove.exe
C:\Users\Lenovo\AppData\Local\Temp\RFCPLSVR.dll
C:\Users\Lenovo\AppData\Local\Temp\RFCPLSVR64.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra2.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra264.dll
C:\Users\Lenovo\AppData\Local\Temp\RFVibra64.dll
C:\Users\Lenovo\AppData\Local\Temp\s5opfw4i.dll
C:\Users\Lenovo\AppData\Local\Temp\sed.exe
C:\Users\Lenovo\AppData\Local\Temp\set-app.exe
C:\Users\Lenovo\AppData\Local\Temp\setapp.exe
C:\Users\Lenovo\AppData\Local\Temp\Setup-a.exe
C:\Users\Lenovo\AppData\Local\Temp\Setup1.exe
C:\Users\Lenovo\AppData\Local\Temp\Setup2.exe
C:\Users\Lenovo\AppData\Local\Temp\shortcut.exe
C:\Users\Lenovo\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Lenovo\AppData\Local\Temp\Softonic_chr_1-8-28-2.exe
C:\Users\Lenovo\AppData\Local\Temp\srwt2eh1.dll
C:\Users\Lenovo\AppData\Local\Temp\swxcacls.exe
C:\Users\Lenovo\AppData\Local\Temp\Tsu1DC6A6C0.dll
C:\Users\Lenovo\AppData\Local\Temp\Tsu4A3AD055.dll
C:\Users\Lenovo\AppData\Local\Temp\Tsu4D39498D.dll
C:\Users\Lenovo\AppData\Local\Temp\Tsu53E1A26F.dll
C:\Users\Lenovo\AppData\Local\Temp\TsuF9D32B9B.dll
C:\Users\Lenovo\AppData\Local\Temp\UNT4445.exe
C:\Users\Lenovo\AppData\Local\Temp\UNT4447.exe
C:\Users\Lenovo\AppData\Local\Temp\v2famlxn.dll
C:\Users\Lenovo\AppData\Local\Temp\zoek-delete.exe
C:\Windows\SYSWOW64\lcpmncvupjml.exe
C:\Windows\SYSWOW64\dcgmncvupjml.exe
C:\Windows\SYSWOW64\acumncvupjml.exe
C:\Windows\SYSWOW64\lcpmncqnmptp.exe
C:\Windows\SYSWOW64\dcgmncqnmptp.exe
C:\Windows\SYSWOW64\acumncqnmptp.exe

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000Core.job
C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Torntv V6.0-chromeinstaller.job
C:\Windows\tasks\Torntv V6.0-updater.job

Hosts:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mncqnmptpSrv => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mncvupjmlSrv => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Printsrv => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\MSStp => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mncsiqaSrv => Value not found.
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Steam => Value not found.
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_332B101ED56858E0765C41199BCD4350 => Value deleted successfully.
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CatalinaGroup Update => Value not found.
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\Software\Microsoft\Windows\CurrentVersion\Run\\iMesh => Value not found.
HKU\S-1-5-21-825478306-3476294081-1402375209-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1a2eb00c-eebe-11e2-a112-28d2440e3727} => Key deleted successfully.
HKCR\CLSID\{1a2eb00c-eebe-11e2-a112-28d2440e3727} => Key not found.
HKU\S-1-5-21-825478306-3476294081-1402375209-1004\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Lenovo.ShowBand => Value deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bpsvc.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsersafeguard.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\dprotectsvc.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\jumpflip => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\protectedsearch.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchinstaller.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotection.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotector.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings64.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\snapdo.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst32.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst64.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\umbrella.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\utiljumpflip.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\volaro => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\vonteera => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroids.exe => Key deleted successfully.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroidsservice.exe => Key deleted successfully.
HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x64 => Value deleted successfully.
HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x86 => Value deleted successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{98CFA880-0172-4B9D-A4DF-DD011A02F86F} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{98CFA880-0172-4B9D-A4DF-DD011A02F86F} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{98CFA880-0172-4B9D-A4DF-DD011A02F86F} => Key deleted successfully.
HKCR\CLSID\{98CFA880-0172-4B9D-A4DF-DD011A02F86F} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{537e5bc8-460c-4298-bfba-1a553d361dd5} => Key not found.
HKCR\Wow6432Node\CLSID\{537e5bc8-460c-4298-bfba-1a553d361dd5} => Key not found.
HKCU\Software\MozillaPlugins\iMeshPlugin => Key deleted successfully.
C:\Program Files (x86)\iMesh Applications\iMesh\npiMeshPlugin.dll not found.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaBuzzV1mode2066.net => Value not found.
C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ff not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\chccmdmgeoiichmkbccdaoemnnhbdkph => Key not found.
"C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode2066\ch\MediaBuzzV1mode2066.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx => Moved successfully.
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\chccmdmgeoiichmkbccdaoemnnhbdkph directory not found.
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmhfbmpdiffkamakhdbcgojfnbnlcenm directory not found.
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof directory not found.
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oclgomenfkljhfkfflghppidonpkljjg directory not found.
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco directory not found.
c2cautoupdatesvc service was disabled
c2cpnrsvc service was disabled
F06DEFF2-5B9C-490D-910F-35D3A91196222 => Service deleted successfully.
VGPU => Service deleted successfully.
C:\Windows\inf\cssi.vbe => Moved successfully.
"C:\Windows\system32\mncqnmptp.vbe" => File/Directory not found.
"C:\Windows\system32\mncvupjml.vbe" => File/Directory not found.
"C:\Windows\inf\msstp.vbe" => File/Directory not found.
"C:\Windows\system32\mncsiqa.vbe" => File/Directory not found.
"c:\program files (x86)\music toolbar" => File/Directory not found.
C:\Program Files (x86)\MediaBuzzV1 => Moved successfully.
C:\Users\Lenovo\Downloads\FRSTLauncher (1).exe => Moved successfully.
"C:\Users\Lenovo\Downloads\index (1).php" => File/Directory not found.
"C:\Users\Lenovo\Downloads\index.php" => File/Directory not found.
C:\Windows\SysWOW64\FlashPlayerInstaller.exe => Moved successfully.
"C:\Users\Lenovo\Downloads\FRSTLauncher.exe" => File/Directory not found.
C:\folders.log => Moved successfully.
C:\zoek => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Lenovo\Desktop\zoek.exe => Moved successfully.
C:\Users\Lenovo\Desktop\JRT_NEW.exe => Moved successfully.
C:\Users\Lenovo\Desktop\adwcleaner.exe => Moved successfully.
C:\Users\Lenovo\Desktop\JRT.exe => Moved successfully.
C:\Users\Lenovo\Desktop\RSITx64.exe => Moved successfully.
C:\Users\Lenovo\Downloads\ccsetup413 (1).exe => Moved successfully.
C:\Users\Lenovo\Downloads\ccsetup413.exe => Moved successfully.
C:\Windows\Tasks\AutoKMS.job => Moved successfully.
"C:\Users\Lenovo\AppData\Local\AVG SafeGuard toolbar" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\20140104180648.38.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\2txfse0a.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\3mecv4sl.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\7za.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\appinstal1.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\avnnza5p.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\b3lmnkqc.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\c0moc1pd.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\drm_dialogs.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\GUR1867.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\GURBE2F.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\GURC4F.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\GURD0F4.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\hijackthis.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\i4jdel0.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\i4jdel1.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\iupdate.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\jz4ebpih.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\kvvc2i5t.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\l3ajn5a3.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\m1rydvje.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Minecraft Full Free.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Mobogenie_Setup_2-1-23_517.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\NirCmd.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\nndt0txv.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\oi_{7EFEBA22-3642-40F3-AAC3-2831C0AEF87C}.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\ose00000.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Quarantine.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\r1dkc1pk.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\remove.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\RFCPLSVR.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\RFCPLSVR64.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\RFVibra.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\RFVibra2.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\RFVibra264.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\RFVibra64.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\s5opfw4i.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\sed.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\set-app.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\setapp.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Setup-a.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Setup1.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Setup2.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\shortcut.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\SkypeSetup.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Softonic_chr_1-8-28-2.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\srwt2eh1.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\swxcacls.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Tsu1DC6A6C0.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Tsu4A3AD055.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Tsu4D39498D.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\Tsu53E1A26F.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\TsuF9D32B9B.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\UNT4445.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\UNT4447.exe" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\v2famlxn.dll" => File/Directory not found.
"C:\Users\Lenovo\AppData\Local\Temp\zoek-delete.exe" => File/Directory not found.
C:\Windows\SYSWOW64\lcpmncvupjml.exe => Moved successfully.
C:\Windows\SYSWOW64\dcgmncvupjml.exe => Moved successfully.
C:\Windows\SYSWOW64\acumncvupjml.exe => Moved successfully.
C:\Windows\SYSWOW64\lcpmncqnmptp.exe => Moved successfully.
C:\Windows\SYSWOW64\dcgmncqnmptp.exe => Moved successfully.
C:\Windows\SYSWOW64\acumncqnmptp.exe => Moved successfully.
C:\Windows\tasks\Adobe Flash Player Updater.job => Moved successfully.
"C:\Windows\tasks\AmiUpdXp.job" => File/Directory not found.
"C:\Windows\tasks\AutoKMS.job" => File/Directory not found.
"C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000Core.job" => File/Directory not found.
"C:\Windows\tasks\CatalinaGroupUpdateTaskUserS-1-5-21-825478306-3476294081-1402375209-1000UA.job" => File/Directory not found.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
"C:\Windows\tasks\Torntv V6.0-chromeinstaller.job" => File/Directory not found.
"C:\Windows\tasks\Torntv V6.0-updater.job" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot.

==== End of Fixlog ====

Re: Prosím o pomoc, ak nejaká je...

Napsal: 08 kvě 2014 07:14
od vyosek
Jak se chova PC??

Re: Prosím o pomoc, ak nejaká je...

Napsal: 08 kvě 2014 08:23
od jacho6380
Je podstatne rychlejsi, da sa povedat ze je v poriadku, akurat nemam moznost odinstalovat to AVG, kupil som a nainstaloval ESET, AVG uz nechcem ani vidiet ale nemam ho ako odinstalovat lebo mi chyba ta moznost a nemam ani odinstalator
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz