
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zavirovaný PC- prosím o pomoc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
- Návštěvník
- Příspěvky: 11
- Registrován: 02 pro 2014 20:13
Zavirovaný PC- prosím o pomoc
Dobrý večer,
nemohu se zbavit viru v počítači. Norton mi sice hlásí, že počítač je chráněn a není napaden, ale dle UPC zasíláme stále do sítě viry.
Přikládám log vytvořený dle návodu. Log je v příloze, celý se mi do zprávy nevešel.
Předem díky za pomoc, Monika Čechurová
-----------------
nemohu se zbavit viru v počítači. Norton mi sice hlásí, že počítač je chráněn a není napaden, ale dle UPC zasíláme stále do sítě viry.
Přikládám log vytvořený dle návodu. Log je v příloze, celý se mi do zprávy nevešel.
Předem díky za pomoc, Monika Čechurová
-----------------
- Přílohy
-
- Logfile_of_random (1).pdf
- (334.34 KiB) Staženo 28 x
Re: Zavirovaný PC- prosím o pomoc
Dobry vecer 
No neco se tam opravdu najde
Odinstalujte Spybot - Search & Destroy
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).
Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/






- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Clean
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
-
- Návštěvník
- Příspěvky: 11
- Registrován: 02 pro 2014 20:13
Re: Zavirovaný PC- prosím o pomoc
Dobrý den,
díky za radu.
Zde je log z Adw cleaner:
# AdwCleaner v4.104 - Report created 07/12/2014 at 11:24:58
# Updated 05/12/2014 by Xplode
# Database : 2014-12-03.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Monika - PC_MONIKA
# Running from : C:\Users\Monika\Downloads\adwcleaner_4.104.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
[#] Service Deleted : Update innoApp
[#] Service Deleted : Util innoApp
Service Deleted : {18345079-40b2-4d44-a146-30cb8475e02e}Gw64
Service Deleted : {ab95a01e-0c28-4605-9b7b-9a0da4f16d2b}w64
Service Deleted : {d749cb38-e48d-4f33-bfd4-0edca43efe21}Gw64
Service Deleted : {e7e5f2fe-814b-4dde-bc20-7c809f8d9e4d}w64
Service Deleted : {fafa7873-4f98-4a85-83ff-1dee68e83106}Gw64
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\DSearchLink
Folder Deleted : C:\ProgramData\SafetyNut
Folder Deleted : C:\ProgramData\SNT
Folder Deleted : C:\ProgramData\Systweak
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\ProgramData\WebTouch
Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\ProgramData\greatsavaer
Folder Deleted : C:\ProgramData\grreaatasavEr
Folder Deleted : C:\ProgramData\MiiNimumPrIce
Folder Deleted : C:\ProgramData\ReagularDeals
Folder Deleted : C:\ProgramData\RREEmovveTHeAiddAopip
Folder Deleted : C:\ProgramData\8102456fe841eb49
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced-System Protector
Folder Deleted : C:\Program Files (x86)\ASP
Folder Deleted : C:\Program Files (x86)\Browser Tab Search by Ask
Folder Deleted : C:\Program Files (x86)\eSupport.com
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Gophoto.it
Folder Deleted : C:\Program Files (x86)\GS-Enabler
Folder Deleted : C:\Program Files (x86)\iwintoolbarforpogo
Folder Deleted : C:\Program Files (x86)\MediaBuzzV1
Folder Deleted : C:\Program Files (x86)\MediaPlayerV1
Folder Deleted : C:\Program Files (x86)\MediaViewerV1
Folder Deleted : C:\Program Files (x86)\MediaViewV1
Folder Deleted : C:\Program Files (x86)\MediaWatchV1
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\RichMediaViewV1
Folder Deleted : C:\Program Files (x86)\SecretSauce
Folder Deleted : C:\Program Files (x86)\TornTV.com
Folder Deleted : C:\Program Files (x86)\VideoPlayerV3
Folder Deleted : C:\Program Files (x86)\RCP
Folder Deleted : C:\Program Files (x86)\GoHD
Folder Deleted : C:\Program Files (x86)\TrustMediaViewerV1
Folder Deleted : C:\Program Files (x86)\greatsavaer
Folder Deleted : C:\Program Files (x86)\MiiNimumPrIce
Folder Deleted : C:\Program Files (x86)\ReagularDeals
Folder Deleted : C:\Program Files (x86)\RREEmovveTHeAiddAopip
[!] Folder Deleted : C:\Program Files (x86)\innoApp
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Deleted : C:\Users\Monika\AppData\Local\eSupport.com
Folder Deleted : C:\Users\Monika\AppData\Local\genienext
Folder Deleted : C:\Users\Monika\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Monika\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Monika\AppData\Local\onlysearch
Folder Deleted : C:\Users\Monika\AppData\Local\pay-by-ads
Folder Deleted : C:\Users\Monika\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Monika\AppData\Local\torch
Folder Deleted : C:\Users\Monika\AppData\LocalLow\buenosearch LTD
Folder Deleted : C:\Users\Monika\AppData\LocalLow\ilividmoviestoolbarha
Folder Deleted : C:\Users\Monika\AppData\LocalLow\iwintoolbarforpogo
Folder Deleted : C:\Users\Monika\AppData\LocalLow\searchresultstb
Folder Deleted : C:\Users\Monika\AppData\LocalLow\GoHD
Folder Deleted : C:\Users\Monika\AppData\Roaming\ASP
Folder Deleted : C:\Users\Monika\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4
Folder Deleted : C:\Users\Monika\AppData\Roaming\ExpressFiles
Folder Deleted : C:\Users\Monika\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\Monika\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Monika\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Monika\AppData\Roaming\TornTV.com
Folder Deleted : C:\Users\Monika\AppData\Roaming\YourFileDownloader
Folder Deleted : C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Deleted : C:\Users\Monika\Documents\Mobogenie
Folder Deleted : C:\Users\Public\Documents\iWin
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lmnbobhffedhdhfpcjkjphcfpeeiocdn
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ljefoakgfhcoeobgicjgejglnpfpemgb
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Monika\AppData\Roaming\Opera Software\Opera Stable\Extensions\lmnbobhffedhdhfpcjkjphcfpeeiocdn
Folder Deleted : C:\Users\Monika\AppData\Roaming\Opera Software\Opera Stable\Extensions\omnhkboaejidgnodedpmnbdlbmjileik
File Deleted : C:\WINDOWS\System32\roboot64.exe
File Deleted : C:\WINDOWS\System32\sasnative64.exe
File Deleted : C:\WINDOWS\System32\drivers\{18345079-40b2-4d44-a146-30cb8475e02e}Gw64.sys
File Deleted : C:\WINDOWS\System32\drivers\{ab95a01e-0c28-4605-9b7b-9a0da4f16d2b}w64.sys
File Deleted : C:\WINDOWS\System32\drivers\{d749cb38-e48d-4f33-bfd4-0edca43efe21}Gw64.sys
File Deleted : C:\WINDOWS\System32\drivers\{e7e5f2fe-814b-4dde-bc20-7c809f8d9e4d}w64.sys
File Deleted : C:\WINDOWS\System32\drivers\{fafa7873-4f98-4a85-83ff-1dee68e83106}Gw64.sys
File Deleted : C:\Users\Monika\daemonprocess.txt
File Deleted : C:\Users\Monika\AppData\Roaming\LiveSupport.exe_log.txt
File Deleted : C:\Users\Monika\AppData\Roaming\regsvr32.exe_log.txt
File Deleted : C:\Users\Monika\Desktop\Live PC Help.lnk
File Deleted : C:\Users\Monika\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
***** [ Scheduled Tasks ] *****
Task Deleted : advanced-System Protector_startup
Task Deleted : Express FilesUpdate
Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : Torntv V9.0-chromeinstaller
Task Deleted : Torntv V9.0-codedownloader
Task Deleted : Torntv V9.0-enabler
Task Deleted : Torntv V9.0-firefoxinstaller
Task Deleted : Torntv V9.0-updater
Task Deleted : Yahoo! Search
Task Deleted : YourFile DownloaderUpdate
Task Deleted : RunAsStdUser Task
Task Deleted : Only-search
Task Deleted : Yahoo! Search Updater
Task Deleted : 0f9a9dd1-fe0a-49f4-91a3-1c63ba01a2c7
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-1
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-2
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-5
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-5_user
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-7
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-1
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-2
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-3
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-4
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-5
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-6
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-7
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-1
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-11
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-2
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-3
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-4
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-5
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-5_user
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-6
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-7
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-1
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-2
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-3
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-4
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-5
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-6
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-7
Task Deleted : cbed6247-3ff6-4a54-baad-591af70b502b
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\Users\Monika\Desktop\Search.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\Uninstall QuickTime.lnk
Shortcut Disinfected : C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Monika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\Monika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe
Key Deleted : HKCU\Software\Classes\iLivid.torrent
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Torntv Downloader]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [UpdateChecker]
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\iLivid.torrent
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKCU\Software\Classes\keepmysearch
Key Deleted : HKLM\SOFTWARE\Classes\MinimumPruIce.MinimumPruIce
Key Deleted : HKLM\SOFTWARE\Classes\MinimumPruIce.MinimumPruIce.6.3
Key Deleted : HKLM\SOFTWARE\Classes\RiegUlarDeealas.RiegUlarDeealas
Key Deleted : HKLM\SOFTWARE\Classes\RiegUlarDeealas.RiegUlarDeealas.7.2
Key Deleted : HKLM\SOFTWARE\Classes\greattsAver.greattsAver
Key Deleted : HKLM\SOFTWARE\Classes\greattsAver.greattsAver.2.7
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update innoApp
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util innoApp
Key Deleted : HKEY_USERS\.DEFAULT\Software\Microsoft\.NETFramework\SQM\Apps\updateinnoApp.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-1622525965
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611211180}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622212280}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{59e47ef9-5163-4e82-9c17-3d6f63dda496}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655215580}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666216680}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79A7FE5F-BE17-4CF8-91F4-AEBD7ABBF762}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99E29823-2F67-41C3-8AA5-6425097A771F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644214480}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{741227e4-edae-443f-a438-64b1e79f5062}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611211180}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59e47ef9-5163-4e82-9c17-3d6f63dda496}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611211180}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59e47ef9-5163-4e82-9c17-3d6f63dda496}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110611211180}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{59e47ef9-5163-4e82-9c17-3d6f63dda496}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d925bc12-7440-413e-a040-cef15508f0c5}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{d925bc12-7440-413e-a040-cef15508f0c5}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611211180}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622212280}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655215580}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666216680}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79A7FE5F-BE17-4CF8-91F4-AEBD7ABBF762}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611211180}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{d925bc12-7440-413e-a040-cef15508f0c5}]
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN DTX
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\eSupport.com
Key Deleted : HKCU\Software\ExpressFiles
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Popajar
Key Deleted : HKCU\Software\RegisteredApplicationsEx
Key Deleted : HKCU\Software\SupHpUISoft
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\torch
Key Deleted : HKCU\Software\Trymedia Systems
Key Deleted : HKCU\Software\YourFileDownloader
Key Deleted : HKCU\Software\TornTv Downloader
Key Deleted : HKCU\Software\innoApp
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\GoHD
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\ExpressFiles
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\GS-Enabler
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
Key Deleted : HKLM\SOFTWARE\MediaBuzzV1
Key Deleted : HKLM\SOFTWARE\MediaPlayerV1
Key Deleted : HKLM\SOFTWARE\MediaViewV1
Key Deleted : HKLM\SOFTWARE\MediaWatchV1
Key Deleted : HKLM\SOFTWARE\SafetyNut
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\torch
Key Deleted : HKLM\SOFTWARE\Trymedia Systems
Key Deleted : HKLM\SOFTWARE\YourFileDownloader
Key Deleted : HKLM\SOFTWARE\GoHD
Key Deleted : HKLM\SOFTWARE\innoApp
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\onlysearch
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CA41BB14-E67B-1653-C57B-5CA99418A866}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\inethnfd
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean-Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~4A5BE654_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GoHD
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\innoApp
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Mozilla Firefox v
-\\ Google Chrome v38.0.2125.111
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.buenosearch.com/?q={searchTerms}&ba ... l&tsp=5271
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searchsunmy.info/?l=1&q={searchTerms}&pid=1337&r=2014/01/04&hid=10950699380000054372&lg=EN&cc=CZ&unqvl=45
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://dts.search.ask.com/sr?src=crb&gct=ds&appid=1236&systemid=406&v=n10781-217&apn_uid=5697307247104746&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1411 ... earchTerms}
-\\ Comodo Dragon v
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.buenosearch.com/?q={searchTerms}&ba ... l&tsp=5271
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searchsunmy.info/?l=1&q={searchTerms}&pid=1337&r=2014/01/04&hid=10950699380000054372&lg=EN&cc=CZ&unqvl=45
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://dts.search.ask.com/sr?src=crb&gct=ds&appid=1236&systemid=406&v=n10781-217&apn_uid=5697307247104746&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1411 ... earchTerms}
-\\ Opera v0.0.0.0
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.buenosearch.com/?q={searchTerms}&ba ... l&tsp=5271
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searchsunmy.info/?l=1&q={searchTerms}&pid=1337&r=2014/01/04&hid=10950699380000054372&lg=EN&cc=CZ&unqvl=45
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://dts.search.ask.com/sr?src=crb&gct=ds&appid=1236&systemid=406&v=n10781-217&apn_uid=5697307247104746&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1411 ... earchTerms}
*************************
AdwCleaner[R0].txt - [37162 octets] - [07/12/2014 11:21:11]
AdwCleaner[S0].txt - [36524 octets] - [07/12/2014 11:24:58]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [36585 octets] ##########
díky za radu.
Zde je log z Adw cleaner:
# AdwCleaner v4.104 - Report created 07/12/2014 at 11:24:58
# Updated 05/12/2014 by Xplode
# Database : 2014-12-03.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Monika - PC_MONIKA
# Running from : C:\Users\Monika\Downloads\adwcleaner_4.104.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
[#] Service Deleted : Update innoApp
[#] Service Deleted : Util innoApp
Service Deleted : {18345079-40b2-4d44-a146-30cb8475e02e}Gw64
Service Deleted : {ab95a01e-0c28-4605-9b7b-9a0da4f16d2b}w64
Service Deleted : {d749cb38-e48d-4f33-bfd4-0edca43efe21}Gw64
Service Deleted : {e7e5f2fe-814b-4dde-bc20-7c809f8d9e4d}w64
Service Deleted : {fafa7873-4f98-4a85-83ff-1dee68e83106}Gw64
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\DSearchLink
Folder Deleted : C:\ProgramData\SafetyNut
Folder Deleted : C:\ProgramData\SNT
Folder Deleted : C:\ProgramData\Systweak
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\ProgramData\WebTouch
Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\ProgramData\greatsavaer
Folder Deleted : C:\ProgramData\grreaatasavEr
Folder Deleted : C:\ProgramData\MiiNimumPrIce
Folder Deleted : C:\ProgramData\ReagularDeals
Folder Deleted : C:\ProgramData\RREEmovveTHeAiddAopip
Folder Deleted : C:\ProgramData\8102456fe841eb49
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced-System Protector
Folder Deleted : C:\Program Files (x86)\ASP
Folder Deleted : C:\Program Files (x86)\Browser Tab Search by Ask
Folder Deleted : C:\Program Files (x86)\eSupport.com
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Gophoto.it
Folder Deleted : C:\Program Files (x86)\GS-Enabler
Folder Deleted : C:\Program Files (x86)\iwintoolbarforpogo
Folder Deleted : C:\Program Files (x86)\MediaBuzzV1
Folder Deleted : C:\Program Files (x86)\MediaPlayerV1
Folder Deleted : C:\Program Files (x86)\MediaViewerV1
Folder Deleted : C:\Program Files (x86)\MediaViewV1
Folder Deleted : C:\Program Files (x86)\MediaWatchV1
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\RichMediaViewV1
Folder Deleted : C:\Program Files (x86)\SecretSauce
Folder Deleted : C:\Program Files (x86)\TornTV.com
Folder Deleted : C:\Program Files (x86)\VideoPlayerV3
Folder Deleted : C:\Program Files (x86)\RCP
Folder Deleted : C:\Program Files (x86)\GoHD
Folder Deleted : C:\Program Files (x86)\TrustMediaViewerV1
Folder Deleted : C:\Program Files (x86)\greatsavaer
Folder Deleted : C:\Program Files (x86)\MiiNimumPrIce
Folder Deleted : C:\Program Files (x86)\ReagularDeals
Folder Deleted : C:\Program Files (x86)\RREEmovveTHeAiddAopip
[!] Folder Deleted : C:\Program Files (x86)\innoApp
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Deleted : C:\Users\Monika\AppData\Local\eSupport.com
Folder Deleted : C:\Users\Monika\AppData\Local\genienext
Folder Deleted : C:\Users\Monika\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Monika\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Monika\AppData\Local\onlysearch
Folder Deleted : C:\Users\Monika\AppData\Local\pay-by-ads
Folder Deleted : C:\Users\Monika\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Monika\AppData\Local\torch
Folder Deleted : C:\Users\Monika\AppData\LocalLow\buenosearch LTD
Folder Deleted : C:\Users\Monika\AppData\LocalLow\ilividmoviestoolbarha
Folder Deleted : C:\Users\Monika\AppData\LocalLow\iwintoolbarforpogo
Folder Deleted : C:\Users\Monika\AppData\LocalLow\searchresultstb
Folder Deleted : C:\Users\Monika\AppData\LocalLow\GoHD
Folder Deleted : C:\Users\Monika\AppData\Roaming\ASP
Folder Deleted : C:\Users\Monika\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4
Folder Deleted : C:\Users\Monika\AppData\Roaming\ExpressFiles
Folder Deleted : C:\Users\Monika\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\Monika\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Monika\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Monika\AppData\Roaming\TornTV.com
Folder Deleted : C:\Users\Monika\AppData\Roaming\YourFileDownloader
Folder Deleted : C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Deleted : C:\Users\Monika\Documents\Mobogenie
Folder Deleted : C:\Users\Public\Documents\iWin
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lmnbobhffedhdhfpcjkjphcfpeeiocdn
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ljefoakgfhcoeobgicjgejglnpfpemgb
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\edpjahklhlabhimpdeoicnpebknmfkmk
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ihniahcifepelhiddblkjjmejhcbjlih
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jjndmaiklanpdaomjdkkiaohgecamlpg
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Monika\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kjmmfcmbcilkpigdggmgpohnbfehmnjh
Folder Deleted : C:\Users\Monika\AppData\Roaming\Opera Software\Opera Stable\Extensions\lmnbobhffedhdhfpcjkjphcfpeeiocdn
Folder Deleted : C:\Users\Monika\AppData\Roaming\Opera Software\Opera Stable\Extensions\omnhkboaejidgnodedpmnbdlbmjileik
File Deleted : C:\WINDOWS\System32\roboot64.exe
File Deleted : C:\WINDOWS\System32\sasnative64.exe
File Deleted : C:\WINDOWS\System32\drivers\{18345079-40b2-4d44-a146-30cb8475e02e}Gw64.sys
File Deleted : C:\WINDOWS\System32\drivers\{ab95a01e-0c28-4605-9b7b-9a0da4f16d2b}w64.sys
File Deleted : C:\WINDOWS\System32\drivers\{d749cb38-e48d-4f33-bfd4-0edca43efe21}Gw64.sys
File Deleted : C:\WINDOWS\System32\drivers\{e7e5f2fe-814b-4dde-bc20-7c809f8d9e4d}w64.sys
File Deleted : C:\WINDOWS\System32\drivers\{fafa7873-4f98-4a85-83ff-1dee68e83106}Gw64.sys
File Deleted : C:\Users\Monika\daemonprocess.txt
File Deleted : C:\Users\Monika\AppData\Roaming\LiveSupport.exe_log.txt
File Deleted : C:\Users\Monika\AppData\Roaming\regsvr32.exe_log.txt
File Deleted : C:\Users\Monika\Desktop\Live PC Help.lnk
File Deleted : C:\Users\Monika\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
***** [ Scheduled Tasks ] *****
Task Deleted : advanced-System Protector_startup
Task Deleted : Express FilesUpdate
Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : Torntv V9.0-chromeinstaller
Task Deleted : Torntv V9.0-codedownloader
Task Deleted : Torntv V9.0-enabler
Task Deleted : Torntv V9.0-firefoxinstaller
Task Deleted : Torntv V9.0-updater
Task Deleted : Yahoo! Search
Task Deleted : YourFile DownloaderUpdate
Task Deleted : RunAsStdUser Task
Task Deleted : Only-search
Task Deleted : Yahoo! Search Updater
Task Deleted : 0f9a9dd1-fe0a-49f4-91a3-1c63ba01a2c7
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-1
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-2
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-5
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-5_user
Task Deleted : 19168937-f360-49b0-9bd2-6ebf88e0e3e6-7
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-1
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-2
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-3
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-4
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-5
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-6
Task Deleted : 2e10d0f9-1239-4dc7-85f8-42db6a7eaea5-7
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-1
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-11
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-2
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-3
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-4
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-5
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-5_user
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-6
Task Deleted : 3a95060c-d465-4dba-b0b7-1ae99b53ec09-7
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-1
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-2
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-3
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-4
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-5
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-6
Task Deleted : aa0ef17a-b70f-46e9-9301-90b4abe32c52-7
Task Deleted : cbed6247-3ff6-4a54-baad-591af70b502b
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\Users\Monika\Desktop\Search.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\Uninstall QuickTime.lnk
Shortcut Disinfected : C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Monika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\Monika\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe
Key Deleted : HKCU\Software\Classes\iLivid.torrent
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Torntv Downloader]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [UpdateChecker]
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\iLivid.torrent
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKCU\Software\Classes\keepmysearch
Key Deleted : HKLM\SOFTWARE\Classes\MinimumPruIce.MinimumPruIce
Key Deleted : HKLM\SOFTWARE\Classes\MinimumPruIce.MinimumPruIce.6.3
Key Deleted : HKLM\SOFTWARE\Classes\RiegUlarDeealas.RiegUlarDeealas
Key Deleted : HKLM\SOFTWARE\Classes\RiegUlarDeealas.RiegUlarDeealas.7.2
Key Deleted : HKLM\SOFTWARE\Classes\greattsAver.greattsAver
Key Deleted : HKLM\SOFTWARE\Classes\greattsAver.greattsAver.2.7
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update innoApp
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util innoApp
Key Deleted : HKEY_USERS\.DEFAULT\Software\Microsoft\.NETFramework\SQM\Apps\updateinnoApp.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-1622525965
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611211180}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622212280}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{59e47ef9-5163-4e82-9c17-3d6f63dda496}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655215580}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666216680}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79A7FE5F-BE17-4CF8-91F4-AEBD7ABBF762}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99E29823-2F67-41C3-8AA5-6425097A771F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644214480}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{741227e4-edae-443f-a438-64b1e79f5062}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611211180}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59e47ef9-5163-4e82-9c17-3d6f63dda496}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611211180}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59e47ef9-5163-4e82-9c17-3d6f63dda496}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110611211180}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{59e47ef9-5163-4e82-9c17-3d6f63dda496}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d925bc12-7440-413e-a040-cef15508f0c5}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{d925bc12-7440-413e-a040-cef15508f0c5}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{7BD70576-DC65-C6CD-D5FF-A575E62BA347}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A586DAEA-B811-38A9-C611-BA04F587F332}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{BC313F51-E4DF-D14F-1729-1EB288FC65E3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611211180}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622212280}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655215580}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666216680}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79A7FE5F-BE17-4CF8-91F4-AEBD7ABBF762}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611211180}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{d925bc12-7440-413e-a040-cef15508f0c5}]
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d925bc12-7440-413e-a040-cef15508f0c5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN DTX
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\eSupport.com
Key Deleted : HKCU\Software\ExpressFiles
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Popajar
Key Deleted : HKCU\Software\RegisteredApplicationsEx
Key Deleted : HKCU\Software\SupHpUISoft
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\torch
Key Deleted : HKCU\Software\Trymedia Systems
Key Deleted : HKCU\Software\YourFileDownloader
Key Deleted : HKCU\Software\TornTv Downloader
Key Deleted : HKCU\Software\innoApp
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\GoHD
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\ExpressFiles
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\GS-Enabler
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
Key Deleted : HKLM\SOFTWARE\MediaBuzzV1
Key Deleted : HKLM\SOFTWARE\MediaPlayerV1
Key Deleted : HKLM\SOFTWARE\MediaViewV1
Key Deleted : HKLM\SOFTWARE\MediaWatchV1
Key Deleted : HKLM\SOFTWARE\SafetyNut
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\torch
Key Deleted : HKLM\SOFTWARE\Trymedia Systems
Key Deleted : HKLM\SOFTWARE\YourFileDownloader
Key Deleted : HKLM\SOFTWARE\GoHD
Key Deleted : HKLM\SOFTWARE\innoApp
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\onlysearch
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CA41BB14-E67B-1653-C57B-5CA99418A866}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\inethnfd
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean-Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~4A5BE654_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GoHD
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\innoApp
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Mozilla Firefox v
-\\ Google Chrome v38.0.2125.111
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.buenosearch.com/?q={searchTerms}&ba ... l&tsp=5271
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searchsunmy.info/?l=1&q={searchTerms}&pid=1337&r=2014/01/04&hid=10950699380000054372&lg=EN&cc=CZ&unqvl=45
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://dts.search.ask.com/sr?src=crb&gct=ds&appid=1236&systemid=406&v=n10781-217&apn_uid=5697307247104746&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1411 ... earchTerms}
-\\ Comodo Dragon v
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.buenosearch.com/?q={searchTerms}&ba ... l&tsp=5271
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searchsunmy.info/?l=1&q={searchTerms}&pid=1337&r=2014/01/04&hid=10950699380000054372&lg=EN&cc=CZ&unqvl=45
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://dts.search.ask.com/sr?src=crb&gct=ds&appid=1236&systemid=406&v=n10781-217&apn_uid=5697307247104746&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1411 ... earchTerms}
-\\ Opera v0.0.0.0
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.buenosearch.com/?q={searchTerms}&ba ... l&tsp=5271
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searchsunmy.info/?l=1&q={searchTerms}&pid=1337&r=2014/01/04&hid=10950699380000054372&lg=EN&cc=CZ&unqvl=45
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://dts.search.ask.com/sr?src=crb&gct=ds&appid=1236&systemid=406&v=n10781-217&apn_uid=5697307247104746&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms}
[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1411 ... earchTerms}
*************************
AdwCleaner[R0].txt - [37162 octets] - [07/12/2014 11:21:11]
AdwCleaner[S0].txt - [36524 octets] - [07/12/2014 11:24:58]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [36585 octets] ##########
Re: Zavirovaný PC- prosím o pomoc

- spustte jako spravce
- do velkeho okna zkopirujte script uvedeny nize
- kliknete na Run script
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi
Kód: Vybrat vše
autoclean; emptyclsid; iedefaults; FFdefaults; CHRdefaults; emptyalltemp; resethosts;
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
-
- Návštěvník
- Příspěvky: 11
- Registrován: 02 pro 2014 20:13
Re: Zavirovaný PC- prosím o pomoc
Bohužel program zoek.exe vyhodnotil norton jako hrozbu a uložil jej do karentény....
Re: Zavirovaný PC- prosím o pomoc

Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
-
- Návštěvník
- Příspěvky: 11
- Registrován: 02 pro 2014 20:13
Re: Zavirovaný PC- prosím o pomoc
Zde je log ze Zoek (díky):
Zoek.exe v5.0.0.0 Updated 06-December-2014
Tool run by Monika on ne 07. 12. 2014 at 16:44:21,66.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Monika\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
7. 12. 2014 16:46:15 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\ICQM deleted successfully
C:\PROGRA~3\PCSettings deleted successfully
C:\Users\Monika\AppData\Roaming\WinRAR deleted successfully
C:\Users\Monika\AppData\Local\HP Quick Start deleted successfully
C:\Users\Monika\AppData\Local\Ubisoft Game Launcher deleted successfully
Zoek.exe v5.0.0.0 Updated 06-December-2014
Tool run by Monika on ne 07. 12. 2014 at 16:44:21,66.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Monika\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
7. 12. 2014 16:46:15 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\ICQM deleted successfully
C:\PROGRA~3\PCSettings deleted successfully
C:\Users\Monika\AppData\Roaming\WinRAR deleted successfully
C:\Users\Monika\AppData\Local\HP Quick Start deleted successfully
C:\Users\Monika\AppData\Local\Ubisoft Game Launcher deleted successfully
Re: Zavirovaný PC- prosím o pomoc


Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
-
- Návštěvník
- Příspěvky: 11
- Registrován: 02 pro 2014 20:13
Re: Zavirovaný PC- prosím o pomoc


Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
-
- Návštěvník
- Příspěvky: 11
- Registrován: 02 pro 2014 20:13
Re: Zavirovaný PC- prosím o pomoc
Tak už, snad 

Re: Zavirovaný PC- prosím o pomoc

Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
-
- Návštěvník
- Příspěvky: 11
- Registrován: 02 pro 2014 20:13
Re: Zavirovaný PC- prosím o pomoc
DD, přikládám:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-12-2014
Ran by Monika (administrator) on PC_MONIKA on 08-12-2014 21:00:00
Running from C:\Users\Monika\Desktop
Loaded Profile: Monika (Available profiles: Monika)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\ns.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\ns.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ICQ) C:\Users\Monika\AppData\Roaming\ICQM\icq.exe
(PS Media s.r.o.) C:\Users\Monika\AppData\Roaming\StartMenu\StartMenu.exe
(BitTorrent Inc.) C:\Users\Monika\AppData\Roaming\uTorrent\uTorrent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Juniper Networks, Inc.) C:\Users\Monika\AppData\Roaming\Juniper Networks\Setup Client\JuniperSetupClient.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Juniper Networks, Inc.) C:\Users\Monika\AppData\Roaming\Juniper Networks\Juniper Citrix Services Client\dsCitrixProxy.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\CDViewer.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfica32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7165000 2013-09-03] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3053808 2013-09-03] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-04-23] (Apple Inc.)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395656 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [CitrixReceiver] => "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk"
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153992 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [UsageTemp] => "C:\Users\Monika\AppData\Local\Temp\UsageTemp.exe"
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [387832 2013-11-01] (IVT Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-02] (Hewlett-Packard)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [icq] => C:\Users\Monika\AppData\Roaming\ICQM\icq.exe [28698984 2013-08-26] (ICQ)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [StartMenu] => C:\Users\Monika\AppData\Roaming\StartMenu\StartMenu.exe [3360000 2013-11-08] (PS Media s.r.o.)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [ShowDesktopAsRun] => C:\Users\Monika\AppData\Roaming\StartMenu\desktop.scf [81 2013-09-19] ()
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Monika\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Monika\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [uTorrent] => C:\Users\Monika\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-11-25] (BitTorrent Inc.)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1713416 2013-08-05] (CyberLink Corp.)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\MountPoints2: {f05e7a59-c55c-11e2-be72-806e6f6e6963} - "E:\autorun.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/redirects/secur ... 22.0.0.110
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/redirects/secur ... 22.0.0.110
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> Yahoo URL = http://search.yahoo.com/search?p={searc ... barforpogo
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {058B6888-0136-4EB3-8C4B-1394E6314756} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {3A89E938-EA74-4AC1-828E-B26B3719730A} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {67B67CC9-2EC4-4FBA-93F9-3CE9EA4D30A7} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {A8FA7CF9-1F1D-4265-9A01-1D6CF98BAB7E} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {AF560A76-4755-492C-AB21-8E4E2BAEFCA1} URL = http://search.seznam.cz/?q={searchTerms ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {D94CE3CB-1B7A-43CF-A688-FD9783716A05} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {DD15E2A2-36E5-4A86-8EEA-63D0894EB871} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {E28CF214-716E-49DE-BC36-4EFDEAE9652D} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {E946AC8F-708F-4B9C-A392-C983AB964289} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13169
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine64\22.0.2.17\coIEPlg.dll (Symantec Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Groove GFS Browser Helper -> {390C7E87-153C-12DB-2EA6-0BB301EB26E9} -> C:\Windows\SysWOW64\aspnet_counterrs.dll ()
BHO-x32: Adobe PDF Link Helper -> {4B7D4BAB-2C03-453E-2F72-15B55E13392B} -> C:\Windows\SysWOW64\KBDDSOREX.DLL ()
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\coIEPlg.dll (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.0.2.17\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\coIEPlg.dll (Symantec Corporation)
Toolbar: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.0.2.17\coIEPlg.dll (Symantec Corporation)
DPF: HKLM {AA570693-00E2-4907-B6F1-60A1199B030C} https://juniper.net/dana-cached/sc/Juni ... ient64.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/Juni ... Client.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWow64\skype4com.dll (Skype Technologies)
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKU\S-1-5-21-2702503296-2993323403-2491266693-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.0.0.110\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.0.0.110\coFFPlgn [2014-12-08]
Chrome:
=======
CHR Profile: C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-10]
CHR Extension: (Dokumenty Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-10]
CHR Extension: (Disk Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-10]
CHR Extension: (YouTube) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-10]
CHR Extension: (Norton Security Toolbar) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2014-12-07]
CHR Extension: (Vyhledávání Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-10]
CHR Extension: (Tabulky Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-10]
CHR Extension: (Peněženka Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-26]
CHR Extension: (Gmail) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-10]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\Exts\Chrome.crx [2014-11-20]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\Exts\Chrome.crx [2014-11-20]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1706744 2013-11-01] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [145656 2013-11-01] (IVT Corporation)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-10] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2013-01-14] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\NS.exe [282568 2014-10-15] (Symantec Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-20] (Realtek Semiconductor)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-12-04] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-12-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-12-04] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36520 2012-09-14] (Advanced Micro Devices, Inc.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\BASHDefs\20141203.001\BHDrvx64.sys [1587416 2014-11-18] (Symantec Corporation)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg; No ImagePath
U4 BthHFEnum; No ImagePath
U4 bthhfhid; No ImagePath
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [49584 2013-03-25] (Ralink Corporation)
R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\1600020.011\ccSetx64.sys [165080 2014-09-09] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-08-27] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-11-19] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\IPSDefs\20141205.001\IDSvia64.sys [637656 2014-11-19] (Symantec Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\VirusDefs\20141207.020\ENG64.SYS [129752 2014-11-19] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\VirusDefs\20141207.020\EX64.SYS [2137304 2014-11-19] (Symantec Corporation)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-02] (RTS Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-02-06] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-09-03] (Synaptics Incorporated)
R3 SRTSP; C:\Windows\System32\Drivers\NSx64\1600020.011\SRTSP64.SYS [1016024 2014-09-09] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSx64\1600020.011\SRTSPX64.SYS [42200 2014-09-09] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NSx64\1600020.011\SYMDS64.SYS [490712 2014-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NSx64\1600020.011\SYMEFA64.SYS [1151704 2014-09-09] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NSx64\1600020.011\SymELAM.sys [23568 2014-09-09] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [102616 2014-11-19] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSx64\1600020.011\Ironx64.SYS [271576 2014-09-09] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NSx64\1600020.011\SYMNETS.SYS [565464 2014-09-09] (Symantec Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-12-04] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-08 21:00 - 2014-12-08 21:00 - 00026758 _____ () C:\Users\Monika\Desktop\FRST.txt
2014-12-08 20:59 - 2014-12-08 20:59 - 00029696 _____ () C:\Users\Monika\AppData\Local\MSGBOX.EXE
2014-12-08 20:59 - 2014-12-08 20:59 - 00015327 _____ () C:\Users\Monika\Desktop\LM.bat
2014-12-08 20:58 - 2014-12-08 21:00 - 00000000 ____D () C:\FRST
2014-12-08 20:58 - 2014-12-08 20:59 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Downloads\FRSTLauncher (2).exe
2014-12-08 20:58 - 2014-12-08 20:58 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Downloads\Nepotvrzeno 66318.crdownload
2014-12-08 20:58 - 2014-12-08 20:58 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Downloads\Nepotvrzeno 268360.crdownload
2014-12-08 20:58 - 2014-12-08 20:55 - 02119680 _____ (Farbar) C:\Users\Monika\Desktop\frst64.exe
2014-12-08 20:57 - 2014-12-08 20:57 - 02119680 _____ (Farbar) C:\Users\Monika\Downloads\FRST64 (1).exe
2014-12-08 20:55 - 2014-12-08 20:55 - 02119680 _____ (Farbar) C:\Users\Monika\Downloads\frst64.exe
2014-12-08 18:08 - 2014-12-08 18:58 - 892444672 _____ () C:\Users\Monika\Downloads\Once-Upon-a-Time-S04E10-CZ-titulky-By-Smoulova.avi
2014-12-08 13:20 - 2014-12-08 14:48 - 825393558 _____ () C:\Users\Monika\Downloads\parker-cz-dab-jason-statham-nick-nolte-'13' (1).avi
2014-12-07 21:59 - 2014-12-07 21:59 - 00002271 _____ () C:\Users\Monika\Desktop\Delicious Emilys Honeymoon Cruise.lnk
2014-12-07 21:58 - 2014-12-07 21:58 - 00015559 _____ () C:\Users\Monika\Downloads\Delicious_Emilys_Honeymoon_Cruise_Premium_Edition-Wendy99 (2).torrent
2014-12-07 19:28 - 2014-12-07 19:28 - 01555808 _____ () C:\Users\Monika\Desktop\zoek-results.log
2014-12-07 19:23 - 2014-12-07 19:23 - 01555808 _____ () C:\Users\Monika\Desktop\zoek-results.txt
2014-12-07 19:18 - 2014-12-07 16:44 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-12-07 16:45 - 2014-12-07 19:20 - 01555808 _____ () C:\zoek-results.log
2014-12-07 16:44 - 2014-12-07 19:17 - 00000000 ____D () C:\zoek_backup
2014-12-07 16:44 - 2014-12-07 16:44 - 01295360 _____ () C:\Users\Monika\Downloads\zoek (1).exe
2014-12-07 16:43 - 2014-12-07 16:43 - 01295360 _____ () C:\Users\Monika\Downloads\zoek.exe
2014-12-07 11:20 - 2014-12-07 11:26 - 00000000 ____D () C:\AdwCleaner
2014-12-07 11:20 - 2014-12-07 11:20 - 02153472 _____ () C:\Users\Monika\Downloads\adwcleaner_4.104.exe
2014-12-07 11:20 - 2014-12-07 11:20 - 00000055 _____ () C:\AdwCleanerDebug.txt
2014-12-06 00:21 - 2014-12-06 00:41 - 364822528 _____ () C:\Users\Monika\Downloads\Upíří-deníky-(The-Vampire-Diaries)-6x09-CZ-titulky.avi
2014-12-05 23:59 - 2014-12-06 00:03 - 77197122 _____ () C:\Users\Monika\Downloads\Upíří-deníky-(The-Vampire-Diaries)-6x09-CZ-titulky.avi.crdownload
2014-12-05 18:17 - 2014-12-07 19:20 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-12-05 18:17 - 2014-12-05 18:17 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-12-04 21:05 - 2014-12-08 18:05 - 00003978 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1AF2A5E2-255A-4600-A330-82FB9FDBEDC3}
2014-12-04 21:05 - 2014-12-04 21:05 - 00000000 __SHD () C:\Users\Monika\AppData\Local\EmieUserList
2014-12-04 21:05 - 2014-12-04 21:05 - 00000000 __SHD () C:\Users\Monika\AppData\Local\EmieSiteList
2014-12-04 21:05 - 2014-12-04 21:05 - 00000000 __SHD () C:\Users\Monika\AppData\Local\EmieBrowserModeList
2014-12-04 21:05 - 2014-12-04 21:05 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Norton Security
2014-12-04 21:00 - 2014-12-04 21:00 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-12-04 21:00 - 2014-12-04 21:00 - 00000020 ___SH () C:\Users\Monika\ntuser.ini
2014-12-04 20:55 - 2014-12-07 22:03 - 01979492 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Šablony
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Soubory cookie
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Poslední
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Okolní tiskárny
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Okolní síť
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Nabídka Start
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Dokumenty
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Documents\Obrázky
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Documents\Hudba
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Documents\Filmy
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Data aplikací
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Data aplikací
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\Documents\Obrázky
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\Documents\Hudba
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\Documents\Filmy
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Data aplikací
2014-12-04 20:54 - 2014-12-04 20:54 - 00022924 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-12-04 20:39 - 2014-12-04 20:39 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-12-04 20:39 - 2014-12-04 20:39 - 00000000 ____D () C:\Users\Default\Documents\hp.system.package.metadata
2014-12-04 20:39 - 2014-12-04 20:39 - 00000000 ____D () C:\Users\Default User\Documents\hp.system.package.metadata
2014-12-04 20:33 - 2014-12-04 20:33 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-12-04 20:32 - 2014-12-07 19:15 - 00000000 ____D () C:\Users\Monika
2014-12-04 20:32 - 2014-12-04 20:33 - 00000000 ___RD () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-04 20:32 - 2014-12-04 20:33 - 00000000 ___RD () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Šablony
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Soubory cookie
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Poslední
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Okolní tiskárny
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Okolní síť
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Nabídka Start
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Dokumenty
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Documents\Obrázky
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Documents\Hudba
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Documents\Filmy
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Data aplikací
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\AppData\Local\Data aplikací
2014-12-04 20:32 - 2014-09-24 17:32 - 00000369 _____ () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-12-04 20:32 - 2014-09-24 17:32 - 00000369 _____ () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-12-04 20:32 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-04 20:32 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-04 20:31 - 2014-12-04 20:54 - 00022863 _____ () C:\WINDOWS\diagwrn.xml
2014-12-04 20:31 - 2014-12-04 20:54 - 00022863 _____ () C:\WINDOWS\diagerr.xml
2014-12-04 20:27 - 2014-12-04 20:49 - 01960126 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-12-04 20:27 - 2014-12-04 20:33 - 00012096 _____ () C:\WINDOWS\iis.log
2014-12-04 20:24 - 2014-12-04 20:24 - 00001370 _____ () C:\WINDOWS\system32\RaCoInst.log
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\WINDOWS\system32\SRSLabs
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\Program Files\Realtek
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\Program Files\AMD
2014-12-04 20:23 - 2014-12-04 20:37 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-04 20:22 - 2014-12-04 20:22 - 00000264 _____ () C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-12-04 20:22 - 2014-12-04 20:22 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-12-04 20:22 - 2014-12-04 20:22 - 00000000 ____D () C:\Program Files\Synaptics
2014-12-04 20:19 - 2014-12-06 20:25 - 00000000 ___DC () C:\WINDOWS\Panther
2014-12-04 20:19 - 2014-12-04 20:19 - 00789184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-12-04 20:19 - 2014-12-04 20:19 - 00602768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 02149376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00500016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00482872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00272248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-12-04 20:18 - 2014-12-04 20:18 - 00238912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-12-04 20:18 - 2014-12-04 20:18 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00153920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-12-04 20:18 - 2014-12-04 20:18 - 00116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-12-04 20:18 - 2014-12-04 20:18 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00108432 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00104336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00088800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-12-04 20:18 - 2014-12-04 20:18 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00054592 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdusb.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 25110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 19781632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 14390272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 12819456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 06040064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02884096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02365440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02277376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02124288 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-12-04 20:17 - 2014-12-04 20:17 - 02051072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-12-04 20:17 - 2014-12-04 20:17 - 01892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01550336 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00563976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-12-04 20:17 - 2014-12-04 20:17 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-12-04 20:17 - 2014-12-04 20:17 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00258368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00177472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2014-12-04 20:17 - 2014-12-04 20:17 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2014-12-04 20:17 - 2014-12-04 20:17 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00035320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2014-12-04 20:15 - 2014-12-04 20:15 - 21197152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 18723112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 13424128 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 11820544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 07484224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-12-04 20:15 - 2014-12-04 20:15 - 02714112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 02497344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-12-04 20:15 - 2014-12-04 20:15 - 02480128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 02030592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00836176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00670384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00474432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-12-04 20:15 - 2014-12-04 20:15 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-12-04 20:15 - 2014-12-04 20:15 - 00389176 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-12-04 20:15 - 2014-12-04 20:15 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00148800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-12-04 20:15 - 2014-12-04 20:15 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-12-04 20:14 - 2014-12-04 20:14 - 03557376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00055776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-12-04 20:14 - 2014-12-04 20:14 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-12-04 20:14 - 2014-12-04 20:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-12-04 20:14 - 2014-12-04 20:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2014-12-04 20:13 - 2014-12-04 20:13 - 04182016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-12-04 20:13 - 2014-12-04 20:13 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\WINDOWS\SysWOW64\XPSViewer
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\Program Files\MSBuild
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\inetpub
2014-12-04 20:09 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-12-04 20:09 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-12-04 20:09 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-12-04 20:09 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-12-04 20:09 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-12-04 20:09 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-12-02 20:18 - 2014-12-02 20:22 - 00000000 ____D () C:\Program Files\trend micro
2014-12-02 20:18 - 2014-12-02 20:18 - 00000000 ____D () C:\rsit
2014-12-02 20:17 - 2014-12-02 20:18 - 01222144 _____ () C:\Users\Monika\Downloads\RSITx64.exe
2014-11-28 21:46 - 2014-12-04 20:41 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Delicious 8 - Emilys Wonder Wedding
2014-11-28 21:46 - 2014-11-28 21:46 - 00002529 _____ () C:\Users\Monika\Desktop\Play Over 14.000 Online Games on The Playing Bay.lnk
2014-11-28 21:46 - 2014-11-28 21:46 - 00002516 _____ () C:\Users\Monika\Desktop\Delicious 8 - Emilys Wonder Wedding.lnk
2014-11-28 21:44 - 2014-11-28 21:45 - 00000000 ____D () C:\Users\Monika\Downloads\Delicious 8 - Emilys Wonder Wedding -Full PreCracked - Foxy Games
2014-11-28 21:44 - 2014-11-28 21:44 - 00019224 _____ () C:\Users\Monika\Downloads\Delicious_8-_Emily's_Wonder_Wedding_-_Full_PreCracked_-_Foxy_Gam.torrent
2014-11-28 21:39 - 2014-11-28 21:40 - 172781056 ____R (Microsoft Corporation) C:\Users\Monika\Downloads\Delicious 8 Emily's Wonder Wedding Premium Edition Setup.exe
2014-11-28 21:38 - 2014-11-28 21:38 - 00016059 _____ () C:\Users\Monika\Downloads\Delicious-_Emily's_Wonder_Wedding_(Premium_Edition)_(2012) (1).torrent
2014-11-28 21:38 - 2014-11-28 21:38 - 00014026 _____ () C:\Users\Monika\Downloads\Delicious_8-_Emily's_Wonder_Wedding_Premium_Edition_(Dash_Game_from_Big_Fish).torrent
2014-11-28 21:30 - 2014-11-28 21:30 - 00002445 _____ () C:\Users\Monika\Downloads\Delicious_Emilys_Wonder_Wedding_Premium_Edition_v1_5_0_0-TE.torrent
2014-11-28 21:29 - 2014-11-28 21:29 - 00015435 _____ () C:\Users\Monika\Downloads\Delicious_Emily's_Wonder_Wedding_Premium_Edition_exe.torrent
2014-11-28 19:58 - 2014-11-28 20:18 - 355465216 _____ () C:\Users\Monika\Downloads\The-Originals-2x08-CZ-titulky.avi
2014-11-26 23:27 - 2014-11-19 08:29 - 00582552 ____N () C:\WINDOWS\system32\AutoUpdate.exe
2014-11-22 23:08 - 2014-12-04 20:33 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-22 23:08 - 2014-11-22 23:08 - 00002412 _____ () C:\Users\Monika\Desktop\Delicious - Emily's True Love -- Premium Edition.lnk
2014-11-22 22:59 - 2014-11-22 23:01 - 00002426 _____ () C:\Users\Monika\Desktop\Cooking Dash 3 - Thrills and Spills Collector's Edition.lnk
2014-11-22 13:09 - 2014-11-22 13:09 - 00000000 ____D () C:\AMD
2014-11-22 13:05 - 2014-12-04 20:19 - 00000000 __SHD () C:\Recovery
2014-11-22 12:38 - 2014-12-04 20:54 - 00008188 _____ () C:\WINDOWS\comsetup.log
2014-11-21 23:54 - 2014-11-21 23:54 - 00081528 _____ () C:\Users\Monika\Downloads\once.upon.a.time.s04e08e09.hdtv.x264-lol.srt
2014-11-21 16:57 - 2014-11-21 16:57 - 00043779 _____ () C:\Users\Monika\Downloads\the.vampire.diaries.s06e08.hdtv.x264-lol.srt
2014-11-21 16:53 - 2014-11-21 16:55 - 00000000 ____D () C:\Users\Monika\Downloads\[ www.torrenting.com ] - The.Vampire.Diaries.S06E08.HDTV.x264-LOL
2014-11-21 16:53 - 2014-11-21 16:53 - 00005403 _____ () C:\Users\Monika\Downloads\The_Vampire_Diaries_S06E08_HDTV_x264-LOL.torrent
2014-11-21 16:53 - 2014-11-21 16:53 - 00000000 ____D () C:\Users\Monika\Downloads\[ www.Torrentday.com ] - The.Vampire.Diaries.S06E08.720p.HDTV.X264-DIMENSION
2014-11-21 16:52 - 2014-11-21 16:52 - 00018840 _____ () C:\Users\Monika\Downloads\The_Vampire_Diaries_S06E08_720p_HDTV_X264-DIMENSION.torrent
2014-11-20 22:59 - 2014-11-20 22:59 - 00039176 _____ () C:\Users\Monika\Downloads\the.originals.s02e07.1080p.web-dl.dd5.1.h.264-kings.srt
2014-11-20 22:59 - 2014-11-20 22:59 - 00037209 _____ () C:\Users\Monika\Downloads\the.originals.s02e07.hdtv.x264-lol.srt
2014-11-20 22:58 - 2014-11-20 23:00 - 00000000 ____D () C:\Users\Monika\Downloads\The.Originals.S02E07.720p.HDTV.QAAC.x264-xRed
2014-11-20 22:58 - 2014-11-20 22:58 - 00013938 _____ () C:\Users\Monika\Downloads\The_Originals_S02E07_720p_HDTV_QAAC_x264-xRed.torrent
2014-11-20 11:27 - 2014-12-05 18:15 - 00000000 ____D () C:\WINDOWS\system32\AutoUpdateLicense
2014-11-19 23:03 - 2014-11-05 07:40 - 00304128 ____N (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2014-11-19 22:53 - 2014-10-22 04:34 - 00010777 ____N () C:\WINDOWS\system32\AutoconfigV2.cab
2014-11-19 20:33 - 2014-11-19 20:32 - 00450771 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20141119-203358.backup
2014-11-19 20:32 - 2012-07-26 06:26 - 00000824 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.20141119-203256.backup
2014-11-19 20:19 - 2014-12-04 21:00 - 00003216 _____ () C:\WINDOWS\System32\Tasks\Norton WSC Integration
2014-11-19 20:19 - 2014-11-20 22:48 - 00002393 _____ () C:\Users\Public\Desktop\Norton Security.lnk
2014-11-19 20:19 - 2014-11-19 20:19 - 00102616 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2014-11-19 20:19 - 2014-11-19 20:19 - 00008214 _____ () C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2014-11-19 20:19 - 2014-11-19 20:19 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-11-19 20:13 - 2014-12-04 20:41 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2014-11-19 20:13 - 2014-11-20 22:49 - 00000000 ____D () C:\WINDOWS\system32\Drivers\NSx64
2014-11-19 20:13 - 2014-11-19 20:13 - 00000000 ____D () C:\Program Files (x86)\Norton Security
2014-11-19 20:08 - 2014-11-19 20:08 - 00000000 ____D () C:\f334efead330b4434c39da6a
2014-11-19 20:07 - 2014-10-30 12:25 - 00275080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-11-19 20:06 - 2014-12-07 11:15 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-11-19 20:06 - 2014-12-07 11:13 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-11-19 20:06 - 2014-11-19 20:06 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking
2014-11-19 20:04 - 2014-11-19 20:05 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Monika\Downloads\spybot-2.4.exe
2014-11-19 20:03 - 2014-11-19 20:03 - 115363424 ____N (Symantec Corporation) C:\Users\Monika\Downloads\NS-TW-22.0.0-CZ.exe
2014-11-18 21:45 - 2014-11-18 22:14 - 527296719 _____ () C:\Users\Monika\Downloads\Once.Upon.a.Time.S04E08E09.HDTV.x264-LOL.mp4
2014-11-15 00:25 - 2014-11-15 00:45 - 364859392 _____ () C:\Users\Monika\Downloads\Upíří-deníky-(The-Vampire-diaries)-6x07-CZ-titulky.avi
2014-11-12 21:04 - 2014-11-12 21:19 - 265482240 _____ () C:\Users\Monika\Downloads\The-Originals-2x06-CZ-titulky.avi
2014-11-11 21:13 - 2014-11-11 21:36 - 422657160 _____ () C:\Users\Monika\Downloads\once-upon-a-time-s04e07-cz-titulky.avi
2014-11-10 21:46 - 2014-11-10 21:46 - 00001141 _____ () C:\Users\Monika\Desktop\Cooking Dash.lnk
2014-11-10 21:46 - 2014-11-10 21:46 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cooking Dash
2014-11-10 21:46 - 2014-11-10 21:46 - 00000000 ____D () C:\Program Files (x86)\Cooking Dash
2014-11-10 21:39 - 2014-11-10 21:39 - 00007351 _____ () C:\Users\Monika\Downloads\Cooking_Dash_Full_Version (1).torrent
2014-11-10 19:04 - 2014-11-10 19:04 - 00638888 _____ (Oracle Corporation) C:\Users\Monika\Downloads\chromeinstall-8u25.exe
2014-11-10 17:50 - 2014-12-07 19:30 - 00002210 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-10 17:50 - 2014-12-04 20:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-11-10 17:49 - 2014-12-08 20:28 - 00000980 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-10 17:49 - 2014-12-08 19:28 - 00000976 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-10 17:49 - 2014-12-07 19:23 - 00003952 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-10 17:49 - 2014-12-07 19:23 - 00003716 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-10 13:31 - 2014-11-10 13:34 - 00000000 ____D () C:\Users\Monika\Downloads\Bigfish Games - Diner Dash 3 Flo on the Go - Cracked
2014-11-10 06:34 - 2014-11-10 06:37 - 09916667 ____R () C:\Users\Monika\Downloads\Diner Dash 3.rar
2014-11-09 22:02 - 2014-11-09 22:02 - 00013254 _____ () C:\Users\Monika\Downloads\Cooking_Dash_3_Thrills_and_Spills_Collector_Edition (3).torrent
2014-11-09 21:58 - 2014-11-09 21:58 - 00005113 _____ () C:\Users\Monika\Downloads\[kickass.to]bigfish.diner.dash.3.flo.on.the.go.cracked.torrent
2014-11-09 21:57 - 2014-11-09 21:57 - 00005096 _____ () C:\Users\Monika\Downloads\Bigfish_Games_Diner_Dash_3_Flo_on_the_Go_Cracked.torrent
2014-11-09 21:56 - 2014-11-09 21:56 - 00005150 _____ () C:\Users\Monika\Downloads\Bigfish+Games+++Diner+Dash+3+Flo+on+the+Go+++Cracked.torrent
2014-11-09 21:54 - 2014-11-09 21:54 - 00005096 _____ () C:\Users\Monika\Downloads\468759.torrent
2014-11-09 21:52 - 2014-11-09 21:52 - 00003524 _____ () C:\Users\Monika\Downloads\[kickass.to]diner.dash.3.torrent
2014-11-09 21:50 - 2014-12-07 11:25 - 00000000 ____D () C:\Program Files (x86)\innoApp
2014-11-09 16:49 - 2014-11-09 16:49 - 01080416 _____ (Unity Technologies ApS) C:\Users\Monika\Downloads\UnityWebPlayer.exe
2014-11-09 16:40 - 2014-11-09 18:13 - 1657960505 _____ () C:\Users\Monika\Downloads\Red-2010-Bruce-Willis-DVDSCR-XViD-ENG.avi
2014-11-08 23:03 - 2014-11-08 23:03 - 00040430 _____ () C:\Users\Monika\Downloads\the.vampire.diaries.s06e06.hdtv.x264-lol.srt
2014-11-08 22:59 - 2014-11-08 23:19 - 355526494 _____ () C:\Users\Monika\Downloads\The-Vampire-Diaries-6x06.avi
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-08 21:00 - 2013-08-26 20:04 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\uTorrent
2014-12-08 20:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-12-08 19:20 - 2013-10-04 22:52 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\vlc
2014-12-08 07:41 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-12-08 06:52 - 2013-09-19 19:17 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Seznam.cz
2014-12-08 06:48 - 2014-09-17 06:33 - 00003620 _____ () C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2014-12-08 06:46 - 2014-09-17 06:33 - 00000043 _____ () C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
2014-12-08 06:46 - 2013-11-20 09:44 - 00001060 _____ () C:\WINDOWS\SysWOW64\bscs.ini
2014-12-08 06:06 - 2013-08-26 16:33 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2702503296-2993323403-2491266693-1001
2014-12-08 06:00 - 2014-07-08 17:41 - 00003172 _____ () C:\WINDOWS\System32\Tasks\HPCeeScheduleForMonika
2014-12-08 06:00 - 2014-07-08 17:41 - 00000356 _____ () C:\WINDOWS\Tasks\HPCeeScheduleForMonika.job
2014-12-08 05:55 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-07 23:36 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-12-07 21:59 - 2014-05-31 21:18 - 00000000 ____D () C:\Program Files (x86)\Games
2014-12-07 19:19 - 2014-09-24 08:10 - 00025638 _____ () C:\WINDOWS\PFRO.log
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Monika\AppData\Local\Comodo
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-12-07 19:16 - 2013-08-26 16:25 - 00000000 ____D () C:\Users\Monika\AppData\Local\Google
2014-12-07 19:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\GroupPolicy
2014-12-07 19:15 - 2012-07-26 09:12 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2014-12-07 16:51 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-12-07 16:45 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\restore
2014-12-07 12:02 - 2014-09-24 17:23 - 01938474 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-07 12:02 - 2014-09-24 16:39 - 00803244 _____ () C:\WINDOWS\system32\perfh005.dat
2014-12-07 12:02 - 2014-09-24 16:39 - 00184236 _____ () C:\WINDOWS\system32\perfc005.dat
2014-12-07 11:25 - 2013-10-03 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-12-07 11:25 - 2013-08-26 16:13 - 00000990 _____ () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-07 11:25 - 2012-07-26 06:26 - 00000194 _____ () C:\WINDOWS\win.ini
2014-12-05 18:26 - 2013-09-03 17:20 - 00000052 _____ () C:\WINDOWS\SysWOW64\DOErrors.log
2014-12-05 18:26 - 2013-09-03 17:20 - 00000000 _____ () C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-12-05 18:15 - 2012-07-26 09:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-12-04 21:04 - 2013-08-26 16:10 - 00000000 ____D () C:\Users\Monika\AppData\Local\Packages
2014-12-04 20:55 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Registration
2014-12-04 20:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows NT
2014-12-04 20:55 - 2013-08-22 14:36 - 00000000 __RHD () C:\Users\Default
2014-12-04 20:54 - 2013-08-22 15:46 - 00296622 _____ () C:\WINDOWS\setupact.log
2014-12-04 20:51 - 2013-08-22 16:36 - 00000000 __RSD () C:\WINDOWS\Media
2014-12-04 20:51 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries
2014-12-04 20:48 - 2013-08-22 15:46 - 00000274 _____ () C:\WINDOWS\setuperr.log
2014-12-04 20:44 - 2013-08-22 15:44 - 00377904 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-12-04 20:41 - 2014-10-16 17:29 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jojos Fashion Show World Tour
2014-12-04 20:41 - 2014-10-16 17:17 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Boutique Boulevard
2014-12-04 20:41 - 2014-10-05 14:43 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bella Design
2014-12-04 20:41 - 2014-09-28 09:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iPhone Configuration Utility
2014-12-04 20:41 - 2014-09-21 19:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cooking Dash
2014-12-04 20:41 - 2014-06-30 18:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-12-04 20:41 - 2014-06-07 20:36 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2014-12-04 20:41 - 2013-12-13 21:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom
2014-12-04 20:41 - 2013-12-01 16:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-12-04 20:41 - 2013-10-19 15:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-12-04 20:41 - 2013-10-04 22:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-12-04 20:41 - 2013-10-03 19:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-12-04 20:41 - 2013-08-26 17:36 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2014-12-04 20:41 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-12-04 20:41 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-12-04 20:41 - 2013-05-25 16:33 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2014-12-04 20:41 - 2013-05-25 16:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-12-04 20:41 - 2013-03-25 19:39 - 00000000 ____D () C:\WINDOWS\en-GB
2014-12-04 20:41 - 2013-03-25 12:02 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2014-12-04 20:41 - 2013-03-25 11:58 - 00000000 ____D () C:\WINDOWS\sk
2014-12-04 20:41 - 2013-03-25 11:58 - 00000000 ____D () C:\WINDOWS\cs
2014-12-04 20:41 - 2013-03-25 11:50 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2014-12-04 20:39 - 2014-10-23 21:24 - 00000000 ____D () C:\WINDOWS\SysWOW64\2049
2014-12-04 20:39 - 2014-10-05 14:42 - 00000000 ____D () C:\WINDOWS\SysWOW64\3057
2014-12-04 20:39 - 2014-09-24 16:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN
2014-12-04 20:39 - 2014-09-24 16:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep
2014-12-04 20:39 - 2014-09-24 16:39 - 00000000 ____D () C:\WINDOWS\system32\WCN
2014-12-04 20:39 - 2013-12-01 16:09 - 00000000 ____D () C:\WINDOWS\SysWOW64\AGEIA
2014-12-04 20:39 - 2013-08-22 16:37 - 00004893 _____ () C:\WINDOWS\DtcInstall.log
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\MUI
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\IME
2014-12-04 20:39 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\SMI
2014-12-04 20:39 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-12-04 20:39 - 2013-05-25 16:15 - 00000000 ____D () C:\WINDOWS\SysWOW64\sda
2014-12-04 20:39 - 2012-07-26 06:37 - 00000000 ____D () C:\Users\Default.migrated
2014-12-04 20:37 - 2014-10-23 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com
2014-12-04 20:37 - 2014-08-23 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Buena Vista Games
2014-12-04 20:37 - 2014-05-31 21:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PogoDGC
2014-12-04 20:37 - 2013-08-22 16:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files\Windows Sidebar
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\IME
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Help
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-12-04 20:37 - 2013-03-25 11:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2014-12-04 20:37 - 2012-08-03 23:29 - 00000000 ____D () C:\ProgramData\PRICache
2014-12-04 20:33 - 2014-09-20 19:11 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mangores Games
2014-12-04 20:33 - 2013-09-12 19:48 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Juniper Networks
2014-12-04 20:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-12-04 20:19 - 2013-08-22 16:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-12-04 20:17 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-04 20:17 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-04 20:17 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-12-04 20:17 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-12-04 20:16 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-12-04 20:10 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\inetsrv
2014-12-04 20:10 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2014-12-04 20:09 - 2013-08-22 12:25 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2014-12-04 20:09 - 2013-08-22 12:22 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2014-12-04 20:09 - 2013-08-22 12:19 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2014-12-04 20:09 - 2013-08-22 12:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2014-12-04 20:09 - 2013-08-22 12:18 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2014-12-04 20:09 - 2013-08-22 11:03 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2014-12-04 20:09 - 2013-08-22 04:58 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2014-12-04 20:09 - 2013-08-22 04:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2014-12-04 20:09 - 2013-08-22 04:53 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2014-12-04 20:09 - 2013-08-22 04:53 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2014-12-04 20:09 - 2013-08-22 04:51 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2014-12-04 20:09 - 2013-08-22 03:54 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2014-12-04 20:00 - 2013-08-26 16:10 - 01347637 _____ () C:\WINDOWS\WindowsUpdate (1).log
2014-12-04 19:21 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent
2014-12-02 20:23 - 2013-08-26 16:45 - 00000000 ____D () C:\Users\Monika\Documents\Youcam
2014-12-01 19:04 - 2013-08-26 17:36 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\ICQM
2014-11-28 21:46 - 2013-08-29 11:55 - 00000000 ____D () C:\Program Files (x86)\Foxy Games
2014-11-26 23:37 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-11-20 11:33 - 2013-08-27 21:19 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-20 10:33 - 2013-08-26 19:18 - 00167936 ___SH () C:\Users\Monika\Desktop\Thumbs.db
2014-11-19 22:20 - 2014-02-01 13:41 - 00000000 ____D () C:\ProgramData\pmjhgijbjaiaaaamgafdkmafmedpbacg
2014-11-19 21:43 - 2013-08-26 16:25 - 00000000 ____D () C:\Users\Monika\AppData\Local\Apps\2.0
2014-11-19 20:13 - 2013-05-25 16:47 - 00000000 ____D () C:\ProgramData\Norton
2014-11-10 21:46 - 2014-09-21 19:27 - 00000000 ____D () C:\Users\Monika\Downloads\Cooking Dash Full Version
2014-11-10 21:46 - 2013-05-25 16:12 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-11-10 19:09 - 2013-09-19 19:34 - 00000000 ____D () C:\Users\Monika\Citrix
2014-11-10 19:05 - 2014-04-26 20:49 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-11-10 19:05 - 2013-09-12 19:47 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-10 19:05 - 2013-09-12 19:46 - 00000000 ____D () C:\Program Files (x86)\Java
2014-11-10 17:49 - 2013-08-26 16:25 - 00000000 ____D () C:\Program Files (x86)\Google
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-04 20:21
==================== End Of Log ============================
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-12-2014
Ran by Monika (administrator) on PC_MONIKA on 08-12-2014 21:00:00
Running from C:\Users\Monika\Desktop
Loaded Profile: Monika (Available profiles: Monika)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\ns.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\ns.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ICQ) C:\Users\Monika\AppData\Roaming\ICQM\icq.exe
(PS Media s.r.o.) C:\Users\Monika\AppData\Roaming\StartMenu\StartMenu.exe
(BitTorrent Inc.) C:\Users\Monika\AppData\Roaming\uTorrent\uTorrent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Juniper Networks, Inc.) C:\Users\Monika\AppData\Roaming\Juniper Networks\Setup Client\JuniperSetupClient.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Juniper Networks, Inc.) C:\Users\Monika\AppData\Roaming\Juniper Networks\Juniper Citrix Services Client\dsCitrixProxy.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\CDViewer.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfica32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7165000 2013-09-03] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3053808 2013-09-03] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-04-23] (Apple Inc.)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395656 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [CitrixReceiver] => "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk"
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153992 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [UsageTemp] => "C:\Users\Monika\AppData\Local\Temp\UsageTemp.exe"
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [387832 2013-11-01] (IVT Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-02] (Hewlett-Packard)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [icq] => C:\Users\Monika\AppData\Roaming\ICQM\icq.exe [28698984 2013-08-26] (ICQ)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [StartMenu] => C:\Users\Monika\AppData\Roaming\StartMenu\StartMenu.exe [3360000 2013-11-08] (PS Media s.r.o.)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [ShowDesktopAsRun] => C:\Users\Monika\AppData\Roaming\StartMenu\desktop.scf [81 2013-09-19] ()
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Monika\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Monika\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [uTorrent] => C:\Users\Monika\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-11-25] (BitTorrent Inc.)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1713416 2013-08-05] (CyberLink Corp.)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\MountPoints2: {f05e7a59-c55c-11e2-be72-806e6f6e6963} - "E:\autorun.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/redirects/secur ... 22.0.0.110
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/redirects/secur ... 22.0.0.110
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> Yahoo URL = http://search.yahoo.com/search?p={searc ... barforpogo
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {058B6888-0136-4EB3-8C4B-1394E6314756} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {3A89E938-EA74-4AC1-828E-B26B3719730A} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {67B67CC9-2EC4-4FBA-93F9-3CE9EA4D30A7} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {A8FA7CF9-1F1D-4265-9A01-1D6CF98BAB7E} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {AF560A76-4755-492C-AB21-8E4E2BAEFCA1} URL = http://search.seznam.cz/?q={searchTerms ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {D94CE3CB-1B7A-43CF-A688-FD9783716A05} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {DD15E2A2-36E5-4A86-8EEA-63D0894EB871} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {E28CF214-716E-49DE-BC36-4EFDEAE9652D} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13169
SearchScopes: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> {E946AC8F-708F-4B9C-A392-C983AB964289} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13169
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine64\22.0.2.17\coIEPlg.dll (Symantec Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Groove GFS Browser Helper -> {390C7E87-153C-12DB-2EA6-0BB301EB26E9} -> C:\Windows\SysWOW64\aspnet_counterrs.dll ()
BHO-x32: Adobe PDF Link Helper -> {4B7D4BAB-2C03-453E-2F72-15B55E13392B} -> C:\Windows\SysWOW64\KBDDSOREX.DLL ()
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\coIEPlg.dll (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.0.2.17\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\coIEPlg.dll (Symantec Corporation)
Toolbar: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.0.2.17\coIEPlg.dll (Symantec Corporation)
DPF: HKLM {AA570693-00E2-4907-B6F1-60A1199B030C} https://juniper.net/dana-cached/sc/Juni ... ient64.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/Juni ... Client.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWow64\skype4com.dll (Skype Technologies)
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKU\S-1-5-21-2702503296-2993323403-2491266693-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.0.0.110\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.0.0.110\coFFPlgn [2014-12-08]
Chrome:
=======
CHR Profile: C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-10]
CHR Extension: (Dokumenty Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-10]
CHR Extension: (Disk Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-10]
CHR Extension: (YouTube) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-10]
CHR Extension: (Norton Security Toolbar) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2014-12-07]
CHR Extension: (Vyhledávání Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-10]
CHR Extension: (Tabulky Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-10]
CHR Extension: (Peněženka Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-26]
CHR Extension: (Gmail) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-10]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\Exts\Chrome.crx [2014-11-20]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\Exts\Chrome.crx [2014-11-20]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1706744 2013-11-01] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [145656 2013-11-01] (IVT Corporation)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-10] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2013-01-14] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\NS.exe [282568 2014-10-15] (Symantec Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-20] (Realtek Semiconductor)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-12-04] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-12-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-12-04] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36520 2012-09-14] (Advanced Micro Devices, Inc.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\BASHDefs\20141203.001\BHDrvx64.sys [1587416 2014-11-18] (Symantec Corporation)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg; No ImagePath
U4 BthHFEnum; No ImagePath
U4 bthhfhid; No ImagePath
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [49584 2013-03-25] (Ralink Corporation)
R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\1600020.011\ccSetx64.sys [165080 2014-09-09] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-08-27] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-11-19] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\IPSDefs\20141205.001\IDSvia64.sys [637656 2014-11-19] (Symantec Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\VirusDefs\20141207.020\ENG64.SYS [129752 2014-11-19] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\VirusDefs\20141207.020\EX64.SYS [2137304 2014-11-19] (Symantec Corporation)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-02] (RTS Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-02-06] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-09-03] (Synaptics Incorporated)
R3 SRTSP; C:\Windows\System32\Drivers\NSx64\1600020.011\SRTSP64.SYS [1016024 2014-09-09] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSx64\1600020.011\SRTSPX64.SYS [42200 2014-09-09] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NSx64\1600020.011\SYMDS64.SYS [490712 2014-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NSx64\1600020.011\SYMEFA64.SYS [1151704 2014-09-09] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NSx64\1600020.011\SymELAM.sys [23568 2014-09-09] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [102616 2014-11-19] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSx64\1600020.011\Ironx64.SYS [271576 2014-09-09] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NSx64\1600020.011\SYMNETS.SYS [565464 2014-09-09] (Symantec Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-12-04] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-08 21:00 - 2014-12-08 21:00 - 00026758 _____ () C:\Users\Monika\Desktop\FRST.txt
2014-12-08 20:59 - 2014-12-08 20:59 - 00029696 _____ () C:\Users\Monika\AppData\Local\MSGBOX.EXE
2014-12-08 20:59 - 2014-12-08 20:59 - 00015327 _____ () C:\Users\Monika\Desktop\LM.bat
2014-12-08 20:58 - 2014-12-08 21:00 - 00000000 ____D () C:\FRST
2014-12-08 20:58 - 2014-12-08 20:59 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Downloads\FRSTLauncher (2).exe
2014-12-08 20:58 - 2014-12-08 20:58 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Downloads\Nepotvrzeno 66318.crdownload
2014-12-08 20:58 - 2014-12-08 20:58 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Downloads\Nepotvrzeno 268360.crdownload
2014-12-08 20:58 - 2014-12-08 20:55 - 02119680 _____ (Farbar) C:\Users\Monika\Desktop\frst64.exe
2014-12-08 20:57 - 2014-12-08 20:57 - 02119680 _____ (Farbar) C:\Users\Monika\Downloads\FRST64 (1).exe
2014-12-08 20:55 - 2014-12-08 20:55 - 02119680 _____ (Farbar) C:\Users\Monika\Downloads\frst64.exe
2014-12-08 18:08 - 2014-12-08 18:58 - 892444672 _____ () C:\Users\Monika\Downloads\Once-Upon-a-Time-S04E10-CZ-titulky-By-Smoulova.avi
2014-12-08 13:20 - 2014-12-08 14:48 - 825393558 _____ () C:\Users\Monika\Downloads\parker-cz-dab-jason-statham-nick-nolte-'13' (1).avi
2014-12-07 21:59 - 2014-12-07 21:59 - 00002271 _____ () C:\Users\Monika\Desktop\Delicious Emilys Honeymoon Cruise.lnk
2014-12-07 21:58 - 2014-12-07 21:58 - 00015559 _____ () C:\Users\Monika\Downloads\Delicious_Emilys_Honeymoon_Cruise_Premium_Edition-Wendy99 (2).torrent
2014-12-07 19:28 - 2014-12-07 19:28 - 01555808 _____ () C:\Users\Monika\Desktop\zoek-results.log
2014-12-07 19:23 - 2014-12-07 19:23 - 01555808 _____ () C:\Users\Monika\Desktop\zoek-results.txt
2014-12-07 19:18 - 2014-12-07 16:44 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-12-07 16:45 - 2014-12-07 19:20 - 01555808 _____ () C:\zoek-results.log
2014-12-07 16:44 - 2014-12-07 19:17 - 00000000 ____D () C:\zoek_backup
2014-12-07 16:44 - 2014-12-07 16:44 - 01295360 _____ () C:\Users\Monika\Downloads\zoek (1).exe
2014-12-07 16:43 - 2014-12-07 16:43 - 01295360 _____ () C:\Users\Monika\Downloads\zoek.exe
2014-12-07 11:20 - 2014-12-07 11:26 - 00000000 ____D () C:\AdwCleaner
2014-12-07 11:20 - 2014-12-07 11:20 - 02153472 _____ () C:\Users\Monika\Downloads\adwcleaner_4.104.exe
2014-12-07 11:20 - 2014-12-07 11:20 - 00000055 _____ () C:\AdwCleanerDebug.txt
2014-12-06 00:21 - 2014-12-06 00:41 - 364822528 _____ () C:\Users\Monika\Downloads\Upíří-deníky-(The-Vampire-Diaries)-6x09-CZ-titulky.avi
2014-12-05 23:59 - 2014-12-06 00:03 - 77197122 _____ () C:\Users\Monika\Downloads\Upíří-deníky-(The-Vampire-Diaries)-6x09-CZ-titulky.avi.crdownload
2014-12-05 18:17 - 2014-12-07 19:20 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-12-05 18:17 - 2014-12-05 18:17 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-12-04 21:05 - 2014-12-08 18:05 - 00003978 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1AF2A5E2-255A-4600-A330-82FB9FDBEDC3}
2014-12-04 21:05 - 2014-12-04 21:05 - 00000000 __SHD () C:\Users\Monika\AppData\Local\EmieUserList
2014-12-04 21:05 - 2014-12-04 21:05 - 00000000 __SHD () C:\Users\Monika\AppData\Local\EmieSiteList
2014-12-04 21:05 - 2014-12-04 21:05 - 00000000 __SHD () C:\Users\Monika\AppData\Local\EmieBrowserModeList
2014-12-04 21:05 - 2014-12-04 21:05 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Norton Security
2014-12-04 21:00 - 2014-12-04 21:00 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-12-04 21:00 - 2014-12-04 21:00 - 00000020 ___SH () C:\Users\Monika\ntuser.ini
2014-12-04 20:55 - 2014-12-07 22:03 - 01979492 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Šablony
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Soubory cookie
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Poslední
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Okolní tiskárny
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Okolní síť
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Nabídka Start
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Dokumenty
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Documents\Obrázky
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Documents\Hudba
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Documents\Filmy
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\Data aplikací
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Data aplikací
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\Documents\Obrázky
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\Documents\Hudba
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\Documents\Filmy
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-04 20:55 - 2014-12-04 20:55 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Data aplikací
2014-12-04 20:54 - 2014-12-04 20:54 - 00022924 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-12-04 20:39 - 2014-12-04 20:39 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-12-04 20:39 - 2014-12-04 20:39 - 00000000 ____D () C:\Users\Default\Documents\hp.system.package.metadata
2014-12-04 20:39 - 2014-12-04 20:39 - 00000000 ____D () C:\Users\Default User\Documents\hp.system.package.metadata
2014-12-04 20:33 - 2014-12-04 20:33 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-12-04 20:32 - 2014-12-07 19:15 - 00000000 ____D () C:\Users\Monika
2014-12-04 20:32 - 2014-12-04 20:33 - 00000000 ___RD () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-04 20:32 - 2014-12-04 20:33 - 00000000 ___RD () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Šablony
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Soubory cookie
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Poslední
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Okolní tiskárny
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Okolní síť
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Nabídka Start
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Dokumenty
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Documents\Obrázky
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Documents\Hudba
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Documents\Filmy
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\Data aplikací
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-04 20:32 - 2014-12-04 20:32 - 00000000 _SHDL () C:\Users\Monika\AppData\Local\Data aplikací
2014-12-04 20:32 - 2014-09-24 17:32 - 00000369 _____ () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-12-04 20:32 - 2014-09-24 17:32 - 00000369 _____ () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-12-04 20:32 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-04 20:32 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-04 20:31 - 2014-12-04 20:54 - 00022863 _____ () C:\WINDOWS\diagwrn.xml
2014-12-04 20:31 - 2014-12-04 20:54 - 00022863 _____ () C:\WINDOWS\diagerr.xml
2014-12-04 20:27 - 2014-12-04 20:49 - 01960126 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-12-04 20:27 - 2014-12-04 20:33 - 00012096 _____ () C:\WINDOWS\iis.log
2014-12-04 20:24 - 2014-12-04 20:24 - 00001370 _____ () C:\WINDOWS\system32\RaCoInst.log
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\WINDOWS\system32\SRSLabs
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\Program Files\Realtek
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-12-04 20:24 - 2014-12-04 20:24 - 00000000 ____D () C:\Program Files\AMD
2014-12-04 20:23 - 2014-12-04 20:37 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-04 20:22 - 2014-12-04 20:22 - 00000264 _____ () C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2014-12-04 20:22 - 2014-12-04 20:22 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-12-04 20:22 - 2014-12-04 20:22 - 00000000 ____D () C:\Program Files\Synaptics
2014-12-04 20:19 - 2014-12-06 20:25 - 00000000 ___DC () C:\WINDOWS\Panther
2014-12-04 20:19 - 2014-12-04 20:19 - 00789184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-12-04 20:19 - 2014-12-04 20:19 - 00602768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 02149376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00500016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00482872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00272248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-12-04 20:18 - 2014-12-04 20:18 - 00238912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-12-04 20:18 - 2014-12-04 20:18 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00153920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-12-04 20:18 - 2014-12-04 20:18 - 00116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-12-04 20:18 - 2014-12-04 20:18 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00108432 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00104336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00088800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-12-04 20:18 - 2014-12-04 20:18 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00054592 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdusb.dll
2014-12-04 20:18 - 2014-12-04 20:18 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 25110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 19781632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 14390272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 12819456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 06040064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02884096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02365440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02277376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 02124288 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-12-04 20:17 - 2014-12-04 20:17 - 02051072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-12-04 20:17 - 2014-12-04 20:17 - 01892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01550336 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00563976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-12-04 20:17 - 2014-12-04 20:17 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-12-04 20:17 - 2014-12-04 20:17 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00258368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00177472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2014-12-04 20:17 - 2014-12-04 20:17 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2014-12-04 20:17 - 2014-12-04 20:17 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00035320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2014-12-04 20:17 - 2014-12-04 20:17 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2014-12-04 20:17 - 2014-12-04 20:17 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2014-12-04 20:17 - 2014-12-04 20:17 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2014-12-04 20:15 - 2014-12-04 20:15 - 21197152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 18723112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 13424128 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 11820544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 07484224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-12-04 20:15 - 2014-12-04 20:15 - 02714112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 02497344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-12-04 20:15 - 2014-12-04 20:15 - 02480128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 02030592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00836176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00670384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00474432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-12-04 20:15 - 2014-12-04 20:15 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-12-04 20:15 - 2014-12-04 20:15 - 00389176 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-12-04 20:15 - 2014-12-04 20:15 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00148800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-12-04 20:15 - 2014-12-04 20:15 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-12-04 20:15 - 2014-12-04 20:15 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-12-04 20:14 - 2014-12-04 20:14 - 03557376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00055776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-12-04 20:14 - 2014-12-04 20:14 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-12-04 20:14 - 2014-12-04 20:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-12-04 20:14 - 2014-12-04 20:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-12-04 20:14 - 2014-12-04 20:14 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2014-12-04 20:13 - 2014-12-04 20:13 - 04182016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-12-04 20:13 - 2014-12-04 20:13 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\WINDOWS\SysWOW64\XPSViewer
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\Program Files\MSBuild
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-12-04 20:10 - 2014-12-04 20:10 - 00000000 ____D () C:\inetpub
2014-12-04 20:09 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-12-04 20:09 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-12-04 20:09 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-12-04 20:09 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-12-04 20:09 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-12-04 20:09 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-12-02 20:18 - 2014-12-02 20:22 - 00000000 ____D () C:\Program Files\trend micro
2014-12-02 20:18 - 2014-12-02 20:18 - 00000000 ____D () C:\rsit
2014-12-02 20:17 - 2014-12-02 20:18 - 01222144 _____ () C:\Users\Monika\Downloads\RSITx64.exe
2014-11-28 21:46 - 2014-12-04 20:41 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Delicious 8 - Emilys Wonder Wedding
2014-11-28 21:46 - 2014-11-28 21:46 - 00002529 _____ () C:\Users\Monika\Desktop\Play Over 14.000 Online Games on The Playing Bay.lnk
2014-11-28 21:46 - 2014-11-28 21:46 - 00002516 _____ () C:\Users\Monika\Desktop\Delicious 8 - Emilys Wonder Wedding.lnk
2014-11-28 21:44 - 2014-11-28 21:45 - 00000000 ____D () C:\Users\Monika\Downloads\Delicious 8 - Emilys Wonder Wedding -Full PreCracked - Foxy Games
2014-11-28 21:44 - 2014-11-28 21:44 - 00019224 _____ () C:\Users\Monika\Downloads\Delicious_8-_Emily's_Wonder_Wedding_-_Full_PreCracked_-_Foxy_Gam.torrent
2014-11-28 21:39 - 2014-11-28 21:40 - 172781056 ____R (Microsoft Corporation) C:\Users\Monika\Downloads\Delicious 8 Emily's Wonder Wedding Premium Edition Setup.exe
2014-11-28 21:38 - 2014-11-28 21:38 - 00016059 _____ () C:\Users\Monika\Downloads\Delicious-_Emily's_Wonder_Wedding_(Premium_Edition)_(2012) (1).torrent
2014-11-28 21:38 - 2014-11-28 21:38 - 00014026 _____ () C:\Users\Monika\Downloads\Delicious_8-_Emily's_Wonder_Wedding_Premium_Edition_(Dash_Game_from_Big_Fish).torrent
2014-11-28 21:30 - 2014-11-28 21:30 - 00002445 _____ () C:\Users\Monika\Downloads\Delicious_Emilys_Wonder_Wedding_Premium_Edition_v1_5_0_0-TE.torrent
2014-11-28 21:29 - 2014-11-28 21:29 - 00015435 _____ () C:\Users\Monika\Downloads\Delicious_Emily's_Wonder_Wedding_Premium_Edition_exe.torrent
2014-11-28 19:58 - 2014-11-28 20:18 - 355465216 _____ () C:\Users\Monika\Downloads\The-Originals-2x08-CZ-titulky.avi
2014-11-26 23:27 - 2014-11-19 08:29 - 00582552 ____N () C:\WINDOWS\system32\AutoUpdate.exe
2014-11-22 23:08 - 2014-12-04 20:33 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-22 23:08 - 2014-11-22 23:08 - 00002412 _____ () C:\Users\Monika\Desktop\Delicious - Emily's True Love -- Premium Edition.lnk
2014-11-22 22:59 - 2014-11-22 23:01 - 00002426 _____ () C:\Users\Monika\Desktop\Cooking Dash 3 - Thrills and Spills Collector's Edition.lnk
2014-11-22 13:09 - 2014-11-22 13:09 - 00000000 ____D () C:\AMD
2014-11-22 13:05 - 2014-12-04 20:19 - 00000000 __SHD () C:\Recovery
2014-11-22 12:38 - 2014-12-04 20:54 - 00008188 _____ () C:\WINDOWS\comsetup.log
2014-11-21 23:54 - 2014-11-21 23:54 - 00081528 _____ () C:\Users\Monika\Downloads\once.upon.a.time.s04e08e09.hdtv.x264-lol.srt
2014-11-21 16:57 - 2014-11-21 16:57 - 00043779 _____ () C:\Users\Monika\Downloads\the.vampire.diaries.s06e08.hdtv.x264-lol.srt
2014-11-21 16:53 - 2014-11-21 16:55 - 00000000 ____D () C:\Users\Monika\Downloads\[ www.torrenting.com ] - The.Vampire.Diaries.S06E08.HDTV.x264-LOL
2014-11-21 16:53 - 2014-11-21 16:53 - 00005403 _____ () C:\Users\Monika\Downloads\The_Vampire_Diaries_S06E08_HDTV_x264-LOL.torrent
2014-11-21 16:53 - 2014-11-21 16:53 - 00000000 ____D () C:\Users\Monika\Downloads\[ www.Torrentday.com ] - The.Vampire.Diaries.S06E08.720p.HDTV.X264-DIMENSION
2014-11-21 16:52 - 2014-11-21 16:52 - 00018840 _____ () C:\Users\Monika\Downloads\The_Vampire_Diaries_S06E08_720p_HDTV_X264-DIMENSION.torrent
2014-11-20 22:59 - 2014-11-20 22:59 - 00039176 _____ () C:\Users\Monika\Downloads\the.originals.s02e07.1080p.web-dl.dd5.1.h.264-kings.srt
2014-11-20 22:59 - 2014-11-20 22:59 - 00037209 _____ () C:\Users\Monika\Downloads\the.originals.s02e07.hdtv.x264-lol.srt
2014-11-20 22:58 - 2014-11-20 23:00 - 00000000 ____D () C:\Users\Monika\Downloads\The.Originals.S02E07.720p.HDTV.QAAC.x264-xRed
2014-11-20 22:58 - 2014-11-20 22:58 - 00013938 _____ () C:\Users\Monika\Downloads\The_Originals_S02E07_720p_HDTV_QAAC_x264-xRed.torrent
2014-11-20 11:27 - 2014-12-05 18:15 - 00000000 ____D () C:\WINDOWS\system32\AutoUpdateLicense
2014-11-19 23:03 - 2014-11-05 07:40 - 00304128 ____N (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2014-11-19 22:53 - 2014-10-22 04:34 - 00010777 ____N () C:\WINDOWS\system32\AutoconfigV2.cab
2014-11-19 20:33 - 2014-11-19 20:32 - 00450771 ____R () C:\WINDOWS\system32\Drivers\etc\hosts.20141119-203358.backup
2014-11-19 20:32 - 2012-07-26 06:26 - 00000824 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.20141119-203256.backup
2014-11-19 20:19 - 2014-12-04 21:00 - 00003216 _____ () C:\WINDOWS\System32\Tasks\Norton WSC Integration
2014-11-19 20:19 - 2014-11-20 22:48 - 00002393 _____ () C:\Users\Public\Desktop\Norton Security.lnk
2014-11-19 20:19 - 2014-11-19 20:19 - 00102616 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2014-11-19 20:19 - 2014-11-19 20:19 - 00008214 _____ () C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2014-11-19 20:19 - 2014-11-19 20:19 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-11-19 20:13 - 2014-12-04 20:41 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2014-11-19 20:13 - 2014-11-20 22:49 - 00000000 ____D () C:\WINDOWS\system32\Drivers\NSx64
2014-11-19 20:13 - 2014-11-19 20:13 - 00000000 ____D () C:\Program Files (x86)\Norton Security
2014-11-19 20:08 - 2014-11-19 20:08 - 00000000 ____D () C:\f334efead330b4434c39da6a
2014-11-19 20:07 - 2014-10-30 12:25 - 00275080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-11-19 20:06 - 2014-12-07 11:15 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-11-19 20:06 - 2014-12-07 11:13 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-11-19 20:06 - 2014-11-19 20:06 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking
2014-11-19 20:04 - 2014-11-19 20:05 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Monika\Downloads\spybot-2.4.exe
2014-11-19 20:03 - 2014-11-19 20:03 - 115363424 ____N (Symantec Corporation) C:\Users\Monika\Downloads\NS-TW-22.0.0-CZ.exe
2014-11-18 21:45 - 2014-11-18 22:14 - 527296719 _____ () C:\Users\Monika\Downloads\Once.Upon.a.Time.S04E08E09.HDTV.x264-LOL.mp4
2014-11-15 00:25 - 2014-11-15 00:45 - 364859392 _____ () C:\Users\Monika\Downloads\Upíří-deníky-(The-Vampire-diaries)-6x07-CZ-titulky.avi
2014-11-12 21:04 - 2014-11-12 21:19 - 265482240 _____ () C:\Users\Monika\Downloads\The-Originals-2x06-CZ-titulky.avi
2014-11-11 21:13 - 2014-11-11 21:36 - 422657160 _____ () C:\Users\Monika\Downloads\once-upon-a-time-s04e07-cz-titulky.avi
2014-11-10 21:46 - 2014-11-10 21:46 - 00001141 _____ () C:\Users\Monika\Desktop\Cooking Dash.lnk
2014-11-10 21:46 - 2014-11-10 21:46 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cooking Dash
2014-11-10 21:46 - 2014-11-10 21:46 - 00000000 ____D () C:\Program Files (x86)\Cooking Dash
2014-11-10 21:39 - 2014-11-10 21:39 - 00007351 _____ () C:\Users\Monika\Downloads\Cooking_Dash_Full_Version (1).torrent
2014-11-10 19:04 - 2014-11-10 19:04 - 00638888 _____ (Oracle Corporation) C:\Users\Monika\Downloads\chromeinstall-8u25.exe
2014-11-10 17:50 - 2014-12-07 19:30 - 00002210 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-10 17:50 - 2014-12-04 20:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-11-10 17:49 - 2014-12-08 20:28 - 00000980 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-10 17:49 - 2014-12-08 19:28 - 00000976 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-10 17:49 - 2014-12-07 19:23 - 00003952 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-10 17:49 - 2014-12-07 19:23 - 00003716 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-10 13:31 - 2014-11-10 13:34 - 00000000 ____D () C:\Users\Monika\Downloads\Bigfish Games - Diner Dash 3 Flo on the Go - Cracked
2014-11-10 06:34 - 2014-11-10 06:37 - 09916667 ____R () C:\Users\Monika\Downloads\Diner Dash 3.rar
2014-11-09 22:02 - 2014-11-09 22:02 - 00013254 _____ () C:\Users\Monika\Downloads\Cooking_Dash_3_Thrills_and_Spills_Collector_Edition (3).torrent
2014-11-09 21:58 - 2014-11-09 21:58 - 00005113 _____ () C:\Users\Monika\Downloads\[kickass.to]bigfish.diner.dash.3.flo.on.the.go.cracked.torrent
2014-11-09 21:57 - 2014-11-09 21:57 - 00005096 _____ () C:\Users\Monika\Downloads\Bigfish_Games_Diner_Dash_3_Flo_on_the_Go_Cracked.torrent
2014-11-09 21:56 - 2014-11-09 21:56 - 00005150 _____ () C:\Users\Monika\Downloads\Bigfish+Games+++Diner+Dash+3+Flo+on+the+Go+++Cracked.torrent
2014-11-09 21:54 - 2014-11-09 21:54 - 00005096 _____ () C:\Users\Monika\Downloads\468759.torrent
2014-11-09 21:52 - 2014-11-09 21:52 - 00003524 _____ () C:\Users\Monika\Downloads\[kickass.to]diner.dash.3.torrent
2014-11-09 21:50 - 2014-12-07 11:25 - 00000000 ____D () C:\Program Files (x86)\innoApp
2014-11-09 16:49 - 2014-11-09 16:49 - 01080416 _____ (Unity Technologies ApS) C:\Users\Monika\Downloads\UnityWebPlayer.exe
2014-11-09 16:40 - 2014-11-09 18:13 - 1657960505 _____ () C:\Users\Monika\Downloads\Red-2010-Bruce-Willis-DVDSCR-XViD-ENG.avi
2014-11-08 23:03 - 2014-11-08 23:03 - 00040430 _____ () C:\Users\Monika\Downloads\the.vampire.diaries.s06e06.hdtv.x264-lol.srt
2014-11-08 22:59 - 2014-11-08 23:19 - 355526494 _____ () C:\Users\Monika\Downloads\The-Vampire-Diaries-6x06.avi
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-08 21:00 - 2013-08-26 20:04 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\uTorrent
2014-12-08 20:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-12-08 19:20 - 2013-10-04 22:52 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\vlc
2014-12-08 07:41 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-12-08 06:52 - 2013-09-19 19:17 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Seznam.cz
2014-12-08 06:48 - 2014-09-17 06:33 - 00003620 _____ () C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2014-12-08 06:46 - 2014-09-17 06:33 - 00000043 _____ () C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
2014-12-08 06:46 - 2013-11-20 09:44 - 00001060 _____ () C:\WINDOWS\SysWOW64\bscs.ini
2014-12-08 06:06 - 2013-08-26 16:33 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2702503296-2993323403-2491266693-1001
2014-12-08 06:00 - 2014-07-08 17:41 - 00003172 _____ () C:\WINDOWS\System32\Tasks\HPCeeScheduleForMonika
2014-12-08 06:00 - 2014-07-08 17:41 - 00000356 _____ () C:\WINDOWS\Tasks\HPCeeScheduleForMonika.job
2014-12-08 05:55 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-07 23:36 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-12-07 21:59 - 2014-05-31 21:18 - 00000000 ____D () C:\Program Files (x86)\Games
2014-12-07 19:19 - 2014-09-24 08:10 - 00025638 _____ () C:\WINDOWS\PFRO.log
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Monika\AppData\Local\Comodo
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-12-07 19:16 - 2014-01-04 16:31 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-12-07 19:16 - 2013-08-26 16:25 - 00000000 ____D () C:\Users\Monika\AppData\Local\Google
2014-12-07 19:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\GroupPolicy
2014-12-07 19:15 - 2012-07-26 09:12 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2014-12-07 16:51 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-12-07 16:45 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\restore
2014-12-07 12:02 - 2014-09-24 17:23 - 01938474 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-07 12:02 - 2014-09-24 16:39 - 00803244 _____ () C:\WINDOWS\system32\perfh005.dat
2014-12-07 12:02 - 2014-09-24 16:39 - 00184236 _____ () C:\WINDOWS\system32\perfc005.dat
2014-12-07 11:25 - 2013-10-03 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-12-07 11:25 - 2013-08-26 16:13 - 00000990 _____ () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-07 11:25 - 2012-07-26 06:26 - 00000194 _____ () C:\WINDOWS\win.ini
2014-12-05 18:26 - 2013-09-03 17:20 - 00000052 _____ () C:\WINDOWS\SysWOW64\DOErrors.log
2014-12-05 18:26 - 2013-09-03 17:20 - 00000000 _____ () C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-12-05 18:15 - 2012-07-26 09:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-12-04 21:04 - 2013-08-26 16:10 - 00000000 ____D () C:\Users\Monika\AppData\Local\Packages
2014-12-04 20:55 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Registration
2014-12-04 20:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows NT
2014-12-04 20:55 - 2013-08-22 14:36 - 00000000 __RHD () C:\Users\Default
2014-12-04 20:54 - 2013-08-22 15:46 - 00296622 _____ () C:\WINDOWS\setupact.log
2014-12-04 20:51 - 2013-08-22 16:36 - 00000000 __RSD () C:\WINDOWS\Media
2014-12-04 20:51 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries
2014-12-04 20:48 - 2013-08-22 15:46 - 00000274 _____ () C:\WINDOWS\setuperr.log
2014-12-04 20:44 - 2013-08-22 15:44 - 00377904 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-12-04 20:41 - 2014-10-16 17:29 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jojos Fashion Show World Tour
2014-12-04 20:41 - 2014-10-16 17:17 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Boutique Boulevard
2014-12-04 20:41 - 2014-10-05 14:43 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bella Design
2014-12-04 20:41 - 2014-09-28 09:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iPhone Configuration Utility
2014-12-04 20:41 - 2014-09-21 19:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cooking Dash
2014-12-04 20:41 - 2014-06-30 18:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-12-04 20:41 - 2014-06-07 20:36 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2014-12-04 20:41 - 2013-12-13 21:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom
2014-12-04 20:41 - 2013-12-01 16:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-12-04 20:41 - 2013-10-19 15:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-12-04 20:41 - 2013-10-04 22:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-12-04 20:41 - 2013-10-03 19:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-12-04 20:41 - 2013-08-26 17:36 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2014-12-04 20:41 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-12-04 20:41 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-12-04 20:41 - 2013-05-25 16:33 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2014-12-04 20:41 - 2013-05-25 16:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-12-04 20:41 - 2013-03-25 19:39 - 00000000 ____D () C:\WINDOWS\en-GB
2014-12-04 20:41 - 2013-03-25 12:02 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2014-12-04 20:41 - 2013-03-25 11:58 - 00000000 ____D () C:\WINDOWS\sk
2014-12-04 20:41 - 2013-03-25 11:58 - 00000000 ____D () C:\WINDOWS\cs
2014-12-04 20:41 - 2013-03-25 11:50 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2014-12-04 20:39 - 2014-10-23 21:24 - 00000000 ____D () C:\WINDOWS\SysWOW64\2049
2014-12-04 20:39 - 2014-10-05 14:42 - 00000000 ____D () C:\WINDOWS\SysWOW64\3057
2014-12-04 20:39 - 2014-09-24 16:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN
2014-12-04 20:39 - 2014-09-24 16:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep
2014-12-04 20:39 - 2014-09-24 16:39 - 00000000 ____D () C:\WINDOWS\system32\WCN
2014-12-04 20:39 - 2013-12-01 16:09 - 00000000 ____D () C:\WINDOWS\SysWOW64\AGEIA
2014-12-04 20:39 - 2013-08-22 16:37 - 00004893 _____ () C:\WINDOWS\DtcInstall.log
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\MUI
2014-12-04 20:39 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\IME
2014-12-04 20:39 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\SMI
2014-12-04 20:39 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-12-04 20:39 - 2013-05-25 16:15 - 00000000 ____D () C:\WINDOWS\SysWOW64\sda
2014-12-04 20:39 - 2012-07-26 06:37 - 00000000 ____D () C:\Users\Default.migrated
2014-12-04 20:37 - 2014-10-23 21:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com
2014-12-04 20:37 - 2014-08-23 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Buena Vista Games
2014-12-04 20:37 - 2014-05-31 21:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PogoDGC
2014-12-04 20:37 - 2013-08-22 16:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files\Windows Sidebar
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\IME
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Help
2014-12-04 20:37 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-12-04 20:37 - 2013-03-25 11:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2014-12-04 20:37 - 2012-08-03 23:29 - 00000000 ____D () C:\ProgramData\PRICache
2014-12-04 20:33 - 2014-09-20 19:11 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mangores Games
2014-12-04 20:33 - 2013-09-12 19:48 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Juniper Networks
2014-12-04 20:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-12-04 20:19 - 2013-08-22 16:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-12-04 20:17 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-04 20:17 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-04 20:17 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-12-04 20:17 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-12-04 20:16 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-12-04 20:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-12-04 20:10 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\inetsrv
2014-12-04 20:10 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2014-12-04 20:09 - 2013-08-22 12:25 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2014-12-04 20:09 - 2013-08-22 12:22 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2014-12-04 20:09 - 2013-08-22 12:19 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2014-12-04 20:09 - 2013-08-22 12:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2014-12-04 20:09 - 2013-08-22 12:18 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2014-12-04 20:09 - 2013-08-22 11:03 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2014-12-04 20:09 - 2013-08-22 04:58 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2014-12-04 20:09 - 2013-08-22 04:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2014-12-04 20:09 - 2013-08-22 04:53 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2014-12-04 20:09 - 2013-08-22 04:53 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2014-12-04 20:09 - 2013-08-22 04:51 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2014-12-04 20:09 - 2013-08-22 03:54 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2014-12-04 20:00 - 2013-08-26 16:10 - 01347637 _____ () C:\WINDOWS\WindowsUpdate (1).log
2014-12-04 19:21 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent
2014-12-02 20:23 - 2013-08-26 16:45 - 00000000 ____D () C:\Users\Monika\Documents\Youcam
2014-12-01 19:04 - 2013-08-26 17:36 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\ICQM
2014-11-28 21:46 - 2013-08-29 11:55 - 00000000 ____D () C:\Program Files (x86)\Foxy Games
2014-11-26 23:37 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-11-20 11:33 - 2013-08-27 21:19 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-20 10:33 - 2013-08-26 19:18 - 00167936 ___SH () C:\Users\Monika\Desktop\Thumbs.db
2014-11-19 22:20 - 2014-02-01 13:41 - 00000000 ____D () C:\ProgramData\pmjhgijbjaiaaaamgafdkmafmedpbacg
2014-11-19 21:43 - 2013-08-26 16:25 - 00000000 ____D () C:\Users\Monika\AppData\Local\Apps\2.0
2014-11-19 20:13 - 2013-05-25 16:47 - 00000000 ____D () C:\ProgramData\Norton
2014-11-10 21:46 - 2014-09-21 19:27 - 00000000 ____D () C:\Users\Monika\Downloads\Cooking Dash Full Version
2014-11-10 21:46 - 2013-05-25 16:12 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-11-10 19:09 - 2013-09-19 19:34 - 00000000 ____D () C:\Users\Monika\Citrix
2014-11-10 19:05 - 2014-04-26 20:49 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-11-10 19:05 - 2013-09-12 19:47 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-10 19:05 - 2013-09-12 19:46 - 00000000 ____D () C:\Program Files (x86)\Java
2014-11-10 17:49 - 2013-08-26 16:25 - 00000000 ____D () C:\Program Files (x86)\Google
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-04 20:21
==================== End Of Log ============================
-
- Návštěvník
- Příspěvky: 11
- Registrován: 02 pro 2014 20:13
Re: Zavirovaný PC- prosím o pomoc
A ještě Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-12-2014
Ran by Monika at 2014-12-08 21:00:55
Running from C:\Users\Monika\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton Security (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AMD Catalyst Install Manager (HKLM\...\{EA5160BE-7558-2716-01DB-FFE7F316957A}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bella Design (HKLM-x32\...\Bella DesignFinal) (Version: Final - AllSmartGames)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Boutique Boulevard (HKLM-x32\...\Boutique Boulevard1.0) (Version: 1.0 - Foxy Games)
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.0.0.91 - Citrix Systems, Inc.)
Cooking Dash 1.0 (HKLM-x32\...\Cooking Dash) (Version: 1.0 - CD, Inc.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.4.3202 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.3.2606 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.6.6117 - CyberLink Corp.)
Čeština Dragon Age Origins 1.00 (HKLM-x32\...\Čeština Dragon Age Origins 1.00) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Delicious 8 - Emilys Wonder Wedding (HKLM-x32\...\Delicious 8 - Emilys Wonder Wedding1.0) (Version: 1.0 - Foxy Games)
Delicious Emilys Honeymoon Cruise 1.00 (HKLM-x32\...\Delicious Emilys Honeymoon Cruise 1.00) (Version: 1.00 - Games)
Delicious Emilys True Love Premium Edition (HKLM-x32\...\Delicious Emilys True Love Premium Editionv1.0.0.0) (Version: v1.0.0.0 - GameHouse)
Dragon Age II (HKLM-x32\...\{F2E23139-3404-4E3C-9855-7724415D62A5}) (Version: 1.03 - Electronic Arts, Inc.)
Dragon Age: Prameny (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.03 - Electronic Arts, Inc.)
DriverAgent by eSupport.com (HKLM-x32\...\DriverAgent_is1) (Version: - Copyright © 2013 eSupport.com, Inc • All Rights Reserved)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{04927A60-31CD-4614-A25C-055B1AD3A8CE}) (Version: 4.2.9.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Connected Music (Meridian - player) (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\HPConnectedMusic) (Version: 1.1 (build 59) hp - Meridian Audio Ltd)
HP CoolSense (HKLM-x32\...\{59F8C5AA-91BD-423D-BF05-09A80F39898F}) (Version: 2.10.62 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{BCE2C284-0B0E-473D-A5BF-9644CC2C67DF}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Quick Start (HKLM-x32\...\{C001689B-4EAD-4CB4-B5F7-4A85A32785DC}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{DEF23826-DB71-4654-BC00-D5D6C20802EA}) (Version: 1.1.4 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
iCloud (HKLM\...\{EAFB2AD8-D92B-464C-8D97-B9CB94703C4A}) (Version: 3.0.2.163 - Apple Inc.)
ICQ 8.1 (verze 6337) (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\ICQ) (Version: 8.1.6337.0 - Mail.Ru)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.7.1002 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
iPhone Configuration Utility (HKLM-x32\...\{B90FCEB7-2B0C-4D27-95B5-54238DF059ED}) (Version: 3.6.2.300 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
iWin Toolbar for Pogo (HKLM\...\iwintoolbarforpogo) (Version: 1.0.0.10 - Visicom Media inc.)
Janes Hotel Mania 1.00 (HKLM-x32\...\Janes Hotel Mania 1.00) (Version: - )
Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.550 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Jojo's Fashion Show 2 - Las Cruces (HKLM-x32\...\Jojo's Fashion Show 2 - Las Cruces_is1) (Version: 1.0 - MyPlayCity, Inc.)
Jojos Fashion Show World Tour (HKLM-x32\...\Jojos Fashion Show World Tour1.0) (Version: 1.0 - AllSmartGames)
Juniper Citrix Services Client (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Juniper_Citrix_Services) (Version: 8.0.6.32195 - Juniper Networks)
Juniper Networks Setup Client (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Juniper_Setup_Client) (Version: 8.0.6.48695 - Juniper Networks)
Juniper Networks, Inc. Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Juniper Networks, Inc. Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Media Player (HKLM-x32\...\MediaPlayerV1alpha8857) (Version: 1.1 - Media Player) <==== ATTENTION
Media View (HKLM-x32\...\MediaViewV1alpha182) (Version: 1.1 - Media View) <==== ATTENTION
Media View (HKLM-x32\...\MediaViewV1alpha3602) (Version: 1.1 - Media View) <==== ATTENTION
Media Viewer (HKLM-x32\...\MediaViewerV1alpha450) (Version: 1.1 - Media Viewer) <==== ATTENTION
Media Watch (HKLM-x32\...\MediaWatchV1home2197) (Version: 1.1 - Media Watch) <==== ATTENTION
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Norton Security (HKLM-x32\...\NS) (Version: 22.0.2.17 - Symantec Corporation)
NVIDIA PhysX (HKLM-x32\...\{1C4551A6-4743-4093-91E4-1477CD655043}) (Version: 9.09.0203 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Název společnosti:)
Online Plug-in (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
OpenOffice 4.1.0 (HKLM-x32\...\{43245B34-BAEA-4716-B877-38E7E7026698}) (Version: 4.10.9764 - Apache Software Foundation)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Ralink Bluetooth Stack (HKLM\...\{C079427A-BB28-5168-3DB1-DC6608D226D4}) (Version: 11.0.748.2 - Mediatek)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6870 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.007 - Realtek Semiconductor Corp.)
Self-service Plug-in (x32 Version: 4.0.0.40674 - Citrix Systems, Inc.) Hidden
Seznam Software (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\SeznamInstall) (Version: - Seznam.cz)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.5.3.3 - Synaptics Incorporated)
System Requirements Lab CYRI (HKLM-x32\...\{2DF5765E-5386-4540-9383-DBC9A0A596F9}) (Version: 6.0.15.0 - Husdawg, LLC)
VLC media player 2.1.2 (HKLM-x32\...\VLC media player) (Version: 2.1.2 - VideoLAN)
Wedding Dash 4-Ever (HKLM-x32\...\Wedding Dash 4-Ever) (Version: 1.0.0.1 - Mangores Network Co., Ltd.)
Windows 8 Start menu 1.4 (HKLM-x32\...\Windows 8 Start menu_is1) (Version: - PS Media s.r.o.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Zoufalé manželky (HKLM-x32\...\{4DE70188-49EE-4302-8EFD-8DB44A3A2DBB}) (Version: 1.0 - Buena Vista Games)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
==================== Restore Points =========================
07-12-2014 15:45:42 zoek.exe restore point
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-07-26 06:26 - 2014-12-07 16:46 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {134F7AEE-CFB6-4E76-9584-21F46F7AB338} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2012-11-05] (Hewlett-Packard Development Company, L.P.)
Task: {44EFAECF-5DC6-4037-8D2F-DFAD855B901B} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink)
Task: {556EE271-1D92-4833-9293-1C7B4AC5B148} - \Only-search Updater No Task File <==== ATTENTION
Task: {55C229C1-6583-4039-AE88-6265186BF685} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-10-31] (Microsoft Corporation)
Task: {56BEEE1B-4A45-4772-8CA1-3381032AFC6B} - System32\Tasks\Norton Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\SymErr.exe [2014-09-08] (Symantec Corporation)
Task: {72CA8A86-089B-4515-8A1D-48CF4CA3D431} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-01-17] (CyberLink)
Task: {7374F727-DE86-451E-BEC9-F09FF529DEC3} - System32\Tasks\Norton Security\Norton Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\SymErr.exe [2014-09-08] (Symantec Corporation)
Task: {7413EEED-7D47-4E9F-B31F-9CEAEF341289} - System32\Tasks\DesktopAtStartup => C:\Users\Monika\AppData\Roaming\StartMenu\desktop.scf [2013-09-19] ()
Task: {74F957CB-D0C5-4004-A7F9-80502F1263C7} - \DTReg No Task File <==== ATTENTION
Task: {80534B3F-2FF0-47AF-87AE-C10CB44CC55E} - \RegClean Pro No Task File <==== ATTENTION
Task: {8A5F506C-48F9-42C3-B572-3AE7212CBB4E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-10] (Google Inc.)
Task: {8C77B571-68AA-4ED8-BC68-1B13F9F7E4A2} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\WSCStub.exe [2014-10-15] (Symantec Corporation)
Task: {93A87EE8-FFE0-4515-847A-254C9E448016} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {98983188-89E0-42AE-875E-A75A06CEF706} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {9AD874C4-2916-452F-840C-D9FB0833774E} - System32\Tasks\HPCeeScheduleForMonika => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {9C67FED3-FFA1-4973-9E0A-D5ABFE7A91F5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {A731CDA5-81B6-4348-B7B1-0C148A67FAA3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {AB4AB2EF-AC4B-4F9E-B046-C9CB4682425B} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)
Task: {AC313C16-0569-4DC2-AC18-65F1C46B7E6C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {B30CB471-2EFA-49BD-96C9-D8332F75DBC4} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-03] (Synaptics Incorporated)
Task: {F77785C8-D526-4D13-B95D-3260414C01B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-10] (Google Inc.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForMonika.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Loaded Modules (whitelisted) =============
2012-10-31 09:05 - 2012-10-31 10:05 - 00607744 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2013-11-01 14:48 - 2013-11-01 14:48 - 00016632 _____ () C:\Windows\system32\BsHelpCSps.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00062200 _____ () C:\Windows\system32\BlueSoleilCSps.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00371448 _____ () C:\Windows\system32\BsExtendFunc.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00029432 _____ () C:\Windows\system32\BsTrace.dll
2012-10-31 09:05 - 2012-10-31 10:05 - 00607744 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\JobCapsA.dll
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00029432 _____ () C:\WINDOWS\SYSTEM32\BsTrace.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00016632 _____ () C:\Windows\SYSTEM32\BsHelpCSps.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00062200 _____ () C:\Windows\SYSTEM32\BlueSoleilCSps.dll
2013-05-24 09:22 - 2013-05-24 09:22 - 00334648 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll
2011-07-05 09:53 - 2011-07-05 09:53 - 00012800 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\AMP\IVTAMPRL.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00029432 _____ () C:\Windows\SYSTEM32\BsTrace.dll
2013-05-25 16:14 - 2013-01-14 19:25 - 01200088 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-08-26 17:36 - 2013-08-26 17:36 - 00851456 _____ () C:\Users\Monika\AppData\Roaming\ICQM\ICQ\dll\YLUSBTEL.dll
2014-08-19 10:00 - 2013-08-05 08:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-08-05 14:48 - 2013-08-05 14:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00080120 _____ () C:\WINDOWS\SYSTEM32\BsProfilefunc.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00371448 _____ () C:\WINDOWS\SYSTEM32\BsExtendFunc.dll
2014-12-07 19:30 - 2014-11-25 07:39 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\libglesv2.dll
2014-12-07 19:30 - 2014-11-25 07:39 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\libegl.dll
2014-12-07 19:30 - 2014-11-25 07:39 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\pdf.dll
2014-12-07 19:30 - 2014-11-25 07:39 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\ffmpegsumo.dll
2014-08-13 00:42 - 2014-08-13 00:42 - 00196608 _____ () C:\Users\Monika\AppData\Roaming\Juniper Networks\Juniper Citrix Services Client\dsCitrixConnector.dll
2014-08-13 00:42 - 2014-08-13 00:42 - 00004608 _____ () C:\Users\Monika\AppData\Roaming\Juniper Networks\Juniper Citrix Services Client\dsCitrixProxyResource_en.dll
2012-11-05 13:41 - 2012-11-05 13:41 - 01099790 _____ () c:\Program Files (x86)\Citrix\ICA Client\avcodec-52.dll
2012-11-05 13:41 - 2012-11-05 13:41 - 00117774 _____ () c:\Program Files (x86)\Citrix\ICA Client\avformat-52.dll
2012-11-05 13:41 - 2012-11-05 13:41 - 00079886 _____ () c:\Program Files (x86)\Citrix\ICA Client\avutil-50.dll
2013-10-04 13:44 - 2013-10-04 13:44 - 01333760 _____ () C:\Program Files (x86)\Games\Delicious Emilys Honeymoon Cruise\Delicious9.exe
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:49B217F7
AlternateDataStreams: C:\ProgramData\Temp:4A966CC2
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\StartupFolder: => "TornTvDownloader.lnk"
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\Run: => "Power2GoExpress8"
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\Run: => "TornTv Downloader"
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\Run: => "UpdateChecker"
========================= Accounts: ==========================
Administrator (S-1-5-21-2702503296-2993323403-2491266693-500 - Administrator - Disabled)
Guest (S-1-5-21-2702503296-2993323403-2491266693-501 - Limited - Disabled)
Monika (S-1-5-21-2702503296-2993323403-2491266693-1001 - Administrator - Enabled) => C:\Users\Monika
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/08/2014 07:25:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x1990
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/08/2014 06:10:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x12d0
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/08/2014 07:26:32 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2 na řádku C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Error: (12/08/2014 06:48:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x1640
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/08/2014 06:46:16 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005
Error: (12/08/2014 05:56:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x1680
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/08/2014 05:55:27 AM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (12/07/2014 08:00:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x14e8
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/07/2014 07:21:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x1474
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/07/2014 07:20:11 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
System errors:
=============
Error: (12/08/2014 07:19:58 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (12/08/2014 07:19:28 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (12/08/2014 07:06:37 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (12/08/2014 07:06:07 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (12/08/2014 06:48:48 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (12/08/2014 06:07:03 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (12/08/2014 06:06:33 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (12/08/2014 05:57:05 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (12/07/2014 07:22:01 PM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (12/07/2014 07:13:15 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Microsoft Office Sessions:
=========================
Error: (12/08/2014 07:25:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e17199001d01314520e9601c:\program files (x86)\citrix\ica client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll8fceb6e1-7f07-11e4-bf9b-a4173171c98e
Error: (12/08/2014 06:10:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e1712d001d01309df0b38caC:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll1cd98cd7-7efd-11e4-bf9b-a4173171c98e
Error: (12/08/2014 07:26:32 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsSMSEditor.exe
Error: (12/08/2014 06:48:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e17164001d012aa903704ecC:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dllce68409c-7e9d-11e4-bf9b-a4173171c98e
Error: (12/08/2014 06:46:16 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005
Error: (12/08/2014 05:56:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e17168001d012a353a31eddC:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll946f87b0-7e96-11e4-bf9b-a4173171c98e
Error: (12/08/2014 05:55:27 AM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description:
Error: (12/07/2014 08:00:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e1714e801d012501c62c7efC:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll5a2afe0c-7e43-11e4-bf9a-a4173171c98e
Error: (12/07/2014 07:21:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e17147401d0124a98475198C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dllda6c5ce3-7e3d-11e4-bf9a-a4173171c98e
Error: (12/07/2014 07:20:11 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description:
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 26%
Total physical RAM: 8084.27 MB
Available physical RAM: 5953.21 MB
Total Pagefile: 10004.27 MB
Available Pagefile: 7354.26 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:912.04 GB) (Free:810.46 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:18.26 GB) (Free:1.81 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (Dragon Age II) (CDROM) (Total:6.59 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 3EC8C7AC)
Partition: GPT Partition Type.
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-12-2014
Ran by Monika at 2014-12-08 21:00:55
Running from C:\Users\Monika\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton Security (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AMD Catalyst Install Manager (HKLM\...\{EA5160BE-7558-2716-01DB-FFE7F316957A}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bella Design (HKLM-x32\...\Bella DesignFinal) (Version: Final - AllSmartGames)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Boutique Boulevard (HKLM-x32\...\Boutique Boulevard1.0) (Version: 1.0 - Foxy Games)
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.0.0.91 - Citrix Systems, Inc.)
Cooking Dash 1.0 (HKLM-x32\...\Cooking Dash) (Version: 1.0 - CD, Inc.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.4.3202 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.3.2606 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.6.6117 - CyberLink Corp.)
Čeština Dragon Age Origins 1.00 (HKLM-x32\...\Čeština Dragon Age Origins 1.00) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Delicious 8 - Emilys Wonder Wedding (HKLM-x32\...\Delicious 8 - Emilys Wonder Wedding1.0) (Version: 1.0 - Foxy Games)
Delicious Emilys Honeymoon Cruise 1.00 (HKLM-x32\...\Delicious Emilys Honeymoon Cruise 1.00) (Version: 1.00 - Games)
Delicious Emilys True Love Premium Edition (HKLM-x32\...\Delicious Emilys True Love Premium Editionv1.0.0.0) (Version: v1.0.0.0 - GameHouse)
Dragon Age II (HKLM-x32\...\{F2E23139-3404-4E3C-9855-7724415D62A5}) (Version: 1.03 - Electronic Arts, Inc.)
Dragon Age: Prameny (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.03 - Electronic Arts, Inc.)
DriverAgent by eSupport.com (HKLM-x32\...\DriverAgent_is1) (Version: - Copyright © 2013 eSupport.com, Inc • All Rights Reserved)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{04927A60-31CD-4614-A25C-055B1AD3A8CE}) (Version: 4.2.9.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Connected Music (Meridian - player) (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\HPConnectedMusic) (Version: 1.1 (build 59) hp - Meridian Audio Ltd)
HP CoolSense (HKLM-x32\...\{59F8C5AA-91BD-423D-BF05-09A80F39898F}) (Version: 2.10.62 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{BCE2C284-0B0E-473D-A5BF-9644CC2C67DF}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Quick Start (HKLM-x32\...\{C001689B-4EAD-4CB4-B5F7-4A85A32785DC}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{DEF23826-DB71-4654-BC00-D5D6C20802EA}) (Version: 1.1.4 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
iCloud (HKLM\...\{EAFB2AD8-D92B-464C-8D97-B9CB94703C4A}) (Version: 3.0.2.163 - Apple Inc.)
ICQ 8.1 (verze 6337) (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\ICQ) (Version: 8.1.6337.0 - Mail.Ru)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.7.1002 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
iPhone Configuration Utility (HKLM-x32\...\{B90FCEB7-2B0C-4D27-95B5-54238DF059ED}) (Version: 3.6.2.300 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
iWin Toolbar for Pogo (HKLM\...\iwintoolbarforpogo) (Version: 1.0.0.10 - Visicom Media inc.)
Janes Hotel Mania 1.00 (HKLM-x32\...\Janes Hotel Mania 1.00) (Version: - )
Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.550 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Jojo's Fashion Show 2 - Las Cruces (HKLM-x32\...\Jojo's Fashion Show 2 - Las Cruces_is1) (Version: 1.0 - MyPlayCity, Inc.)
Jojos Fashion Show World Tour (HKLM-x32\...\Jojos Fashion Show World Tour1.0) (Version: 1.0 - AllSmartGames)
Juniper Citrix Services Client (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Juniper_Citrix_Services) (Version: 8.0.6.32195 - Juniper Networks)
Juniper Networks Setup Client (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Juniper_Setup_Client) (Version: 8.0.6.48695 - Juniper Networks)
Juniper Networks, Inc. Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Juniper Networks, Inc. Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Media Player (HKLM-x32\...\MediaPlayerV1alpha8857) (Version: 1.1 - Media Player) <==== ATTENTION
Media View (HKLM-x32\...\MediaViewV1alpha182) (Version: 1.1 - Media View) <==== ATTENTION
Media View (HKLM-x32\...\MediaViewV1alpha3602) (Version: 1.1 - Media View) <==== ATTENTION
Media Viewer (HKLM-x32\...\MediaViewerV1alpha450) (Version: 1.1 - Media Viewer) <==== ATTENTION
Media Watch (HKLM-x32\...\MediaWatchV1home2197) (Version: 1.1 - Media Watch) <==== ATTENTION
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Norton Security (HKLM-x32\...\NS) (Version: 22.0.2.17 - Symantec Corporation)
NVIDIA PhysX (HKLM-x32\...\{1C4551A6-4743-4093-91E4-1477CD655043}) (Version: 9.09.0203 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Název společnosti:)
Online Plug-in (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden
OpenOffice 4.1.0 (HKLM-x32\...\{43245B34-BAEA-4716-B877-38E7E7026698}) (Version: 4.10.9764 - Apache Software Foundation)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Ralink Bluetooth Stack (HKLM\...\{C079427A-BB28-5168-3DB1-DC6608D226D4}) (Version: 11.0.748.2 - Mediatek)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6870 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.007 - Realtek Semiconductor Corp.)
Self-service Plug-in (x32 Version: 4.0.0.40674 - Citrix Systems, Inc.) Hidden
Seznam Software (HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\SeznamInstall) (Version: - Seznam.cz)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.5.3.3 - Synaptics Incorporated)
System Requirements Lab CYRI (HKLM-x32\...\{2DF5765E-5386-4540-9383-DBC9A0A596F9}) (Version: 6.0.15.0 - Husdawg, LLC)
VLC media player 2.1.2 (HKLM-x32\...\VLC media player) (Version: 2.1.2 - VideoLAN)
Wedding Dash 4-Ever (HKLM-x32\...\Wedding Dash 4-Ever) (Version: 1.0.0.1 - Mangores Network Co., Ltd.)
Windows 8 Start menu 1.4 (HKLM-x32\...\Windows 8 Start menu_is1) (Version: - PS Media s.r.o.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Zoufalé manželky (HKLM-x32\...\{4DE70188-49EE-4302-8EFD-8DB44A3A2DBB}) (Version: 1.0 - Buena Vista Games)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2702503296-2993323403-2491266693-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
==================== Restore Points =========================
07-12-2014 15:45:42 zoek.exe restore point
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-07-26 06:26 - 2014-12-07 16:46 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {134F7AEE-CFB6-4E76-9584-21F46F7AB338} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2012-11-05] (Hewlett-Packard Development Company, L.P.)
Task: {44EFAECF-5DC6-4037-8D2F-DFAD855B901B} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink)
Task: {556EE271-1D92-4833-9293-1C7B4AC5B148} - \Only-search Updater No Task File <==== ATTENTION
Task: {55C229C1-6583-4039-AE88-6265186BF685} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-10-31] (Microsoft Corporation)
Task: {56BEEE1B-4A45-4772-8CA1-3381032AFC6B} - System32\Tasks\Norton Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\SymErr.exe [2014-09-08] (Symantec Corporation)
Task: {72CA8A86-089B-4515-8A1D-48CF4CA3D431} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-01-17] (CyberLink)
Task: {7374F727-DE86-451E-BEC9-F09FF529DEC3} - System32\Tasks\Norton Security\Norton Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\SymErr.exe [2014-09-08] (Symantec Corporation)
Task: {7413EEED-7D47-4E9F-B31F-9CEAEF341289} - System32\Tasks\DesktopAtStartup => C:\Users\Monika\AppData\Roaming\StartMenu\desktop.scf [2013-09-19] ()
Task: {74F957CB-D0C5-4004-A7F9-80502F1263C7} - \DTReg No Task File <==== ATTENTION
Task: {80534B3F-2FF0-47AF-87AE-C10CB44CC55E} - \RegClean Pro No Task File <==== ATTENTION
Task: {8A5F506C-48F9-42C3-B572-3AE7212CBB4E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-10] (Google Inc.)
Task: {8C77B571-68AA-4ED8-BC68-1B13F9F7E4A2} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Security\Engine\22.0.2.17\WSCStub.exe [2014-10-15] (Symantec Corporation)
Task: {93A87EE8-FFE0-4515-847A-254C9E448016} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {98983188-89E0-42AE-875E-A75A06CEF706} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {9AD874C4-2916-452F-840C-D9FB0833774E} - System32\Tasks\HPCeeScheduleForMonika => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {9C67FED3-FFA1-4973-9E0A-D5ABFE7A91F5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {A731CDA5-81B6-4348-B7B1-0C148A67FAA3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {AB4AB2EF-AC4B-4F9E-B046-C9CB4682425B} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)
Task: {AC313C16-0569-4DC2-AC18-65F1C46B7E6C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {B30CB471-2EFA-49BD-96C9-D8332F75DBC4} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-03] (Synaptics Incorporated)
Task: {F77785C8-D526-4D13-B95D-3260414C01B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-10] (Google Inc.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForMonika.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Loaded Modules (whitelisted) =============
2012-10-31 09:05 - 2012-10-31 10:05 - 00607744 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2013-11-01 14:48 - 2013-11-01 14:48 - 00016632 _____ () C:\Windows\system32\BsHelpCSps.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00062200 _____ () C:\Windows\system32\BlueSoleilCSps.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00371448 _____ () C:\Windows\system32\BsExtendFunc.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00029432 _____ () C:\Windows\system32\BsTrace.dll
2012-10-31 09:05 - 2012-10-31 10:05 - 00607744 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\JobCapsA.dll
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00029432 _____ () C:\WINDOWS\SYSTEM32\BsTrace.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00016632 _____ () C:\Windows\SYSTEM32\BsHelpCSps.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00062200 _____ () C:\Windows\SYSTEM32\BlueSoleilCSps.dll
2013-05-24 09:22 - 2013-05-24 09:22 - 00334648 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll
2011-07-05 09:53 - 2011-07-05 09:53 - 00012800 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\AMP\IVTAMPRL.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00029432 _____ () C:\Windows\SYSTEM32\BsTrace.dll
2013-05-25 16:14 - 2013-01-14 19:25 - 01200088 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-08-26 17:36 - 2013-08-26 17:36 - 00851456 _____ () C:\Users\Monika\AppData\Roaming\ICQM\ICQ\dll\YLUSBTEL.dll
2014-08-19 10:00 - 2013-08-05 08:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-08-05 14:48 - 2013-08-05 14:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00080120 _____ () C:\WINDOWS\SYSTEM32\BsProfilefunc.dll
2013-11-01 14:48 - 2013-11-01 14:48 - 00371448 _____ () C:\WINDOWS\SYSTEM32\BsExtendFunc.dll
2014-12-07 19:30 - 2014-11-25 07:39 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\libglesv2.dll
2014-12-07 19:30 - 2014-11-25 07:39 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\libegl.dll
2014-12-07 19:30 - 2014-11-25 07:39 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\pdf.dll
2014-12-07 19:30 - 2014-11-25 07:39 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\ffmpegsumo.dll
2014-08-13 00:42 - 2014-08-13 00:42 - 00196608 _____ () C:\Users\Monika\AppData\Roaming\Juniper Networks\Juniper Citrix Services Client\dsCitrixConnector.dll
2014-08-13 00:42 - 2014-08-13 00:42 - 00004608 _____ () C:\Users\Monika\AppData\Roaming\Juniper Networks\Juniper Citrix Services Client\dsCitrixProxyResource_en.dll
2012-11-05 13:41 - 2012-11-05 13:41 - 01099790 _____ () c:\Program Files (x86)\Citrix\ICA Client\avcodec-52.dll
2012-11-05 13:41 - 2012-11-05 13:41 - 00117774 _____ () c:\Program Files (x86)\Citrix\ICA Client\avformat-52.dll
2012-11-05 13:41 - 2012-11-05 13:41 - 00079886 _____ () c:\Program Files (x86)\Citrix\ICA Client\avutil-50.dll
2013-10-04 13:44 - 2013-10-04 13:44 - 01333760 _____ () C:\Program Files (x86)\Games\Delicious Emilys Honeymoon Cruise\Delicious9.exe
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:49B217F7
AlternateDataStreams: C:\ProgramData\Temp:4A966CC2
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\StartupFolder: => "TornTvDownloader.lnk"
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\Run: => "Power2GoExpress8"
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\Run: => "TornTv Downloader"
HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\StartupApproved\Run: => "UpdateChecker"
========================= Accounts: ==========================
Administrator (S-1-5-21-2702503296-2993323403-2491266693-500 - Administrator - Disabled)
Guest (S-1-5-21-2702503296-2993323403-2491266693-501 - Limited - Disabled)
Monika (S-1-5-21-2702503296-2993323403-2491266693-1001 - Administrator - Enabled) => C:\Users\Monika
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/08/2014 07:25:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x1990
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/08/2014 06:10:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x12d0
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/08/2014 07:26:32 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2 na řádku C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Error: (12/08/2014 06:48:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x1640
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/08/2014 06:46:16 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005
Error: (12/08/2014 05:56:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x1680
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/08/2014 05:55:27 AM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (12/07/2014 08:00:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x14e8
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/07/2014 07:21:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wfcrun32.exe, verze: 14.0.0.91, časové razítko: 0x51bb80d3
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17031, časové razítko: 0x5308893d
Kód výjimky: 0xc0000005
Posun chyby: 0x00018e17
ID chybujícího procesu: 0x1474
Čas spuštění chybující aplikace: 0xwfcrun32.exe0
Cesta k chybující aplikaci: wfcrun32.exe1
Cesta k chybujícímu modulu: wfcrun32.exe2
ID zprávy: wfcrun32.exe3
Úplný název chybujícího balíčku: wfcrun32.exe4
ID aplikace související s chybujícím balíčkem: wfcrun32.exe5
Error: (12/07/2014 07:20:11 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
System errors:
=============
Error: (12/08/2014 07:19:58 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (12/08/2014 07:19:28 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (12/08/2014 07:06:37 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (12/08/2014 07:06:07 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (12/08/2014 06:48:48 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (12/08/2014 06:07:03 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (12/08/2014 06:06:33 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (12/08/2014 05:57:05 AM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (12/07/2014 07:22:01 PM) (Source: DCOM) (EventID: 10010) (User: PC_Monika)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (12/07/2014 07:13:15 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Microsoft Office Sessions:
=========================
Error: (12/08/2014 07:25:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e17199001d01314520e9601c:\program files (x86)\citrix\ica client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll8fceb6e1-7f07-11e4-bf9b-a4173171c98e
Error: (12/08/2014 06:10:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e1712d001d01309df0b38caC:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll1cd98cd7-7efd-11e4-bf9b-a4173171c98e
Error: (12/08/2014 07:26:32 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsSMSEditor.exe
Error: (12/08/2014 06:48:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e17164001d012aa903704ecC:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dllce68409c-7e9d-11e4-bf9b-a4173171c98e
Error: (12/08/2014 06:46:16 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005
Error: (12/08/2014 05:56:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e17168001d012a353a31eddC:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll946f87b0-7e96-11e4-bf9b-a4173171c98e
Error: (12/08/2014 05:55:27 AM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description:
Error: (12/07/2014 08:00:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e1714e801d012501c62c7efC:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll5a2afe0c-7e43-11e4-bf9a-a4173171c98e
Error: (12/07/2014 07:21:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wfcrun32.exe14.0.0.9151bb80d3ntdll.dll6.3.9600.170315308893dc000000500018e17147401d0124a98475198C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dllda6c5ce3-7e3d-11e4-bf9a-a4173171c98e
Error: (12/07/2014 07:20:11 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description:
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 26%
Total physical RAM: 8084.27 MB
Available physical RAM: 5953.21 MB
Total Pagefile: 10004.27 MB
Available Pagefile: 7354.26 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:912.04 GB) (Free:810.46 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:18.26 GB) (Free:1.81 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (Dragon Age II) (CDROM) (Total:6.59 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 3EC8C7AC)
Partition: GPT Partition Type.
==================== End Of Log ============================
Re: Zavirovaný PC- prosím o pomoc
- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi
Kód: Vybrat vše
Start CloseProcesses: HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] () HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.) HKLM-x32\...\Run: [UsageTemp] => "C:\Users\Monika\AppData\Local\Temp\UsageTemp.exe" HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation) HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Monika\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] () HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Monika\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] () HKU\S-1-5-21-2702503296-2993323403-2491266693-1001\...\MountPoints2: {f05e7a59-c55c-11e2-be72-806e6f6e6963} - "E:\autorun.exe" SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = FF Plugin HKU\S-1-5-21-2702503296-2993323403-2491266693-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path U4 BthAvrcpTg; No ImagePath U4 BthHFEnum; No ImagePath U4 bthhfhid; No ImagePath 2014-12-08 20:59 - 2014-12-08 20:59 - 00029696 _____ () C:\Users\Monika\AppData\Local\MSGBOX.EXE 2014-12-08 20:59 - 2014-12-08 20:59 - 00015327 _____ () C:\Users\Monika\Desktop\LM.bat 2014-12-08 20:58 - 2014-12-08 20:59 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Downloads\FRSTLauncher (2).exe 2014-12-08 20:58 - 2014-12-08 20:58 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Downloads\Nepotvrzeno 66318.crdownload 2014-12-08 20:58 - 2014-12-08 20:58 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Downloads\Nepotvrzeno 268360.crdownload 2014-12-08 20:57 - 2014-12-08 20:57 - 02119680 _____ (Farbar) C:\Users\Monika\Downloads\FRST64 (1).exe 2014-12-07 19:28 - 2014-12-07 19:28 - 01555808 _____ () C:\Users\Monika\Desktop\zoek-results.log 2014-12-07 19:23 - 2014-12-07 19:23 - 01555808 _____ () C:\Users\Monika\Desktop\zoek-results.txt 2014-12-07 19:18 - 2014-12-07 16:44 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe 2014-12-07 16:45 - 2014-12-07 19:20 - 01555808 _____ () C:\zoek-results.log 2014-12-07 16:44 - 2014-12-07 19:17 - 00000000 ____D () C:\zoek_backup 2014-12-07 16:44 - 2014-12-07 16:44 - 01295360 _____ () C:\Users\Monika\Downloads\zoek (1).exe 2014-12-07 16:43 - 2014-12-07 16:43 - 01295360 _____ () C:\Users\Monika\Downloads\zoek.exe 2014-12-07 11:20 - 2014-12-07 11:26 - 00000000 ____D () C:\AdwCleaner 2014-12-07 11:20 - 2014-12-07 11:20 - 02153472 _____ () C:\Users\Monika\Downloads\adwcleaner_4.104.exe 2014-12-07 11:20 - 2014-12-07 11:20 - 00000055 _____ () C:\AdwCleanerDebug.txt 2014-12-02 20:18 - 2014-12-02 20:22 - 00000000 ____D () C:\Program Files\trend micro 2014-12-02 20:18 - 2014-12-02 20:18 - 00000000 ____D () C:\rsit 2014-12-02 20:17 - 2014-12-02 20:18 - 01222144 _____ () C:\Users\Monika\Downloads\RSITx64.exe 2014-11-19 20:06 - 2014-12-07 11:15 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2 2014-11-19 20:06 - 2014-12-07 11:13 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy 2014-11-19 20:06 - 2014-11-19 20:06 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking 2014-11-19 20:04 - 2014-11-19 20:05 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Monika\Downloads\spybot-2.4.exe Task: {556EE271-1D92-4833-9293-1C7B4AC5B148} - \Only-search Updater No Task File <==== ATTENTION Task: {74F957CB-D0C5-4004-A7F9-80502F1263C7} - \DTReg No Task File <==== ATTENTION Task: {80534B3F-2FF0-47AF-87AE-C10CB44CC55E} - \RegClean Pro No Task File <==== ATTENTION Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe AlternateDataStreams: C:\ProgramData\Temp:373E1720 AlternateDataStreams: C:\ProgramData\Temp:49B217F7 AlternateDataStreams: C:\ProgramData\Temp:4A966CC2 Hosts: EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.