Ahoj, posledni dobou mam citelne zpomaleny notebook. Prijde mi, ze system i casto saha na disk podezrele moc. Byla by tu hodna duse, ktera by na to mrkla?
Prikladam log z RSIT...
Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2014-11-19 21:33:05
Microsoft Windows 8.1
System drive C: has 44 GB (10%) free of 454 GB
Total RAM: 3911 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:33:46, on 19. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.yahoo.com?fr=fp-comodo
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: (no name) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
O3 - Toolbar: (no name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - (no file)
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [tvncontrol] "C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Michal\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O4 - Startup: Dropbox.lnk = Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O4 - Global Startup: Start GeekBuddy.lnk = C:\Program Files\COMODO\GeekBuddy\launcher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{C34031FA-A4FA-46EB-8861-E7C9027E966E}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: ExpressCache - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Sleep memory optimizer (FFSOpzSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GeekBuddyRSP Server (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: McAfee Application Statistics Service (MfeASUM) - McAfee, Inc. - C:\Program Files\McAfee\AppStats\MfeASUM.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: Corel License Validation Service V2, Powered by arvato (PSI_SVC_2) - arvato digital services llc - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Acer Theft Shield Service (USecuAppSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16440 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Classic Shell\ClassicShellService.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
dashost.exe {c1280be4-f07c-4188-97d09811a5ae6a0d}
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe"
"C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe"
"C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe"
"C:\Program Files\McAfee\AppStats\MfeASUM.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\RfBtnSvc64.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
"C:\Program Files\Classic Shell\ClassicStartMenu.exe" -startup
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
C:\WINDOWS\system32\igfxext.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\TortoiseSVN\bin\TSVNCache.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe"
"C:\Program Files\COMODO\GeekBuddy\unit_manager.exe"
"C:\Program Files\COMODO\GeekBuddy\unit" "\"C:/Program Files/COMODO/GeekBuddy/lps-cspm\""
"C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe"
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe"
"C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\msiexec.exe /V
"C:\Program Files (x86)\Atlassian\SourceTree\tools\putty\pageant.exe"
"C:\Program Files\EgisTec IPS\PMMUpdate.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\Users\Michal\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 912 916 924 65536 920
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default
prefs.js - "browser.search.useDBForOrder" - "false"
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://us.search.yahoo.com/search?fr=ytff-comodo&p="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFF12.DLL
nppdf32.dll
npPDFXCviewNPPlugin.dll
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-04-12 742400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-07 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28 66688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-10-30 294400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 2334928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-07 210856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll [2013-04-12 454656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-04-12 611840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll [2013-04-12 385024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-10-30 294400]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-04-12 742400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-04-12 611840]
{25A3A431-30BB-47C8-AD6A-E1063801134F} - PDF Architect Toolbar - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-04-08 654384]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-07-27 12937872]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-07-10 1214608]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2014-07-25 1562264]
"KiesPDLR"=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2014-07-25 845120]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"cz.seznam.software.autoupdate"=C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"BitTorrent"=C:\Users\Michal\AppData\Roaming\BitTorrent\BitTorrent.exe [2014-10-26 1388376]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-29 6501656]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Home Theater v4"=C:\Dolby PCEE4\pcee4.exe [2012-07-26 508656]
"LManager"= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-07-25 311616]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432]
"tvncontrol"=C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2014-09-24 2327248]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
Start GeekBuddy.lnk - C:\Program Files\COMODO\GeekBuddy\launcher.exe
C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll, C:\WINDOWS\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-19 21:23:52 ----D---- C:\Program Files (x86)\Atlassian
2014-11-17 17:21:22 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-11-17 14:32:47 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-11-17 13:53:11 ----D---- C:\Program Files (x86)\DriverTuner
2014-11-17 13:26:23 ----D---- C:\temp
2014-11-16 16:22:12 ----D---- C:\ProgramData\UMS
2014-11-16 16:21:50 ----D---- C:\Program Files (x86)\AviSynth
2014-11-16 16:21:42 ----D---- C:\Program Files (x86)\Universal Media Server
2014-11-16 15:47:25 ----D---- C:\Program Files (x86)\DriverDoc
2014-11-16 15:13:15 ----D---- C:\Users\Michal\AppData\Roaming\Spika
2014-11-16 15:13:01 ----D---- C:\Program Files (x86)\Spika
2014-11-16 14:40:28 ----D---- C:\Users\Michal\AppData\Roaming\(D8-31-CF-9D-0A-3E)
2014-11-15 12:34:53 ----A---- C:\WINDOWS\SYSWOW64\certsentry.dll
2014-11-15 12:33:29 ----A---- C:\WINDOWS\system32\drivers\sfi.dat
2014-11-15 12:33:20 ----SD---- C:\ProgramData\Shared Space
2014-11-15 12:32:22 ----D---- C:\Program Files\COMODO
2014-11-15 12:32:05 ----A---- C:\WINDOWS\system32\certsentry.dll
2014-11-15 12:31:35 ----D---- C:\Program Files (x86)\Comodo
2014-11-15 12:31:24 ----D---- C:\ProgramData\Comodo Downloader
2014-11-15 12:31:08 ----D---- C:\ProgramData\Comodo
2014-11-12 20:06:20 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-12 20:06:15 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-12 20:06:13 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-12 20:06:10 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-12 20:06:07 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-12 20:06:00 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-12 20:06:00 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-12 20:04:22 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-12 20:04:21 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-12 20:04:20 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-12 20:04:19 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-12 20:04:18 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-12 20:04:18 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-12 20:04:17 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-12 20:04:17 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-12 20:03:37 ----A---- C:\WINDOWS\system32\devinv.dll
2014-11-12 20:03:37 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-11-12 20:03:36 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-11-12 20:03:36 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-11-12 20:03:34 ----A---- C:\WINDOWS\system32\aepic.dll
2014-11-12 17:58:01 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 17:58:00 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 17:57:24 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 17:57:18 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 17:57:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 17:57:09 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 17:57:07 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 17:57:07 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 17:57:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 17:57:05 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 17:57:04 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 17:57:02 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 17:57:01 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 17:56:59 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 17:56:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 17:56:54 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 17:56:53 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 17:56:53 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 17:56:49 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 17:56:46 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 17:56:43 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 17:56:40 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 17:56:39 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 17:56:38 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 17:56:38 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 17:56:36 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 17:56:36 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 17:56:36 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 17:56:36 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 17:56:36 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 17:56:35 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 17:56:33 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 17:56:32 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 17:56:32 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 17:56:32 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 17:56:30 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 17:56:30 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 17:56:29 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 17:56:29 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 17:56:29 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 17:56:29 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 17:56:29 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 17:56:28 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 17:56:28 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 17:56:28 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 17:56:28 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 17:56:28 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 17:56:28 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 17:56:28 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 17:56:28 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 17:56:27 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 17:56:27 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 17:56:27 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 17:56:27 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 17:56:27 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 17:56:27 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 17:56:27 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 17:56:26 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 17:56:26 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 17:56:26 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 17:56:26 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 17:56:26 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 17:56:25 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 17:56:25 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 17:56:25 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 17:56:25 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 17:56:25 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 17:56:25 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 17:56:24 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 17:56:24 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 17:56:24 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 17:56:24 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 17:56:24 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 17:56:24 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 17:56:24 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 17:56:24 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 17:56:23 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 17:56:23 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 17:56:23 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 17:56:23 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 17:56:23 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 17:56:22 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 17:56:22 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 17:56:22 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 17:56:22 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 17:56:22 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 17:55:14 ----A---- C:\WINDOWS\system32\shell32.dll
2014-11-12 17:55:12 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-11-12 17:55:11 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-11-12 17:55:08 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-12 17:55:07 ----A---- C:\WINDOWS\system32\twinui.dll
2014-11-12 17:55:06 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-11-12 17:55:05 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-12 17:55:05 ----A---- C:\WINDOWS\system32\localspl.dll
2014-11-12 17:55:04 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-12 17:55:03 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-11-12 17:55:02 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-11-12 17:55:02 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-11-12 17:55:02 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-11-12 17:55:01 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-11-12 17:55:00 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-11-12 17:54:59 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-11-12 17:54:59 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-11-12 17:54:59 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-11-12 17:54:58 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-11-12 17:54:57 ----A---- C:\WINDOWS\system32\untfs.dll
2014-11-12 17:54:57 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-11-12 17:54:56 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-11-12 17:54:53 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 17:54:51 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2014-11-12 17:54:49 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2014-11-12 17:54:43 ----A---- C:\WINDOWS\system32\PJLMON.DLL
2014-11-12 17:54:24 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 17:54:23 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 17:54:23 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 17:54:23 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 17:54:23 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 17:53:56 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 17:53:55 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 17:53:55 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 17:53:55 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 17:53:55 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 17:53:55 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 17:53:55 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 17:53:55 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 17:53:55 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 17:53:54 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 17:53:54 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 17:53:54 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 17:53:54 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 17:52:22 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-12 17:52:21 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-12 17:52:21 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-12 17:52:21 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-12 17:52:21 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-12 17:52:21 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 17:52:21 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-12 17:52:21 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-12 17:52:21 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-12 17:52:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-12 17:52:20 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-12 17:52:20 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-12 17:52:20 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-12 17:52:20 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-12 17:52:20 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-12 17:52:20 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-12 17:51:34 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 17:51:31 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 17:51:31 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 17:51:31 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 17:51:28 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 17:51:28 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-12 17:51:24 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 17:51:22 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 17:51:22 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 17:51:22 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 17:51:22 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 17:51:22 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 17:51:22 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 17:51:22 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 17:51:21 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 17:51:21 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 17:51:21 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-11 12:25:43 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-11-08 12:37:51 ----A---- C:\WINDOWS\system32\drivers\39737CDF.sys
2014-11-07 08:16:35 ----D---- C:\ProgramData\Malwarebytes
2014-11-06 18:24:00 ----D---- C:\Program Files\trend micro
2014-11-06 18:23:59 ----D---- C:\rsit
2014-11-02 17:19:14 ----D---- C:\Users\Michal\AppData\Roaming\WebExtend
======List of files/folders modified in the last 1 month======
2014-11-19 21:31:13 ----D---- C:\WINDOWS\Prefetch
2014-11-19 21:29:51 ----D---- C:\WINDOWS\Temp
2014-11-19 21:23:55 ----SHD---- C:\WINDOWS\Installer
2014-11-19 21:23:52 ----RD---- C:\Program Files (x86)
2014-11-19 21:23:10 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-19 21:02:04 ----D---- C:\WINDOWS\system32\sru
2014-11-19 15:25:08 ----D---- C:\WINDOWS\system32\catroot2
2014-11-19 15:24:58 ----SHD---- C:\System Volume Information
2014-11-19 15:22:02 ----D---- C:\WINDOWS\system32\config
2014-11-19 15:21:43 ----D---- C:\ProgramData\Atlassian
2014-11-19 15:18:05 ----D---- C:\Windows
2014-11-19 15:18:01 ----D---- C:\WINDOWS\CbsTemp
2014-11-19 11:49:16 ----RD---- C:\WINDOWS\System32
2014-11-19 11:49:16 ----D---- C:\WINDOWS\Inf
2014-11-19 11:49:16 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-18 17:49:55 ----D---- C:\WINDOWS\system32\Tasks
2014-11-18 12:16:39 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-18 12:15:44 ----D---- C:\WINDOWS\debug
2014-11-17 14:30:54 ----D---- C:\WINDOWS\system32\NV
2014-11-17 14:28:52 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-17 14:28:23 ----D---- C:\WINDOWS\system32\drivers
2014-11-17 14:27:23 ----D---- C:\WINDOWS\system32\catroot
2014-11-17 14:26:51 ----D---- C:\WINDOWS\SysWOW64
2014-11-17 14:11:06 ----D---- C:\Users\Michal\AppData\Roaming\BitTorrent
2014-11-17 13:14:23 ----D---- C:\Michal
2014-11-16 23:04:47 ----D---- C:\Users\Michal\AppData\Roaming\Skype
2014-11-16 18:25:01 ----RSD---- C:\WINDOWS\assembly
2014-11-16 17:55:38 ----D---- C:\WINDOWS\system32\NDF
2014-11-16 16:22:12 ----AHD---- C:\ProgramData
2014-11-15 16:50:10 ----D---- C:\WINDOWS\rescache
2014-11-15 14:07:33 ----D---- C:\Program Files (x86)\Common Files
2014-11-15 12:32:22 ----RD---- C:\Program Files
2014-11-14 21:53:35 ----D---- C:\WINDOWS\Tasks
2014-11-14 17:49:49 ----D---- C:\WINDOWS\WinSxS
2014-11-14 17:47:20 ----D---- C:\Program Files (x86)\McAfee
2014-11-14 17:45:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-14 17:09:12 ----D---- C:\Program Files\Windows Defender
2014-11-14 17:09:11 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-14 17:09:08 ----D---- C:\WINDOWS\system32\wbem
2014-11-14 17:09:07 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-11-14 17:09:07 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-14 17:09:07 ----D---- C:\WINDOWS\system32\en-US
2014-11-14 17:09:07 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-14 17:09:06 ----D---- C:\WINDOWS\system32\en-GB
2014-11-14 17:09:05 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-14 17:09:05 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-14 17:09:04 ----D---- C:\WINDOWS\system32\migration
2014-11-14 17:09:04 ----D---- C:\Program Files\Internet Explorer
2014-11-14 17:09:03 ----SD---- C:\WINDOWS\system32\CompatTel
2014-11-14 17:09:01 ----RD---- C:\WINDOWS\ToastData
2014-11-14 17:08:59 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-11-14 17:08:59 ----D---- C:\WINDOWS\apppatch
2014-11-14 17:07:48 ----D---- C:\ProgramData\Microsoft Help
2014-11-14 16:22:18 ----D---- C:\WINDOWS\system32\MRT
2014-11-14 16:12:16 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-13 16:06:21 ----HD---- C:\Program Files\WindowsApps
2014-11-13 16:06:21 ----D---- C:\WINDOWS\AppReadiness
2014-11-12 15:21:34 ----D---- C:\Users\Michal\AppData\Roaming\vlc
2014-11-11 12:02:40 ----D---- C:\WINDOWS\SoftwareDistribution
2014-11-06 18:04:29 ----D---- C:\Users\Michal\AppData\Roaming\TeamViewer
2014-11-06 18:04:22 ----D---- C:\WINDOWS\Logs
2014-11-06 18:03:29 ----D---- C:\Program Files\CCleaner
2014-10-30 12:25:26 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-10-30 11:30:50 ----SD---- C:\Users\Michal\AppData\Roaming\Microsoft
2014-10-30 01:55:02 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 excsd;ExpressCache Storage Filter Driver; C:\WINDOWS\system32\DRIVERS\excsd.sys [2012-03-30 95024]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-09 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-09-05 30496]
R1 CFRMD;CFRMD; C:\WINDOWS\system32\DRIVERS\CFRMD.sys [2014-06-26 40224]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\WINDOWS\System32\DRIVERS\cmderd.sys [2014-04-16 23168]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\system32\DRIVERS\cmdguard.sys [2014-04-16 748784]
R1 dtsoftbus01;@oem36.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-03-05 283064]
R1 excfs;ExpressCache File System Filter Driver; C:\WINDOWS\system32\DRIVERS\excfs.sys [2012-03-30 23344]
R1 MfeASKM;McAfee Application Statistics Device Driver; \??\C:\Program Files\McAfee\AppStats\MfeASKM.sys [2013-08-22 31408]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2012-09-01 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2012-09-01 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2012-09-01 62776]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2013-04-12 237840]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2013-04-12 120080]
R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2013-03-01 36600]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-28 179432]
R3 BTATH_RCP;@oem33.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-28 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 ETD;@oem40.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-08-30 318864]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-10-01 3828152]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-07-31 4102928]
R3 IntcDAud;@oem32.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 irstrtdv;@oem4.inf,%Irstrt.DispName%;Intel(R) Rapid Start Technology Driver; C:\WINDOWS\System32\drivers\irstrtdv.sys [2012-07-20 43800]
R3 iwdbus;@oem46.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-08-01 27032]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MarvinBus;@oem18.inf,%MarvinBus.SVCDESC%;Pinnacle Marvin Bus 64; C:\WINDOWS\System32\drivers\MarvinBus64.sys [2005-09-23 261120]
R3 MEIx64;@oem16.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-01-11 64624]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2010-04-20 18432]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-09-05 11273504]
R3 Ps2Kb2Hid;@oem3.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2012-09-20 26736]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2010-07-09 17408]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 AthBTPort;@oem9.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-28 89168]
S3 BTATH_A2DP;@oem8.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-28 346192]
S3 btath_avdt;@oem8.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-28 115280]
S3 BTATH_LWFLT;@oem31.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-28 77464]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem22.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\SysWOW64\FsUsbExDisk.SYS [2014-01-23 37344]
S3 intaud_WaveExtensible;@oem45.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-08-01 38296]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys []
S3 RSPCIESTOR;@oem38.inf,%Rts5208%;Realtek PCIE CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPStor.sys [2012-07-04 339600]
S3 ssudmdm;@oem1.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2013-04-12 131856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2013-01-28 227456]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-08-24 2435728]
R2 ClassicShellService;Classic Shell Service; C:\Program Files\Classic Shell\ClassicShellService.exe [2013-04-12 68608]
R2 CLPSLauncher;COMODO LPS Launcher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [2014-09-25 70864]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 6817544]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-05-21 2135232]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-08-21 348784]
R2 ExpressCache;ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [2012-03-30 79664]
R2 FFSOpzSvc;Sleep memory optimizer; C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe [2012-03-12 161384]
R2 GeekBuddyRSP;GeekBuddyRSP Server; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2014-09-24 2327248]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-13 2451456]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-10-01 319376]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-17 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 276864]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [2014-11-12 156904]
R2 MfeASUM;McAfee Application Statistics Service; C:\Program Files\McAfee\AppStats\MfeASUM.exe [2013-08-22 335216]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-08-23 259136]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-08-29 920864]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 PSI_SVC_2;Corel License Validation Service V2, Powered by arvato; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2013-09-13 277360]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2012-09-20 93296]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-25 5024576]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 364416]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-08-23 658576]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-28 107912]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 2264280]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-10-01 281488]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-08-23 468624]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-07-12 174160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-09-20 655624]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-28 107912]
S3 irstrtsv;Intel(R) Rapid Start Technology Service; C:\Windows\SysWOW64\irstrtsv.exe [2012-07-19 193576]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-11 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 150600]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 USecuAppSvc;Acer Theft Shield Service; C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [2012-11-12 345744]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomaly notebook
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Pomaly notebook
Zdravim 
Odinstalujte McAfee Security Scan
Odinstalujte Spybot - Search & Destroy - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
Odinstalujte McAfee Security Scan Odinstalujte Spybot - Search & Destroy - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Po spusteni probehne stazeni databaze
- Kliknete na Scan a nasledne Clean
- Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
- Do okna vlozte skript nize
Kód: Vybrat vše
autoclean; emptyclsid; iedefaults; FFdefaults; CHRdefaults; emptyalltemp; resethosts;- Nasledne kliknete na Run Script
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Pomaly notebook
# AdwCleaner v4.101 - Report created 19/11/2014 at 22:03:38
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Michal - MICHAL-ACER
# Running from : C:\Users\Michal\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Tbccint
Folder Deleted : C:\Program Files (x86)\Tbccint
Folder Deleted : C:\Users\Michal\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Michal\AppData\Local\Tbccint
Folder Deleted : C:\Users\Michal\AppData\LocalLow\Tbccint
Folder Deleted : C:\Users\Michal\AppData\Roaming\pdfforge
Folder Deleted : C:\Users\Michal\AppData\Roaming\WebExtend
Folder Deleted : C:\Users\Michal\Documents\Mobogenie
Folder Deleted : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Folder Deleted : C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
File Deleted : C:\END
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
File Deleted : C:\Users\Michal\daemonprocess.txt
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IECT3329621
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3329621
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\Solvusoft
Key Deleted : HKCU\Software\Tbccint
Key Deleted : HKCU\Software\Tbccint_HKLM
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Tbccint
Key Deleted : HKCU\Software\AppDataLow\Software\TbccintSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Myfree Codec
Key Deleted : HKLM\SOFTWARE\PIP
Key Deleted : HKLM\SOFTWARE\Solvusoft
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v33.1 (x86 cs)
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.FF19Solved", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.UserID", "UN76849946020952160");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.fullUserID", "UN76849946020952160.IN.20131105102642");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.installDate", "05/11/2013 10:26:45");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.installSessionId", "830d6caf-08cd-4d47-8436-0ce0d90a6d31");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.installSp", "FALSE");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.installerVersion", "1.8.0.14");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.keyword", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.originalSearchAddressUrl", "");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.searchRevert", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.searchUserMode", "1");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.toolbarInstallDate", "05-11-2013 10:26:42");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.versionFromInstaller", "10.21.1.7");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.xpeMode", "0");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000082.isPlayDisplay", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000082.state", "{\"state\":\"stopped\",\"text\":\"1.FM Dance\",\"description\":\"1.FM Dance\",\"url\":\"mms://dance.1.fm/energydance128k?MSWMExt=.asf\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_TMP_city", "VSETIN");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_TMP_country", "CZ");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_country", "CZECH REPUBLIC");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_locId", "EZZL0490");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_location", "Vsetin, ZL, Czech Republic");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_region", "OT");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_temp_dis", "c");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_wind_dis", "kmh");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.FF19Solved", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.FirstTime", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.FirstTimeFF3", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.RestartDialogFirstTime", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.RestartDialogShouldDisplay", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.UserID", "UN23276718172646924");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.addressBarTakeOverEnabledInHidden", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.appOptions", "{}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.countryCode", "CZ");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.defaultSearch", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.embeddedsData", "[{\"appId\":\"130444626818257041\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.enableAlerts", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.enableSearchFromAddressBar", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.firstTimeDialogOpened", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.fixPageNotFoundError", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.fixPageNotFoundErrorByUser", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.fixPageNotFoundErrorInHidden", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.fullUserID", "UN23276718172646924.IN.20140919210221");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installDate", "19/09/2014 21:02:25");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installId", "dm");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installSessionId", "f90a3e39-c44c-4840-90cc-86a694c67307");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installSp", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installType", "clientconnectnsisintegration");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installUsage", "2014-09-19T22:02:54.648885+03:00");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installUsageEarly", "2014-09-19T22:02:54.1028675+03:00");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installerVersion", "1.8.1.4");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.isCheckedStartAsHidden", true);
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.lastVersion", "10.33.0.17");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"about%3Aaddons\",\"EB_MAIN_FRAME_TITLE\":\"\",\"EB_TOOLBAR_SUB_DOMAIN\":\"hxxp://BSPlayerControlBarB.OurT[...]
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.openThankYouPage", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.openUninstallPage", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.performedDomainChangesMigration", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.revertSettingsEnabled", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.search.searchAppId", "130444626818257041");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.search.searchCount", "0");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchInNewTabEnabledByUser", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchInNewTabEnabledInHidden", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchRevert", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchSuggestEnabledByUser", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchUninstallUserMode", "4");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchUserMode", "4");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"3\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT3329621\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://BSPlayerControlBarB.OurToolbar.com//xpi\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"BS Player ControlBar B \"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_Configuration_lastUpdate", "1411153372927");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1411153373747");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_appsMetadata_lastUpdate", "1411153373308");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1411153373351");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1411153372994");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1411153373567");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_login_10.33.0.17_lastUpdate", "1411153373756");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1411153373393");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_searchAPI_lastUpdate", "1411153373505");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_serviceMap_lastUpdate", "1411153372546");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_toolbarContextMenu_lastUpdate", "1411153373450");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_toolbarSettings_lastUpdate", "1411153372703");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_translation_lastUpdate", "1411153373482");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.settingsINI", true);
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.shouldFirstTimeDialog", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.showToolbarPermission", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.smartbar.CTID", "CT3329621");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.smartbar.Uninstall", "0");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.smartbar.toolbarName", "BS Player ControlBar B ");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.startPage", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarBornServerTime", "19-9-2014");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarCurrentServerTime", "19-9-2014");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarDisabled", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarInstallDate", "19-09-2014 21:02:21");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarLoginClientTime", "Fri Sep 19 2014 21:02:53 GMT+0200");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.versionFromInstaller", "10.33.0.17");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.xpeMode", "1");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1411153436090,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT1750559");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&CUI=UN76849946020952160&UM=1&q=");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("smartbar.machineId", "6A8LUYX/8PYJOFYTX8M90XL6WPUMEIJC9U6QWOAKIC/L5EWCVPHKO4K4W7KZV6ELNRSVOGAE8Q7/XVJVRQ8R6Q");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("smartbar.searchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&CUI=UN76849946020952160&UM=1&q=");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_currentVersion", "312E31332E302E3137");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_currentVersion.storedInFile", false);
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_migrated_from_ls", "31");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_migrated_from_ls.storedInFile", false);
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_userBornDate", "4E2F41");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_userBornDate.storedInFile", false);
-\\ Google Chrome v38.0.2125.111
-\\ Comodo Dragon v33.1.0.0
[C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\preferences] - Deleted [Extension] : cmaiofennmphjldldcpphcechfnnohja
-\\ Opera v19.0.1326.56
*************************
AdwCleaner[R0].txt - [17342 octets] - [19/11/2014 21:57:18]
AdwCleaner[S0].txt - [18321 octets] - [19/11/2014 22:03:38]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [18382 octets] ##########
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Michal - MICHAL-ACER
# Running from : C:\Users\Michal\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Tbccint
Folder Deleted : C:\Program Files (x86)\Tbccint
Folder Deleted : C:\Users\Michal\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Michal\AppData\Local\Tbccint
Folder Deleted : C:\Users\Michal\AppData\LocalLow\Tbccint
Folder Deleted : C:\Users\Michal\AppData\Roaming\pdfforge
Folder Deleted : C:\Users\Michal\AppData\Roaming\WebExtend
Folder Deleted : C:\Users\Michal\Documents\Mobogenie
Folder Deleted : C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Folder Deleted : C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
File Deleted : C:\END
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
File Deleted : C:\Users\Michal\daemonprocess.txt
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IECT3329621
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3329621
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\Solvusoft
Key Deleted : HKCU\Software\Tbccint
Key Deleted : HKCU\Software\Tbccint_HKLM
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Tbccint
Key Deleted : HKCU\Software\AppDataLow\Software\TbccintSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Myfree Codec
Key Deleted : HKLM\SOFTWARE\PIP
Key Deleted : HKLM\SOFTWARE\Solvusoft
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v33.1 (x86 cs)
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.FF19Solved", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.UserID", "UN76849946020952160");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.fullUserID", "UN76849946020952160.IN.20131105102642");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.installDate", "05/11/2013 10:26:45");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.installSessionId", "830d6caf-08cd-4d47-8436-0ce0d90a6d31");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.installSp", "FALSE");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.installerVersion", "1.8.0.14");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.keyword", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.originalSearchAddressUrl", "");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.searchRevert", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.searchUserMode", "1");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.toolbarInstallDate", "05-11-2013 10:26:42");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.versionFromInstaller", "10.21.1.7");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT1750559.xpeMode", "0");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000082.isPlayDisplay", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000082.state", "{\"state\":\"stopped\",\"text\":\"1.FM Dance\",\"description\":\"1.FM Dance\",\"url\":\"mms://dance.1.fm/energydance128k?MSWMExt=.asf\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_TMP_city", "VSETIN");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_TMP_country", "CZ");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_country", "CZECH REPUBLIC");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_locId", "EZZL0490");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_location", "Vsetin, ZL, Czech Republic");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_region", "OT");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_temp_dis", "c");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.1000234.TWC_wind_dis", "kmh");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.FF19Solved", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.FirstTime", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.FirstTimeFF3", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.RestartDialogFirstTime", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.RestartDialogShouldDisplay", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.UserID", "UN23276718172646924");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.addressBarTakeOverEnabledInHidden", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.appOptions", "{}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.countryCode", "CZ");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.defaultSearch", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.embeddedsData", "[{\"appId\":\"130444626818257041\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.enableAlerts", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.enableSearchFromAddressBar", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.firstTimeDialogOpened", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.fixPageNotFoundError", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.fixPageNotFoundErrorByUser", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.fixPageNotFoundErrorInHidden", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.fullUserID", "UN23276718172646924.IN.20140919210221");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installDate", "19/09/2014 21:02:25");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installId", "dm");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installSessionId", "f90a3e39-c44c-4840-90cc-86a694c67307");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installSp", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installType", "clientconnectnsisintegration");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installUsage", "2014-09-19T22:02:54.648885+03:00");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installUsageEarly", "2014-09-19T22:02:54.1028675+03:00");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.installerVersion", "1.8.1.4");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.isCheckedStartAsHidden", true);
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.lastVersion", "10.33.0.17");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"about%3Aaddons\",\"EB_MAIN_FRAME_TITLE\":\"\",\"EB_TOOLBAR_SUB_DOMAIN\":\"hxxp://BSPlayerControlBarB.OurT[...]
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.openThankYouPage", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.openUninstallPage", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.performedDomainChangesMigration", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.revertSettingsEnabled", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.search.searchAppId", "130444626818257041");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.search.searchCount", "0");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchInNewTabEnabledByUser", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchInNewTabEnabledInHidden", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchRevert", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchSuggestEnabledByUser", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchUninstallUserMode", "4");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.searchUserMode", "4");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"3\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT3329621\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://BSPlayerControlBarB.OurToolbar.com//xpi\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"BS Player ControlBar B \"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_Configuration_lastUpdate", "1411153372927");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1411153373747");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_appsMetadata_lastUpdate", "1411153373308");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1411153373351");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1411153372994");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1411153373567");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_login_10.33.0.17_lastUpdate", "1411153373756");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1411153373393");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_searchAPI_lastUpdate", "1411153373505");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_serviceMap_lastUpdate", "1411153372546");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_toolbarContextMenu_lastUpdate", "1411153373450");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_toolbarSettings_lastUpdate", "1411153372703");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.serviceLayer_services_translation_lastUpdate", "1411153373482");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.settingsINI", true);
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.shouldFirstTimeDialog", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.showToolbarPermission", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.smartbar.CTID", "CT3329621");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.smartbar.Uninstall", "0");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.smartbar.toolbarName", "BS Player ControlBar B ");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.startPage", "false");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarBornServerTime", "19-9-2014");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarCurrentServerTime", "19-9-2014");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarDisabled", "true");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarInstallDate", "19-09-2014 21:02:21");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.toolbarLoginClientTime", "Fri Sep 19 2014 21:02:53 GMT+0200");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.versionFromInstaller", "10.33.0.17");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621.xpeMode", "1");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("CT3329621_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1411153436090,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT1750559");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&CUI=UN76849946020952160&UM=1&q=");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("smartbar.machineId", "6A8LUYX/8PYJOFYTX8M90XL6WPUMEIJC9U6QWOAKIC/L5EWCVPHKO4K4W7KZV6ELNRSVOGAE8Q7/XVJVRQ8R6Q");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("smartbar.searchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=2&CUI=UN76849946020952160&UM=1&q=");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_currentVersion", "312E31332E302E3137");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_currentVersion.storedInFile", false);
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_migrated_from_ls", "31");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_migrated_from_ls.storedInFile", false);
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_userBornDate", "4E2F41");
[fene08pi.default\prefs.js] - Line Deleted : user_pref("valueApps.CT3329621.mam_gk_userBornDate.storedInFile", false);
-\\ Google Chrome v38.0.2125.111
-\\ Comodo Dragon v33.1.0.0
[C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\preferences] - Deleted [Extension] : cmaiofennmphjldldcpphcechfnnohja
-\\ Opera v19.0.1326.56
*************************
AdwCleaner[R0].txt - [17342 octets] - [19/11/2014 21:57:18]
AdwCleaner[S0].txt - [18321 octets] - [19/11/2014 22:03:38]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [18382 octets] ##########
Re: Pomaly notebook
Pokracujte Zoek-em
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Pomaly notebook
Zoek.exe v5.0.0.0 Updated 19-November-2014
Tool run by Michal on st 19. 11. 2014 at 22:13:02,97.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Michal\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
19. 11. 2014 22:15:32 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0743541D-FB78-4FBD-BC5C-5081D42CD016} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1730D4CC-3B1-4A96-849F-38F1846C9FF5} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{188EDD8C-A770-4021-85E1-868F339B2F6F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19A5662-F6F5-44F4-9865-2D111CF5F66D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B2FDD8F-703A-401F-A0CA-B81467F64D5B} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{210B8CC7-90D6-4855-8657-37299FF7549E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22579272-3862-476A-8DB6-D8EE92E97CEC} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22F81A83-3A57-48BA-B1AB-2F5E757EF760} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{23FF9F5D-4B09-45B5-8ECE-AC2CA3603664} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25AB74C3-785F-4BFD-B7F3-2EE36F7627} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25B8B7BC-E040-4A6B-B134-E3474A30EC23} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2BFFE222-A906-415F-88BC-F26F3BE2AC} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C065E70-CCCD-4239-8075-84DA7CCF47AC} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2DA02B08-D12-4CFD-BD5E-DF893C9DB47} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2F4A3D3F-4D21-407E-95A3-BCDB7482AC42} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3081A8BD-3E16-45E4-BF8-2DBFC8458479} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3097D152-7584-4C9B-BF6C-E17020E29AEC} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31D8B321-1847-4ECC-8A73-78FFDEB70DB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{339C28F8-AF0D-4320-B75D-BB16E98B9D2F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348B5B41-9EFF-4015-B6C0-89DC76643D29} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{36651A5-A8B2-454D-8197-EE19E8669080} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{36924CD1-9DCA-4E65-A139-1AB0AABDD9D8} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{38A99F37-883C-42EF-945F-23C536E14CB6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{38FBF21C-C755-4DEB-8986-4ADBAF16DB93} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3A3DD635-87E9-49FE-B1CE-B39E268A533} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B86E0CD-F66-4F71-887E-FBFCEEE2530} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3C9CD0A7-2C9-41C3-B474-67A6E82FDF6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D6F8B16-EE1D-4D19-8D33-C917A618DC2A} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{40172857-3CF1-4BFC-908E-D4D9CA63A8B} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4098F923-EDC3-48A4-BEA-B2C22330817} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43469329-D19E-48E6-9F93-1832158362A0} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43B7F62-E109-47A0-80D0-5DBF1F788D1} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4461298D-C8EE-4877-8231-C1FD57DD87EF} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4462F506-AE32-4EBD-A648-77C8201F49F0} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{463E6AA2-4FA3-44AB-B9CE-34D7E0BA66B2} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{46C4FE3-12B9-4067-90B1-37A4A5245A47} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{477533E4-1E55-49AF-B29D-59A32FED5048} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47DD6F29-DFF6-4889-8610-CD6D227F92F5} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{48804AF4-7071-409F-8144-E69B7AF031AE} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E4DD6F-2BAC-4CC9-A5CB-A0BB3084D0EB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{524B427B-7207-4396-BAF8-FB99331C23FA} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{531822F1-5863-47D9-B996-3838111B41} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57C3D358-4239-4FD9-8DBF-BB9FA1718FFF} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57D53446-14E9-4E63-8543-57CB53D6CF58} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5B424E6D-A36-4B13-9DF5-BBACAB3830F5} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5D977281-7755-4031-B72F-33E198B8F6F9} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{64C38C1A-CBAF-4F7B-996B-888CE8984FC3} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66295511-7140-4625-BCA1-DBE4B2081C8} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6A85797F-DCE3-44E4-A6A-C44DEBB87258} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6E59FE92-8B46-4BEF-AAE1-7E852DD671CB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F3C510C-592A-4CC7-93E9-B2E4B85616D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7091E74-2DD1-470C-998F-B3EC182F3A14} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{70A91F75-53B7-490F-AA65-FC50C6EF1B55} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7331C9F2-7AF-44A3-AB2A-31A13082A646} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74C5F4A0-B6B-4D86-AC3-ED54BB408997} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{75273B9C-AB0F-43A5-BE9E-BEBCEFF6AF0} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7716051C-21A0-4550-BD59-F384296D5464} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{77C04FCC-9D0B-4DCF-AAC2-673B3E35AF48} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7840F7A7-2EA3-4E2D-98AC-A55F6993F6B} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{79A1F9A6-B4A0-475F-ACCD-5B217109CFB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7AE28A68-74E0-4A1E-9C97-ACF7ED80209D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{802353E6-5443-4504-9157-26219C57794} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8157F1B1-5ADA-4DD7-80C4-7F647B14515D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81EB148F-F91B-4385-8CFE-1FAB7875B13D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8230E22C-E518-4B10-863A-97DF565178A} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85213795-2044-40DE-B0D5-DE177A734E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{879BF70F-FF00-4E15-9F24-5BD8247C77E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A11DB3A-B062-4129-BBEA-1EAA5EAC71CA} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8C3F874E-2F5F-4BB3-9C58-387B7C957CC3} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{94667EBA-1781-4F94-B268-592843CD938} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{951197A8-F24D-4103-8EB6-CAAC88C2EF79} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95E3A9EA-34CB-48CA-BD51-B8A6A162F714} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{975325E9-6877-4A9A-923F-48CF5BB42A9F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{98E495F9-2920-43D7-83F8-25376CEC2D45} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CDFBA21-A9EA-4E05-A7D9-4C5560BF289} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9E7FE7D0-F33D-4F6D-B871-AE7B9C8EBF77} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9FEF8B23-48B8-4A7F-9319-167B279812E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A24DE21F-F2A9-4ADC-B1F9-61E0AE86F08D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A4EEE80A-E3-4E27-9166-FC45A1673F2F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A6563A7A-3E9A-427E-B55D-DEC20D9F4} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A673D26B-4476-4066-94C3-B9812ACCDEC4} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A9F868F1-C17B-44CB-83D2-DBB407BF641} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AE7C9625-52CB-4B25-99BD-D0E2D93728FB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B527A082-16D-4B87-92D3-52E07796339F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B84AAF48-AFBC-4EC1-B9DF-8F7874918887} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B93F6AC6-39-41A9-8AAE-AA471984DF90} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BA7F7933-57A8-4700-8B81-A66B3DEEF7F9} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BD7594DC-56A4-44C0-842-4BA398C25A50} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BEC413C-D446-482F-ACEF-AD4B67343D6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BFFCF39B-417E-4382-BD2F-75E874A58B13} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C080FB1E-DD46-4788-BFCF-228FB572DAC9} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C45BAF5E-6784-45EF-8B1D-12A3C73148C6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C5A667B7-2436-40DD-939F-4AD78DEE36DD} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCA4380-5553-411D-8861-8788975C8F83} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CEB54E43-DDCF-416D-A635-C01FEA69F832} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D6451EA7-3C9A-4310-8635-1489406664B} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D67F86E3-5622-459F-B938-1180A2BC93D9} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D9E877CA-85CD-43A1-B36D-32F753B9D5D6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DBADC072-8677-42E8-A420-F55B601014E1} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DF7C77C8-4B1A-4747-A5B2-7AF31C4892D5} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0E8BDDB-5FF0-4929-BD51-4BDBC9DB4B1} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1A9E8E0-CD93-4C55-B1C5-4FC99BB6B496} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7C234D9-75BA-4C71-9965-34CE525BDB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB64BE1C-F0AF-4047-B55C-5520B17DA9E7} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EFA42D90-3E25-4B20-9774-E61F63442F14} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F1460D43-9B18-483D-8EE4-9E77198446D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F1773304-529A-4EA0-A81F-A0FCD756D447} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F3257F7C-5B3D-491C-87D9-274A541E3AEA} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F563927E-891A-43A6-B7BE-0A318AFAC59} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F601BADE-2F5B-44D5-9E9A-F3E07B184159} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F6599667-519E-4EDF-9A64-4F50616DA1C} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FA1F0ADF-B74A-4EFE-808B-599D2476809E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC91BDA7-2A47-439B-9F64-2E9AB98B61FD} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FD008FAC-D6D9-425C-9882-52E73BEAA1E9} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\URLSearchHooks\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Mozilla\Firefox\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz/");
user_pref("browser.search.defaultenginename", "Yahoo");
user_pref("browser.search.selectedEngine", "Yahoo");
user_pref("keyword.URL", "http://us.search.yahoo.com/search?fr=ytff-comodo&p=");
user_pref("browser.search.useDBForOrder", "false");
Added to C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);
ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default
user.js not found
---- Lines {58e3c1c9-2dc1-4762-bd45-1df9da9d0820} removed from prefs.js ----
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.daysPassed", "{\"t2d\":true}");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.installtime", "1414947674.29");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.is_bundle", "true");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.isFirstRun", "false");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.last_version", "");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.lastC", "{\"sm\":393041,\"li\":393155,\"mo\":393155}");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.moEnabled", true);
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.remEv", "1415358724900");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.server", "https://s7902.webovernet.com");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.src", "7902");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.toolbarButtonInstalled", true);
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.user_id", "2A8B2CC7-1E6B-4AB6-8350-05D32F9C8101");
---- Lines {d6b1a471-3776-48de-90e2-a0d90de70fd3} removed from prefs.js ----
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.installtime", "1414947674.29");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.is_bundle", "true");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.isFirstRun", "false");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.last_version", "");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.lastC", "{\"sm\":393041,\"li\":393065}");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.server", "https://s7902.webovernet.com");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.src", "7902");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.toolbarButtonInstalled", true);
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.user_id", "2A8B2CC7-1E6B-4AB6-8350-05D32F9C8101");
---- Lines valueApps removed from prefs.js ----
user_pref("valueApps.storage.mam_gk_userId", "32616662343132352D653139612D343830622D626165352D303764633337323837636462");
---- Lines FFPDFArchitectConverter@pdfarchitect.com modified from prefs.js ----
user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}\":{\"descriptor\":\"C:\\\\
---- FireFox user.js and prefs.js backups ----
prefs_201420.11._0547_.backup
==== Deleting Files \ Folders ======================
C:\PROGRA~3\EPSON deleted
C:\Users\Michal\.android deleted
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~2\Visual Paradigm for UML CE 10.2 deleted
C:\PROGRA~2\Youdagames deleted
C:\Users\Michal\AppData\Roaming\YoudaGames deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Michal\AppData\Local\Software deleted
C:\Users\Michal\AppData\Local\cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted
C:\WINDOWS\wininit.ini deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\jetpack deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\CT1750559 deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\CT3329621 deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\smartbar deleted
"C:\windows\Installer\22fd9.msi" deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"FFPDFArchitectConverter@pdfarchitect.com"=hex(2):43,00,3a,00,5c,00,50,00,72,\ []
==== Firefox Extensions ======================
ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default
- McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor
- Undetermined - {4ED1F68A-5463-4931-9384-8FFF5ED91D92}
- Seznam litika - %ProfilePath%\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
- Firebug - %ProfilePath%\extensions\firebug@software.joehewitt.com.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default
67D325B5AEB28E381B84E8DE1A90C7A8 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll - Shockwave Flash
CA36F6DCA9A783FF60CB2DC5D28FA5F0 - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll - PDF-XChange Viewer
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[]
Comodo Drag&Drop Service - Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo
Comodo Web Inspector - Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn
Comodo Media Downloader - Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo
Seznam Lištička - Email - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
SiteAdvisor - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho
Seznam Lištička - Rychlá volba - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
==== Chromium Startpages ======================
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://us.yahoo.com?fr=fpc-comodo",
"urls_to_restore_on_startup": [ "http://us.yahoo.com?fr=fpc-comodo" ]
==== Chromium Fix ======================
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://us.yahoo.com?fr=fp-comodo"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}] not found
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{8D2BC872-6858-4B3F-8B00-CEC93F6775E0} Unknown Url="Not_Found"
==== Reset Google Chrome ======================
C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Preferences was reset successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Web Data was reset successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\SearchScopes\{8D2BC872-6858-4B3F-8B00-CEC93F6775E0} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\FFPDFArchitectConverter@pdfarchitect.com deleted successfully
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\203E62EEA6789D84098513925E9B9999 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE26E302-876A-48D9-9058-3129E5B99999} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\203E62EEA6789D84098513925E9B9999 deleted successfully
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
C:\Users\Michal\AppData\Local\Mozilla\Firefox\Profiles\fene08pi.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
C:\Users\Michal\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=6170 folders=787 795868225 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Michal\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser.Michal-ACER\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Michal\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on źt 20. 11. 2014 at 13:30:52,79 ======================
Tool run by Michal on st 19. 11. 2014 at 22:13:02,97.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Michal\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
19. 11. 2014 22:15:32 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0743541D-FB78-4FBD-BC5C-5081D42CD016} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1730D4CC-3B1-4A96-849F-38F1846C9FF5} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{188EDD8C-A770-4021-85E1-868F339B2F6F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19A5662-F6F5-44F4-9865-2D111CF5F66D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B2FDD8F-703A-401F-A0CA-B81467F64D5B} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{210B8CC7-90D6-4855-8657-37299FF7549E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22579272-3862-476A-8DB6-D8EE92E97CEC} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{22F81A83-3A57-48BA-B1AB-2F5E757EF760} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{23FF9F5D-4B09-45B5-8ECE-AC2CA3603664} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25AB74C3-785F-4BFD-B7F3-2EE36F7627} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25B8B7BC-E040-4A6B-B134-E3474A30EC23} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2BFFE222-A906-415F-88BC-F26F3BE2AC} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C065E70-CCCD-4239-8075-84DA7CCF47AC} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2DA02B08-D12-4CFD-BD5E-DF893C9DB47} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2F4A3D3F-4D21-407E-95A3-BCDB7482AC42} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3081A8BD-3E16-45E4-BF8-2DBFC8458479} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3097D152-7584-4C9B-BF6C-E17020E29AEC} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31D8B321-1847-4ECC-8A73-78FFDEB70DB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{339C28F8-AF0D-4320-B75D-BB16E98B9D2F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348B5B41-9EFF-4015-B6C0-89DC76643D29} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{36651A5-A8B2-454D-8197-EE19E8669080} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{36924CD1-9DCA-4E65-A139-1AB0AABDD9D8} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{38A99F37-883C-42EF-945F-23C536E14CB6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{38FBF21C-C755-4DEB-8986-4ADBAF16DB93} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3A3DD635-87E9-49FE-B1CE-B39E268A533} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B86E0CD-F66-4F71-887E-FBFCEEE2530} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3C9CD0A7-2C9-41C3-B474-67A6E82FDF6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D6F8B16-EE1D-4D19-8D33-C917A618DC2A} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{40172857-3CF1-4BFC-908E-D4D9CA63A8B} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4098F923-EDC3-48A4-BEA-B2C22330817} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43469329-D19E-48E6-9F93-1832158362A0} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43B7F62-E109-47A0-80D0-5DBF1F788D1} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4461298D-C8EE-4877-8231-C1FD57DD87EF} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4462F506-AE32-4EBD-A648-77C8201F49F0} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{463E6AA2-4FA3-44AB-B9CE-34D7E0BA66B2} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{46C4FE3-12B9-4067-90B1-37A4A5245A47} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{477533E4-1E55-49AF-B29D-59A32FED5048} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47DD6F29-DFF6-4889-8610-CD6D227F92F5} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{48804AF4-7071-409F-8144-E69B7AF031AE} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E4DD6F-2BAC-4CC9-A5CB-A0BB3084D0EB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{524B427B-7207-4396-BAF8-FB99331C23FA} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{531822F1-5863-47D9-B996-3838111B41} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57C3D358-4239-4FD9-8DBF-BB9FA1718FFF} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57D53446-14E9-4E63-8543-57CB53D6CF58} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5B424E6D-A36-4B13-9DF5-BBACAB3830F5} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5D977281-7755-4031-B72F-33E198B8F6F9} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{64C38C1A-CBAF-4F7B-996B-888CE8984FC3} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66295511-7140-4625-BCA1-DBE4B2081C8} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6A85797F-DCE3-44E4-A6A-C44DEBB87258} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6E59FE92-8B46-4BEF-AAE1-7E852DD671CB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F3C510C-592A-4CC7-93E9-B2E4B85616D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7091E74-2DD1-470C-998F-B3EC182F3A14} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{70A91F75-53B7-490F-AA65-FC50C6EF1B55} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7331C9F2-7AF-44A3-AB2A-31A13082A646} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74C5F4A0-B6B-4D86-AC3-ED54BB408997} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{75273B9C-AB0F-43A5-BE9E-BEBCEFF6AF0} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7716051C-21A0-4550-BD59-F384296D5464} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{77C04FCC-9D0B-4DCF-AAC2-673B3E35AF48} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7840F7A7-2EA3-4E2D-98AC-A55F6993F6B} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{79A1F9A6-B4A0-475F-ACCD-5B217109CFB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7AE28A68-74E0-4A1E-9C97-ACF7ED80209D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{802353E6-5443-4504-9157-26219C57794} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8157F1B1-5ADA-4DD7-80C4-7F647B14515D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81EB148F-F91B-4385-8CFE-1FAB7875B13D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8230E22C-E518-4B10-863A-97DF565178A} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85213795-2044-40DE-B0D5-DE177A734E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{879BF70F-FF00-4E15-9F24-5BD8247C77E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A11DB3A-B062-4129-BBEA-1EAA5EAC71CA} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8C3F874E-2F5F-4BB3-9C58-387B7C957CC3} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{94667EBA-1781-4F94-B268-592843CD938} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{951197A8-F24D-4103-8EB6-CAAC88C2EF79} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95E3A9EA-34CB-48CA-BD51-B8A6A162F714} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{975325E9-6877-4A9A-923F-48CF5BB42A9F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{98E495F9-2920-43D7-83F8-25376CEC2D45} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CDFBA21-A9EA-4E05-A7D9-4C5560BF289} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9E7FE7D0-F33D-4F6D-B871-AE7B9C8EBF77} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9FEF8B23-48B8-4A7F-9319-167B279812E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A24DE21F-F2A9-4ADC-B1F9-61E0AE86F08D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A4EEE80A-E3-4E27-9166-FC45A1673F2F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A6563A7A-3E9A-427E-B55D-DEC20D9F4} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A673D26B-4476-4066-94C3-B9812ACCDEC4} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A9F868F1-C17B-44CB-83D2-DBB407BF641} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AE7C9625-52CB-4B25-99BD-D0E2D93728FB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B527A082-16D-4B87-92D3-52E07796339F} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B84AAF48-AFBC-4EC1-B9DF-8F7874918887} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B93F6AC6-39-41A9-8AAE-AA471984DF90} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BA7F7933-57A8-4700-8B81-A66B3DEEF7F9} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BD7594DC-56A4-44C0-842-4BA398C25A50} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BEC413C-D446-482F-ACEF-AD4B67343D6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BFFCF39B-417E-4382-BD2F-75E874A58B13} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C080FB1E-DD46-4788-BFCF-228FB572DAC9} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C45BAF5E-6784-45EF-8B1D-12A3C73148C6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C5A667B7-2436-40DD-939F-4AD78DEE36DD} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCA4380-5553-411D-8861-8788975C8F83} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CEB54E43-DDCF-416D-A635-C01FEA69F832} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D6451EA7-3C9A-4310-8635-1489406664B} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D67F86E3-5622-459F-B938-1180A2BC93D9} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D9E877CA-85CD-43A1-B36D-32F753B9D5D6} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DBADC072-8677-42E8-A420-F55B601014E1} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DF7C77C8-4B1A-4747-A5B2-7AF31C4892D5} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0E8BDDB-5FF0-4929-BD51-4BDBC9DB4B1} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1A9E8E0-CD93-4C55-B1C5-4FC99BB6B496} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7C234D9-75BA-4C71-9965-34CE525BDB} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB64BE1C-F0AF-4047-B55C-5520B17DA9E7} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EFA42D90-3E25-4B20-9774-E61F63442F14} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F1460D43-9B18-483D-8EE4-9E77198446D} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F1773304-529A-4EA0-A81F-A0FCD756D447} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F3257F7C-5B3D-491C-87D9-274A541E3AEA} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F563927E-891A-43A6-B7BE-0A318AFAC59} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F601BADE-2F5B-44D5-9E9A-F3E07B184159} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F6599667-519E-4EDF-9A64-4F50616DA1C} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FA1F0ADF-B74A-4EFE-808B-599D2476809E} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC91BDA7-2A47-439B-9F64-2E9AB98B61FD} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FD008FAC-D6D9-425C-9882-52E73BEAA1E9} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\URLSearchHooks\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Mozilla\Firefox\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz/");
user_pref("browser.search.defaultenginename", "Yahoo");
user_pref("browser.search.selectedEngine", "Yahoo");
user_pref("keyword.URL", "http://us.search.yahoo.com/search?fr=ytff-comodo&p=");
user_pref("browser.search.useDBForOrder", "false");
Added to C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);
ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default
user.js not found
---- Lines {58e3c1c9-2dc1-4762-bd45-1df9da9d0820} removed from prefs.js ----
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.daysPassed", "{\"t2d\":true}");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.installtime", "1414947674.29");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.is_bundle", "true");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.isFirstRun", "false");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.last_version", "");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.lastC", "{\"sm\":393041,\"li\":393155,\"mo\":393155}");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.moEnabled", true);
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.remEv", "1415358724900");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.server", "https://s7902.webovernet.com");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.src", "7902");
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.toolbarButtonInstalled", true);
user_pref("{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}.user_id", "2A8B2CC7-1E6B-4AB6-8350-05D32F9C8101");
---- Lines {d6b1a471-3776-48de-90e2-a0d90de70fd3} removed from prefs.js ----
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.installtime", "1414947674.29");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.is_bundle", "true");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.isFirstRun", "false");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.last_version", "");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.lastC", "{\"sm\":393041,\"li\":393065}");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.server", "https://s7902.webovernet.com");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.src", "7902");
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.toolbarButtonInstalled", true);
user_pref("{d6b1a471-3776-48de-90e2-a0d90de70fd3}.user_id", "2A8B2CC7-1E6B-4AB6-8350-05D32F9C8101");
---- Lines valueApps removed from prefs.js ----
user_pref("valueApps.storage.mam_gk_userId", "32616662343132352D653139612D343830622D626165352D303764633337323837636462");
---- Lines FFPDFArchitectConverter@pdfarchitect.com modified from prefs.js ----
user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}\":{\"descriptor\":\"C:\\\\
---- FireFox user.js and prefs.js backups ----
prefs_201420.11._0547_.backup
==== Deleting Files \ Folders ======================
C:\PROGRA~3\EPSON deleted
C:\Users\Michal\.android deleted
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~2\Visual Paradigm for UML CE 10.2 deleted
C:\PROGRA~2\Youdagames deleted
C:\Users\Michal\AppData\Roaming\YoudaGames deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Michal\AppData\Local\Software deleted
C:\Users\Michal\AppData\Local\cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted
C:\WINDOWS\wininit.ini deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\jetpack deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\CT1750559 deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\CT3329621 deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\smartbar deleted
"C:\windows\Installer\22fd9.msi" deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"FFPDFArchitectConverter@pdfarchitect.com"=hex(2):43,00,3a,00,5c,00,50,00,72,\ []
==== Firefox Extensions ======================
ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default
- McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor
- Undetermined - {4ED1F68A-5463-4931-9384-8FFF5ED91D92}
- Seznam litika - %ProfilePath%\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
- Firebug - %ProfilePath%\extensions\firebug@software.joehewitt.com.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default
67D325B5AEB28E381B84E8DE1A90C7A8 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll - Shockwave Flash
CA36F6DCA9A783FF60CB2DC5D28FA5F0 - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll - PDF-XChange Viewer
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[]
Comodo Drag&Drop Service - Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo
Comodo Web Inspector - Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn
Comodo Media Downloader - Michal\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo
Seznam Lištička - Email - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
SiteAdvisor - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho
Seznam Lištička - Rychlá volba - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
==== Chromium Startpages ======================
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://us.yahoo.com?fr=fpc-comodo",
"urls_to_restore_on_startup": [ "http://us.yahoo.com?fr=fpc-comodo" ]
==== Chromium Fix ======================
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://us.yahoo.com?fr=fp-comodo"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}] not found
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{8D2BC872-6858-4B3F-8B00-CEC93F6775E0} Unknown Url="Not_Found"
==== Reset Google Chrome ======================
C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Preferences was reset successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Web Data was reset successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\SearchScopes\{8D2BC872-6858-4B3F-8B00-CEC93F6775E0} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\FFPDFArchitectConverter@pdfarchitect.com deleted successfully
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\203E62EEA6789D84098513925E9B9999 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE26E302-876A-48D9-9058-3129E5B99999} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\203E62EEA6789D84098513925E9B9999 deleted successfully
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
C:\Users\Michal\AppData\Local\Mozilla\Firefox\Profiles\fene08pi.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
C:\Users\Michal\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=6170 folders=787 795868225 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Michal\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser.Michal-ACER\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Michal\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on źt 20. 11. 2014 at 13:30:52,79 ======================
Re: Pomaly notebook
Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Pomaly notebook
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-11-2014
Ran by Michal (administrator) on MICHAL-ACER on 21-11-2014 11:54:54
Running from C:\Users\Michal\Desktop
Loaded Profile: Michal (Available profiles: Michal & UpdatusUser)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicShellService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\mcafee\AppStats\MfeASUM.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdupd.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe
(forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12937872 2012-07-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-07-10] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [tvncontrol] => C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-09-24] (Comodo Security Solutions, Inc.)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] ( (Qualcomm Atheros Commnucations))
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1562264 2014-07-25] (Samsung)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [KiesPDLR] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2014-07-25] (Samsung)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [BitTorrent] => C:\Users\Michal\AppData\Roaming\BitTorrent\BitTorrent.exe [1388376 2014-10-26] (BitTorrent Inc.)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-29] (Piriform Ltd)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\MountPoints2: {9a290ed2-c993-11e3-bec9-4c72b9ab0226} - "G:\Startme.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-09-05] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk
ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
Startup: C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
SearchScopes: HKLM -> DefaultScope {8D2BC872-6858-4B3F-8B00-CEC93F6775E0} URL =
SearchScopes: HKLM-x32 -> DefaultScope {8D2BC872-6858-4B3F-8B00-CEC93F6775E0} URL =
SearchScopes: HKU\S-1-5-21-3427551933-748560644-408011068-1002 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3427551933-748560644-408011068-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ClassicIE9BHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll (IvoSoft)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ClassicIE9BHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{C34031FA-A4FA-46EB-8861-E7C9027E966E}: [NameServer] 156.154.70.25,156.154.71.25
FireFox:
========
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3427551933-748560644-408011068-1002: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Extension: Seznam lištička - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-06-07]
FF Extension: Firebug - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\Extensions\firebug@software.joehewitt.com.xpi [2013-06-11]
FF Extension: Adblock Plus - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-11-07]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2012-09-01]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: No Name - {4ED1F68A-5463-4931-9384-8FFF5ED91D92} [Not Found]
Chrome:
=======
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-06-01]
CHR Extension: (Disk Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-06-01]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-03-05]
CHR Extension: (YouTube) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-01]
CHR Extension: (Vyhledávání Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-01]
CHR Extension: (Peněženka Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-12]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-03-05]
CHR Extension: (Gmail) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-01]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-24] (Acer Incorporated)
R2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [68608 2013-04-12] (IvoSoft) [File not signed]
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70864 2014-09-25] (Comodo Security Solutions, Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-23] (Acer Incorporated)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-05-21] ()
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-23] (Acer Incorporated)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-03-30] (Diskeeper Corporation)
R2 FFSOpzSvc; C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe [161384 2012-03-12] (Acer Incorporated)
R2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-09-24] (Comodo Security Solutions, Inc.)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193576 2012-07-19] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
U2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [156904 2014-11-12] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 MfeASUM; C:\Program Files\McAfee\AppStats\MfeASUM.exe [335216 2013-08-22] (McAfee, Inc.)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-08-23] (NTI Corporation)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2012-09-20] (Dritek System INC.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 USecuAppSvc; C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [345744 2012-11-12] (Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [40224 2014-06-26] (Windows (R) Win 7 DDK provider)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [748784 2014-04-16] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-03-05] (Disc Soft Ltd)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-03-30] (Diskeeper Corporation)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [95024 2012-03-30] (Diskeeper Corporation)
S3 FsUsbExDisk; C:\WINDOWS\SysWOW64\FsUsbExDisk.SYS [37344 2014-01-23] () [File not signed]
R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [43800 2012-07-20] (Intel Corporation)
R1 MfeASKM; C:\Program Files\McAfee\AppStats\MfeASKM.sys [31408 2013-08-22] (McAfee, Inc.)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2012-09-20] (Dritek System Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 11:54 - 2014-11-21 11:56 - 00029626 _____ () C:\Users\Michal\Desktop\FRST.txt
2014-11-21 11:54 - 2014-11-21 11:55 - 00000000 ____D () C:\FRST
2014-11-21 11:53 - 2014-11-21 11:53 - 00112640 _____ (forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
2014-11-21 11:47 - 2014-11-21 11:47 - 00000000 ___SH () C:\DkHyperbootSync
2014-11-21 11:44 - 2014-11-21 11:44 - 02117632 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2014-11-20 07:19 - 2014-11-19 22:12 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-11-20 04:42 - 2014-11-20 13:30 - 00000000 ____D () C:\zoek
2014-11-19 22:15 - 2014-11-20 13:30 - 00037391 _____ () C:\zoek-results.log
2014-11-19 22:11 - 2014-11-20 06:38 - 00000000 ____D () C:\zoek_backup
2014-11-19 22:10 - 2014-11-19 22:10 - 01294848 _____ () C:\Users\Michal\Desktop\zoek.exe
2014-11-19 21:57 - 2014-11-19 22:03 - 00000000 ____D () C:\AdwCleaner
2014-11-19 21:52 - 2014-11-20 10:30 - 00004024 _____ () C:\WINDOWS\PFRO.log
2014-11-19 21:49 - 2014-11-19 21:49 - 02140160 _____ () C:\Users\Michal\Desktop\adwcleaner_4.101.exe
2014-11-19 21:23 - 2014-11-19 21:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atlassian
2014-11-19 21:23 - 2014-11-19 21:23 - 00000000 ____D () C:\Program Files (x86)\Atlassian
2014-11-19 21:06 - 2014-11-19 21:06 - 11409808 _____ (Atlassian) C:\Users\Michal\Desktop\SourceTreeSetup_1.6.11.exe
2014-11-19 15:20 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-11-19 15:20 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-11-19 15:20 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2014-11-19 15:20 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2014-11-17 17:21 - 2014-11-17 17:21 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-11-17 14:32 - 2014-11-17 14:32 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-11-17 14:16 - 2014-11-17 14:35 - 00003899 _____ () C:\WINDOWS\setupact.log
2014-11-17 14:16 - 2014-11-17 14:28 - 00003532 _____ () C:\WINDOWS\setuperr.log
2014-11-17 13:53 - 2014-11-17 13:57 - 00000000 ____D () C:\Program Files (x86)\DriverTuner
2014-11-17 13:53 - 2014-11-17 13:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner
2014-11-17 13:26 - 2014-11-17 13:26 - 00000000 ____D () C:\temp
2014-11-17 13:14 - 2014-11-17 13:14 - 00000000 ____D () C:\Users\Michal\AppData\Local\DriverToolkit
2014-11-17 13:13 - 2014-11-17 13:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
2014-11-16 21:13 - 2014-11-16 21:13 - 00008785 _____ () C:\Users\Michal\Desktop\Sešit1.xlsx
2014-11-16 16:22 - 2014-11-18 11:52 - 00000000 ____D () C:\ProgramData\UMS
2014-11-16 16:22 - 2014-11-16 16:22 - 00001944 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Media Server.lnk
2014-11-16 16:22 - 2014-11-16 16:22 - 00001036 _____ () C:\Users\Public\Desktop\Universal Media Server.lnk
2014-11-16 16:22 - 2014-11-16 16:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Media Server
2014-11-16 16:21 - 2014-11-18 11:54 - 00000000 ____D () C:\Program Files (x86)\Universal Media Server
2014-11-16 16:21 - 2014-11-16 16:21 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth
2014-11-16 16:21 - 2014-11-16 16:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth
2014-11-16 16:21 - 2014-11-16 16:21 - 00000000 ____D () C:\Program Files (x86)\AviSynth
2014-11-16 15:47 - 2014-11-16 15:48 - 00000000 ____D () C:\Program Files (x86)\DriverDoc
2014-11-16 15:47 - 2014-11-16 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverDoc
2014-11-16 15:13 - 2014-11-16 15:19 - 00000000 ____D () C:\Program Files (x86)\Spika
2014-11-16 15:13 - 2014-11-16 15:13 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Spika
2014-11-16 14:40 - 2014-11-16 14:40 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\(D8-31-CF-9D-0A-3E)
2014-11-15 12:34 - 2014-11-15 12:34 - 00048392 _____ (COMODO CA Limited) C:\WINDOWS\SysWOW64\certsentry.dll
2014-11-15 12:33 - 2014-11-21 11:44 - 01474832 _____ () C:\WINDOWS\system32\Drivers\sfi.dat
2014-11-15 12:33 - 2014-11-15 12:33 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-11-15 12:33 - 2014-11-15 12:33 - 00000000 ____D () C:\WINDOWS\System32\Tasks\COMODO
2014-11-15 12:32 - 2014-11-15 14:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2014-11-15 12:32 - 2014-11-15 12:34 - 00057096 _____ (COMODO CA Limited) C:\WINDOWS\system32\certsentry.dll
2014-11-15 12:32 - 2014-11-15 12:32 - 00000000 ____D () C:\Users\Michal\AppData\Local\Comodo
2014-11-15 12:32 - 2014-11-15 12:32 - 00000000 ____D () C:\Program Files\COMODO
2014-11-15 12:31 - 2014-11-15 12:34 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-11-15 12:31 - 2014-11-15 12:33 - 00000000 ____D () C:\ProgramData\Comodo
2014-11-15 12:31 - 2014-11-15 12:31 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-11-15 12:11 - 2014-11-20 19:27 - 00007601 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg
2014-11-12 20:06 - 2014-09-22 05:38 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-11-12 20:06 - 2014-09-22 04:06 - 00258368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-11-12 20:06 - 2014-09-22 04:06 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-11-12 20:06 - 2014-09-22 03:49 - 00035320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-11-12 20:06 - 2014-09-19 01:16 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-11-12 20:06 - 2014-09-02 23:08 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2014-11-12 20:06 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2014-11-12 20:04 - 2014-10-13 03:33 - 00116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-11-12 20:04 - 2014-10-11 01:58 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-11-12 20:04 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-11-12 20:04 - 2014-10-08 08:30 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-11-12 20:04 - 2014-10-08 08:09 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-11-12 20:04 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2014-11-12 20:04 - 2014-10-08 06:32 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-11-12 20:04 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-11-12 20:03 - 2014-11-05 00:38 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-11-12 20:03 - 2014-11-04 01:10 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2014-11-12 20:03 - 2014-10-31 05:53 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-11-12 20:03 - 2014-10-31 05:49 - 00537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-11-12 20:03 - 2014-10-31 05:24 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-11-12 17:58 - 2014-10-31 06:28 - 25110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-11-12 17:58 - 2014-10-31 04:42 - 19781632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-11-12 17:57 - 2014-10-31 06:05 - 02884096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-11-12 17:57 - 2014-10-31 05:50 - 06040064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-11-12 17:57 - 2014-10-31 05:15 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-11-12 17:57 - 2014-10-31 04:59 - 14390272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-11-12 17:57 - 2014-10-31 04:45 - 02365440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-11-12 17:57 - 2014-10-31 04:44 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-11-12 17:57 - 2014-10-31 04:32 - 01550336 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-11-12 17:57 - 2014-10-31 03:46 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-11-12 17:57 - 2014-10-31 03:30 - 12819456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-11-12 17:57 - 2014-10-31 03:17 - 01892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-11-12 17:57 - 2014-10-31 03:13 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-11-12 17:56 - 2014-10-31 06:12 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2014-11-12 17:56 - 2014-10-31 06:12 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2014-11-12 17:56 - 2014-10-31 06:10 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2014-11-12 17:56 - 2014-10-31 06:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-11-12 17:56 - 2014-10-31 06:08 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 17:56 - 2014-10-31 06:06 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-11-12 17:56 - 2014-10-31 06:06 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-11-12 17:56 - 2014-10-31 06:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-11-12 17:56 - 2014-10-31 06:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 17:56 - 2014-10-31 06:05 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-11-12 17:56 - 2014-10-31 06:04 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 17:56 - 2014-10-31 05:57 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-11-12 17:56 - 2014-10-31 05:56 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-11-12 17:56 - 2014-10-31 05:54 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 17:56 - 2014-10-31 05:53 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2014-11-12 17:56 - 2014-10-31 05:52 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2014-11-12 17:56 - 2014-10-31 05:51 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-11-12 17:56 - 2014-10-31 05:51 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 17:56 - 2014-10-31 05:51 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 17:56 - 2014-10-31 05:50 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 17:56 - 2014-10-31 05:40 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-11-12 17:56 - 2014-10-31 05:38 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 17:56 - 2014-10-31 05:30 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 17:56 - 2014-10-31 05:29 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2014-11-12 17:56 - 2014-10-31 05:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2014-11-12 17:56 - 2014-10-31 05:28 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2014-11-12 17:56 - 2014-10-31 05:25 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-11-12 17:56 - 2014-10-31 05:24 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-11-12 17:56 - 2014-10-31 05:24 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 17:56 - 2014-10-31 05:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-11-12 17:56 - 2014-10-31 05:21 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-11-12 17:56 - 2014-10-31 05:19 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-11-12 17:56 - 2014-10-31 05:08 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-11-12 17:56 - 2014-10-31 05:06 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 17:56 - 2014-10-31 05:05 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-11-12 17:56 - 2014-10-31 05:05 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 17:56 - 2014-10-31 05:03 - 02124288 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-11-12 17:56 - 2014-10-31 04:42 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2014-11-12 17:56 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2014-11-12 17:56 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2014-11-12 17:56 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2014-11-12 17:56 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2014-11-12 17:56 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2014-11-12 17:56 - 2014-10-31 04:24 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-11-12 17:56 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2014-11-12 17:56 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-11-12 17:56 - 2014-10-31 04:23 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-11-12 17:56 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-11-12 17:56 - 2014-10-31 04:22 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-11-12 17:56 - 2014-10-31 04:20 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 17:56 - 2014-10-31 04:18 - 02277376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-11-12 17:56 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-11-12 17:56 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-11-12 17:56 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2014-11-12 17:56 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2014-11-12 17:56 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2014-11-12 17:56 - 2014-10-31 04:12 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-11-12 17:56 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-11-12 17:56 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-11-12 17:56 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2014-11-12 17:56 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-11-12 17:56 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 17:56 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2014-11-12 17:56 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2014-11-12 17:56 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2014-11-12 17:56 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-11-12 17:56 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2014-11-12 17:56 - 2014-10-31 03:52 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-11-12 17:56 - 2014-10-31 03:51 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-11-12 17:56 - 2014-10-31 03:50 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-11-12 17:56 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-11-12 17:56 - 2014-10-31 03:46 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-11-12 17:56 - 2014-10-31 03:42 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-11-12 17:56 - 2014-10-31 03:40 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-11-12 17:56 - 2014-10-31 03:40 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-11-12 17:56 - 2014-10-31 03:39 - 02051072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-11-12 17:56 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-11-12 17:56 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2014-11-12 17:56 - 2014-10-31 03:11 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-11-12 17:55 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-11-12 17:55 - 2014-09-08 04:07 - 02497344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-11-12 17:55 - 2014-09-04 23:30 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-11-12 17:55 - 2014-09-04 23:21 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-11-12 17:55 - 2014-09-04 04:05 - 00836176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-12 17:55 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-11-12 17:55 - 2014-08-31 01:15 - 21197152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-11-12 17:55 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-11-12 17:55 - 2014-08-30 22:04 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-12 17:55 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-11-12 17:55 - 2014-08-28 03:55 - 07484224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-11-12 17:55 - 2014-08-28 01:21 - 02480128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-11-12 17:55 - 2014-08-23 06:14 - 13424128 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-11-12 17:55 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-11-12 17:55 - 2014-08-23 05:50 - 02714112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-12 17:54 - 2014-09-27 08:13 - 00104336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 17:54 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-11-12 17:54 - 2014-09-27 04:38 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-11-12 17:54 - 2014-09-27 04:30 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 17:54 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-11-12 17:54 - 2014-09-08 04:07 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-11-12 17:54 - 2014-09-07 23:08 - 00389176 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-11-12 17:54 - 2014-09-04 02:01 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-11-12 17:54 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-11-12 17:54 - 2014-08-31 01:17 - 00148800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-11-12 17:54 - 2014-08-30 23:05 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 17:54 - 2014-08-30 22:58 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2014-11-12 17:54 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2014-11-12 17:54 - 2014-08-28 02:50 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\PJLMON.DLL
2014-11-12 17:54 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-11-12 17:54 - 2014-08-02 01:51 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-11-12 17:54 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-11-12 17:53 - 2014-10-10 02:58 - 00177472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-11-12 17:53 - 2014-10-10 02:58 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2014-11-12 17:53 - 2014-10-10 02:44 - 00563976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-11-12 17:53 - 2014-10-08 08:37 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-11-12 17:53 - 2014-10-08 08:37 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2014-11-12 17:53 - 2014-10-08 08:34 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-11-12 17:53 - 2014-10-08 08:24 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 17:53 - 2014-10-08 07:56 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-11-12 17:53 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-11-12 17:53 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2014-11-12 17:53 - 2014-10-08 07:18 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-11-12 17:53 - 2014-10-08 07:17 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-11-12 17:53 - 2014-10-08 06:23 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 17:52 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-11-12 17:52 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-11-12 17:52 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-11-12 17:52 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-11-12 17:52 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2014-11-12 17:52 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-11-12 17:52 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-11-12 17:52 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-11-12 17:52 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 17:52 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-11-12 17:52 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-11-12 17:52 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-11-12 17:52 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-11-12 17:52 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-11-12 17:52 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-11-12 17:52 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-11-12 17:51 - 2014-10-23 06:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2014-11-12 17:51 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2014-11-12 17:51 - 2014-10-17 08:01 - 00789184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-11-12 17:51 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-11-12 17:51 - 2014-10-07 07:28 - 00500016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-11-12 17:51 - 2014-10-07 07:27 - 00482872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-11-12 17:51 - 2014-10-07 07:27 - 00394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 17:51 - 2014-10-07 07:27 - 00272248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-11-12 17:51 - 2014-10-07 07:27 - 00108432 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2014-11-12 17:51 - 2014-10-07 04:34 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-11-12 17:51 - 2014-10-07 04:34 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-11-12 17:51 - 2014-10-07 04:33 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-11-12 17:51 - 2014-10-07 04:30 - 04182016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-11-12 17:51 - 2014-10-07 02:54 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 17:51 - 2014-10-07 02:46 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-11-12 17:51 - 2014-08-23 06:18 - 02149376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-11-12 17:51 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-11-11 12:25 - 2014-11-11 12:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-11 12:02 - 2014-11-21 11:52 - 01351361 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-08 12:37 - 2014-11-08 12:37 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\39737CDF.sys
2014-11-07 08:16 - 2014-11-07 08:16 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-06 18:24 - 2014-11-19 21:33 - 00000000 ____D () C:\Program Files\trend micro
2014-11-06 18:23 - 2014-11-06 18:24 - 00000000 ____D () C:\rsit
2014-11-06 18:23 - 2014-11-06 18:23 - 01222144 _____ () C:\Users\Michal\Desktop\RSITx64.exe
2014-10-30 11:30 - 2014-10-30 11:30 - 00000000 ___SD () C:\Users\Michal\Documents\Zdroje dat
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 11:56 - 2013-05-31 12:11 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3427551933-748560644-408011068-1002
2014-11-21 11:53 - 2013-05-31 14:37 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-11-21 11:51 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-11-21 11:44 - 2014-01-19 20:06 - 00003986 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{36559C1C-842F-4834-830F-D8819BD9C1C6}
2014-11-21 11:42 - 2013-12-17 14:07 - 00000000 ___DO () C:\Users\Michal\SkyDrive
2014-11-21 11:42 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-11-21 11:42 - 2013-06-01 17:57 - 00000980 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-21 11:41 - 2013-11-12 14:44 - 00000000 ____D () C:\Users\Michal\AppData\Local\TSVNCache
2014-11-20 17:58 - 2013-06-01 17:57 - 00000984 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-20 10:31 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-20 10:30 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-11-20 05:52 - 2013-12-17 13:34 - 00000000 ____D () C:\Users\Michal
2014-11-19 21:56 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-11-19 21:55 - 2013-07-28 12:09 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-11-19 21:52 - 2014-02-11 14:55 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-11-19 21:51 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-11-19 21:50 - 2014-02-11 14:55 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-11-19 21:09 - 2013-06-01 08:49 - 05065728 ___SH () C:\Users\Michal\Desktop\Thumbs.db
2014-11-19 15:21 - 2014-10-06 13:21 - 00000000 ____D () C:\ProgramData\Atlassian
2014-11-19 11:49 - 2013-11-14 13:40 - 01745984 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-19 11:49 - 2013-11-14 13:24 - 00739924 _____ () C:\WINDOWS\system32\perfh005.dat
2014-11-19 11:49 - 2013-11-14 13:24 - 00151610 _____ () C:\WINDOWS\system32\perfc005.dat
2014-11-18 17:49 - 2014-06-27 15:00 - 00000132 _____ () C:\Users\Michal\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2014-11-17 14:30 - 2013-09-21 11:43 - 00000000 ____D () C:\WINDOWS\system32\NV
2014-11-17 14:11 - 2013-06-07 07:56 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\BitTorrent
2014-11-17 13:14 - 2013-05-31 16:30 - 00000000 ____D () C:\Michal
2014-11-16 23:04 - 2013-06-22 22:57 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Skype
2014-11-16 17:20 - 2013-12-18 15:31 - 00000000 ____D () C:\Users\Michal\AppData\Local\Deployment
2014-11-15 16:50 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-11-15 12:36 - 2014-03-17 13:25 - 00001124 _____ () C:\Users\Michal\Desktop\BitTorrent.lnk
2014-11-15 12:33 - 2012-07-26 06:37 - 00000000 ____D () C:\Users\Default.migrated
2014-11-14 21:53 - 2013-06-01 17:57 - 00003956 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-14 21:53 - 2013-06-01 17:57 - 00003720 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-14 17:47 - 2013-08-22 15:44 - 05197688 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-11-14 17:47 - 2012-09-01 04:17 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-11-14 17:45 - 2013-05-31 13:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-14 17:09 - 2014-07-27 18:44 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\en-GB
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-14 17:08 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-11-14 17:07 - 2013-06-01 10:13 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-14 16:22 - 2013-07-18 16:54 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-14 16:12 - 2013-05-31 12:38 - 103374192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-11-12 16:53 - 2013-05-31 14:37 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-11-12 15:21 - 2013-06-01 09:28 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\vlc
2014-11-06 18:04 - 2013-09-12 19:15 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\TeamViewer
2014-11-06 18:03 - 2013-06-01 17:58 - 00000838 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-06 18:03 - 2013-06-01 17:58 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-06 13:09 - 2014-10-07 14:00 - 00000000 ____D () C:\Users\Michal\.netbeans-derby
2014-11-04 12:57 - 2013-06-03 07:43 - 00000600 _____ () C:\Users\Michal\AppData\Roaming\winscp.rnd
2014-10-30 12:25 - 2013-09-03 07:02 - 00275080 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-10-30 01:55 - 2014-10-17 19:19 - 00714208 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-10-30 01:55 - 2014-10-17 19:19 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-28 18:59 - 2013-06-01 17:58 - 00002207 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-28 02:51 - 2013-06-01 09:33 - 00000000 ____D () C:\Users\Michal\Documents\VirtualDJ
2014-10-23 07:46 - 2014-08-16 23:49 - 00000000 ____D () C:\Users\Michal\AppData\Local\Adobe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Disabled - Up to date) {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Antivirus (Disabled - Up to date) {0C2D2636-923D-EE52-2A83-E643204A8275}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Michal\Desktop" je 1776 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by Michal (administrator) on MICHAL-ACER on 21-11-2014 11:54:54
Running from C:\Users\Michal\Desktop
Loaded Profile: Michal (Available profiles: Michal & UpdatusUser)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicShellService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\mcafee\AppStats\MfeASUM.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdupd.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe
(forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12937872 2012-07-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-07-10] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [tvncontrol] => C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-09-24] (Comodo Security Solutions, Inc.)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] ( (Qualcomm Atheros Commnucations))
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1562264 2014-07-25] (Samsung)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [KiesPDLR] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2014-07-25] (Samsung)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [BitTorrent] => C:\Users\Michal\AppData\Roaming\BitTorrent\BitTorrent.exe [1388376 2014-10-26] (BitTorrent Inc.)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-29] (Piriform Ltd)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\MountPoints2: {9a290ed2-c993-11e3-bec9-4c72b9ab0226} - "G:\Startme.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-09-05] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk
ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
Startup: C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll (http://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
SearchScopes: HKLM -> DefaultScope {8D2BC872-6858-4B3F-8B00-CEC93F6775E0} URL =
SearchScopes: HKLM-x32 -> DefaultScope {8D2BC872-6858-4B3F-8B00-CEC93F6775E0} URL =
SearchScopes: HKU\S-1-5-21-3427551933-748560644-408011068-1002 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3427551933-748560644-408011068-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ClassicIE9BHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll (IvoSoft)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ClassicIE9BHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{C34031FA-A4FA-46EB-8861-E7C9027E966E}: [NameServer] 156.154.70.25,156.154.71.25
FireFox:
========
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3427551933-748560644-408011068-1002: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Extension: Seznam lištička - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-06-07]
FF Extension: Firebug - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\Extensions\firebug@software.joehewitt.com.xpi [2013-06-11]
FF Extension: Adblock Plus - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-11-07]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2012-09-01]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: No Name - {4ED1F68A-5463-4931-9384-8FFF5ED91D92} [Not Found]
Chrome:
=======
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-06-01]
CHR Extension: (Disk Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-06-01]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-03-05]
CHR Extension: (YouTube) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-01]
CHR Extension: (Vyhledávání Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-01]
CHR Extension: (Peněženka Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-12]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-03-05]
CHR Extension: (Gmail) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-01]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-24] (Acer Incorporated)
R2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [68608 2013-04-12] (IvoSoft) [File not signed]
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70864 2014-09-25] (Comodo Security Solutions, Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-23] (Acer Incorporated)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-05-21] ()
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-23] (Acer Incorporated)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-03-30] (Diskeeper Corporation)
R2 FFSOpzSvc; C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe [161384 2012-03-12] (Acer Incorporated)
R2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-09-24] (Comodo Security Solutions, Inc.)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193576 2012-07-19] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
U2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [156904 2014-11-12] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 MfeASUM; C:\Program Files\McAfee\AppStats\MfeASUM.exe [335216 2013-08-22] (McAfee, Inc.)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-08-23] (NTI Corporation)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2012-09-20] (Dritek System INC.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 USecuAppSvc; C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [345744 2012-11-12] (Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [40224 2014-06-26] (Windows (R) Win 7 DDK provider)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [748784 2014-04-16] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-03-05] (Disc Soft Ltd)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-03-30] (Diskeeper Corporation)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [95024 2012-03-30] (Diskeeper Corporation)
S3 FsUsbExDisk; C:\WINDOWS\SysWOW64\FsUsbExDisk.SYS [37344 2014-01-23] () [File not signed]
R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [43800 2012-07-20] (Intel Corporation)
R1 MfeASKM; C:\Program Files\McAfee\AppStats\MfeASKM.sys [31408 2013-08-22] (McAfee, Inc.)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2012-09-20] (Dritek System Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 11:54 - 2014-11-21 11:56 - 00029626 _____ () C:\Users\Michal\Desktop\FRST.txt
2014-11-21 11:54 - 2014-11-21 11:55 - 00000000 ____D () C:\FRST
2014-11-21 11:53 - 2014-11-21 11:53 - 00112640 _____ (forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
2014-11-21 11:47 - 2014-11-21 11:47 - 00000000 ___SH () C:\DkHyperbootSync
2014-11-21 11:44 - 2014-11-21 11:44 - 02117632 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2014-11-20 07:19 - 2014-11-19 22:12 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-11-20 04:42 - 2014-11-20 13:30 - 00000000 ____D () C:\zoek
2014-11-19 22:15 - 2014-11-20 13:30 - 00037391 _____ () C:\zoek-results.log
2014-11-19 22:11 - 2014-11-20 06:38 - 00000000 ____D () C:\zoek_backup
2014-11-19 22:10 - 2014-11-19 22:10 - 01294848 _____ () C:\Users\Michal\Desktop\zoek.exe
2014-11-19 21:57 - 2014-11-19 22:03 - 00000000 ____D () C:\AdwCleaner
2014-11-19 21:52 - 2014-11-20 10:30 - 00004024 _____ () C:\WINDOWS\PFRO.log
2014-11-19 21:49 - 2014-11-19 21:49 - 02140160 _____ () C:\Users\Michal\Desktop\adwcleaner_4.101.exe
2014-11-19 21:23 - 2014-11-19 21:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atlassian
2014-11-19 21:23 - 2014-11-19 21:23 - 00000000 ____D () C:\Program Files (x86)\Atlassian
2014-11-19 21:06 - 2014-11-19 21:06 - 11409808 _____ (Atlassian) C:\Users\Michal\Desktop\SourceTreeSetup_1.6.11.exe
2014-11-19 15:20 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-11-19 15:20 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-11-19 15:20 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2014-11-19 15:20 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2014-11-17 17:21 - 2014-11-17 17:21 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-11-17 14:32 - 2014-11-17 14:32 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-11-17 14:16 - 2014-11-17 14:35 - 00003899 _____ () C:\WINDOWS\setupact.log
2014-11-17 14:16 - 2014-11-17 14:28 - 00003532 _____ () C:\WINDOWS\setuperr.log
2014-11-17 13:53 - 2014-11-17 13:57 - 00000000 ____D () C:\Program Files (x86)\DriverTuner
2014-11-17 13:53 - 2014-11-17 13:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner
2014-11-17 13:26 - 2014-11-17 13:26 - 00000000 ____D () C:\temp
2014-11-17 13:14 - 2014-11-17 13:14 - 00000000 ____D () C:\Users\Michal\AppData\Local\DriverToolkit
2014-11-17 13:13 - 2014-11-17 13:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
2014-11-16 21:13 - 2014-11-16 21:13 - 00008785 _____ () C:\Users\Michal\Desktop\Sešit1.xlsx
2014-11-16 16:22 - 2014-11-18 11:52 - 00000000 ____D () C:\ProgramData\UMS
2014-11-16 16:22 - 2014-11-16 16:22 - 00001944 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Media Server.lnk
2014-11-16 16:22 - 2014-11-16 16:22 - 00001036 _____ () C:\Users\Public\Desktop\Universal Media Server.lnk
2014-11-16 16:22 - 2014-11-16 16:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Media Server
2014-11-16 16:21 - 2014-11-18 11:54 - 00000000 ____D () C:\Program Files (x86)\Universal Media Server
2014-11-16 16:21 - 2014-11-16 16:21 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth
2014-11-16 16:21 - 2014-11-16 16:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth
2014-11-16 16:21 - 2014-11-16 16:21 - 00000000 ____D () C:\Program Files (x86)\AviSynth
2014-11-16 15:47 - 2014-11-16 15:48 - 00000000 ____D () C:\Program Files (x86)\DriverDoc
2014-11-16 15:47 - 2014-11-16 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverDoc
2014-11-16 15:13 - 2014-11-16 15:19 - 00000000 ____D () C:\Program Files (x86)\Spika
2014-11-16 15:13 - 2014-11-16 15:13 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Spika
2014-11-16 14:40 - 2014-11-16 14:40 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\(D8-31-CF-9D-0A-3E)
2014-11-15 12:34 - 2014-11-15 12:34 - 00048392 _____ (COMODO CA Limited) C:\WINDOWS\SysWOW64\certsentry.dll
2014-11-15 12:33 - 2014-11-21 11:44 - 01474832 _____ () C:\WINDOWS\system32\Drivers\sfi.dat
2014-11-15 12:33 - 2014-11-15 12:33 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-11-15 12:33 - 2014-11-15 12:33 - 00000000 ____D () C:\WINDOWS\System32\Tasks\COMODO
2014-11-15 12:32 - 2014-11-15 14:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2014-11-15 12:32 - 2014-11-15 12:34 - 00057096 _____ (COMODO CA Limited) C:\WINDOWS\system32\certsentry.dll
2014-11-15 12:32 - 2014-11-15 12:32 - 00000000 ____D () C:\Users\Michal\AppData\Local\Comodo
2014-11-15 12:32 - 2014-11-15 12:32 - 00000000 ____D () C:\Program Files\COMODO
2014-11-15 12:31 - 2014-11-15 12:34 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-11-15 12:31 - 2014-11-15 12:33 - 00000000 ____D () C:\ProgramData\Comodo
2014-11-15 12:31 - 2014-11-15 12:31 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-11-15 12:11 - 2014-11-20 19:27 - 00007601 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg
2014-11-12 20:06 - 2014-09-22 05:38 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-11-12 20:06 - 2014-09-22 04:06 - 00258368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-11-12 20:06 - 2014-09-22 04:06 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-11-12 20:06 - 2014-09-22 03:49 - 00035320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-11-12 20:06 - 2014-09-19 01:16 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-11-12 20:06 - 2014-09-02 23:08 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2014-11-12 20:06 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2014-11-12 20:04 - 2014-10-13 03:33 - 00116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-11-12 20:04 - 2014-10-11 01:58 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-11-12 20:04 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-11-12 20:04 - 2014-10-08 08:30 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-11-12 20:04 - 2014-10-08 08:09 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-11-12 20:04 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2014-11-12 20:04 - 2014-10-08 06:32 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-11-12 20:04 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-11-12 20:03 - 2014-11-05 00:38 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-11-12 20:03 - 2014-11-04 01:10 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2014-11-12 20:03 - 2014-10-31 05:53 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-11-12 20:03 - 2014-10-31 05:49 - 00537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-11-12 20:03 - 2014-10-31 05:24 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-11-12 17:58 - 2014-10-31 06:28 - 25110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-11-12 17:58 - 2014-10-31 04:42 - 19781632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-11-12 17:57 - 2014-10-31 06:05 - 02884096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-11-12 17:57 - 2014-10-31 05:50 - 06040064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-11-12 17:57 - 2014-10-31 05:15 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-11-12 17:57 - 2014-10-31 04:59 - 14390272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-11-12 17:57 - 2014-10-31 04:45 - 02365440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-11-12 17:57 - 2014-10-31 04:44 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-11-12 17:57 - 2014-10-31 04:32 - 01550336 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-11-12 17:57 - 2014-10-31 03:46 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-11-12 17:57 - 2014-10-31 03:30 - 12819456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-11-12 17:57 - 2014-10-31 03:17 - 01892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-11-12 17:57 - 2014-10-31 03:13 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-11-12 17:56 - 2014-10-31 06:12 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2014-11-12 17:56 - 2014-10-31 06:12 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2014-11-12 17:56 - 2014-10-31 06:10 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2014-11-12 17:56 - 2014-10-31 06:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-11-12 17:56 - 2014-10-31 06:08 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 17:56 - 2014-10-31 06:06 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-11-12 17:56 - 2014-10-31 06:06 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-11-12 17:56 - 2014-10-31 06:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-11-12 17:56 - 2014-10-31 06:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 17:56 - 2014-10-31 06:05 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-11-12 17:56 - 2014-10-31 06:04 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 17:56 - 2014-10-31 05:57 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-11-12 17:56 - 2014-10-31 05:56 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-11-12 17:56 - 2014-10-31 05:54 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 17:56 - 2014-10-31 05:53 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2014-11-12 17:56 - 2014-10-31 05:52 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2014-11-12 17:56 - 2014-10-31 05:51 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-11-12 17:56 - 2014-10-31 05:51 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 17:56 - 2014-10-31 05:51 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 17:56 - 2014-10-31 05:50 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 17:56 - 2014-10-31 05:40 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-11-12 17:56 - 2014-10-31 05:38 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 17:56 - 2014-10-31 05:30 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 17:56 - 2014-10-31 05:29 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2014-11-12 17:56 - 2014-10-31 05:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2014-11-12 17:56 - 2014-10-31 05:28 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2014-11-12 17:56 - 2014-10-31 05:25 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-11-12 17:56 - 2014-10-31 05:24 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-11-12 17:56 - 2014-10-31 05:24 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 17:56 - 2014-10-31 05:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-11-12 17:56 - 2014-10-31 05:21 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-11-12 17:56 - 2014-10-31 05:19 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-11-12 17:56 - 2014-10-31 05:08 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-11-12 17:56 - 2014-10-31 05:06 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 17:56 - 2014-10-31 05:05 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-11-12 17:56 - 2014-10-31 05:05 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 17:56 - 2014-10-31 05:03 - 02124288 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-11-12 17:56 - 2014-10-31 04:42 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2014-11-12 17:56 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2014-11-12 17:56 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2014-11-12 17:56 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2014-11-12 17:56 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2014-11-12 17:56 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2014-11-12 17:56 - 2014-10-31 04:24 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-11-12 17:56 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2014-11-12 17:56 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-11-12 17:56 - 2014-10-31 04:23 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-11-12 17:56 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-11-12 17:56 - 2014-10-31 04:22 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-11-12 17:56 - 2014-10-31 04:20 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 17:56 - 2014-10-31 04:18 - 02277376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-11-12 17:56 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-11-12 17:56 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-11-12 17:56 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2014-11-12 17:56 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2014-11-12 17:56 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2014-11-12 17:56 - 2014-10-31 04:12 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-11-12 17:56 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-11-12 17:56 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-11-12 17:56 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2014-11-12 17:56 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-11-12 17:56 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 17:56 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2014-11-12 17:56 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2014-11-12 17:56 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2014-11-12 17:56 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-11-12 17:56 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2014-11-12 17:56 - 2014-10-31 03:52 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-11-12 17:56 - 2014-10-31 03:51 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-11-12 17:56 - 2014-10-31 03:50 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-11-12 17:56 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-11-12 17:56 - 2014-10-31 03:46 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-11-12 17:56 - 2014-10-31 03:42 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-11-12 17:56 - 2014-10-31 03:40 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-11-12 17:56 - 2014-10-31 03:40 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-11-12 17:56 - 2014-10-31 03:39 - 02051072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-11-12 17:56 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-11-12 17:56 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2014-11-12 17:56 - 2014-10-31 03:11 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-11-12 17:55 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-11-12 17:55 - 2014-09-08 04:07 - 02497344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-11-12 17:55 - 2014-09-04 23:30 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-11-12 17:55 - 2014-09-04 23:21 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-11-12 17:55 - 2014-09-04 04:05 - 00836176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-12 17:55 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-11-12 17:55 - 2014-08-31 01:15 - 21197152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-11-12 17:55 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-11-12 17:55 - 2014-08-30 22:04 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-12 17:55 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-11-12 17:55 - 2014-08-28 03:55 - 07484224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-11-12 17:55 - 2014-08-28 01:21 - 02480128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-11-12 17:55 - 2014-08-23 06:14 - 13424128 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-11-12 17:55 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-11-12 17:55 - 2014-08-23 05:50 - 02714112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-12 17:54 - 2014-09-27 08:13 - 00104336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 17:54 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-11-12 17:54 - 2014-09-27 04:38 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-11-12 17:54 - 2014-09-27 04:30 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 17:54 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-11-12 17:54 - 2014-09-08 04:07 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-11-12 17:54 - 2014-09-07 23:08 - 00389176 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-11-12 17:54 - 2014-09-04 02:01 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-11-12 17:54 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-11-12 17:54 - 2014-08-31 01:17 - 00148800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-11-12 17:54 - 2014-08-30 23:05 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 17:54 - 2014-08-30 22:58 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2014-11-12 17:54 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2014-11-12 17:54 - 2014-08-28 02:50 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\PJLMON.DLL
2014-11-12 17:54 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-11-12 17:54 - 2014-08-02 01:51 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-11-12 17:54 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-11-12 17:53 - 2014-10-10 02:58 - 00177472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-11-12 17:53 - 2014-10-10 02:58 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2014-11-12 17:53 - 2014-10-10 02:44 - 00563976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-11-12 17:53 - 2014-10-08 08:37 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-11-12 17:53 - 2014-10-08 08:37 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2014-11-12 17:53 - 2014-10-08 08:34 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-11-12 17:53 - 2014-10-08 08:24 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 17:53 - 2014-10-08 07:56 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-11-12 17:53 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-11-12 17:53 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2014-11-12 17:53 - 2014-10-08 07:18 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-11-12 17:53 - 2014-10-08 07:17 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-11-12 17:53 - 2014-10-08 06:23 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 17:52 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-11-12 17:52 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-11-12 17:52 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-11-12 17:52 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-11-12 17:52 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2014-11-12 17:52 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-11-12 17:52 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-11-12 17:52 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-11-12 17:52 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 17:52 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-11-12 17:52 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-11-12 17:52 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-11-12 17:52 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-11-12 17:52 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-11-12 17:52 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-11-12 17:52 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-11-12 17:51 - 2014-10-23 06:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2014-11-12 17:51 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2014-11-12 17:51 - 2014-10-17 08:01 - 00789184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-11-12 17:51 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-11-12 17:51 - 2014-10-07 07:28 - 00500016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-11-12 17:51 - 2014-10-07 07:27 - 00482872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-11-12 17:51 - 2014-10-07 07:27 - 00394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 17:51 - 2014-10-07 07:27 - 00272248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-11-12 17:51 - 2014-10-07 07:27 - 00108432 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2014-11-12 17:51 - 2014-10-07 04:34 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-11-12 17:51 - 2014-10-07 04:34 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-11-12 17:51 - 2014-10-07 04:33 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-11-12 17:51 - 2014-10-07 04:30 - 04182016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-11-12 17:51 - 2014-10-07 02:54 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 17:51 - 2014-10-07 02:46 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-11-12 17:51 - 2014-08-23 06:18 - 02149376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-11-12 17:51 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-11-11 12:25 - 2014-11-11 12:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-11 12:02 - 2014-11-21 11:52 - 01351361 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-08 12:37 - 2014-11-08 12:37 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\39737CDF.sys
2014-11-07 08:16 - 2014-11-07 08:16 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-06 18:24 - 2014-11-19 21:33 - 00000000 ____D () C:\Program Files\trend micro
2014-11-06 18:23 - 2014-11-06 18:24 - 00000000 ____D () C:\rsit
2014-11-06 18:23 - 2014-11-06 18:23 - 01222144 _____ () C:\Users\Michal\Desktop\RSITx64.exe
2014-10-30 11:30 - 2014-10-30 11:30 - 00000000 ___SD () C:\Users\Michal\Documents\Zdroje dat
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 11:56 - 2013-05-31 12:11 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3427551933-748560644-408011068-1002
2014-11-21 11:53 - 2013-05-31 14:37 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-11-21 11:51 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-11-21 11:44 - 2014-01-19 20:06 - 00003986 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{36559C1C-842F-4834-830F-D8819BD9C1C6}
2014-11-21 11:42 - 2013-12-17 14:07 - 00000000 ___DO () C:\Users\Michal\SkyDrive
2014-11-21 11:42 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-11-21 11:42 - 2013-06-01 17:57 - 00000980 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-21 11:41 - 2013-11-12 14:44 - 00000000 ____D () C:\Users\Michal\AppData\Local\TSVNCache
2014-11-20 17:58 - 2013-06-01 17:57 - 00000984 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-20 10:31 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-20 10:30 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-11-20 05:52 - 2013-12-17 13:34 - 00000000 ____D () C:\Users\Michal
2014-11-19 21:56 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-11-19 21:55 - 2013-07-28 12:09 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-11-19 21:52 - 2014-02-11 14:55 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-11-19 21:51 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-11-19 21:50 - 2014-02-11 14:55 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-11-19 21:09 - 2013-06-01 08:49 - 05065728 ___SH () C:\Users\Michal\Desktop\Thumbs.db
2014-11-19 15:21 - 2014-10-06 13:21 - 00000000 ____D () C:\ProgramData\Atlassian
2014-11-19 11:49 - 2013-11-14 13:40 - 01745984 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-19 11:49 - 2013-11-14 13:24 - 00739924 _____ () C:\WINDOWS\system32\perfh005.dat
2014-11-19 11:49 - 2013-11-14 13:24 - 00151610 _____ () C:\WINDOWS\system32\perfc005.dat
2014-11-18 17:49 - 2014-06-27 15:00 - 00000132 _____ () C:\Users\Michal\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2014-11-17 14:30 - 2013-09-21 11:43 - 00000000 ____D () C:\WINDOWS\system32\NV
2014-11-17 14:11 - 2013-06-07 07:56 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\BitTorrent
2014-11-17 13:14 - 2013-05-31 16:30 - 00000000 ____D () C:\Michal
2014-11-16 23:04 - 2013-06-22 22:57 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Skype
2014-11-16 17:20 - 2013-12-18 15:31 - 00000000 ____D () C:\Users\Michal\AppData\Local\Deployment
2014-11-15 16:50 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-11-15 12:36 - 2014-03-17 13:25 - 00001124 _____ () C:\Users\Michal\Desktop\BitTorrent.lnk
2014-11-15 12:33 - 2012-07-26 06:37 - 00000000 ____D () C:\Users\Default.migrated
2014-11-14 21:53 - 2013-06-01 17:57 - 00003956 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-14 21:53 - 2013-06-01 17:57 - 00003720 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-14 17:47 - 2013-08-22 15:44 - 05197688 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-11-14 17:47 - 2012-09-01 04:17 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-11-14 17:45 - 2013-05-31 13:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-14 17:09 - 2014-07-27 18:44 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\en-GB
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-14 17:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-14 17:08 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-11-14 17:07 - 2013-06-01 10:13 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-14 16:22 - 2013-07-18 16:54 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-14 16:12 - 2013-05-31 12:38 - 103374192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-11-12 16:53 - 2013-05-31 14:37 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-11-12 15:21 - 2013-06-01 09:28 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\vlc
2014-11-06 18:04 - 2013-09-12 19:15 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\TeamViewer
2014-11-06 18:03 - 2013-06-01 17:58 - 00000838 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-06 18:03 - 2013-06-01 17:58 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-06 13:09 - 2014-10-07 14:00 - 00000000 ____D () C:\Users\Michal\.netbeans-derby
2014-11-04 12:57 - 2013-06-03 07:43 - 00000600 _____ () C:\Users\Michal\AppData\Roaming\winscp.rnd
2014-10-30 12:25 - 2013-09-03 07:02 - 00275080 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-10-30 01:55 - 2014-10-17 19:19 - 00714208 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-10-30 01:55 - 2014-10-17 19:19 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-28 18:59 - 2013-06-01 17:58 - 00002207 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-28 02:51 - 2013-06-01 09:33 - 00000000 ____D () C:\Users\Michal\Documents\VirtualDJ
2014-10-23 07:46 - 2014-08-16 23:49 - 00000000 ____D () C:\Users\Michal\AppData\Local\Adobe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Disabled - Up to date) {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Antivirus (Disabled - Up to date) {0C2D2636-923D-EE52-2A83-E643204A8275}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Michal\Desktop" je 1776 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
- Přílohy
-
- Addition.zip
- (9.1 KiB) Staženo 55 x
Re: Pomaly notebook
Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start CloseProcesses: HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.) HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] () HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated) HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1562264 2014-07-25] (Samsung) HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [KiesPDLR] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2014-07-25] (Samsung) HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd) HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] () HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] () HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\Run: [BitTorrent] => C:\Users\Michal\AppData\Roaming\BitTorrent\BitTorrent.exe [1388376 2014-10-26] (BitTorrent Inc.) HKU\S-1-5-21-3427551933-748560644-408011068-1002\...\MountPoints2: {9a290ed2-c993-11e3-bec9-4c72b9ab0226} - "G:\Startme.exe" BootExecute: autocheck autochk * sdnclean64.exe HKU\S-1-5-21-3427551933-748560644-408011068-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com SearchScopes: HKLM -> DefaultScope {8D2BC872-6858-4B3F-8B00-CEC93F6775E0} URL = SearchScopes: HKLM-x32 -> DefaultScope {8D2BC872-6858-4B3F-8B00-CEC93F6775E0} URL = FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2012-09-01] FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: No Name - {4ED1F68A-5463-4931-9384-8FFF5ED91D92} [Not Found] 2014-11-21 11:54 - 2014-11-21 11:56 - 00029626 _____ () C:\Users\Michal\Desktop\FRST.txt 2014-11-21 11:53 - 2014-11-21 11:53 - 00112640 _____ (forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe 2014-11-20 07:19 - 2014-11-19 22:12 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe 2014-11-20 04:42 - 2014-11-20 13:30 - 00000000 ____D () C:\zoek 2014-11-19 22:15 - 2014-11-20 13:30 - 00037391 _____ () C:\zoek-results.log 2014-11-19 22:11 - 2014-11-20 06:38 - 00000000 ____D () C:\zoek_backup 2014-11-19 22:10 - 2014-11-19 22:10 - 01294848 _____ () C:\Users\Michal\Desktop\zoek.exe 2014-11-19 21:57 - 2014-11-19 22:03 - 00000000 ____D () C:\AdwCleaner 2014-11-19 21:52 - 2014-11-20 10:30 - 00004024 _____ () C:\WINDOWS\PFRO.log 2014-11-19 21:49 - 2014-11-19 21:49 - 02140160 _____ () C:\Users\Michal\Desktop\adwcleaner_4.101.exe 2014-11-17 17:21 - 2014-11-17 17:21 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2014-11-17 14:32 - 2014-11-17 14:32 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2014-11-17 14:16 - 2014-11-17 14:35 - 00003899 _____ () C:\WINDOWS\setupact.log 2014-11-17 14:16 - 2014-11-17 14:28 - 00003532 _____ () C:\WINDOWS\setuperr.log Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Hosts: EmptyTemp: Reboot: End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Pomaly notebook
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-11-24 04:19:22)<=
==> ATTENTION: System is not rebooted.
C:\Users\Michal\Desktop\FRST.txt => Moved successfully.
C:\Users\Michal\Desktop\FRSTLauncher.exe => Moved successfully.
C:\WINDOWS\zoek-delete.exe => Moved successfully.
C:\Users\Michal\Desktop\zoek.exe => Moved successfully.
C:\WINDOWS\PFRO.log => Moved successfully.
C:\Users\Michal\Desktop\adwcleaner_4.101.exe => Moved successfully.
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => Moved successfully.
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat => Moved successfully.
C:\WINDOWS\setupact.log => Moved successfully.
C:\WINDOWS\setuperr.log => Moved successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
==== End of Fixlog ====
==> ATTENTION: System is not rebooted.
C:\Users\Michal\Desktop\FRST.txt => Moved successfully.
C:\Users\Michal\Desktop\FRSTLauncher.exe => Moved successfully.
C:\WINDOWS\zoek-delete.exe => Moved successfully.
C:\Users\Michal\Desktop\zoek.exe => Moved successfully.
C:\WINDOWS\PFRO.log => Moved successfully.
C:\Users\Michal\Desktop\adwcleaner_4.101.exe => Moved successfully.
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => Moved successfully.
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat => Moved successfully.
C:\WINDOWS\setupact.log => Moved successfully.
C:\WINDOWS\setuperr.log => Moved successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
==== End of Fixlog ====
Re: Pomaly notebook
Jak se chova ntb??
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Pomaly notebook
Chová se lépe, avšak mám pocit, že ne tak, jak by měl. Pořád se dlouho vypíná, semtam se hodně zaseká a musím čekat. Nevím, jestli problém nemůže být i ve stavu HDD - když se podívám na monitoring page faults, tak možná ano, ale je to názor laika. Také mám problém s připojením k wi-fi oproti ostatním zařízením a bluetooth mi také nefunguje (teoreticky však problém ovladačů)
Re: Pomaly notebook
Udelejte CDI dle kolegy
MiliNess píše:Stáhni CrystalDiskInfo, v nabídce Úpravy zvol Kopírovat a obsah schránky sem vlož pomocí Ctrl+V.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Pomaly notebook
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 8 [6.2 Build 9200] (x64)
Date : 2014/11/25 14:35:51
-- Controller Map ----------------------------------------------------------
+ Intel(R) 7 Series Chipset Family SATA AHCI Controller [ATA]
- ST500LT012-9WS142
- SATA SSD
- HL-DT-ST DVDRAM
- Řadič prostorů úložišť [SCSI]
-- Disk List ---------------------------------------------------------------
(1) ST500LT012-9WS142 : 500,1 GB [0/0/0, pd1] - st
(2) SATA SSD : 20,0 GB [1/0/0, pd1]
----------------------------------------------------------------------------
(1) ST500LT012-9WS142
----------------------------------------------------------------------------
Model : ST500LT012-9WS142
Firmware : 0001SDM1
Serial Number : W0V1ZXXT
Disk Size : 500,1 GB (8,4/137,4/500,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300
Power On Hours : 3910 hod.
Power On Count : 1846 krát
Host Reads : 89 GB
Host Writes : 1704 GB
Temparature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 80FEh [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 119 _99 __6 00000DD677E8 Počet chyb čtení
03 _99 _98 __0 000000000000 Čas na roztočení ploten
04 _99 _99 _20 000000000737 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _76 _60 _30 0003093BF1F8 Počet chybných hledání
09 _96 _96 __0 BE2A00000F46 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 _20 000000000736 Počet cyklů zapnutí zařízení
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _73 _40 _45 000F1B14001B Teplota toku vzduchu
BF 100 100 __0 00000000013E Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000019 Počet vypnutí disku
C1 _77 _77 __0 00000000B433 Počet cyklů načítání/vymazání
C2 _27 _60 __0 000A0000001B Teplota
C4 _96 _96 _30 58BB00000EAA Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 _96 _96 __0 58BB00000EAA Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000D5158F73 Total LBAs Written
F2 100 253 __0 00000B3FE659 Total LBAs Read
FE 100 100 __0 000000000000 Ochrana proti pádu
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 5730 5730 5631 5A58 5854
020: 0000 8000 0004 3030 3031 4D31 4D31 5354 3530 304C
030: 5430 3132 2D39 5753 3134 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0F06 0F06 0004 0048 0048
080: 01F0 0029 746B 7D69 6163 BC49 BC49 6163 407F 0031
090: 0031 80FE FFFE 0000 D000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 6003 6003 0000 5000 C500
110: 53BD 6631 0000 0000 0000 0000 0000 0000 0000 401E
120: 401E 0000 0000 0000 0000 0000 0000 0000 0029 6030
130: 3A38 6030 3A38 2020 0002 0108 0108 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 00FF 00FF 0280 0000 0000
150: 0008 0000 0000 0000 1028 4000 4000 0000 5F00 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 1035 1035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0002 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 53A5
----------------------------------------------------------------------------
(2) SATA SSD
----------------------------------------------------------------------------
Model : SATA SSD
Firmware : S5FAM018
Serial Number : 879F07260F0800042374
Disk Size : 20,0 GB (8,4/20,0/20,0)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 39091248
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 3893 hod.
Power On Count : 1849 krát
Temparature : Neznámy údaj
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ, TRIM
APM Level : 0000h [OFF]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _50 000000000000 Počet chyb čtení
09 100 100 __0 000000000F35 Hodin v činnosti
0C 100 100 __0 000000000739 Počet cyklů zapnutí zařízení
A8 100 100 __0 000000000000 Neznámý
C0 100 100 __0 000000000018 Unsafe Shutdown Count
AA 100 100 _10 000000000026 Neznámý
AD 100 100 __0 0000068406CA Neznámý
DA 100 100 _50 000000000000 Neznámý
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 3837 3946 3037 3236 3046 3030 3030 3034 3233 3734
020: 0000 0000 0000 5335 4641 3138 3138 5341 5441 2053
030: 5344 2020 2020 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0000 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: 7C30 0254 0000 0007 0003 0078 0078 0078 0078 0100
070: 0000 0000 0000 0000 0000 0706 0706 0000 004C 0048
080: 01F8 0000 346B 7D09 6063 BC01 BC01 6063 203F 001E
090: 001E 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 7C30 0254 0000 0000 0000 4000 4000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 4015
120: 4015 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0005 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 BFA5
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 8 [6.2 Build 9200] (x64)
Date : 2014/11/25 14:35:51
-- Controller Map ----------------------------------------------------------
+ Intel(R) 7 Series Chipset Family SATA AHCI Controller [ATA]
- ST500LT012-9WS142
- SATA SSD
- HL-DT-ST DVDRAM
- Řadič prostorů úložišť [SCSI]
-- Disk List ---------------------------------------------------------------
(1) ST500LT012-9WS142 : 500,1 GB [0/0/0, pd1] - st
(2) SATA SSD : 20,0 GB [1/0/0, pd1]
----------------------------------------------------------------------------
(1) ST500LT012-9WS142
----------------------------------------------------------------------------
Model : ST500LT012-9WS142
Firmware : 0001SDM1
Serial Number : W0V1ZXXT
Disk Size : 500,1 GB (8,4/137,4/500,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300
Power On Hours : 3910 hod.
Power On Count : 1846 krát
Host Reads : 89 GB
Host Writes : 1704 GB
Temparature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 80FEh [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 119 _99 __6 00000DD677E8 Počet chyb čtení
03 _99 _98 __0 000000000000 Čas na roztočení ploten
04 _99 _99 _20 000000000737 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _76 _60 _30 0003093BF1F8 Počet chybných hledání
09 _96 _96 __0 BE2A00000F46 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 _20 000000000736 Počet cyklů zapnutí zařízení
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _73 _40 _45 000F1B14001B Teplota toku vzduchu
BF 100 100 __0 00000000013E Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000019 Počet vypnutí disku
C1 _77 _77 __0 00000000B433 Počet cyklů načítání/vymazání
C2 _27 _60 __0 000A0000001B Teplota
C4 _96 _96 _30 58BB00000EAA Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 _96 _96 __0 58BB00000EAA Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000D5158F73 Total LBAs Written
F2 100 253 __0 00000B3FE659 Total LBAs Read
FE 100 100 __0 000000000000 Ochrana proti pádu
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 5730 5730 5631 5A58 5854
020: 0000 8000 0004 3030 3031 4D31 4D31 5354 3530 304C
030: 5430 3132 2D39 5753 3134 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0F06 0F06 0004 0048 0048
080: 01F0 0029 746B 7D69 6163 BC49 BC49 6163 407F 0031
090: 0031 80FE FFFE 0000 D000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 6003 6003 0000 5000 C500
110: 53BD 6631 0000 0000 0000 0000 0000 0000 0000 401E
120: 401E 0000 0000 0000 0000 0000 0000 0000 0029 6030
130: 3A38 6030 3A38 2020 0002 0108 0108 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 00FF 00FF 0280 0000 0000
150: 0008 0000 0000 0000 1028 4000 4000 0000 5F00 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 1035 1035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0002 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 53A5
----------------------------------------------------------------------------
(2) SATA SSD
----------------------------------------------------------------------------
Model : SATA SSD
Firmware : S5FAM018
Serial Number : 879F07260F0800042374
Disk Size : 20,0 GB (8,4/20,0/20,0)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 39091248
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 3893 hod.
Power On Count : 1849 krát
Temparature : Neznámy údaj
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ, TRIM
APM Level : 0000h [OFF]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _50 000000000000 Počet chyb čtení
09 100 100 __0 000000000F35 Hodin v činnosti
0C 100 100 __0 000000000739 Počet cyklů zapnutí zařízení
A8 100 100 __0 000000000000 Neznámý
C0 100 100 __0 000000000018 Unsafe Shutdown Count
AA 100 100 _10 000000000026 Neznámý
AD 100 100 __0 0000068406CA Neznámý
DA 100 100 _50 000000000000 Neznámý
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 3837 3946 3037 3236 3046 3030 3030 3034 3233 3734
020: 0000 0000 0000 5335 4641 3138 3138 5341 5441 2053
030: 5344 2020 2020 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0000 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: 7C30 0254 0000 0007 0003 0078 0078 0078 0078 0100
070: 0000 0000 0000 0000 0000 0706 0706 0000 004C 0048
080: 01F8 0000 346B 7D09 6063 BC01 BC01 6063 203F 001E
090: 001E 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 7C30 0254 0000 0000 0000 4000 4000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 4015
120: 4015 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0005 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 BFA5
Re: Pomaly notebook
Vase tuseni o HDD je spravne, neni na tom opravdu nejlepe 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Pomaly notebook
Uz jsem uvazoval nad variantou porizeni noveho SSD na misto dvd mechaniky avsak puvodni HDD jsem si chtel ponechat. Ma toto reseni cenu, nebo myslite, ze je lepsi rovnou koupit nove SSD i HDD? Respektive nejake jine reseni...?
Přispějete na provoz fóra?