VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

notebook out....pomozte mi

https://forum.viry.cz:443/viewtopic.php?t=145693

Stránka 1 z 4

notebook out....pomozte mi

Napsal: 17 srp 2015 12:27
od miratan
Zdravim vas vsechny,pratele.
Muj notebook je pomaly,zasekava se,neslape, tak jak ma!!!!Mam,asi nejakeho smejda,proto Vas prosim o kompletni radu,jak ho zase dat do poradku,proste udelejme kompletni ocistu,prosim.Coje treba navic,staci poradit,co se nehodi-staci poradit......atd
Zatim posilam FRST i Addition:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:16-08-2015
Ran by MINO (administrator) on MINO-PC (17-08-2015 12:53:19)
Running from C:\STAHOVANIE
Loaded Profiles: MINO (Available Profiles: MINO & fbwuser1024)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
() C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
() C:\Program Files\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(DTools LIMITED) C:\ProgramData\vWinManProv\ProtectWindowsManager.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Symantec Corporation) C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Nero AG) C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(Syntek America Inc.) C:\Windows\System32\StkCSrv.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
() C:\Program Files\Common Files\87737dd0-ad90-4193-bd48-336966b8d777\updater.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
() C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
(ATK0100) C:\Program Files\ATK Hotkey\HControl.exe
() C:\Program Files\ATKOSD2\ATKOSD2.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ATK Hotkey\KBFiltr.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\ASScrPro.exe
(ASUSTeK Computer INC.) C:\Program Files\ASUS\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugincontainer.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\10\Plugin.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\12\Plugin.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\8\Plugin.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7\Plugin.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\5\Plugin.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\2\Plugin.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\7\Plugin.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\12\Plugin.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\3\Plugin.exe
() C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugins\3\Plugin.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [JMB36X IDE Setup] => C:\Windows\JM\JMInsIDE.exe [36864 2006-10-30] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [857648 2007-03-01] (Synaptics, Inc.)
HKLM\...\Run: [ASUS Screen Saver Protector] => C:\Windows\ASScrPro.exe [33136 2008-09-21] ()
HKLM\...\Run: [ATKMEDIA] => C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [61440 2006-11-02] (ASUSTeK Computer INC.)
HKLM\...\Run: [ASUS Camera ScreenSaver] => C:\Windows\ASScrProlog.exe [37232 2008-09-21] ()
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll [2007-06-15] ()
ShellIconOverlayIdentifiers: [ADSMOverlayIcon1] -> {A8D448F4-0431-45AC-9F5E-E1B434AB2249} => C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll [2007-06-02] ()
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => No File
BootExecute:
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... earchTerms}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... earchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... earchTerms}
SearchScopes: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... earchTerms}
BHO: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO: Record Page -> {2335267c-dbba-4dd5-a9d0-c4db8e6a75a4} -> C:\Program Files\Record Page\Extensions\2335267c-dbba-4dd5-a9d0-c4db8e6a75a4.dll [2015-08-15] ()
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2009-06-12] (Sun Microsystems, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-12] (Sun Microsystems, Inc.)
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Winsock: Catalog5 01 C:\Windows\system32\mswsock.dll [223232 2009-10-06] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2009-07-08] (Společnost Microsoft)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{ACC154C7-2965-4120-B790-4492EA4DDE0D}: [DhcpNameServer] 192.168.0.1
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\IEXPLORE.EXE http://www.omniboxes.com/?type=sc&ts=14 ... XX5MA5TLJV

FireFox:
========
FF ProfilePath: C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: omniboxes
FF DefaultSearchUrl: hxxp://websearch.webisawsome.info/?pid=924&r=2014/02/21&hid=2522367243745516168&lg=EN&cc=SK&unqvl=49&l=1&q=
FF SearchEngineOrder.1: Yahoo!
FF SelectedSearchEngine: omniboxes
FF Homepage: hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
FF Keyword.URL: hxxp://websearch.webisawsome.info/?pid=924&r=2014/02/21&hid=2522367243745516168&lg=EN&cc=SK&unqvl=49&l=1&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2009-06-12] (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-1876766861-4099627362-3959107545-1000: @tools.google.com/Google Update;version=3 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-12] (Google Inc.)
FF Plugin HKU\S-1-5-21-1876766861-4099627362-3959107545-1000: @tools.google.com/Google Update;version=9 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-12] (Google Inc.)
FF user.js: detected! => C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\user.js [2015-08-15]
FF SearchPlugin: C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\omniboxes.xml [2015-08-17]
FF SearchPlugin: C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\WebSearch.xml [2014-03-04]
FF SearchPlugin: C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\Yahoo!.xml [2015-07-21]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-01-31]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\profiles\extensions\searchplugins [2013-11-22]
FF Extension: FTdownloader - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\profiles\extensions\ftdownloader@ftdownloader.com.xpi [2012-11-29]
FF Extension: Default SearchProtected - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\defsearchp@gmail.com [2015-08-15]
FF Extension: deskCut - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\deskCutv2@gmail.com [2015-08-15]
FF Extension: Speed Dial [FVD] - New Tab Page, Sync... - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\pavel.sherbakov@gmail.com [2015-07-22]
FF Extension: TankTurners - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\tzeiqoszufi_@arfsecpfifdfw_k.net [2015-08-15]
FF Extension: WOT - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-22]
FF Extension: YouTube™ Anywhere Player - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{c9d31470-81c6-4e3e-9a37-46eb9237ed3a} [2015-07-21]
FF Extension: Seznam lištička - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2015-07-22]
FF Extension: Record Page - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{5338b981-17bb-4eb1-a9c2-e552c52b86c3}.xpi [2015-08-15]
FF Extension: ImTranslator - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2014-01-24]
FF Extension: Adblock Plus - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-08-03]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-17]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-17]
FF HKLM\...\Firefox\Extensions: [defsearchp@gmail.com] - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\defsearchp@gmail.com
FF HKLM\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\deskCutv2@gmail.com
FF HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\MINO\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\MINO\AppData\Roaming\IDM\idmmzcc5 [2015-07-20]
FF HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\MINO\AppData\Roaming\IDM\idmmzcc5
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2014-05-17]

Chrome:
=======
CHR Profile: C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Magic Actions for YouTube™) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-07-21]
CHR Extension: (HD for YouTube™) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf [2015-07-21]
CHR Extension: (Record Page) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\bonbgacfkdakmlgpnkfmgiiggckmdhdd [2015-08-15]
CHR Extension: (Tampermonkey) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-07-21]
CHR Extension: (Digital Clock) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2013-09-20]
CHR Extension: (Avast Online Security) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-09-20]
CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2015-07-21]
CHR Extension: (Clock) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjocghlclkpgheifflemilcnblodjohg [2015-07-21]
CHR Extension: (Google Wallet) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (ImTranslator: Translator, Dictionary, TTS) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2015-07-21]
CHR HKLM\...\Chrome\Extension: [gkjoindjjcmbdpbfppabdgflnkgbbcli] - <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - <no Path\update_url>
StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe http://www.omniboxes.com/?type=sc&ts=14 ... XX5MA5TLJV

Opera:
=======
OPR Extension: (adblockforopera) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2013-12-09]
OPR Extension: (Record Page) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\bonbgacfkdakmlgpnkfmgiiggckmdhdd [2015-08-15]
OPR Extension: (Please enter your password) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\ccbdoklfbpcifppcfahmmpmbkfdjjccm [2013-12-09]
OPR Extension: (sailormax) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnbpedcoekjafichoehopgaaldogogch [2013-12-09]
OPR Extension: (weboftrust) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\eeokceolphhfjdfcibaiiopmekmcbedp [2013-12-04]
OPR Extension: (LML) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\hjjhcalkcaeagibemeeakbmmmaneedoh [2013-12-18]
OPR Extension: (LastPass) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2013-12-18]
OPR Extension: (Speeddial for Vevo.com) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibifcadphjdjdbkdgigdpnhfekekfgdo [2015-05-02]
OPR Extension: (Translate) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibnombjmjocaccigcefonnipcnlaeaed [2013-12-07]
OPR Extension: (mubaidr) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\lklibmbcgphmjobehnffhmioggnljmcl [2013-12-10]
OPR Extension: (Gantt) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\maeombkgfpjdnjkhohbjachnnmpbipol [2013-12-04]
OPR Extension: (Magic Actions for YouTube™) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\nlffnljnicbkfhnlomjhjlebndachaka [2013-12-09]
OPR Extension: (SaveFrom.net helper) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\npdpplbicnmpoigidfdjadamgfkilaak [2013-12-09]
OPR Extension: (Best Video Downloader 2) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\oaljndinbnpjfmcgphpnbpgodonlkfgo [2013-12-19]
OPR Extension: (tomillie) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\pcoocjajmgkjbnchononlgeaojaafcml [2013-12-26]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 1daead5e; c:\ProgramData\ReactorSubs\ReactorSubs.dll [2398208 2015-08-13] () [File not signed]
R2 698b30d6; c:\ProgramData\TampaMaker\TampaMaker.dll [2357248 2015-08-13] () [File not signed]
R2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [73728 2007-05-18] () [File not signed]
R2 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-02-06] () [File not signed]
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-06-11] () [File not signed]
R2 Automatic LiveUpdate Scheduler; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [554352 2007-09-12] (Symantec Corporation)
R2 b2902a13; c:\ProgramData\IncrementInstance\IncrementInstance.dll [2575360 2015-08-13] () [File not signed]
R2 d7fd6783; c:\ProgramData\SeekerInstance\SeekerInstance.dll [2543104 2015-08-13] () [File not signed]
R2 e77d1094; c:\ProgramData\BorderlineRunner\BorderlineRunner.dll [2479616 2015-08-13] () [File not signed]
R2 fafd12d7; c:\ProgramData\IncludeFoobar\IncludeFoobar.dll [2512896 2015-08-13] () [File not signed]
R2 FreemakeUtilsService; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [74240 2011-10-06] (Freemake) [File not signed]
R2 HTCMonitorService; C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-04-02] (Nero AG)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [101528 2007-04-13] () [File not signed]
S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE [2999664 2007-09-12] (Symantec Corporation)
R2 LiveUpdate Notice Service; C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [583048 2008-01-29] (Symantec Corporation)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 Service Mgr RecordPage; C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777\plugincontainer.exe [1200904 2015-08-17] ()
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 StkSSrv; C:\Windows\System32\StkCSrv.exe [24576 2007-02-07] (Syntek America Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1479488 2011-10-14] (TuneUp Software)
R2 Update Mgr RecordPage; C:\Program Files\Common Files\87737dd0-ad90-4193-bd48-336966b8d777\updater.exe [709896 2015-08-17] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
R2 WindowsMangerProtect; C:\ProgramData\vWinManProv\ProtectWindowsManager.exe [708264 2015-08-15] (DTools LIMITED) <==== ATTENTION
S2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 AsDsm; C:\Windows\system32\Drivers\AsDsm.sys [29752 2007-07-24] (Windows (R) Codename Longhorn DDK provider)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [28048 2010-02-05] (CSR, plc)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-05-21] (Disc Soft Ltd)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2008-01-19] (Microsoft Corporation)
S3 iSafeKrnlBoot; C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [40744 2015-03-03] (Elex do Brasil Participações Ltda)
R1 iSafeNetFilter; C:\Windows\System32\DRIVERS\iSafeNetFilter.sys [56232 2015-02-15] (Elex do Brasil Participações Ltda)
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [45568 2006-11-25] (Windows (R) Codename Longhorn DDK provider)
R0 JGOGO; C:\Windows\System32\DRIVERS\JGOGO.sys [6912 2006-02-07] (JMicron )
R0 JRAID; C:\Windows\System32\DRIVERS\jraid.sys [43648 2007-01-30] (JMicron Technology Corp.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [5632 2007-01-24] ( )
S3 MSIRCOMM; C:\Windows\System32\DRIVERS\MSIRCOMM.sys [24064 2008-01-19] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
R2 npf; C:\Windows\System32\drivers\npf.sys [35088 2010-07-16] (CACE Technologies, Inc.)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
S3 se45bus; C:\Windows\System32\DRIVERS\se45bus.sys [61536 2006-11-30] (MCCI)
S3 se45mdfl; C:\Windows\System32\DRIVERS\se45mdfl.sys [9360 2006-11-30] (MCCI)
S3 se45mdm; C:\Windows\System32\DRIVERS\se45mdm.sys [97088 2006-11-30] (MCCI)
S3 se45mgmt; C:\Windows\System32\DRIVERS\se45mgmt.sys [88624 2006-11-30] (MCCI)
S3 se45nd5; C:\Windows\System32\DRIVERS\se45nd5.sys [18704 2006-11-30] (MCCI)
S3 se45obex; C:\Windows\System32\DRIVERS\se45obex.sys [86432 2006-11-30] (MCCI)
S3 se45unic; C:\Windows\System32\DRIVERS\se45unic.sys [90800 2006-11-30] (MCCI)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-05-13] (Duplex Secure Ltd.)
R3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [1245056 2007-02-13] (Syntek)
S3 tapwp01; C:\Windows\System32\DRIVERS\tapwp01.sys [35288 2014-12-11] (The OpenVPN Project)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2011-10-13] (TuneUp Software)
U3 acut0y75; C:\Windows\system32\Drivers\acut0y75.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
S3 cpuz134; \??\C:\Users\MINO\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]
S3 HTCAND32; System32\Drivers\ANDROIDUSB.sys [X]
S3 lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-17 12:53 - 2015-08-17 12:53 - 00000000 ____D C:\FRST
2015-08-17 12:47 - 2015-08-17 12:47 - 00015327 _____ C:\Users\MINO\Desktop\LM.bat
2015-08-17 12:45 - 2015-08-17 12:47 - 00029696 _____ C:\Users\MINO\AppData\Local\MSGBOX.EXE
2015-08-17 12:43 - 2015-08-17 12:43 - 00000599 _____ C:\Users\MINO\Desktop\FRSTLauncher – zástupce.lnk
2015-08-17 12:40 - 2015-08-17 12:40 - 00000555 _____ C:\Users\MINO\Desktop\FRST – zástupce.lnk
2015-08-17 10:05 - 2015-08-17 10:08 - 00000000 ____D C:\rsit
2015-08-15 16:31 - 2015-08-15 16:35 - 00000000 ____D C:\rei
2015-08-15 16:29 - 2015-08-15 16:30 - 00772016 _____ (Reimage®) C:\Users\MINO\Downloads\ReimageRepair.exe
2015-08-15 14:22 - 2015-08-15 14:22 - 00278528 _____ C:\Users\MINO\Desktop\Nový Microsoft Office Access 2007 Databáze.accdb
2015-08-15 12:32 - 2015-08-15 12:32 - 00000000 ____D C:\Users\fbwuser1024\AppData\Roaming\Opera Software
2015-08-15 12:28 - 2015-08-15 12:28 - 00000000 ____D C:\ProgramData\9926525553060405625
2015-08-15 12:13 - 2015-08-15 16:32 - 00000148 _____ C:\Windows\Reimage.ini
2015-08-15 09:46 - 2015-08-15 09:46 - 00000000 ____D C:\Users\MINO\Documents\Optimizer Pro
2015-08-15 09:39 - 2015-08-17 12:36 - 00000000 ____D C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777
2015-08-15 09:39 - 2015-08-17 09:39 - 00000338 _____ C:\Windows\Tasks\Optscan.job
2015-08-15 09:39 - 2015-08-17 07:58 - 00000000 ____D C:\Program Files\Common Files\87737dd0-ad90-4193-bd48-336966b8d777
2015-08-15 09:39 - 2015-08-15 16:55 - 00000000 ____D C:\Users\MINO\AppData\Local\UpdateAdmin
2015-08-15 09:39 - 2015-08-15 09:39 - 00000000 ____D C:\ProgramData\{dd609a98-4a4c-8eae-dd60-09a984a46a61}
2015-08-15 09:39 - 2015-08-15 09:39 - 00000000 ____D C:\Program Files\Record Page
2015-08-15 09:38 - 2015-08-15 09:39 - 00000000 ____D C:\ProgramData\vWinManProv
2015-08-15 09:38 - 2015-08-15 09:38 - 00000000 _____ C:\Windows\prleth.sys
2015-08-15 09:38 - 2015-08-15 09:38 - 00000000 _____ C:\Windows\hgfs.sys
2015-08-15 09:37 - 2015-08-15 09:35 - 00009519 _____ C:\Users\MINO\Downloads\optimizerpro_eula628.mht
2015-08-15 09:36 - 2015-08-15 09:35 - 00032844 _____ C:\Users\MINO\Downloads\healthcaregovtool_490.mht
2015-08-15 09:36 - 2015-08-15 09:35 - 00024476 _____ C:\Users\MINO\Downloads\Update_Admin_628_1.mht
2015-08-15 09:36 - 2015-08-15 09:35 - 00009981 _____ C:\Users\MINO\Downloads\omniboxes_628.mht
2015-08-15 09:35 - 2015-08-15 09:35 - 00061494 _____ C:\Users\MINO\Downloads\codecpacks_satellitesite.mht
2015-08-13 23:59 - 2015-08-13 23:59 - 00000000 ____D C:\ProgramData\SeekerInstance
2015-08-13 18:58 - 2015-08-13 18:58 - 00000000 ____D C:\ProgramData\BorderlineRunner
2015-08-13 18:57 - 2015-08-13 18:57 - 00000000 ____D C:\ProgramData\IncrementInstance
2015-08-13 18:57 - 2015-08-13 18:57 - 00000000 ____D C:\ProgramData\IncludeFoobar
2015-08-13 18:56 - 2015-08-13 18:56 - 00000000 ____D C:\ProgramData\TampaMaker
2015-08-13 18:56 - 2015-08-13 18:56 - 00000000 ____D C:\ProgramData\ReactorSubs
2015-08-12 07:05 - 2015-07-21 22:55 - 01206192 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-12 07:05 - 2015-07-21 18:07 - 03605440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-08-12 07:05 - 2015-07-21 18:07 - 03553216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-12 07:05 - 2015-07-21 18:07 - 00140224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2015-08-12 07:05 - 2015-07-21 18:07 - 00056256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-12 07:05 - 2015-07-21 18:03 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2015-08-12 07:05 - 2015-07-21 18:03 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-12 07:05 - 2015-07-21 18:03 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-12 07:01 - 2015-07-31 21:27 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 06:58 - 2015-07-09 16:20 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-08-12 06:56 - 2015-07-10 21:37 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-12 06:51 - 2015-07-11 17:56 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-12 06:11 - 2015-07-18 18:03 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-12 06:09 - 2015-07-10 21:37 - 01402368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-12 06:09 - 2015-07-10 21:37 - 01253376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-12 06:04 - 2015-08-01 00:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-12 06:04 - 2015-07-31 23:46 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-08-12 06:04 - 2015-07-31 23:46 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-08-12 06:04 - 2015-07-31 23:46 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-08-12 06:04 - 2015-07-31 23:46 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-08-12 06:04 - 2015-07-31 22:41 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-12 06:04 - 2015-07-31 22:40 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-08-12 06:04 - 2015-07-31 22:35 - 00682496 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-08-12 06:04 - 2015-07-31 22:33 - 02066944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-12 06:04 - 2015-07-31 22:33 - 01072640 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-12 06:04 - 2015-07-31 22:33 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-12 06:04 - 2015-07-31 22:33 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-12 06:02 - 2015-07-01 17:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-12 06:01 - 2015-07-09 16:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-12 06:01 - 2015-07-09 16:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-12 02:40 - 2015-07-22 22:54 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-12 02:40 - 2015-07-22 22:51 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-12 02:40 - 2015-07-22 22:47 - 09751040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-12 02:40 - 2015-07-22 22:46 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-12 02:40 - 2015-07-22 22:46 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-12 02:40 - 2015-07-22 22:45 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-12 02:40 - 2015-07-22 22:45 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-08-12 02:40 - 2015-07-22 22:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-12 02:40 - 2015-07-22 22:43 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-08-12 02:40 - 2015-07-22 22:43 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-12 02:40 - 2015-07-22 22:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-12 02:40 - 2015-07-22 22:43 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-12 02:40 - 2015-07-22 22:43 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-08-12 02:40 - 2015-07-22 22:43 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-08-12 02:40 - 2015-07-22 22:43 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-08-12 02:40 - 2015-07-22 22:42 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-12 02:39 - 2015-07-22 22:54 - 12386816 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-06 05:40 - 2015-08-06 05:51 - 00000000 ____D C:\Users\MINO\AppData\Roaming\One System Care
2015-08-05 08:58 - 2015-08-05 08:58 - 00000000 ____D C:\Users\MINO\AppData\Local\TNT2
2015-08-05 08:55 - 2015-08-05 08:55 - 00000565 _____ C:\Users\MINO\Desktop\KMPlayer.lnk
2015-08-05 08:55 - 2015-08-05 08:55 - 00000000 ____D C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2015-08-05 08:55 - 2015-08-05 08:55 - 00000000 ____D C:\KMPlayer
2015-08-05 00:03 - 2015-08-05 00:03 - 00877152 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-08-05 00:03 - 2015-08-05 00:03 - 00538208 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2015-07-29 08:58 - 2015-07-29 08:58 - 00000000 ____D C:\Users\MINO\AppData\Roaming\MPC-HC
2015-07-29 08:57 - 2015-07-29 08:57 - 00001667 _____ C:\Users\MINO\Desktop\MPC-HC.lnk
2015-07-29 08:57 - 2015-07-29 08:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC
2015-07-29 08:57 - 2015-07-29 08:57 - 00000000 ____D C:\Program Files\MPC-HC
2015-07-23 14:00 - 2015-07-23 14:02 - 00000000 ____D C:\Users\MINO\Documents\Zálohy
2015-07-23 12:06 - 2014-12-11 21:53 - 00035288 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tapwp01.sys
2015-07-23 11:56 - 2015-07-23 12:52 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-07-22 16:23 - 2015-08-15 09:37 - 00002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-22 16:23 - 2015-07-22 16:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-20 11:38 - 2015-07-20 11:38 - 00000000 ____D C:\ProgramData\IDM
2015-07-20 11:37 - 2015-07-20 12:38 - 00000000 ____D C:\Program Files\Internet Download Manager
2015-07-20 11:36 - 2015-07-20 11:36 - 00000000 ____D C:\Users\MINO\AppData\Roaming\Tonec Inc
2015-07-18 08:04 - 2015-07-18 08:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-17 12:53 - 2008-09-21 15:33 - 00000000 ____D C:\STAHOVANIE
2015-08-17 12:38 - 2013-09-21 06:25 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-17 12:33 - 2014-09-26 11:00 - 00000958 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job
2015-08-17 12:31 - 2013-10-24 08:28 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-17 11:35 - 2015-07-16 17:01 - 01170955 _____ C:\Windows\WindowsUpdate.log
2015-08-17 11:31 - 2013-10-24 08:28 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-17 11:31 - 2013-09-15 15:24 - 00000000 ____D C:\Users\MINO\AppData\Local\HTC MediaHub
2015-08-17 11:30 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-17 11:30 - 2006-11-02 14:47 - 00003696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-17 11:30 - 2006-11-02 14:47 - 00003696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-17 11:29 - 2007-04-21 12:36 - 00008524 _____ C:\Windows\bthservsdp.dat
2015-08-17 11:29 - 2006-11-02 15:01 - 00032560 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-08-17 10:19 - 2008-09-23 11:21 - 00000000 ____D C:\Program Files\Trend Micro
2015-08-17 09:44 - 2014-07-12 20:36 - 00000000 ____D C:\Users\MINO\AppData\Roaming\vlc
2015-08-17 07:33 - 2014-09-26 11:00 - 00000906 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job
2015-08-15 17:59 - 2008-09-21 05:10 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2015-08-15 17:56 - 2013-12-13 13:58 - 00000000 ____D C:\Users\MINO\AppData\Roaming\uTorrent
2015-08-15 16:04 - 2011-06-05 15:33 - 00000000 ____D C:\temp
2015-08-15 12:32 - 2014-02-21 10:44 - 00000000 ____D C:\Users\fbwuser1024\AppData\Local\Google
2015-08-15 12:28 - 2014-05-17 12:16 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-15 10:35 - 2013-04-22 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-08-15 10:30 - 2010-02-07 09:32 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-08-15 09:37 - 2014-10-16 04:59 - 00001076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 31.lnk
2015-08-15 09:37 - 2013-12-04 15:58 - 00001064 _____ C:\Users\Public\Desktop\Opera 31.lnk
2015-08-15 09:37 - 2013-01-20 11:36 - 00001143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-15 09:37 - 2013-01-20 11:36 - 00001131 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-08-15 09:37 - 2012-07-20 18:13 - 00002231 _____ C:\Users\MINO\Desktop\Fun and Bullets.lnk
2015-08-15 09:37 - 2009-08-20 17:38 - 00001234 _____ C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-15 09:37 - 2008-09-21 12:19 - 00001204 _____ C:\Users\MINO\Desktop\Internet Explorer.lnk
2015-08-13 17:52 - 2010-08-06 08:00 - 00000000 ____D C:\Users\MINO\AppData\Roaming\dvdcss
2015-08-13 12:50 - 2006-11-02 12:33 - 01539772 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-12 08:38 - 2012-12-20 09:46 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-08-12 08:38 - 2012-12-20 09:46 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-08-12 08:32 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-08-12 08:08 - 2013-04-19 05:34 - 00400752 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-12 08:04 - 2012-12-21 18:31 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-12 08:03 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2015-08-12 07:08 - 2008-11-01 11:28 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-12 07:05 - 2012-12-21 18:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 06:49 - 2013-07-12 07:52 - 00000000 ____D C:\Windows\system32\MRT
2015-08-12 06:15 - 2006-11-02 12:24 - 129304528 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-08-07 15:28 - 2015-05-30 14:01 - 00000370 _____ C:\Users\MINO\Desktop\Router Settings.txt
2015-08-06 06:03 - 2014-07-12 20:35 - 00000866 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-08-06 05:44 - 2009-10-07 08:13 - 00000000 ____D C:\Program Files\Opera
2015-08-05 13:06 - 2009-02-23 17:44 - 00000000 ____D C:\Users\MINO\Documents\The KMPlayer
2015-07-31 04:34 - 2009-05-31 10:22 - 00000000 ____D C:\Windows\Minidump
2015-07-23 17:13 - 2009-10-15 06:19 - 00000000 ____D C:\Program Files\Ashampoo
2015-07-23 17:09 - 2009-10-15 06:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-07-23 13:45 - 2009-09-23 19:45 - 00000000 ____D C:\ProgramData\ashampoo
2015-07-23 12:52 - 2013-01-20 11:36 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-07-23 12:08 - 2008-09-20 20:39 - 00000000 ____D C:\Users\MINO
2015-07-22 16:22 - 2009-05-10 11:06 - 00000000 ____D C:\Program Files\Google
2015-07-21 05:47 - 2010-05-05 15:03 - 00000000 ____D C:\Users\MINO\AppData\Roaming\DMCache
2015-07-20 11:46 - 2010-05-05 15:03 - 00000000 ____D C:\Users\MINO\AppData\Roaming\IDM
2015-07-18 08:35 - 2014-06-16 04:39 - 00000000 ____D C:\Users\MINO\AppData\Local\Adobe
2015-07-18 08:04 - 2009-02-21 19:06 - 00000000 ____D C:\Program Files\K-Lite Codec Pack

==================== Files in the root of some directories =======

2010-05-26 14:12 - 2013-02-09 11:34 - 0000103 _____ () C:\Users\MINO\AppData\Roaming\default.pls
2013-05-19 14:12 - 2013-05-19 14:21 - 0087608 _____ () C:\Users\MINO\AppData\Roaming\inst.exe
2009-09-11 15:47 - 2013-05-19 14:21 - 0007887 _____ () C:\Users\MINO\AppData\Roaming\pcouffin.cat
2009-09-11 15:47 - 2013-05-19 14:21 - 0001144 _____ () C:\Users\MINO\AppData\Roaming\pcouffin.inf
2009-09-11 15:47 - 2013-05-19 14:21 - 0047360 _____ (VSO Software) C:\Users\MINO\AppData\Roaming\pcouffin.sys
2010-06-25 21:52 - 2014-03-22 19:17 - 0000680 _____ () C:\Users\MINO\AppData\Local\d3d9caps.dat
2015-08-17 12:45 - 2015-08-17 12:47 - 0029696 _____ () C:\Users\MINO\AppData\Local\MSGBOX.EXE
2009-08-01 16:05 - 2009-08-01 16:05 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2009-12-02 19:41 - 2009-12-02 19:46 - 0008350 _____ () C:\ProgramData\LUUnInstall.LiveUpdate
2010-04-10 11:02 - 2010-04-10 11:02 - 0000108 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\MINO\AppData\Local\temp\{268402A5-5B2E-4D76-8E32-36B5B066C674}.dll
C:\Users\MINO\AppData\Local\temp\{26BB6182-D6DE-49BE-97E0-FC69B50BDDE6}.dll
C:\Users\MINO\AppData\Local\temp\{39E2FCA4-62AB-4DC9-9096-7F4B1B1CC4B4}.dll
C:\Users\MINO\AppData\Local\temp\{48C0DD22-8038-4D94-BDB8-D22121E7A844}.dll
C:\Users\MINO\AppData\Local\temp\{55832CEE-690A-4C1E-9E4E-4E4AA2BEDFBE}.dll
C:\Users\MINO\AppData\Local\temp\{7B5AA8E5-2DE6-45CE-94AD-5A146E6ADB0C}.dll
C:\Users\MINO\AppData\Local\temp\{7C84DC26-4E64-4B1A-BBED-769E30960D39}.dll
C:\Users\MINO\AppData\Local\temp\{91FFABC5-70DC-4CEA-A319-063F45649972}.dll
C:\Users\MINO\AppData\Local\temp\{96F83569-6D4A-4AF9-980D-2163671A4C66}.dll
C:\Users\MINO\AppData\Local\temp\{999CFD9D-44F9-4884-8703-D219D9AA3426}.dll
C:\Users\MINO\AppData\Local\temp\{9FF80F08-5516-4241-84EF-770C8537FF6E}.dll
C:\Users\MINO\AppData\Local\temp\{D28C79D9-CACB-4B15-ABC8-338C00A03ED5}.dll
C:\Users\MINO\AppData\Local\temp\{EABEA3F3-375D-4D7C-91E9-ADBD40A4FE2F}.dll
C:\Users\MINO\AppData\Local\temp\{EF2B411E-E044-4149-8704-4C8F4E1F81F6}.dll
C:\Users\MINO\AppData\Local\temp\{F0783A2B-760F-443F-8C73-05B8D9EE0461}.dll
C:\Users\MINO\AppData\Local\temp\{F5BCB282-992A-4E76-AB11-6628929913C4}.dll
C:\Users\MINO\AppData\Local\temp\{F9F5AB19-E4FF-41D7-9FB8-ED267C2DA137}.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-17 11:39

==================== End of log ============================

Re: notebook out....pomozte mi

Napsal: 18 srp 2015 10:00
od altrok
Krasny den Vam preju :bye:


:arrow: Nevidim antivir - proc?

:arrow: Odinstalujte :arrow: V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

:arrow: Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
  • ukoncete vsechny programy
  • kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
  • kliknete na Scan, pote na Cleaning
  • po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner[Cx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

Re: notebook out....pomozte mi

Napsal: 18 srp 2015 13:26
od miratan
TuneUp Utilities...povedlo se mi to kompletne odinstalovat.
Seznam Software....taky,ale Skype Click to Call ---nemuzu najit
Proc nemam antivir?No predtim jsem tam mel Avast...skoncila doba platnosti,ale ted nevim jaky instalovat---poradte freeware a schopny.
No a mam jeste problem.Dostal jsem 10palcovy notebook,vyndal sem HD,koupil krabicku,pouzivam ho jako externi HD,ale zapomel jsem na to,ze to ma operacni system,ale od dotycne osoby,kterou jiz nepotkam,tak nemuzu se dostat a smazat
zbytecne veci,ktere by mi uvolnili misto na disku,protoze to chce heslo a potvrzeni administratora,Nevite co s tim????????? :idea:
Co jsem udelal za kravinu do ted si to vycitam...instaloval jsem program Reimage Repair+Reimage express....no a asi tusite,co se stalo.Po odinstalovani programu mi to stale v prohlizeci Opera otravuje vsemi moznymi reklamami,stale vyskakuji,kdyz zmacknu na web strancenejaky povel,tak okamzite naskoci dalsi list s uplnou hovadinou a ani Add block mi to nezakaze,predtim
totak nebylo.Add Block fungovalv pohode.

Re: notebook out....pomozte mi

Napsal: 18 srp 2015 13:29
od miratan
Posilam AdwCleaner :
# AdwCleaner v5.001 - Logfile created 18/08/2015 at 13:23:30
# Updated 17/08/2015 by Xplode
# Database : 2015-08-16.2 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : MINO - MINO-PC
# Running from : C:\STAHOVANIE\adwcleaner_5.001.exe
# Option : Cleaning

***** [ Services ] *****

[-] Service Deleted : iSafeKrnlBoot
[-] Service Deleted : iSafeNetFilter
[-] Service Deleted : ReimageRealTimeProtector
[-] Service Deleted : WindowsMangerProtect
[-] Service Deleted : Service Mgr RecordPage
[-] Service Deleted : Update Mgr RecordPage
[!] Service Not Deleted : Service Mgr RecordPage
[-] Service Deleted : Update Mgr RecordPage
[-] Service Deleted : 1daead5e
[-] Service Deleted : 698b30d6
[-] Service Deleted : b2902a13
[-] Service Deleted : d7fd6783
[-] Service Deleted : e77d1094
[-] Service Deleted : fafd12d7

***** [ Folders ] *****

[-] Folder Deleted : C:\rei
[-] Folder Deleted : C:\Program Files\Reimage
[-] Folder Deleted : C:\Program Files\Record Page
[!] Folder Not Deleted : C:\Program Files\Record Page
[#] Folder Deleted : C:\Program Files\Mozilla Firefox\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
[-] Folder Deleted : C:\Program Files\Common Files\87737dd0-ad90-4193-bd48-336966b8d777
[-] Folder Deleted : C:\ProgramData\Uniblue
[-] Folder Deleted : C:\ProgramData\Reimage Express
[-] Folder Deleted : C:\ProgramData\ReactorSubs
[-] Folder Deleted : C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777
[-] Folder Deleted : C:\ProgramData\9926525553060405625
[-] Folder Deleted : C:\ProgramData\{dd609a98-4a4c-8eae-dd60-09a984a46a61}
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UpdateAdmin
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Express
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reimage repair
[-] Folder Deleted : C:\Users\MINO\AppData\Local\UpdateAdmin
[-] Folder Deleted : C:\Users\MINO\AppData\Local\TNT2
[-] Folder Deleted : C:\Users\MINO\AppData\Roaming\eCyber
[-] Folder Deleted : C:\Users\MINO\AppData\Roaming\Elex-tech
[-] Folder Deleted : C:\Users\MINO\AppData\Roaming\One System Care
[-] Folder Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\mystarttb
[-] Folder Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[-] Folder Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\deskCutv2@gmail.com
[-] Folder Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\defsearchp@gmail.com

***** [ Files ] *****

[-] File Deleted : C:\Program Files\mozilla firefox\dbghelp.dll
[-] File Deleted : C:\Program Files\Mozilla Firefox\nsprotector.js
[-] File Deleted : C:\Program Files\Mozilla Firefox\user.js
[-] File Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\searchplugins\search.xml
[-] File Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
[-] File Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
[-] File Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\WebSearch.xml
[-] File Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\user.js
[-] File Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\user.js
[-] File Deleted : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\omniboxes.xml
[-] File Deleted : C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
[-] File Deleted : C:\Windows\Reimage.ini
[-] File Deleted : C:\Windows\system32\drivers\iSafeKrnlBoot.sys
[-] File Deleted : C:\Windows\system32\drivers\iSafeNetFilter.sys

***** [ Shortcuts ] *****

[-] Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\Public\Desktop\Mozilla Firefox.lnk
[-] Shortcut Disinfected : C:\Users\Public\Desktop\Opera 31.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 31.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VistaCodecs\Common Tools\Make a Donation.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VistaCodecs\Common Tools\VistaCodecs HomePage.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Verdict Free\Internetový překladač.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeGamePick.com\Fun and Bullets\Fun and Bullets.lnk
[-] Shortcut Disinfected : C:\Users\MINO\Desktop\Fun and Bullets.lnk
[-] Shortcut Disinfected : C:\Users\MINO\Desktop\Internet Explorer.lnk
[-] Shortcut Disinfected : C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[-] Shortcut Disinfected : C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
[-] Shortcut Disinfected : C:\Users\MINO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\MINO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[-] Shortcut Disinfected : C:\Users\MINO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk

***** [ Scheduled tasks ] *****

[-] Task Deleted : ASP
[-] Task Deleted : BrowserProtect
[-] Task Deleted : LaunchApp
[-] Task Deleted : Reimage Reminder
[-] Task Deleted : ReimageUpdater
[-] Task Deleted : Scheduled Update for Ask Toolbar
[-] Task Deleted : YourFile DownloaderUpdate
[-] Task Deleted : UpdateAdmin
[-] Task Deleted : Optscan

***** [ Registry ] *****

[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
[-] Key Deleted : HKCU\Software\Mozilla\Extends
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{37AC0F3B-749F-3B22-811B-5A019EED2E85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{4392A6CC-7940-310E-8E16-799A8D93A438}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{66DF7821-ED6D-3534-893C-0E89E74B0F91}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{755CAFCC-F016-3B06-8F22-945EAA3AD10D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{76552F88-640C-314D-82B6-0D8A740907F7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{05660A04-00F1-3A04-AB3B-BC1074B84D67}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{903F9872-E87F-3B74-83B0-DBE10073B29D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{9558EEB4-CDA6-3778-B53B-98076F0A1E90}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{B25AA9BA-FD52-3E5E-BFE3-9B106779DA6E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{C852CF9F-37DC-35AC-926A-7E6CFFF7C501}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{C9777796-4378-3C90-B52D-7238FFFC2A5C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{DB1BC8B2-FDBF-30E7-BE1C-AFF9160059E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{F3D5729C-7DEB-3850-A026-D0E323ECFEF5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Record\{FEC70973-CB8B-351C-8047-CAE1274CE249}
[-] Key Deleted : HKLM\SOFTWARE\Classes\SDP
[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [UpdateAdmin]
[-] Key Deleted : HKLM\SOFTWARE\56b24d99-679d-532c-8b5e-aa4694f64246
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3289075
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [deskCutv2@gmail.com]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [defsearchp@gmail.com]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{09CFDB88-F9F0-40BA-885E-F47A957D12E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2B1B440F-A9DB-46E3-ADCF-AA6E08143FB8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2335267C-DBBA-4DD5-A9D0-C4DB8E6A75A4}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{2335267c-dbba-4dd5-a9d0-c4db8e6a75a4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D1611ACC-4B10-4B34-8CDE-0AE7B2A270A6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F8A4FC32-DDA3-4DD9-8C62-49F778FF630B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1FCDF527-B10C-481D-B214-B09EEA106124}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1FCDF527-B10C-481D-B214-B09EEA106124}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2335267C-DBBA-4DD5-A9D0-C4DB8E6A75A4}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2335267c-dbba-4dd5-a9d0-c4db8e6a75a4}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2335267C-DBBA-4DD5-A9D0-C4DB8E6A75A4}
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2335267c-dbba-4dd5-a9d0-c4db8e6a75a4}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2335267C-DBBA-4DD5-A9D0-C4DB8E6A75A4}
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2335267c-dbba-4dd5-a9d0-c4db8e6a75a4}
[-] Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Key Deleted : HKU\.DEFAULT\Software\AskToolbar
[-] Key Deleted : HKU\.DEFAULT\Software\AVG Secure Search
[-] Key Deleted : HKU\.DEFAULT\Software\AVG Security Toolbar
[-] Key Deleted : HKU\.DEFAULT\Software\CToolbar
[-] Key Deleted : HKU\.DEFAULT\Software\ImInstaller
[-] Key Deleted : HKU\.DEFAULT\Software\WNLT
[-] Key Deleted : HKU\.DEFAULT\Software\Elex-tech
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\AskBarDis
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\AskToolbar
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\AVG Security Toolbar
[-] Key Deleted : HKCU\Software\APN PIP
[-] Key Deleted : HKCU\Software\AskPartnerNetwork
[-] Key Deleted : HKCU\Software\HomeTab
[-] Key Deleted : HKCU\Software\simplytech
[!] Key Not Deleted : HKCU\Software\Simplytech\HomeTab
[-] Key Deleted : HKCU\Software\Softonic
[-] Key Deleted : HKCU\Software\Reimage
[-] Key Deleted : HKCU\Software\WajIEnhance
[-] Key Deleted : HKCU\Software\TNT2
[-] Key Deleted : HKCU\Software\WajIntEnhance
[-] Key Deleted : HKCU\Software\SearchProtectWS
[-] Key Deleted : HKCU\Software\Linkey
[-] Key Deleted : HKCU\Software\DownloadAdmin
[-] Key Deleted : HKCU\Software\Kromtech
[-] Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
[-] Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Iminent
[-] Key Deleted : HKLM\SOFTWARE\SearchProtect
[-] Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
[-] Key Deleted : HKLM\SOFTWARE\Uniblue
[-] Key Deleted : HKLM\SOFTWARE\Reimage
[-] Key Deleted : HKLM\SOFTWARE\Elex-tech
[-] Key Deleted : HKLM\SOFTWARE\WajIntEnhance
[-] Key Deleted : HKLM\SOFTWARE\omniboxesSoftware
[-] Key Deleted : HKLM\SOFTWARE\SpeedBit
[-] Key Deleted : HKLM\SOFTWARE\AIM Toolbar
[-] Key Deleted : HKLM\SOFTWARE\FFPluginHp
[-] Key Deleted : HKLM\SOFTWARE\searchult
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Express
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Record Page
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Record Page
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
[-] Data Restored : HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command []
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command []
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\OperaStable\shell\open\command []

***** [ Web browsers ] *****

[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxp://websearch.webisawsome.info/?pid=924&r=2014/02/21&hid=2522367243745516168&lg=EN&cc=SK&unqvl=49");
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultenginename", "omniboxes");
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaulturl", "hxxp://websearch.webisawsome.info/?pid=924&r=2014/02/21&hid=2522367243745516168&lg=EN&cc=SK&unqvl=49&l=1&q=");
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.alias", "omniboxes");
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.iconURL", "hxxp://www.omniboxes.com/favicon.ico");
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.name", "omniboxes");
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.url", "hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... ={searchTe[...]
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "omniboxes");
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV");
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("extensions.quick_start.enable_search1", false);
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
[-] [C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Deleted : user_pref("keyword.URL", "hxxp://websearch.webisawsome.info/?pid=924&r=2014/02/21&hid=2522367243745516168&lg=EN&cc=SK&unqvl=49&l=1&q=");
[-] [C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : websearch
[-] [C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.conduit.com
[-] [C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : askws

*************************

:: Proxy settings cleared
:: Winsock settings cleared
:: IE policies deleted
:: Chrome policies deleted

*************************

C:\AdwCleaner[C1].txt - [18966 bytes] - [18/08/2015 13:23:30]
C:\AdwCleaner[S1].txt - [22444 bytes] - [18/08/2015 13:17:15]

########## EOF - C:\AdwCleaner[C1].txt - [19092 bytes] ##########

Re: notebook out....pomozte mi

Napsal: 18 srp 2015 13:31
od miratan
# AdwCleaner v5.001 - Logfile created 18/08/2015 at 13:17:15
# Updated 17/08/2015 by Xplode
# Database : 2015-08-16.2 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : MINO - MINO-PC
# Running from : C:\STAHOVANIE\adwcleaner_5.001.exe
# Option : Scan

***** [ Services ] *****

Service Found : iSafeKrnlBoot
Service Found : iSafeNetFilter
Service Found : ReimageRealTimeProtector
Service Found : WindowsMangerProtect
Service Found : Service Mgr RecordPage
Service Found : Update Mgr RecordPage
Service Found : Service Mgr RecordPage
Service Found : Update Mgr RecordPage
Service Found : 1daead5e
Service Found : 698b30d6
Service Found : b2902a13
Service Found : d7fd6783
Service Found : e77d1094
Service Found : fafd12d7

***** [ Folders ] *****

Folder Found : C:\rei
Folder Found : C:\Program Files\Reimage
Folder Found : C:\Program Files\Record Page
Folder Found : C:\Program Files\Record Page
Folder Found : C:\Program Files\Mozilla Firefox\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
Folder Found : C:\Program Files\Common Files\87737dd0-ad90-4193-bd48-336966b8d777
Folder Found : C:\ProgramData\Uniblue
Folder Found : C:\ProgramData\Reimage Express
Folder Found : C:\ProgramData\ReactorSubs
Folder Found : C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777
Folder Found : C:\ProgramData\9926525553060405625
Folder Found : C:\ProgramData\{dd609a98-4a4c-8eae-dd60-09a984a46a61}
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UpdateAdmin
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Express
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reimage repair
Folder Found : C:\Users\MINO\AppData\Local\UpdateAdmin
Folder Found : C:\Users\MINO\AppData\Local\TNT2
Folder Found : C:\Users\MINO\AppData\Roaming\eCyber
Folder Found : C:\Users\MINO\AppData\Roaming\Elex-tech
Folder Found : C:\Users\MINO\AppData\Roaming\One System Care
Folder Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\mystarttb
Folder Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Folder Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\deskCutv2@gmail.com
Folder Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\defsearchp@gmail.com

***** [ Files ] *****

File Found : C:\Program Files\mozilla firefox\dbghelp.dll
File Found : C:\Program Files\Mozilla Firefox\nsprotector.js
File Found : C:\Program Files\Mozilla Firefox\user.js
File Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\searchplugins\search.xml
File Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
File Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
File Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\WebSearch.xml
File Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\user.js
File Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\user.js
File Found : C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\omniboxes.xml
File Found : C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
File Found : C:\Windows\Reimage.ini
File Found : C:\Windows\system32\drivers\iSafeKrnlBoot.sys
File Found : C:\Windows\system32\drivers\iSafeNetFilter.sys

***** [ Shortcuts ] *****

Shortcut Infected : C:\Users\Public\Desktop\Google Chrome.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\Public\Desktop\Mozilla Firefox.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\Public\Desktop\Opera 31.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 31.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VistaCodecs\Common Tools\Make a Donation.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VistaCodecs\Common Tools\VistaCodecs HomePage.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Verdict Free\Internetový překladač.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeGamePick.com\Fun and Bullets\Fun and Bullets.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\MINO\Desktop\Fun and Bullets.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\MINO\Desktop\Internet Explorer.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\MINO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\MINO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )
Shortcut Infected : C:\Users\MINO\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk ( hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV )

***** [ Scheduled tasks ] *****

Task Found : ASP
Task Found : BrowserProtect
Task Found : LaunchApp
Task Found : Reimage Reminder
Task Found : ReimageUpdater
Task Found : Scheduled Update for Ask Toolbar
Task Found : YourFile DownloaderUpdate
Task Found : UpdateAdmin
Task Found : Optscan

***** [ Registry ] *****

Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Found : HKCU\Software\Mozilla\Extends
Key Found : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Key Found : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
Key Found : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe
Key Found : HKLM\SOFTWARE\Classes\Record\{37AC0F3B-749F-3B22-811B-5A019EED2E85}
Key Found : HKLM\SOFTWARE\Classes\Record\{4392A6CC-7940-310E-8E16-799A8D93A438}
Key Found : HKLM\SOFTWARE\Classes\Record\{66DF7821-ED6D-3534-893C-0E89E74B0F91}
Key Found : HKLM\SOFTWARE\Classes\Record\{755CAFCC-F016-3B06-8F22-945EAA3AD10D}
Key Found : HKLM\SOFTWARE\Classes\Record\{76552F88-640C-314D-82B6-0D8A740907F7}
Key Found : HKLM\SOFTWARE\Classes\Record\{05660A04-00F1-3A04-AB3B-BC1074B84D67}
Key Found : HKLM\SOFTWARE\Classes\Record\{903F9872-E87F-3B74-83B0-DBE10073B29D}
Key Found : HKLM\SOFTWARE\Classes\Record\{9558EEB4-CDA6-3778-B53B-98076F0A1E90}
Key Found : HKLM\SOFTWARE\Classes\Record\{B25AA9BA-FD52-3E5E-BFE3-9B106779DA6E}
Key Found : HKLM\SOFTWARE\Classes\Record\{C852CF9F-37DC-35AC-926A-7E6CFFF7C501}
Key Found : HKLM\SOFTWARE\Classes\Record\{C9777796-4378-3C90-B52D-7238FFFC2A5C}
Key Found : HKLM\SOFTWARE\Classes\Record\{DB1BC8B2-FDBF-30E7-BE1C-AFF9160059E6}
Key Found : HKLM\SOFTWARE\Classes\Record\{F3D5729C-7DEB-3850-A026-D0E323ECFEF5}
Key Found : HKLM\SOFTWARE\Classes\Record\{FEC70973-CB8B-351C-8047-CAE1274CE249}
Key Found : HKLM\SOFTWARE\Classes\SDP
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [UpdateAdmin]
Key Found : HKLM\SOFTWARE\56b24d99-679d-532c-8b5e-aa4694f64246
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3289075
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [deskCutv2@gmail.com]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [defsearchp@gmail.com]
Key Found : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{09CFDB88-F9F0-40BA-885E-F47A957D12E6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2B1B440F-A9DB-46E3-ADCF-AA6E08143FB8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2335267C-DBBA-4DD5-A9D0-C4DB8E6A75A4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2335267c-dbba-4dd5-a9d0-c4db8e6a75a4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D1611ACC-4B10-4B34-8CDE-0AE7B2A270A6}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{F8A4FC32-DDA3-4DD9-8C62-49F778FF630B}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{1FCDF527-B10C-481D-B214-B09EEA106124}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{1FCDF527-B10C-481D-B214-B09EEA106124}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2335267C-DBBA-4DD5-A9D0-C4DB8E6A75A4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2335267c-dbba-4dd5-a9d0-c4db8e6a75a4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2335267C-DBBA-4DD5-A9D0-C4DB8E6A75A4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2335267c-dbba-4dd5-a9d0-c4db8e6a75a4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2335267C-DBBA-4DD5-A9D0-C4DB8E6A75A4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2335267c-dbba-4dd5-a9d0-c4db8e6a75a4}
Key Found : HKU\.DEFAULT\Software\AskPartnerNetwork
Key Found : HKU\.DEFAULT\Software\AskToolbar
Key Found : HKU\.DEFAULT\Software\AVG Secure Search
Key Found : HKU\.DEFAULT\Software\AVG Security Toolbar
Key Found : HKU\.DEFAULT\Software\CToolbar
Key Found : HKU\.DEFAULT\Software\ImInstaller
Key Found : HKU\.DEFAULT\Software\WNLT
Key Found : HKU\.DEFAULT\Software\Elex-tech
Key Found : HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKU\.DEFAULT\Software\AppDataLow\AskBarDis
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\AskToolbar
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\AVG Security Toolbar
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AskPartnerNetwork
Key Found : HKCU\Software\HomeTab
Key Found : HKCU\Software\simplytech
Key Found : HKCU\Software\Simplytech\HomeTab
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\Reimage
Key Found : HKCU\Software\WajIEnhance
Key Found : HKCU\Software\TNT2
Key Found : HKCU\Software\WajIntEnhance
Key Found : HKCU\Software\SearchProtectWS
Key Found : HKCU\Software\Linkey
Key Found : HKCU\Software\DownloadAdmin
Key Found : HKCU\Software\Kromtech
Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Found : HKLM\SOFTWARE\AskPartnerNetwork
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\Iminent
Key Found : HKLM\SOFTWARE\SearchProtect
Key Found : HKLM\SOFTWARE\supWindowsMangerProtect
Key Found : HKLM\SOFTWARE\Uniblue
Key Found : HKLM\SOFTWARE\Reimage
Key Found : HKLM\SOFTWARE\Elex-tech
Key Found : HKLM\SOFTWARE\WajIntEnhance
Key Found : HKLM\SOFTWARE\omniboxesSoftware
Key Found : HKLM\SOFTWARE\SpeedBit
Key Found : HKLM\SOFTWARE\AIM Toolbar
Key Found : HKLM\SOFTWARE\FFPluginHp
Key Found : HKLM\SOFTWARE\searchult
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Express
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Record Page
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Record Page
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... earchTerms}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... earchTerms}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch] - hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... earchTerms}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... earchTerms}
Data Found : HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
Data Found : HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Found : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [] - "C:\Program Files\Internet Explorer\IEXPLORE.EXE" hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV
Data Found : HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command [] - "C:\Program Files\Google\Chrome\Application\chrome.exe" hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV
Data Found : HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command [] - "C:\Program Files\Mozilla Firefox\firefox.exe" hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV
Data Found : HKLM\SOFTWARE\Clients\StartMenuInternet\OperaStable\shell\open\command [] - "C:\Program Files\Opera\Launcher.exe" hxxp://www.omniboxes.com/?type=sc&ts=143962425 ... XX5MA5TLJV

***** [ Web browsers ] *****

[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js] [Preference] Found : user_pref("browser.startup.homepage", "hxxp://websearch.webisawsome.info/?pid=924&r=2014/02/21&hid=2522367243745516168&lg=EN&cc=SK&unqvl=49");
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("browser.search.defaultenginename", "omniboxes");
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("browser.search.defaulturl", "hxxp://websearch.webisawsome.info/?pid=924&r=2014/02/21&hid=2522367243745516168&lg=EN&cc=SK&unqvl=49&l=1&q=");
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.alias", "omniboxes");
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.iconURL", "hxxp://www.omniboxes.com/favicon.ico");
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.name", "omniboxes");
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("browser.search.searchengine.url", "hxxp://www.omniboxes.com/web/?type=ds&ts=14396 ... ={searchTe[...]
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("browser.search.selectedEngine", "omniboxes");
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("browser.startup.homepage", "hxxp://www.omniboxes.com/?type=hp&ts=143962425 ... XX5MA5TLJV");
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("extensions.quick_start.enable_search1", false);
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
[C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\prefs.js] [Preference] Found : user_pref("keyword.URL", "hxxp://websearch.webisawsome.info/?pid=924&r=2014/02/21&hid=2522367243745516168&lg=EN&cc=SK&unqvl=49&l=1&q=");
[C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : websearch
[C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search.conduit.com
[C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : askws

*************************

C:\AdwCleaner[S1].txt - [22312 bytes] - [18/08/2015 13:17:15]

########## EOF - C:\AdwCleaner[S1].txt - [22375 bytes] ##########

Re: notebook out....pomozte mi

Napsal: 18 srp 2015 13:36
od altrok
:arrow: Pokud HDD pouzivate jako externi (nebootuje se z neho), po pripojeni k jinemu PC byste mel byt schopny z nej data bez problemu vytahnout. Patrne Vasemu popisu problemu nerozumim.

:arrow: Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Re: notebook out....pomozte mi

Napsal: 18 srp 2015 14:22
od miratan
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:17-08-2015
Ran by MINO (administrator) on MINO-PC (18-08-2015 14:57:23)
Running from C:\STAHOVANIE
Loaded Profiles: MINO (Available Profiles: MINO & fbwuser1024)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
() C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
() C:\Program Files\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Symantec Corporation) C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Nero AG) C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(Syntek America Inc.) C:\Windows\System32\StkCSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
(ATK0100) C:\Program Files\ATK Hotkey\HControl.exe
() C:\Program Files\ATKOSD2\ATKOSD2.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
() C:\Program Files\ATK Hotkey\KBFiltr.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\ASScrPro.exe
(ASUSTeK Computer INC.) C:\Program Files\ASUS\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe
(Opera Software) C:\Program Files\Opera\31.0.1889.99\opera.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [JMB36X IDE Setup] => C:\Windows\JM\JMInsIDE.exe [36864 2006-10-30] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [857648 2007-03-01] (Synaptics, Inc.)
HKLM\...\Run: [ASUS Screen Saver Protector] => C:\Windows\ASScrPro.exe [33136 2008-09-21] ()
HKLM\...\Run: [ATKMEDIA] => C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [61440 2006-11-02] (ASUSTeK Computer INC.)
HKLM\...\Run: [ASUS Camera ScreenSaver] => C:\Windows\ASScrProlog.exe [37232 2008-09-21] ()
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll [2007-06-15] ()
ShellIconOverlayIdentifiers: [ADSMOverlayIcon1] -> {A8D448F4-0431-45AC-9F5E-E1B434AB2249} => C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll [2007-06-02] ()
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
BHO: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2009-06-12] (Sun Microsystems, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-12] (Sun Microsystems, Inc.)
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Winsock: Catalog5 01 C:\Windows\system32\mswsock.dll [223232 2009-10-06] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2009-07-08] (Společnost Microsoft)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{ACC154C7-2965-4120-B790-4492EA4DDE0D}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default
FF SearchEngineOrder.1: Yahoo!
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2009-06-12] (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-1876766861-4099627362-3959107545-1000: @tools.google.com/Google Update;version=3 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-12] (Google Inc.)
FF Plugin HKU\S-1-5-21-1876766861-4099627362-3959107545-1000: @tools.google.com/Google Update;version=9 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-12] (Google Inc.)
FF SearchPlugin: C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\Yahoo!.xml [2015-07-21]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-01-31]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\profiles\extensions\searchplugins [2013-11-22]
FF Extension: FTdownloader - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\profiles\extensions\ftdownloader@ftdownloader.com.xpi [2012-11-29]
FF Extension: Speed Dial [FVD] - New Tab Page, Sync... - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\pavel.sherbakov@gmail.com [2015-07-22]
FF Extension: TankTurners - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\tzeiqoszufi_@arfsecpfifdfw_k.net [2015-08-15]
FF Extension: WOT - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-22]
FF Extension: YouTube™ Anywhere Player - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{c9d31470-81c6-4e3e-9a37-46eb9237ed3a} [2015-07-21]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{5338b981-17bb-4eb1-a9c2-e552c52b86c3}.xpi [2015-08-15]
FF Extension: ImTranslator - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2014-01-24]
FF Extension: Adblock Plus - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-08-03]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-17]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-17]
FF HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\MINO\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\MINO\AppData\Roaming\IDM\idmmzcc5 [2015-07-20]
FF HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\MINO\AppData\Roaming\IDM\idmmzcc5
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\defsearchp@gmail.com [not found]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\deskCutv2@gmail.com [not found]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2014-05-17]

Chrome:
=======
CHR Profile: C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Magic Actions for YouTube™) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-07-21]
CHR Extension: (HD for YouTube™) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf [2015-07-21]
CHR Extension: (Record Page) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\bonbgacfkdakmlgpnkfmgiiggckmdhdd [2015-08-15]
CHR Extension: (Tampermonkey) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-07-21]
CHR Extension: (Digital Clock) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2013-09-20]
CHR Extension: (Avast Online Security) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-09-20]
CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2015-07-21]
CHR Extension: (Clock) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjocghlclkpgheifflemilcnblodjohg [2015-07-21]
CHR Extension: (Google Wallet) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (ImTranslator: Translator, Dictionary, TTS) - C:\Users\MINO\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2015-07-21]
CHR HKLM\...\Chrome\Extension: [gkjoindjjcmbdpbfppabdgflnkgbbcli] - <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - <no Path\update_url>

Opera:
=======
OPR Extension: (adblockforopera) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2013-12-09]
OPR Extension: (Record Page) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\bonbgacfkdakmlgpnkfmgiiggckmdhdd [2015-08-15]
OPR Extension: (Please enter your password) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\ccbdoklfbpcifppcfahmmpmbkfdjjccm [2013-12-09]
OPR Extension: (sailormax) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnbpedcoekjafichoehopgaaldogogch [2013-12-09]
OPR Extension: (weboftrust) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\eeokceolphhfjdfcibaiiopmekmcbedp [2013-12-04]
OPR Extension: (LML) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\hjjhcalkcaeagibemeeakbmmmaneedoh [2013-12-18]
OPR Extension: (LastPass) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2013-12-18]
OPR Extension: (Speeddial for Vevo.com) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibifcadphjdjdbkdgigdpnhfekekfgdo [2015-05-02]
OPR Extension: (Translate) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibnombjmjocaccigcefonnipcnlaeaed [2013-12-07]
OPR Extension: (mubaidr) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\lklibmbcgphmjobehnffhmioggnljmcl [2013-12-10]
OPR Extension: (Gantt) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\maeombkgfpjdnjkhohbjachnnmpbipol [2013-12-04]
OPR Extension: (Magic Actions for YouTube™) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\nlffnljnicbkfhnlomjhjlebndachaka [2013-12-09]
OPR Extension: (SaveFrom.net helper) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\npdpplbicnmpoigidfdjadamgfkilaak [2013-12-09]
OPR Extension: (Best Video Downloader 2) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\oaljndinbnpjfmcgphpnbpgodonlkfgo [2013-12-19]
OPR Extension: (tomillie) - C:\Users\MINO\AppData\Roaming\Opera Software\Opera Stable\Extensions\pcoocjajmgkjbnchononlgeaojaafcml [2013-12-26]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [73728 2007-05-18] () [File not signed]
R2 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-02-06] () [File not signed]
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-06-11] () [File not signed]
R2 Automatic LiveUpdate Scheduler; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [554352 2007-09-12] (Symantec Corporation)
R2 FreemakeUtilsService; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [74240 2011-10-06] (Freemake) [File not signed]
R2 HTCMonitorService; C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-04-02] (Nero AG)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [101528 2007-04-13] () [File not signed]
S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE [2999664 2007-09-12] (Symantec Corporation)
R2 LiveUpdate Notice Service; C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [583048 2008-01-29] (Symantec Corporation)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 StkSSrv; C:\Windows\System32\StkCSrv.exe [24576 2007-02-07] (Syntek America Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 AsDsm; C:\Windows\system32\Drivers\AsDsm.sys [29752 2007-07-24] (Windows (R) Codename Longhorn DDK provider)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [28048 2010-02-05] (CSR, plc)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-05-21] (Disc Soft Ltd)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2008-01-19] (Microsoft Corporation)
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [45568 2006-11-25] (Windows (R) Codename Longhorn DDK provider)
R0 JGOGO; C:\Windows\System32\DRIVERS\JGOGO.sys [6912 2006-02-07] (JMicron )
R0 JRAID; C:\Windows\System32\DRIVERS\jraid.sys [43648 2007-01-30] (JMicron Technology Corp.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [5632 2007-01-24] ( )
S3 MSIRCOMM; C:\Windows\System32\DRIVERS\MSIRCOMM.sys [24064 2008-01-19] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
R2 npf; C:\Windows\System32\drivers\npf.sys [35088 2010-07-16] (CACE Technologies, Inc.)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
S3 se45bus; C:\Windows\System32\DRIVERS\se45bus.sys [61536 2006-11-30] (MCCI)
S3 se45mdfl; C:\Windows\System32\DRIVERS\se45mdfl.sys [9360 2006-11-30] (MCCI)
S3 se45mdm; C:\Windows\System32\DRIVERS\se45mdm.sys [97088 2006-11-30] (MCCI)
S3 se45mgmt; C:\Windows\System32\DRIVERS\se45mgmt.sys [88624 2006-11-30] (MCCI)
S3 se45nd5; C:\Windows\System32\DRIVERS\se45nd5.sys [18704 2006-11-30] (MCCI)
S3 se45obex; C:\Windows\System32\DRIVERS\se45obex.sys [86432 2006-11-30] (MCCI)
S3 se45unic; C:\Windows\System32\DRIVERS\se45unic.sys [90800 2006-11-30] (MCCI)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-05-13] (Duplex Secure Ltd.)
R3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [1245056 2007-02-13] (Syntek)
S3 tapwp01; C:\Windows\System32\DRIVERS\tapwp01.sys [35288 2014-12-11] (The OpenVPN Project)
U3 a81191dh; C:\Windows\system32\Drivers\a81191dh.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
S3 cpuz134; \??\C:\Users\MINO\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]
S3 HTCAND32; System32\Drivers\ANDROIDUSB.sys [X]
S3 lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-18 14:56 - 2015-08-18 14:56 - 00000555 _____ C:\Users\MINO\Desktop\FRST – zástupce.lnk
2015-08-18 14:40 - 2015-08-18 14:40 - 00001148 _____ C:\AdwCleaner[C2].txt
2015-08-18 14:37 - 2015-08-18 14:39 - 00000965 _____ C:\AdwCleaner[S2].txt
2015-08-18 13:23 - 2015-08-18 13:24 - 00019161 _____ C:\AdwCleaner[C1].txt
2015-08-18 13:17 - 2015-08-18 13:23 - 00000000 ____D C:\AdwCleaner
2015-08-18 13:17 - 2015-08-18 13:21 - 00022444 _____ C:\AdwCleaner[S1].txt
2015-08-18 13:15 - 2015-08-18 13:15 - 00000619 _____ C:\Users\MINO\Desktop\adwcleaner_5.001 – zástupce.lnk
2015-08-18 10:11 - 2015-08-18 10:11 - 00000555 _____ C:\Users\MINO\Desktop\RSIT – zástupce.lnk
2015-08-17 12:53 - 2015-08-18 14:57 - 00000000 ____D C:\FRST
2015-08-17 10:05 - 2015-08-17 10:08 - 00000000 ____D C:\rsit
2015-08-15 16:29 - 2015-08-15 16:30 - 00772016 _____ (Reimage®) C:\Users\MINO\Downloads\ReimageRepair.exe
2015-08-15 15:58 - 2015-08-15 15:58 - 00001890 _____ C:\Users\Public\Desktop\Reimage Express.lnk
2015-08-15 14:22 - 2015-08-15 14:22 - 00278528 _____ C:\Users\MINO\Desktop\Nový Microsoft Office Access 2007 Databáze.accdb
2015-08-15 12:32 - 2015-08-15 12:32 - 00000000 ____D C:\Users\fbwuser1024\AppData\Roaming\Opera Software
2015-08-15 09:46 - 2015-08-15 09:46 - 00000000 ____D C:\Users\MINO\Documents\Optimizer Pro
2015-08-15 09:38 - 2015-08-15 09:39 - 00000000 ____D C:\ProgramData\vWinManProv
2015-08-15 09:38 - 2015-08-15 09:38 - 00000000 _____ C:\Windows\prleth.sys
2015-08-15 09:38 - 2015-08-15 09:38 - 00000000 _____ C:\Windows\hgfs.sys
2015-08-15 09:37 - 2015-08-15 09:35 - 00009519 _____ C:\Users\MINO\Downloads\optimizerpro_eula628.mht
2015-08-15 09:36 - 2015-08-15 09:35 - 00032844 _____ C:\Users\MINO\Downloads\healthcaregovtool_490.mht
2015-08-15 09:36 - 2015-08-15 09:35 - 00024476 _____ C:\Users\MINO\Downloads\Update_Admin_628_1.mht
2015-08-15 09:36 - 2015-08-15 09:35 - 00009981 _____ C:\Users\MINO\Downloads\omniboxes_628.mht
2015-08-15 09:35 - 2015-08-15 09:35 - 00061494 _____ C:\Users\MINO\Downloads\codecpacks_satellitesite.mht
2015-08-13 23:59 - 2015-08-13 23:59 - 00000000 ____D C:\ProgramData\SeekerInstance
2015-08-13 18:58 - 2015-08-13 18:58 - 00000000 ____D C:\ProgramData\BorderlineRunner
2015-08-13 18:57 - 2015-08-13 18:57 - 00000000 ____D C:\ProgramData\IncrementInstance
2015-08-13 18:57 - 2015-08-13 18:57 - 00000000 ____D C:\ProgramData\IncludeFoobar
2015-08-13 18:56 - 2015-08-13 18:56 - 00000000 ____D C:\ProgramData\TampaMaker
2015-08-12 07:05 - 2015-07-21 22:55 - 01206192 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-12 07:05 - 2015-07-21 18:07 - 03605440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-08-12 07:05 - 2015-07-21 18:07 - 03553216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-12 07:05 - 2015-07-21 18:07 - 00140224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2015-08-12 07:05 - 2015-07-21 18:07 - 00056256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-12 07:05 - 2015-07-21 18:03 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2015-08-12 07:05 - 2015-07-21 18:03 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-12 07:05 - 2015-07-21 18:03 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-12 07:01 - 2015-07-31 21:27 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 06:58 - 2015-07-09 16:20 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-08-12 06:56 - 2015-07-10 21:37 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-12 06:51 - 2015-07-11 17:56 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-12 06:11 - 2015-07-18 18:03 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-12 06:09 - 2015-07-10 21:37 - 01402368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-12 06:09 - 2015-07-10 21:37 - 01253376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-12 06:04 - 2015-08-01 00:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-12 06:04 - 2015-07-31 23:46 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-08-12 06:04 - 2015-07-31 23:46 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-08-12 06:04 - 2015-07-31 23:46 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-08-12 06:04 - 2015-07-31 23:46 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-08-12 06:04 - 2015-07-31 22:41 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-12 06:04 - 2015-07-31 22:40 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-08-12 06:04 - 2015-07-31 22:35 - 00682496 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-08-12 06:04 - 2015-07-31 22:33 - 02066944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-12 06:04 - 2015-07-31 22:33 - 01072640 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-12 06:04 - 2015-07-31 22:33 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-12 06:04 - 2015-07-31 22:33 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-12 06:02 - 2015-07-01 17:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-12 06:01 - 2015-07-09 16:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-12 06:01 - 2015-07-09 16:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-12 02:40 - 2015-07-22 22:54 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-12 02:40 - 2015-07-22 22:51 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-12 02:40 - 2015-07-22 22:47 - 09751040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-12 02:40 - 2015-07-22 22:46 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-12 02:40 - 2015-07-22 22:46 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-12 02:40 - 2015-07-22 22:45 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-12 02:40 - 2015-07-22 22:45 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-08-12 02:40 - 2015-07-22 22:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-12 02:40 - 2015-07-22 22:44 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-12 02:40 - 2015-07-22 22:43 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-08-12 02:40 - 2015-07-22 22:43 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-12 02:40 - 2015-07-22 22:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-12 02:40 - 2015-07-22 22:43 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-12 02:40 - 2015-07-22 22:43 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-08-12 02:40 - 2015-07-22 22:43 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-08-12 02:40 - 2015-07-22 22:43 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-08-12 02:40 - 2015-07-22 22:42 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-12 02:39 - 2015-07-22 22:54 - 12386816 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-05 08:55 - 2015-08-05 08:55 - 00000565 _____ C:\Users\MINO\Desktop\KMPlayer.lnk
2015-08-05 08:55 - 2015-08-05 08:55 - 00000000 ____D C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2015-08-05 08:55 - 2015-08-05 08:55 - 00000000 ____D C:\KMPlayer
2015-08-05 00:03 - 2015-08-05 00:03 - 00877152 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-08-05 00:03 - 2015-08-05 00:03 - 00538208 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2015-07-29 08:58 - 2015-07-29 08:58 - 00000000 ____D C:\Users\MINO\AppData\Roaming\MPC-HC
2015-07-29 08:57 - 2015-07-29 08:57 - 00001667 _____ C:\Users\MINO\Desktop\MPC-HC.lnk
2015-07-29 08:57 - 2015-07-29 08:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC
2015-07-29 08:57 - 2015-07-29 08:57 - 00000000 ____D C:\Program Files\MPC-HC
2015-07-23 14:00 - 2015-07-23 14:02 - 00000000 ____D C:\Users\MINO\Documents\Zálohy
2015-07-23 12:06 - 2014-12-11 21:53 - 00035288 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tapwp01.sys
2015-07-23 11:56 - 2015-07-23 12:52 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-07-22 16:23 - 2015-08-18 13:24 - 00001082 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-22 16:23 - 2015-08-18 13:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-20 11:38 - 2015-07-20 11:38 - 00000000 ____D C:\ProgramData\IDM
2015-07-20 11:37 - 2015-07-20 12:38 - 00000000 ____D C:\Program Files\Internet Download Manager
2015-07-20 11:36 - 2015-07-20 11:36 - 00000000 ____D C:\Users\MINO\AppData\Roaming\Tonec Inc

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-18 14:57 - 2008-09-21 15:33 - 00000000 ____D C:\STAHOVANIE
2015-08-18 14:47 - 2013-12-13 13:58 - 00000000 ____D C:\Users\MINO\AppData\Roaming\uTorrent
2015-08-18 14:46 - 2015-07-16 17:01 - 01378977 _____ C:\Windows\WindowsUpdate.log
2015-08-18 14:43 - 2013-09-15 15:24 - 00000000 ____D C:\Users\MINO\AppData\Local\HTC MediaHub
2015-08-18 14:42 - 2013-10-24 08:28 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-18 14:42 - 2008-09-21 05:10 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2015-08-18 14:42 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-18 14:42 - 2006-11-02 14:47 - 00003696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-18 14:42 - 2006-11-02 14:47 - 00003696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-18 14:40 - 2007-04-21 12:36 - 00008524 _____ C:\Windows\bthservsdp.dat
2015-08-18 14:40 - 2006-11-02 15:01 - 00032560 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-08-18 14:38 - 2013-09-21 06:25 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-18 14:33 - 2014-09-26 11:00 - 00000958 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job
2015-08-18 14:31 - 2013-10-24 08:28 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-18 13:59 - 2014-05-07 11:59 - 00000000 ____D C:\Program Files\TuneUp Utilities 2012
2015-08-18 13:24 - 2014-10-16 04:59 - 00000798 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 31.lnk
2015-08-18 13:24 - 2014-05-17 12:16 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-18 13:24 - 2013-12-04 15:58 - 00000786 _____ C:\Users\Public\Desktop\Opera 31.lnk
2015-08-18 13:24 - 2013-04-23 18:40 - 00000000 ____D C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-18 13:24 - 2013-01-22 11:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Verdict Free
2015-08-18 13:24 - 2013-01-20 11:36 - 00000865 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-18 13:24 - 2013-01-20 11:36 - 00000853 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-08-18 13:24 - 2012-07-20 18:13 - 00001047 _____ C:\Users\MINO\Desktop\Fun and Bullets.lnk
2015-08-18 13:24 - 2009-08-20 17:38 - 00000966 _____ C:\Users\MINO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-18 13:24 - 2008-09-21 12:19 - 00000936 _____ C:\Users\MINO\Desktop\Internet Explorer.lnk
2015-08-18 10:14 - 2008-09-23 11:21 - 00000000 ____D C:\Program Files\Trend Micro
2015-08-18 09:48 - 2014-07-12 20:36 - 00000000 ____D C:\Users\MINO\AppData\Roaming\vlc
2015-08-18 09:48 - 2014-02-21 10:44 - 00000000 ____D C:\Users\fbwuserAC33
2015-08-18 09:48 - 2014-02-21 10:44 - 00000000 ____D C:\Users\fbwuser1024
2015-08-18 09:48 - 2008-09-21 13:02 - 00000000 ____D C:\Users\MINO\AppData\Roaming\GHISLER
2015-08-18 09:48 - 2008-09-21 05:04 - 00000000 ____D C:\ProgramData\P4G
2015-08-18 09:48 - 2008-09-20 20:39 - 00000000 ____D C:\Users\MINO
2015-08-18 09:48 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2015-08-18 09:48 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2015-08-15 16:04 - 2011-06-05 15:33 - 00000000 ____D C:\temp
2015-08-15 12:32 - 2014-02-21 10:44 - 00000000 ____D C:\Users\fbwuser1024\AppData\Local\Google
2015-08-15 10:35 - 2013-04-22 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-08-15 10:30 - 2010-02-07 09:32 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-08-15 07:33 - 2014-09-26 11:00 - 00000906 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job
2015-08-13 17:52 - 2010-08-06 08:00 - 00000000 ____D C:\Users\MINO\AppData\Roaming\dvdcss
2015-08-13 12:50 - 2006-11-02 12:33 - 01539772 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-12 08:38 - 2012-12-20 09:46 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-08-12 08:38 - 2012-12-20 09:46 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-08-12 08:32 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-08-12 08:08 - 2013-04-19 05:34 - 00400752 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-12 08:04 - 2012-12-21 18:31 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-12 08:03 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2015-08-12 07:08 - 2008-11-01 11:28 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-12 07:05 - 2012-12-21 18:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 06:49 - 2013-07-12 07:52 - 00000000 ____D C:\Windows\system32\MRT
2015-08-12 06:15 - 2006-11-02 12:24 - 129304528 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-08-07 15:28 - 2015-05-30 14:01 - 00000370 _____ C:\Users\MINO\Desktop\Router Settings.txt
2015-08-06 06:03 - 2014-07-12 20:35 - 00000866 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-08-06 05:44 - 2009-10-07 08:13 - 00000000 ____D C:\Program Files\Opera
2015-08-05 13:06 - 2009-02-23 17:44 - 00000000 ____D C:\Users\MINO\Documents\The KMPlayer
2015-07-31 04:34 - 2009-05-31 10:22 - 00000000 ____D C:\Windows\Minidump
2015-07-23 17:13 - 2009-10-15 06:19 - 00000000 ____D C:\Program Files\Ashampoo
2015-07-23 17:09 - 2009-10-15 06:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-07-23 13:45 - 2009-09-23 19:45 - 00000000 ____D C:\ProgramData\ashampoo
2015-07-23 12:52 - 2013-01-20 11:36 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-07-22 16:22 - 2009-05-10 11:06 - 00000000 ____D C:\Program Files\Google
2015-07-21 05:47 - 2010-05-05 15:03 - 00000000 ____D C:\Users\MINO\AppData\Roaming\DMCache
2015-07-20 11:46 - 2010-05-05 15:03 - 00000000 ____D C:\Users\MINO\AppData\Roaming\IDM

==================== Files in the root of some directories =======

2010-05-26 14:12 - 2013-02-09 11:34 - 0000103 _____ () C:\Users\MINO\AppData\Roaming\default.pls
2013-05-19 14:12 - 2013-05-19 14:21 - 0087608 _____ () C:\Users\MINO\AppData\Roaming\inst.exe
2009-09-11 15:47 - 2013-05-19 14:21 - 0007887 _____ () C:\Users\MINO\AppData\Roaming\pcouffin.cat
2009-09-11 15:47 - 2013-05-19 14:21 - 0001144 _____ () C:\Users\MINO\AppData\Roaming\pcouffin.inf
2009-09-11 15:47 - 2013-05-19 14:21 - 0047360 _____ (VSO Software) C:\Users\MINO\AppData\Roaming\pcouffin.sys
2010-06-25 21:52 - 2014-03-22 19:17 - 0000680 _____ () C:\Users\MINO\AppData\Local\d3d9caps.dat
2009-08-01 16:05 - 2009-08-01 16:05 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2009-12-02 19:41 - 2009-12-02 19:46 - 0008350 _____ () C:\ProgramData\LUUnInstall.LiveUpdate
2010-04-10 11:02 - 2010-04-10 11:02 - 0000108 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\MINO\AppData\Local\temp\sqlite3.dll
C:\Users\MINO\AppData\Local\temp\{8F01B9F6-1EFC-4B13-9BF8-59BA602AE9A1}.dll
C:\Users\MINO\AppData\Local\temp\{98B70CD9-490D-46C9-A3D4-C88A77EC8BCA}.dll
C:\Users\MINO\AppData\Local\temp\{EF0E3BE4-DEB8-4A8F-B5E7-D990F8A3EC68}.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-18 14:48

==================== End of log ============================

Re: notebook out....pomozte mi

Napsal: 18 srp 2015 14:24
od miratan
Additional scan result of Farbar Recovery Scan Tool (x86) Version:17-08-2015
Ran by MINO (2015-08-18 15:00:51)
Running from C:\STAHOVANIE
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1876766861-4099627362-3959107545-500 - Administrator - Disabled)
fbwuser1024 (S-1-5-21-1876766861-4099627362-3959107545-1360 - Limited - Enabled) => C:\Users\fbwuser1024
Guest (S-1-5-21-1876766861-4099627362-3959107545-501 - Limited - Enabled)
MINO (S-1-5-21-1876766861-4099627362-3959107545-1000 - Administrator - Enabled) => C:\Users\MINO

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

_fm 0.0.5.2 (HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\{6DBFF1BC-C61E-49DD-832C-401BCCC39907}}_is1) (Version: 0.0.5.2 - František Szijartó)
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
A-Ball (HKLM\...\A-Ball_is1) (Version: 1.0 - Media Contact LLC)
Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Photoshop CS (HKLM\...\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}) (Version: CS - Adobe Systems, Inc.)
Adobe Reader 8 - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-A81200000003}) (Version: 8.1.2 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Mobile Device Support (HKLM\...\{E1DB0812-2D60-43DB-AE09-6C7027D93B28}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio 6 FREE (HKLM\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.7.6 - ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
ASUS Data Security Manager (HKLM\...\{1C8521E5-5A7B-4A4E-A9CD-AD53116EAEE0}) (Version: 1.00.0005 - ASUS)
ASUS InstantFun (HKLM\...\{57B15AD4-8C9D-4164-82BB-E33D8644E757}) (Version: 1.0.0014 - ASUS)
ASUS Live Update (HKLM\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.3 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM\...\{C0FC1C14-4824-4A73-87A6-9E888C9C3102}) (Version: 1.02.16 - ASUSTeK)
Asus_Camera_ScreenSaver (HKLM\...\Asus_Camera_ScreenSaver) (Version: 2.0.0006 - ASUS)
Atheros Driver Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.1 - Atheros)
ATK Generic Function Service (HKLM\...\{D3D54F3E-C5C3-443D-978F-87A72E5616E8}) (Version: 1.00.0007 - ATK)
ATK Hotkey (HKLM\...\{3912D529-02BC-4CA8-B5ED-0D0C20EB6003}) (Version: 1.00.0012 - ATK)
ATK Media (HKLM\...\{139B0FFA-187E-4BA1-BCA6-6B56B2B6AB8C}) (Version: - )
ATKOSD2 (HKLM\...\{5C1DB4ED-E9B4-402D-BB14-D75D97D6C1A6}) (Version: 6.64.1.4 - ATK)
Atomový míč 2 1.0 (HKLM\...\{Atomovy mic 2}_is1) (Version: - Špidla Data Processing, s.r.o.)
Bing Bar (HKLM\...\{449CE12D-E2C7-4B97-B19E-55D163EA9435}) (Version: 7.0.619.0 - Microsoft Corporation)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BorderlineRunner (HKLM\...\{1146AC44-2F03-4431-B4FD-889BC837521F}{e77d1094}) (Version: - Software Publisher)
Canon MP Navigator EX 1.0 (HKLM\...\MP Navigator EX 1.0) (Version: - )
Canon MP210 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series) (Version: - )
ccc-core-static (Version: 2007.0704.2230.38368 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
DVD Shrink 3.2 (HKLM\...\DVD Shrink_is1) (Version: - DVD Shrink)
FormatFactory 2.20 (HKLM\...\FormatFactory) (Version: 2.20 - Free Time)
Fun and Bullets (HKLM\...\Fun and Bullets_is1) (Version: - FreeGamePick.com)
Google Drive (HKLM\...\{12ADFB82-D5A3-43E4-B2F4-FCD9B690315B}) (Version: 1.24.9931.5480 - Google, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Chrome (HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden
Google Updater (HKLM\...\Google Updater) (Version: 2.4.1536.6592 - Google Inc.)
HD Tune 2.55 (HKLM\...\HD Tune_is1) (Version: - EFD Software)
HTC Driver Installer (HKLM\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
HTC Sync Manager (HKLM\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.46.0 - HTC)
iCloud (HKLM\...\{79BD66B2-4DAE-4C3B-B08E-DC72E507C163}) (Version: 2.1.3.25 - Apple Inc.)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IncludeFoobar (HKLM\...\{1146AC44-2F03-4431-B4FD-889BC837521F}{fafd12d7}) (Version: - Software Publisher)
IncrementInstance (HKLM\...\{1146AC44-2F03-4431-B4FD-889BC837521F}{b2902a13}) (Version: - Software Publisher)
IPTInstaller (HKLM\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.35 - Irfan Skiljan)
iTunes (HKLM\...\{CE1F04C7-79BC-4219-BE6A-BA490224D4B5}) (Version: 12.1.2.27 - Apple Inc.)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.510 - Oracle)
Java(TM) 6 Update 13 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216013FF}) (Version: 6.0.130 - Sun Microsystems, Inc.)
Java(TM) 6 Update 7 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160070}) (Version: 1.6.0.70 - Sun Microsystems, Inc.)
JMB36X Raid Configurer (HKLM\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMICRON Technology Corp.)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 11.2.8 Standard (HKLM\...\KLiteCodecPack_is1) (Version: 11.2.8 - )
KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 3.9.1.138 - PandoraTV)
LifeFrame2 (HKLM\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 2.0.15 - ASUS)
LiveUpdate 3.2 (Symantec Corporation) (HKLM\...\LiveUpdate) (Version: 3.2.0.68 - Symantec Corporation)
LiveUpdate Notice (Symantec Corporation) (HKLM\...\{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}) (Version: 1.4.5 - Symantec Corporation)
Medal of Honor Allied Assault (HKLM\...\Medal of Honor Allied Assault_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm)
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM\...\{95140000-007A-0405-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Motorola SM56 Speakerphone Modem (HKLM\...\SMSERIAL) (Version: 6.12.25.05 - Motorola Inc)
Mozilla Firefox 39.0 (x86 cs) (HKLM\...\Mozilla Firefox 39.0 (x86 cs)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 39.0 - Mozilla)
Mp3tag v2.66 (HKLM\...\Mp3tag) (Version: v2.66 - Florian Heidenreich)
MPC-HC 1.7.8 (HKLM\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.8 - MPC-HC Team)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 8 (HKLM\...\{6D45EF03-E8EE-4355-81C3-F918CBCF1029}) (Version: 8.3.309 - Nero AG)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Opera Stable 31.0.1889.99 (HKLM\...\Opera 31.0.1889.99) (Version: 31.0.1889.99 - Opera Software)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
P4P (HKLM\...\{FC3D290D-79BE-44B7-ABF9-FDD110925930}) (Version: 1.0.0.15 - P4P)
PDF24 Creator (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PIXMA Extended Survey Program (HKLM\...\CANONIJPLM100) (Version: - )
Podpora aplikací Apple (32bitová) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Power4Gear eXtreme (HKLM\...\{8CFEBE9C-F29F-4C49-80E0-7106970F8734}) (Version: 1.00.0012 - ATK)
ReactorSubs (HKLM\...\{1146AC44-2F03-4431-B4FD-889BC837521F}{1daead5e}) (Version: - Software Publisher)
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5374 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MP210 series (HKLM\...\Registrace uživatele zařízení Canon MP210 series) (Version: - )
Remote Controller (HKLM\...\{2B802EBE-CDAD-477C-9AD4-069615D377EB}) (Version: 1.00.000 - ITE)
Return To Castle Wolfenstein verze 1.0 (HKLM\...\{F4C38E8A-810B-4FE5-B87F-9E87CEAFF673}_is1) (Version: 1.0 - )
Revo Uninstaller 1.91 (HKLM\...\Revo Uninstaller) (Version: 1.91 - VS Revo Group)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 (HKLM\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.51.01 - )
ScanSoft OmniPage SE 4 (HKLM\...\{DEE88727-779B-47A9-ACEF-F87CA5F92A65}) (Version: 15.2.0020 - Nuance Communications, Inc.)
ScaraBall (HKLM\...\ScaraBall_is1) (Version: 1.0 - Media Contact LLC)
SeekerInstance (HKLM\...\{1146AC44-2F03-4431-B4FD-889BC837521F}{d7fd6783}) (Version: - Software Publisher)
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Slovník Verdict Free (a internetový překladač) (HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Verdict Free) (Version: - )
Sony Mobile Update Engine (HKLM\...\Update Engine) (Version: 2.14.13.201409122125 - Sony Mobile Communications AB)
Sony PC Companion 2.10.259 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.259 - Sony)
SpeedConnect Connection Tester (HKLM\...\SpeedConnect Connection Tester_is1) (Version: - CBS Software)
Subtitle Workshop 2.51 (HKLM\...\SubtitleWorkshop) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 9.1.19.0 - Synaptics)
TampaMaker (HKLM\...\{1146AC44-2F03-4431-B4FD-889BC837521F}{698b30d6}) (Version: - Software Publisher)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.50a - Ghisler Software GmbH)
TuneUp Utilities Language Pack (en-US) (Version: 12.0.2020.22 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (en-US) (Version: 9.0.6020.6 - TuneUp Software) Hidden
Ultra Video Joiner 5.2.1025 (HKLM\...\Ultra Video Joiner_is1) (Version: - Aone Software)
UmmyVideoDownloader 1.2.0.6 (HKLM\...\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1) (Version: - )
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
UpdateAdmin (HKLM\...\{8F1CD30B-3A84-4B95-BFA4-CC0F885B8463}) (Version: 2.0.1999 - DownloadAdmin) <==== ATTENTION
USB2.0 1.3M WebCam (HKLM\...\USB2.0 1.3M WebCam) (Version: - )
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Vista Codec Package (HKLM\...\{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}) (Version: 4.5.1 - )
VistaFeaturePack (HKLM\...\InstallShield_{D7E04009-B191-4E9D-9D2D-1BBE57BD8A42}) (Version: 1.03.0000 - CSR)
VistaFeaturePack (Version: 1.03.0000 - CSR) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VSO ConvertXToDVD (HKLM\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.33 - VSO-Software SARL)
VSO Downloader 2.9.14.7 (HKLM\...\{DB70FB55-1515-4C75-95C8-FFBD5FE041F8}_is1) (Version: 2.9.14.7 - VSO Software)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinFlash (HKLM\...\{DE10AB76-4756-4913-BE25-55D1C1051F9A}) (Version: - )
WinPcap 4.1.2 (HKLM\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
Wireless Console 2 (HKLM\...\{83F73CB1-7705-49D1-9852-84D839CA2A45}) (Version: 2.0.8 - ATK)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\MINO\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\MINO\AppData\Local\Google\Chrome\Application\44.0.2403.155\delegate_execute.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{6d05bf60-3eaf-4a97-87c5-10cce505435b}\localserver32 -> C:\Users\MINO\AppData\Local\Temp\{9c0ba3c1-2b67-45eb-bf69-bed9658d28d2}\IDriver.NonElevated.exe (InstallShield Software Corporation)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\MINO\AppData\Local\Google\Update\1.3.28.1\psuser.dll (Google Inc.)

==================== Restore Points =========================

15-08-2015 10:15:48
15-08-2015 16:23:24 Reimage Express Restore Point
15-08-2015 16:45:47 Reimage Express Restore Point
15-08-2015 16:49:34 Revo Uninstaller's restore point - Reimage Repair
15-08-2015 16:53:04 Revo Uninstaller's restore point - UpdateAdmin
15-08-2015 16:55:38 Revo Uninstaller's restore point - Reimage Express
16-08-2015 05:30:31 Windows Defender Checkpoint
18-08-2015 08:36:29 Operace obnovení
18-08-2015 08:53:14 Operace obnovení
18-08-2015 08:53:46 Windows Update
18-08-2015 09:15:43 Windows Update
18-08-2015 09:16:03 Operace obnovení
18-08-2015 09:32:50 Windows Update
18-08-2015 09:42:17 Operace obnovení
18-08-2015 10:15:18 Windows Update
18-08-2015 12:23:13 Revo Uninstaller's restore point - Seznam Software
18-08-2015 12:31:15 Revo Uninstaller's restore point - TuneUp Utilities 2012
18-08-2015 12:41:25 Odebráno: TuneUp Utilities 2012

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 12:23 - 2014-05-07 11:55 - 00000605 ___RA C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
਍ㄠ㜲〮〮ㄮ†敳畣敲琮湵ⵥ灵挮浯਍ㄠ㜲〮〮ㄮ†睷⹷畴敮甭⹰潣൭ ㈱⸷⸰⸰‱眠睷漮摲牥琮湵ⵥ灵挮浯਍ㄠ㜲〮〮ㄮ†睷⹷畴敮甭⹰潣⽭牯敤൲ ㈱⸷⸰⸰‱眠睷爮来獩整瑲湵略⹰潣൭ഊ ㈱⸷⸰⸰‱猠捥牵⹥畴敮甭⹰潣൭ ㈱⸷⸰⸰‱眠睷琮湵ⵥ灵挮浯਍ㄠ㜲〮〮ㄮ†睷⹷牯敤⹲畴敮甭⹰潣൭ ㈱⸷⸰⸰‱眠睷琮湵ⵥ灵挮浯漯摲牥਍ㄠ㜲〮〮ㄮ†睷⹷敲楧瑳牥畴敮灵挮浯਍਍ㄠ㜲〮〮ㄮ†敳畣敲琮湵ⵥ灵挮浯਍ㄠ㜲〮〮ㄮ†睷⹷畴敮甭⹰潣൭ ㈱⸷⸰⸰‱眠睷漮摲牥琮湵ⵥ灵挮浯਍ㄠ㜲〮〮ㄮ†睷⹷畴敮甭⹰潣⽭牯敤൲ ㈱⸷⸰⸰‱眠睷爮来獩整瑲湵略⹰潣൭

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02507602-18E0-4852-8D8A-1830F7335C7E} - System32\Tasks\{8D895E8D-6DD7-4395-B8BF-9867989A2455} => pcalua.exe -a D:\JNP.exe -d D:\
Task: {0C3AF200-FADC-49E5-880E-DEE192C8B79A} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [2008-01-19] (Společnost Microsoft)
Task: {0FD603F6-F23A-403A-9CDD-01E7E8622BB2} - System32\Tasks\{6CBEBB61-8BB1-421E-9368-41DEE263B11C} => pcalua.exe -a C:\STAHOVANIE\FreeRapid-0.9\frd.exe -d C:\STAHOVANIE\FreeRapid-0.9
Task: {1264198C-3800-47DD-AF8E-F00830BF956F} - \Scheduled Update for Ask Toolbar -> No File <==== ATTENTION
Task: {17840404-F618-419A-AB5E-DE938BC8B55A} - \ASP -> No File <==== ATTENTION
Task: {18A3B3A5-8EF0-4920-BDA0-371B21329396} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core => C:\Users\MINO\AppData\Local\Google\Update\GoogleUpdate.exe [2013-05-22] (Google Inc.)
Task: {1990E78D-4699-42AE-9DD1-04AF0CAE1056} - System32\Tasks\Opera scheduled Autoupdate 1386165518 => C:\Program Files\Opera\launcher.exe [2015-07-30] (Opera Software)
Task: {1EC2ACC3-AFB3-471A-8D6E-EC1DA091CCCB} - System32\Tasks\InstallShield Software-Aktualisierungsdienst => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2005-02-16] (InstallShield Software Corporation)
Task: {2053E75B-BE4C-47EC-8568-769FEF3A21FE} - System32\Tasks\{C7053FEF-374C-43FC-B57D-F0785DB3AA70} => pcalua.exe -a C:\PROGRA~1\WELLGA~1\UNWISE.EXE -c C:\PROGRA~1\WELLGA~1\INSTALL.LOG
Task: {54553A94-DA59-4FA4-80B3-0952B4764676} - System32\Tasks\task82066431 => C:\Users\MINO\AppData\Local\Temp\WinProcess.exe <==== ATTENTION
Task: {547EA78A-EA64-444F-B3CD-CC152A1D672F} - \BrowserProtect -> No File <==== ATTENTION
Task: {56805546-E628-4DDB-9508-0C446E0CDD66} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files\TuneUp Utilities 2012\OneClick.exe
Task: {60080681-7242-4798-B021-37B48E5163EB} - System32\Tasks\{BBEE0F93-07F1-46B4-9893-9CA21C1C9ED1} => pcalua.exe -a C:\Windows\system32\ISUSPM.cpl -c Program Updates
Task: {617A2B65-C963-41DC-87F8-6484FC416EB0} - System32\Tasks\ScanSoft Background Update => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25] (Nuance Communications, Inc.)
Task: {66B67C20-2F33-463A-8C23-977273627A09} - System32\Tasks\{90294ACF-33E1-4439-8E59-6A31B8CEE4F8} => pcalua.exe -a "C:\free rapid\FreeRapid-0.82\frd.exe" -d "C:\free rapid\FreeRapid-0.82"
Task: {7B037153-936A-4D4B-B50C-E60661682AF0} - System32\Tasks\Divx online update program => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2014-01-10] ()
Task: {85C4CB7B-256B-404F-9576-C9AB82771660} - \LaunchApp -> No File <==== ATTENTION
Task: {8D5C5C58-82E5-4244-A234-DF5B0B2EF139} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {8ECE6CBA-EBBC-486C-A1ED-A5BB0CED758D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA => C:\Users\MINO\AppData\Local\Google\Update\GoogleUpdate.exe [2013-05-22] (Google Inc.)
Task: {A060468C-A418-41B2-B32D-6802747E9ECF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {A15B20BF-3358-427F-B8F7-9CD832C408FE} - System32\Tasks\InstallShield Software online update program => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2004-06-16] (InstallShield Software Corporation)
Task: {A43AB296-00C6-48D0-8629-B0821045890B} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-07-13] ()
Task: {A7F101C8-793E-4B82-817E-EF03C472E641} - System32\Tasks\{92628C4A-3411-48DE-A5D1-CF6D0B367407} => pcalua.exe -a C:\Windows\365dní\uninstall.exe -c "/U:C:\Program Files\365dníNET\Uninstall\uninstall.xml"
Task: {A8983774-3076-448F-8ED5-1FBBD0DE273D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.)
Task: {ADDE01C4-AD58-43A5-955E-6F0A676450F6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {B544C357-D4DA-4D31-B513-EAFA0A114CF5} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {B6BDB8F5-9821-4C03-ABFD-86DDF5474B05} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-10] (Google)
Task: {C6E10320-BAE8-449E-A247-2BF813CFA50F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-18] (Google Inc.)
Task: {CAE66377-1799-4CB4-B5C1-788BC8DE084F} - \YourFile DownloaderUpdate -> No File <==== ATTENTION
Task: {CD51C058-9298-451D-8EE6-413C2600D66D} - System32\Tasks\ASUS Live Update => C:\Program Files\ASUS\ASUS Live Update\ALU.exe [2007-07-20] ()
Task: {D4ACB15C-144B-4ED1-875D-FFC23987EFCD} - System32\Tasks\InstallShield Software update service => c:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2004-06-16] (InstallShield Software Corporation)
Task: {F5C3AA1D-ABAC-43FB-924C-0884535E15A4} - System32\Tasks\{2939A741-C53F-4A26-AD69-40B3369D129B} => pcalua.exe -a "H:\call of duty 1\The Call of Duty\Tecsetup.exe" -d "H:\call of duty 1\The Call of Duty"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job => C:\Users\MINO\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job => C:\Users\MINO\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2008-09-21 05:02 - 2007-05-18 11:31 - 00073728 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
2008-09-21 04:26 - 2007-02-06 03:13 - 00094208 _____ () C:\Program Files\ATK Hotkey\ASLDRSrv.exe
2008-09-21 05:03 - 2007-06-11 20:30 - 00094208 _____ () C:\Program Files\ATKGFNEX\GFNEXSrv.exe
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-27 12:32 - 2014-05-27 12:32 - 00031080 _____ () C:\Program Files\HTC\HTC Sync Manager\DbAccess.dll
2015-04-13 15:54 - 2015-04-13 15:54 - 00607376 _____ () C:\Program Files\HTC\HTC Sync Manager\sqlite3.dll
2014-05-27 12:33 - 2014-05-27 12:33 - 00059752 _____ () C:\Program Files\HTC\HTC Sync Manager\NAdvLog.dll
2014-05-27 12:32 - 2014-05-27 12:32 - 00036216 _____ () C:\Program Files\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-05-27 12:33 - 2014-05-27 12:33 - 00080248 _____ () C:\Program Files\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-05-27 12:34 - 2014-05-27 12:34 - 00129376 _____ () C:\Program Files\HTC\HTC Sync Manager\zlib1.dll
2014-05-27 12:35 - 2014-05-27 12:35 - 00223592 _____ () C:\Program Files\HTC\HTC Sync Manager\DevConnMon.dll
2012-12-07 18:27 - 2012-12-07 18:27 - 00167424 _____ () C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
2008-09-21 05:02 - 2007-06-15 19:28 - 00147456 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
2008-09-21 05:02 - 2007-06-02 02:08 - 00143360 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
2007-05-11 00:49 - 2007-05-11 00:49 - 00017024 _____ () C:\Program Files\Adobe\Reader 8.0\Reader\viewerps.dll
2008-09-21 05:02 - 2007-06-15 20:16 - 00331776 _____ () C:\Program Files\ASUS\ASUS Data Security Manager\AdsmendecExt.dll
2008-09-21 05:03 - 2007-03-10 01:16 - 00106496 _____ () C:\Program Files\ATKGFNEX\AGFNEX.dll
2014-05-22 17:29 - 2014-05-22 17:29 - 00043520 _____ () C:\Windows\system32\CmdLineExt03.dll
2015-04-13 15:55 - 2015-04-13 15:55 - 00821600 _____ () C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
2008-09-21 04:26 - 2004-05-28 03:13 - 00057344 _____ () C:\Program Files\ATK Hotkey\CMSSC.dll
2008-09-21 04:27 - 2007-01-18 04:26 - 07708672 _____ () C:\Program Files\ATKOSD2\ATKOSD2.exe
2008-09-21 04:48 - 2006-12-21 08:03 - 01036288 _____ () C:\Program Files\Wireless Console 2\wcourier.exe
2008-09-21 05:05 - 2007-01-16 23:08 - 00009216 _____ () C:\Program Files\ASUS\Splendid\GLCDdll.dll
2008-09-21 04:26 - 2006-12-19 02:26 - 02420736 _____ () C:\Program Files\ATK Hotkey\ATKOSD.exe
2008-09-21 05:09 - 2007-07-04 16:52 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2008-09-21 04:26 - 2007-04-17 22:39 - 00077824 _____ () C:\Program Files\ATK Hotkey\KBFiltr.exe
2008-09-21 05:04 - 2008-09-21 05:04 - 00033136 _____ () C:\Windows\ASScrPro.exe
2015-08-06 05:43 - 2015-08-06 05:43 - 58599032 _____ () C:\Program Files\Opera\31.0.1889.99\opera.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\$NtUninstallKB1750$:SummaryInformation
AlternateDataStreams: C:\ProgramData\TEMP:373E1720

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\123topsearch.com -> www.123topsearch.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\12w.net -> download-video.12w.net
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\132.com -> www.132.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\136136.net -> down.136136.net
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\163ns.com -> ert0003.e76.163ns.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\17-plus.com -> 17-plus.com
IE restricted site: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\171203.com -> 171203.com

There are 4784 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MINO\AppData\Roaming\IrfanView\IrfanView_Wallpaper.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [WMP-In-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMP-Out-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMP-Out-TCP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{E926E57D-011D-4F63-BCC5-FFCFDC28D091}] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{CE504808-152F-4073-8BB9-0F8E7C4D30C6}] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{AB3FBA72-52C3-4476-9A38-230DBE05659B}] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [TCP Query User{E6DBFC26-A4A0-4743-92B5-3C6E574E6310}C:\program files\java\jre7\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{ECCD293A-8947-4D4B-9EF9-3C9A24977CE9}C:\program files\java\jre7\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [{F0C4D65E-BE77-4816-9938-2D8DBD28F9B7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{84FD934E-8152-4E01-8059-829B52758C54}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [SLSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\slsvc.exe
FirewallRules: [SLSVC-In-TCP] => (Allow) %SystemRoot%\system32\slsvc.exe
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WMPNSS-WMP-Out-TCP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-Out-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-In-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-Out-TCP-NoScope-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-Out-UDP-NoScope-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMPNSS-WMP-In-UDP-NoScope-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{83348E00-50C9-436A-A865-01F7AD948C51}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D80F46F2-5499-4B9D-BE77-4491EA6F35E5}] => (Allow) LPort=2869
FirewallRules: [{A6624435-0993-47CA-AB83-A48C051B7477}] => (Allow) LPort=1900
FirewallRules: [{A9FBF0BF-D4B1-4C88-B179-AB0BE54D2139}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{287350AB-C6BC-4DEF-869D-AE0700A7CFDA}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe
FirewallRules: [UDP Query User{0E90ED29-3E6E-4ECB-A9A4-8BCCAAB26985}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{EBB25FD8-F8F4-4C76-8803-AC69ABF854C5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{368EA67E-D8B5-4AFF-AAA8-A16006371A37}C:\users\mino\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mino\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{0A6D6BDF-C218-41FB-8002-44B6E4F67EE7}C:\users\mino\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mino\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{FEE63237-4383-4661-B5DE-A86E4080A465}J:\call of duty 1\the call of duty\codmp.exe] => (Block) J:\call of duty 1\the call of duty\codmp.exe
FirewallRules: [UDP Query User{79B91224-3A65-426C-988F-6B62854A7438}J:\call of duty 1\the call of duty\codmp.exe] => (Block) J:\call of duty 1\the call of duty\codmp.exe
FirewallRules: [TCP Query User{337E6D18-E80F-419D-8278-143C001387D4}C:\program files\java\jre6\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre6\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{58E24E87-FBBF-481D-80D6-D966ABD40FA0}C:\program files\java\jre6\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre6\launch4j-tmp\frd.exe
FirewallRules: [{AFF11E85-C840-4AFB-BC22-17ECFABDD7DC}] => (Allow) C:\Program Files\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [TCP Query User{7D5ABC6D-BDA8-425C-897F-8954E1CCE633}C:\users\mino\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mino\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{4240D495-5B8C-4A06-B052-3BC7C87AFD21}C:\users\mino\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mino\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{1546EFC7-5175-4D28-AC72-5DEEE534A6C2}C:\program files\java\jre6\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre6\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{1DEC69F9-F29A-471B-BA08-501A6A157AAD}C:\program files\java\jre6\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre6\launch4j-tmp\frd.exe
FirewallRules: [{481CB079-C620-4F5B-BB18-104ABFA6295F}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{4846F107-7615-4512-AF35-E22D404E8575}] => (Allow) C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{D5460478-CD47-4CE9-A08E-CE53DECCA7BE}] => (Allow) C:\Program Files\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [TCP Query User{0D224E09-228B-4527-AAF9-098E75772D34}C:\program files\r.g. mechanics\medal of honor allied assault\moh_spearhead.exe] => (Block) C:\program files\r.g. mechanics\medal of honor allied assault\moh_spearhead.exe
FirewallRules: [UDP Query User{947C21DF-2390-404A-9B81-C9F8F089A2ED}C:\program files\r.g. mechanics\medal of honor allied assault\moh_spearhead.exe] => (Block) C:\program files\r.g. mechanics\medal of honor allied assault\moh_spearhead.exe
FirewallRules: [TCP Query User{1EE943B8-6048-4F60-A4C2-E1F26B6CE51C}C:\program files\r.g. mechanics\medal of honor allied assault\mohaa.exe] => (Block) C:\program files\r.g. mechanics\medal of honor allied assault\mohaa.exe
FirewallRules: [UDP Query User{11FBEE2C-15D1-44E8-A536-F552D544C1A1}C:\program files\r.g. mechanics\medal of honor allied assault\mohaa.exe] => (Block) C:\program files\r.g. mechanics\medal of honor allied assault\mohaa.exe
FirewallRules: [{6A508618-5918-4C4B-860B-21085E03558F}] => (Allow) C:\Program Files\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [TCP Query User{2DC90696-17EB-4BA7-B27B-6365DEED2A81}C:\program files\r.g. mechanics\medal of honor allied assault\moh_breakthrough.exe] => (Block) C:\program files\r.g. mechanics\medal of honor allied assault\moh_breakthrough.exe
FirewallRules: [UDP Query User{2D94A735-25AC-4B67-9C6A-453E8931B043}C:\program files\r.g. mechanics\medal of honor allied assault\moh_breakthrough.exe] => (Block) C:\program files\r.g. mechanics\medal of honor allied assault\moh_breakthrough.exe
FirewallRules: [{E86D3B87-D839-4438-AA9E-B947A25AFB61}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{418084CC-3B61-48E3-9BB8-BBD3B128BA36}D:\easysetupassistant\wr741n\easysetupassistant.exe] => (Block) D:\easysetupassistant\wr741n\easysetupassistant.exe
FirewallRules: [UDP Query User{C9E9CADD-4381-4D8B-943E-C3F795E4AB7D}D:\easysetupassistant\wr741n\easysetupassistant.exe] => (Block) D:\easysetupassistant\wr741n\easysetupassistant.exe
FirewallRules: [{E93909A8-13F2-42E9-8FAE-87A78CE259F9}] => (Allow) C:\Program Files\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{480736B4-0A86-45BF-8267-4F06F9A3D596}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A961A547-ABF3-40E5-9BD4-237D74474E64}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{4A1C2F6A-8C1E-40D4-A864-C83342DC2E0E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: 6TO4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: 6TO4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: 6TO4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft 6to4 Adapter #3
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft 6to4 Adapter #4
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft ISATAP Adapter #6
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Bluetooth Peripheral Device
Description: Bluetooth Peripheral Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/18/2015 01:29:48 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\LPP41KPE\STYLE[1].CSS> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)

Error: (08/18/2015 01:29:47 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\LPP41KPE\MG4_WMP12_30X30_2[1].PNG> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)

Error: (08/18/2015 01:29:47 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\LPP41KPE\MG4_WMP12_30X30_2[1].PNG> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)

Error: (08/18/2015 01:29:45 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\LPP41KPE\MEDIA_GUIDE_16X16[1].PNG> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)

Error: (08/18/2015 01:29:45 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\LPP41KPE\MEDIA_GUIDE_16X16[1].PNG> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)

Error: (08/18/2015 01:29:43 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\LPP41KPE\CONSTANT[1].CSS> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)

Error: (08/18/2015 01:29:42 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\LPP41KPE\CONSTANT[1].CSS> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)

Error: (08/18/2015 01:24:57 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\LPP41KPE\AC_RUNACTIVECONTENT[1].JS> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)

Error: (08/18/2015 01:24:57 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\LPP41KPE\AC_RUNACTIVECONTENT[1].JS> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)

Error: (08/18/2015 01:23:48 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\MINO\APPDATA\LOCAL\MICROSOFT\INTERNET EXPLORER\ICONCACHE\VEGGVD7> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
Zařízení připojené k systému nefunguje. (0x8007001f)


System errors:
=============
Error: (08/18/2015 02:43:36 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Podpora rozhraní NetBIOS nad protokolem TCP/IPNetBT

Error: (08/18/2015 02:40:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Windows Search1300001Restartovat službu

Error: (08/18/2015 02:40:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Windows Live ID Sign-in Assistant1100001Restartovat službu

Error: (08/18/2015 02:40:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Syntek AVStream USB2.0 WebCam Service1

Error: (08/18/2015 02:40:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Internet Pass-Through Service110001Restartovat službu

Error: (08/18/2015 02:40:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate Notice Service1

Error: (08/18/2015 02:40:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: HTCMonitorService1

Error: (08/18/2015 02:40:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Freemake Service1

Error: (08/18/2015 02:40:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Bonjour Service1

Error: (08/18/2015 02:40:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Automatic LiveUpdate Scheduler1


Microsoft Office:
=========================

CodeIntegrity:
===================================
Date: 2015-08-18 10:17:25.381
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 10:17:19.865
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 10:17:13.999
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-18 10:17:07.942
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 12:54:26.173
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 12:54:20.583
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 12:54:15.082
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 12:54:10.611
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 10:20:19.615
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 10:20:12.798
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\iSafeKrnlBoot.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: AMD Athlon(tm) 64 X2 Dual-Core Processor TK-55
Percentage of memory in use: 54%
Total physical RAM: 2718.27 MB
Available physical RAM: 1245.11 MB
Total Virtual: 5649.04 MB
Available Virtual: 3923.29 MB

==================== Drives ================================

Drive c: (VistaOS) (Fixed) (Total:142.21 GB) (Free:87.81 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive h: (OS) (Fixed) (Total:138.05 GB) (Free:27.11 GB) NTFS
Drive k: (KINGSTON) (Removable) (Total:7.2 GB) (Free:0.51 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 149.1 GB) (Disk ID: BBC58B91)
Partition 1: (Not Active) - (Size=6.8 GB) - (Type=1C)
Partition 2: (Active) - (Size=142.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 149.1 GB) (Disk ID: 9B7AEE40)
Partition 1: (Not Active) - (Size=11 GB) - (Type=12)
Partition 2: (Active) - (Size=138 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 7.2 GB) (Disk ID: 75712B14)
Partition 1: (Active) - (Size=7.2 GB) - (Type=0B)

==================== End of log ============================

Re: notebook out....pomozte mi

Napsal: 18 srp 2015 14:43
od miratan
Jeste k tomu Externimu HD.Ne nebootuji z neho,ale je na nem operacni system Windows,myslim,ze7
a kdyz chci treba vymazat z programu files nejakou aplikaci,nebo z dokumentu treba fotky,mp3...proste cokoliv,tak jen s povolenim hesla administratora,ale ja to heslo neznam.Jak na to?Uvolnilo by se mi tim dostatek mista,protoze kdyz jsem ho dostal,tak jsem hned kvuli svemu mistu na mem HD kopiroval treba hudbu,filmy atd. v domneni,ze se mi normalne povede ho vymazat,nebo vycistit od souboru,ktere jsou na nem.Ale nedari se!!!!!

No a co s tim programem Reimage Repair+Reimage Express?Stale me otravuji ty vyskakujici reklamy na kazde inernetove strance.Jde mi to na nervy.A dalsi vec:Na Youtube mi predtim slo normalne prehrat HD,ted se to seka,seka...taky nevim co s tim.Ze by nejaky vir??????Proste rozliseni 1240x720 je problem!!!!Tak vidite jak na tom jsem. :roll: :roll: :roll: :roll: :roll: :roll: :roll:

Re: notebook out....pomozte mi

Napsal: 18 srp 2015 14:49
od altrok
:arrow: Nejrychlejsim resenim bude kompletni format Vaseho "externiho disku".

:arrow: Odinstalujte starou a zranitelnou verzi javy Java 7 Update 51, Java(TM) 6 Update 13 a Java(TM) 6 Update 7. Pokud javu potrebujete, pak nainstalujte novou z java.com - pozor na adware pri jeji instalaci http://forum.viry.cz/viewtopic.php?p=1374438#p1374438 . Z hlediska bezpecnosti (exploity) je lepsi ji nemit.

  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu bude na plose ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CloseProcesses:
File: C:\Users\MINO\AppData\Local\Temp\{9c0ba3c1-2b67-45eb-bf69-bed9658d28d2}\IDriver.NonElevated.exe
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Winsock: Catalog5 01 C:\Windows\system32\mswsock.dll [223232 2009-10-06] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

FF SearchEngineOrder.1: Yahoo!
FF SearchPlugin: C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\Yahoo!.xml [2015-07-21]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-17]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-17]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\defsearchp@gmail.com [not found]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\deskCutv2@gmail.com [not found]
CHR HKLM\...\Chrome\Extension: [gkjoindjjcmbdpbfppabdgflnkgbbcli] - <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - <no Path\update_url>

S3 cpuz134; \??\C:\Users\MINO\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]
S3 HTCAND32; System32\Drivers\ANDROIDUSB.sys [X]
S3 lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]

2015-08-18 14:40 - 2015-08-18 14:40 - 00001148 _____ C:\AdwCleaner[C2].txt
2015-08-18 14:37 - 2015-08-18 14:39 - 00000965 _____ C:\AdwCleaner[S2].txt
2015-08-18 13:23 - 2015-08-18 13:24 - 00019161 _____ C:\AdwCleaner[C1].txt
2015-08-18 13:17 - 2015-08-18 13:23 - 00000000 ____D C:\AdwCleaner
2015-08-18 13:17 - 2015-08-18 13:21 - 00022444 _____ C:\AdwCleaner[S1].txt
2015-08-18 13:15 - 2015-08-18 13:15 - 00000619 _____ C:\Users\MINO\Desktop\adwcleaner_5.001 – zástupce.lnk
2015-08-18 10:11 - 2015-08-18 10:11 - 00000555 _____ C:\Users\MINO\Desktop\RSIT – zástupce.lnk
2015-08-17 10:05 - 2015-08-17 10:08 - 00000000 ____D C:\rsit
2015-08-15 16:29 - 2015-08-15 16:30 - 00772016 _____ (Reimage®) C:\Users\MINO\Downloads\ReimageRepair.exe
2015-08-15 15:58 - 2015-08-15 15:58 - 00001890 _____ C:\Users\Public\Desktop\Reimage Express.lnk
2015-08-15 09:46 - 2015-08-15 09:46 - 00000000 ____D C:\Users\MINO\Documents\Optimizer Pro
CMD: dir vWinManProv
CMD: dir C:\ProgramData\SeekerInstance
CMD: dir C:\ProgramData\BorderlineRunner
CMD: dir C:\ProgramData\IncrementInstance
CMD: dir C:\ProgramData\IncludeFoobar
CMD: dir C:\ProgramData\TampaMaker
2015-08-18 13:59 - 2014-05-07 11:59 - 00000000 ____D C:\Program Files\TuneUp Utilities 2012
2015-08-18 10:14 - 2008-09-23 11:21 - 00000000 ____D C:\Program Files\Trend Micro
2010-06-25 21:52 - 2014-03-22 19:17 - 0000680 _____ () C:\Users\MINO\AppData\Local\d3d9caps.dat
2009-08-01 16:05 - 2009-08-01 16:05 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
Task: {02507602-18E0-4852-8D8A-1830F7335C7E} - System32\Tasks\{8D895E8D-6DD7-4395-B8BF-9867989A2455} => pcalua.exe -a D:\JNP.exe -d D:\
Task: {0FD603F6-F23A-403A-9CDD-01E7E8622BB2} - System32\Tasks\{6CBEBB61-8BB1-421E-9368-41DEE263B11C} => pcalua.exe -a C:\STAHOVANIE\FreeRapid-0.9\frd.exe -d C:\STAHOVANIE\FreeRapid-0.9
Task: {1264198C-3800-47DD-AF8E-F00830BF956F} - \Scheduled Update for Ask Toolbar -> No File <==== ATTENTION
Task: {17840404-F618-419A-AB5E-DE938BC8B55A} - \ASP -> No File <==== ATTENTION
Task: {54553A94-DA59-4FA4-80B3-0952B4764676} - System32\Tasks\task82066431 => C:\Users\MINO\AppData\Local\Temp\WinProcess.exe <==== ATTENTION
Task: {547EA78A-EA64-444F-B3CD-CC152A1D672F} - \BrowserProtect -> No File <==== ATTENTION
Task: {56805546-E628-4DDB-9508-0C446E0CDD66} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files\TuneUp Utilities 2012\OneClick.exe
Task: {66B67C20-2F33-463A-8C23-977273627A09} - System32\Tasks\{90294ACF-33E1-4439-8E59-6A31B8CEE4F8} => pcalua.exe -a "C:\free rapid\FreeRapid-0.82\frd.exe" -d "C:\free rapid\FreeRapid-0.82"
Task: {85C4CB7B-256B-404F-9576-C9AB82771660} - \LaunchApp -> No File <==== ATTENTION
Task: {CAE66377-1799-4CB4-B5C1-788BC8DE084F} - \YourFile DownloaderUpdate -> No File <==== ATTENTION
Task: {F5C3AA1D-ABAC-43FB-924C-0884535E15A4} - System32\Tasks\{2939A741-C53F-4A26-AD69-40B3369D129B} => pcalua.exe -a "H:\call of duty 1\The Call of Duty\Tecsetup.exe" -d "H:\call of duty 1\The Call of Duty"
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job => C:\Users\MINO\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job => C:\Users\MINO\AppData\Local\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
Hosts:
EmptyTemp:
End

Re: notebook out....pomozte mi

Napsal: 20 srp 2015 09:31
od miratan
zdravim.Fixlist.txt jsem vytvoril,dam na plochu,spustim FRST dam Fix a pise mi,zetam neni zadny fixlist.txt a ze by mel byt ve stejnem adresari.......zkousim,..kde delam chybu :( :( :( :( :( :( :(

Re: notebook out....pomozte mi

Napsal: 20 srp 2015 09:56
od altrok
Protoze jste nepostupoval presne podle navodu a FRST nemate ulozeny plose
FRST.txt píše:Running from C:\STAHOVANIE
fixlist tedy mate na plose, ale FRST/FRST64.exe ne - oboji musi byt ve stejne slozce

Re: notebook out....pomozte mi

Napsal: 20 srp 2015 11:41
od miratan
posilam fixlog,snad to uz to bude dobre:
Fix result of Farbar Recovery Scan Tool (x86) Version:20-08-2015
Ran by MINO (2015-08-20 11:36:34) Run:1
Running from C:\FRST
Loaded Profiles: MINO (Available Profiles: MINO & fbwuser1024)
Boot Mode: Normal

==============================================

fixlist content:
*****************

Start
CloseProcesses:
File: C:\Users\MINO\AppData\Local\Temp\{9c0ba3c1-2b67-45eb-bf69-bed9658d28d2}\IDriver.NonElevated.exe
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\S-1-5-21-1876766861-4099627362-3959107545-1000 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Winsock: Catalog5 01 C:\Windows\system32\mswsock.dll [223232 2009-10-06] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

FF SearchEngineOrder.1: Yahoo!
FF SearchPlugin: C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\Yahoo!.xml [2015-07-21]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-17]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-17]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\defsearchp@gmail.com [not found]
FF Extension: No Name - C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\deskCutv2@gmail.com [not found]
CHR HKLM\...\Chrome\Extension: [gkjoindjjcmbdpbfppabdgflnkgbbcli] - <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - <no Path\update_url>

S3 cpuz134; \??\C:\Users\MINO\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]
S3 HTCAND32; System32\Drivers\ANDROIDUSB.sys [X]
S3 lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]

2015-08-18 14:40 - 2015-08-18 14:40 - 00001148 _____ C:\AdwCleaner[C2].txt
2015-08-18 14:37 - 2015-08-18 14:39 - 00000965 _____ C:\AdwCleaner[S2].txt
2015-08-18 13:23 - 2015-08-18 13:24 - 00019161 _____ C:\AdwCleaner[C1].txt
2015-08-18 13:17 - 2015-08-18 13:23 - 00000000 ____D C:\AdwCleaner
2015-08-18 13:17 - 2015-08-18 13:21 - 00022444 _____ C:\AdwCleaner[S1].txt
2015-08-18 13:15 - 2015-08-18 13:15 - 00000619 _____ C:\Users\MINO\Desktop\adwcleaner_5.001 – zástupce.lnk
2015-08-18 10:11 - 2015-08-18 10:11 - 00000555 _____ C:\Users\MINO\Desktop\RSIT – zástupce.lnk
2015-08-17 10:05 - 2015-08-17 10:08 - 00000000 ____D C:\rsit
2015-08-15 16:29 - 2015-08-15 16:30 - 00772016 _____ (Reimage®) C:\Users\MINO\Downloads\ReimageRepair.exe
2015-08-15 15:58 - 2015-08-15 15:58 - 00001890 _____ C:\Users\Public\Desktop\Reimage Express.lnk
2015-08-15 09:46 - 2015-08-15 09:46 - 00000000 ____D C:\Users\MINO\Documents\Optimizer Pro
CMD: dir vWinManProv
CMD: dir C:\ProgramData\SeekerInstance
CMD: dir C:\ProgramData\BorderlineRunner
CMD: dir C:\ProgramData\IncrementInstance
CMD: dir C:\ProgramData\IncludeFoobar
CMD: dir C:\ProgramData\TampaMaker
2015-08-18 13:59 - 2014-05-07 11:59 - 00000000 ____D C:\Program Files\TuneUp Utilities 2012
2015-08-18 10:14 - 2008-09-23 11:21 - 00000000 ____D C:\Program Files\Trend Micro
2010-06-25 21:52 - 2014-03-22 19:17 - 0000680 _____ () C:\Users\MINO\AppData\Local\d3d9caps.dat
2009-08-01 16:05 - 2009-08-01 16:05 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
Task: {02507602-18E0-4852-8D8A-1830F7335C7E} - System32\Tasks\{8D895E8D-6DD7-4395-B8BF-9867989A2455} => pcalua.exe -a D:\JNP.exe -d D:\
Task: {0FD603F6-F23A-403A-9CDD-01E7E8622BB2} - System32\Tasks\{6CBEBB61-8BB1-421E-9368-41DEE263B11C} => pcalua.exe -a C:\STAHOVANIE\FreeRapid-0.9\frd.exe -d C:\STAHOVANIE\FreeRapid-0.9
Task: {1264198C-3800-47DD-AF8E-F00830BF956F} - \Scheduled Update for Ask Toolbar -> No File <==== ATTENTION
Task: {17840404-F618-419A-AB5E-DE938BC8B55A} - \ASP -> No File <==== ATTENTION
Task: {54553A94-DA59-4FA4-80B3-0952B4764676} - System32\Tasks\task82066431 => C:\Users\MINO\AppData\Local\Temp\WinProcess.exe <==== ATTENTION
Task: {547EA78A-EA64-444F-B3CD-CC152A1D672F} - \BrowserProtect -> No File <==== ATTENTION
Task: {56805546-E628-4DDB-9508-0C446E0CDD66} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files\TuneUp Utilities 2012\OneClick.exe
Task: {66B67C20-2F33-463A-8C23-977273627A09} - System32\Tasks\{90294ACF-33E1-4439-8E59-6A31B8CEE4F8} => pcalua.exe -a "C:\free rapid\FreeRapid-0.82\frd.exe" -d "C:\free rapid\FreeRapid-0.82"
Task: {85C4CB7B-256B-404F-9576-C9AB82771660} - \LaunchApp -> No File <==== ATTENTION
Task: {CAE66377-1799-4CB4-B5C1-788BC8DE084F} - \YourFile DownloaderUpdate -> No File <==== ATTENTION
Task: {F5C3AA1D-ABAC-43FB-924C-0884535E15A4} - System32\Tasks\{2939A741-C53F-4A26-AD69-40B3369D129B} => pcalua.exe -a "H:\call of duty 1\The Call of Duty\Tecsetup.exe" -d "H:\call of duty 1\The Call of Duty"
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job => C:\Users\MINO\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job => C:\Users\MINO\AppData\Local\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
Hosts:
EmptyTemp:

*****************

Processes closed successfully.

========================= File: C:\Users\MINO\AppData\Local\Temp\{9c0ba3c1-2b67-45eb-bf69-bed9658d28d2}\IDriver.NonElevated.exe ========================

File not signed
MD5: A9D3658C5BE72816812A5A32E4560BA3
Creation and modification date: 2015-08-18 11:09 - 2004-07-16 01:23
Size: 0761856
Attributes: ----A
Company Name: InstallShield Software Corporation
Internal Name: InstallDriver
Original Name: InstallDriver.EXE
Product Name: InstallDriver Module
Description: InstallDriver Module
File Version: 10.01.238
Product Version: 10.01
Copyright: Copyright (C) 2004 InstallShield Software Corp.

====== End of File: ======

HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully.
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoLowDiskSpaceChecks => value removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
"HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page => value removed successfully.
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page => value removed successfully.
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page => value removed successfully.
HKU\S-1-5-21-1876766861-4099627362-3959107545-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\ToolbarSearchProviderProgress => value removed successfully.
"HKCR\PROTOCOLS\Handler\skype-ie-addon-data" => key removed successfully.
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => key removed successfully.
Winsock: Catalog5 000000000001\\LibraryPath => restored successfully(: %SystemRoot%\system32\NLAapi.dll)
Firefox SearchEngineOrder.1 removed successfully.
C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\searchplugins\Yahoo!.xml => moved successfully
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => moved successfully
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => moved successfully
C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} => path removed successfully.C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\defsearchp@gmail.com => path removed successfully.C:\Users\MINO\AppData\Roaming\Mozilla\Firefox\Profiles\ooakx785.default\extensions\deskCutv2@gmail.com => path removed successfully."HKLM\SOFTWARE\Google\Chrome\Extensions\gkjoindjjcmbdpbfppabdgflnkgbbcli" => key removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => key removed successfully.
cpuz134 => service removed successfully.
HTCAND32 => service removed successfully.
lvupdtio => service removed successfully.
taphss6 => service removed successfully.
"C:\AdwCleaner[C2].txt" => File/Folder not found.
"C:\AdwCleaner[S2].txt" => File/Folder not found.
"C:\AdwCleaner[C1].txt" => File/Folder not found.
C:\AdwCleaner => moved successfully
"C:\AdwCleaner[S1].txt" => File/Folder not found.
C:\Users\MINO\Desktop\adwcleaner_5.001 – zástupce.lnk => moved successfully
C:\Users\MINO\Desktop\RSIT – zástupce.lnk => moved successfully
"C:\rsit" => File/Folder not found.
C:\Users\MINO\Downloads\ReimageRepair.exe => moved successfully
"C:\Users\Public\Desktop\Reimage Express.lnk" => File/Folder not found.
C:\Users\MINO\Documents\Optimizer Pro => moved successfully

========= dir vWinManProv =========

Svazek v jednotce C je VistaOS.
S�riov� ��slo svazku je 5486-8102.

V�pis adres��e C:\FRST

Soubor nebyl nalezen.

========= End of CMD: =========


========= dir C:\ProgramData\SeekerInstance =========

Svazek v jednotce C je VistaOS.
S�riov� ��slo svazku je 5486-8102.

V�pis adres��e C:\ProgramData\SeekerInstance

13.08.2015 23:59 <DIR> .
13.08.2015 23:59 <DIR> ..
13.08.2015 23:59 2�543�104 SeekerInstance.dll
Soubor�: 1, Bajt�: 2�543�104
Adres���: 2, Voln�ch bajt�: 71�538�057�216

========= End of CMD: =========


========= dir C:\ProgramData\BorderlineRunner =========

Svazek v jednotce C je VistaOS.
S�riov� ��slo svazku je 5486-8102.

V�pis adres��e C:\ProgramData\BorderlineRunner

13.08.2015 18:58 <DIR> .
13.08.2015 18:58 <DIR> ..
13.08.2015 18:58 2�479�616 BorderlineRunner.dll
Soubor�: 1, Bajt�: 2�479�616
Adres���: 2, Voln�ch bajt�: 71�538�057�216

========= End of CMD: =========


========= dir C:\ProgramData\IncrementInstance =========

Svazek v jednotce C je VistaOS.
S�riov� ��slo svazku je 5486-8102.

V�pis adres��e C:\ProgramData\IncrementInstance

13.08.2015 18:57 <DIR> .
13.08.2015 18:57 <DIR> ..
13.08.2015 18:57 2�575�360 IncrementInstance.dll
Soubor�: 1, Bajt�: 2�575�360
Adres���: 2, Voln�ch bajt�: 71�538�057�216

========= End of CMD: =========


========= dir C:\ProgramData\IncludeFoobar =========

Svazek v jednotce C je VistaOS.
S�riov� ��slo svazku je 5486-8102.

V�pis adres��e C:\ProgramData\IncludeFoobar

13.08.2015 18:57 <DIR> .
13.08.2015 18:57 <DIR> ..
13.08.2015 18:57 2�512�896 IncludeFoobar.dll
Soubor�: 1, Bajt�: 2�512�896
Adres���: 2, Voln�ch bajt�: 71�538�053�120

========= End of CMD: =========


========= dir C:\ProgramData\TampaMaker =========

Svazek v jednotce C je VistaOS.
S�riov� ��slo svazku je 5486-8102.

V�pis adres��e C:\ProgramData\TampaMaker

13.08.2015 18:56 <DIR> .
13.08.2015 18:56 <DIR> ..
13.08.2015 18:56 2�357�248 TampaMaker.dll
Soubor�: 1, Bajt�: 2�357�248
Adres���: 2, Voln�ch bajt�: 71�538�053�120

========= End of CMD: =========

C:\Program Files\TuneUp Utilities 2012 => moved successfully
C:\Program Files\Trend Micro => moved successfully
C:\Users\MINO\AppData\Local\d3d9caps.dat => moved successfully
C:\ProgramData\ezsidmv.dat => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{02507602-18E0-4852-8D8A-1830F7335C7E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02507602-18E0-4852-8D8A-1830F7335C7E}" => key removed successfully.
C:\Windows\System32\Tasks\{8D895E8D-6DD7-4395-B8BF-9867989A2455} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8D895E8D-6DD7-4395-B8BF-9867989A2455}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0FD603F6-F23A-403A-9CDD-01E7E8622BB2}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0FD603F6-F23A-403A-9CDD-01E7E8622BB2}" => key removed successfully.
C:\Windows\System32\Tasks\{6CBEBB61-8BB1-421E-9368-41DEE263B11C} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6CBEBB61-8BB1-421E-9368-41DEE263B11C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1264198C-3800-47DD-AF8E-F00830BF956F}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1264198C-3800-47DD-AF8E-F00830BF956F}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{17840404-F618-419A-AB5E-DE938BC8B55A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{17840404-F618-419A-AB5E-DE938BC8B55A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASP" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{54553A94-DA59-4FA4-80B3-0952B4764676}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{54553A94-DA59-4FA4-80B3-0952B4764676}" => key removed successfully.
C:\Windows\System32\Tasks\task82066431 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\task82066431" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{547EA78A-EA64-444F-B3CD-CC152A1D672F}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{547EA78A-EA64-444F-B3CD-CC152A1D672F}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BrowserProtect" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{56805546-E628-4DDB-9508-0C446E0CDD66}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{56805546-E628-4DDB-9508-0C446E0CDD66}" => key removed successfully.
C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\TuneUpUtilities_Task_BkGndMaintenance2012" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{66B67C20-2F33-463A-8C23-977273627A09}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66B67C20-2F33-463A-8C23-977273627A09}" => key removed successfully.
C:\Windows\System32\Tasks\{90294ACF-33E1-4439-8E59-6A31B8CEE4F8} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{90294ACF-33E1-4439-8E59-6A31B8CEE4F8}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{85C4CB7B-256B-404F-9576-C9AB82771660}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{85C4CB7B-256B-404F-9576-C9AB82771660}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\LaunchApp" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CAE66377-1799-4CB4-B5C1-788BC8DE084F}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CAE66377-1799-4CB4-B5C1-788BC8DE084F}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\YourFile DownloaderUpdate" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F5C3AA1D-ABAC-43FB-924C-0884535E15A4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F5C3AA1D-ABAC-43FB-924C-0884535E15A4}" => key removed successfully.
C:\Windows\System32\Tasks\{2939A741-C53F-4A26-AD69-40B3369D129B} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2939A741-C53F-4A26-AD69-40B3369D129B}" => key removed successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000Core.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1876766861-4099627362-3959107545-1000UA.job => moved successfully
C:\ProgramData\TEMP => ":373E1720" ADS removed successfully..
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 72.5 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 11:37:28 ====

Re: notebook out....pomozte mi

Napsal: 20 srp 2015 11:46
od altrok
  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • na plose bude ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
File: C:\ProgramData\TampaMaker\TampaMaker.dll
File: C:\ProgramData\IncludeFoobar\IncludeFoobar.dll
File: C:\ProgramData\IncrementInstance\IncrementInstance.dll
File: C:\ProgramData\BorderlineRunner\BorderlineRunner.dll
File: C:\ProgramData\SeekerInstance\SeekerInstance.dll
End

Re: notebook out....pomozte mi

Napsal: 20 srp 2015 11:53
od miratan
posilam fixlog dle instrukci:
Fix result of Farbar Recovery Scan Tool (x86) Version:20-08-2015
Ran by MINO (2015-08-20 12:51:32) Run:2
Running from C:\FRST
Loaded Profiles: MINO (Available Profiles: MINO & fbwuser1024)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
File: C:\ProgramData\TampaMaker\TampaMaker.dll
File: C:\ProgramData\IncludeFoobar\IncludeFoobar.dll
File: C:\ProgramData\IncrementInstance\IncrementInstance.dll
File: C:\ProgramData\BorderlineRunner\BorderlineRunner.dll
File: C:\ProgramData\SeekerInstance\SeekerInstance.dll
End
*****************


========================= File: C:\ProgramData\TampaMaker\TampaMaker.dll ========================

File not signed
MD5: F7B09C63F16A9CE7D6A23D64238C85D9
Creation and modification date: 2015-08-13 18:56 - 2015-08-13 18:56
Size: 2357248
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======


========================= File: C:\ProgramData\IncludeFoobar\IncludeFoobar.dll ========================

File not signed
MD5: 39B123AA94FFFADA019DD02BEE4759E3
Creation and modification date: 2015-08-13 18:57 - 2015-08-13 18:57
Size: 2512896
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======


========================= File: C:\ProgramData\IncrementInstance\IncrementInstance.dll ========================

File not signed
MD5: D0F739E19F22FE6685A57D617EECC7DF
Creation and modification date: 2015-08-13 18:57 - 2015-08-13 18:57
Size: 2575360
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======


========================= File: C:\ProgramData\BorderlineRunner\BorderlineRunner.dll ========================

File not signed
MD5: 59C6C478264E13855882859E63AA6ADB
Creation and modification date: 2015-08-13 18:58 - 2015-08-13 18:58
Size: 2479616
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======


========================= File: C:\ProgramData\SeekerInstance\SeekerInstance.dll ========================

File not signed
MD5: D053221AAB3D322149EB9C38BE93811C
Creation and modification date: 2015-08-13 23:59 - 2015-08-13 23:59
Size: 2543104
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======


==== End of Fixlog 12:51:34 ====
Všechny časy jsou v UTC+01:00
Stránka 1 z 4

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz