Dobry den, mam problem ze se mi vsude na nejake strance zobrazuji nesmyslne reklamy. Dekuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pepik at 2015-09-14 15:41:28
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 306 GB (67%) free of 458 GB
Total RAM: 3767 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:41:31, on 14.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16470)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174\opera_crashreporter.exe
C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\plugin.exe
C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\plugin.exe
C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\plugin.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
C:\Program Files\trend micro\Pepik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Great Find - {1cc2bb80-20ab-43e5-b958-432d72b546ca} - C:\Program Files (x86)\Great Find\Extensions\1cc2bb80-20ab-43e5-b958-432d72b546ca.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Pepik\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [SetupNO] wscript.exe //B "C:\Users\Pepik\AppData\Local\Temp\SetupNO.vbs"
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Service Mgr GreatFind - Unknown owner - C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update Mgr GreatFind - Unknown owner - C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9672 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\system32\wbem\wmiprvse.exe
WLIDSvcM.exe 1264
C:\Windows\System32\alg.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\31.0.1889.174\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=5096
"C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe" --type=gpu-process --channel="5096.0.1245873051\649160291" --crash-reporter-pid=5112 --enable-mse-h264-support --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,9,23,46 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0046 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2182 --crash-reporter-pid=5112 --enable-mse-h264-support --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_209.dll" --ppapi-flash-version=18.0.0.209 --crash-reporter-pid=5112 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="5096.2.79375748\792578253" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_209.dll" --ppapi-flash-version=18.0.0.209 --crash-reporter-pid=5112 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="5096.3.929960387\1959483931" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_209.dll" --ppapi-flash-version=18.0.0.209 --crash-reporter-pid=5112 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="5096.5.1836035694\697598372" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_209.dll" --ppapi-flash-version=18.0.0.209 --crash-reporter-pid=5112 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="5096.6.61587771\1162751964" /prefetch:673131151
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\plugin.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5\plugin.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\plugin.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10\plugin.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\plugin.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\plugin.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\plugin.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\plugin.exe"
"C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe"
"C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8\plugin.exe" u
"C:\Program Files (x86)\Winamp\winamp.exe" -Embedding
"C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe" --type=ppapi --channel="5096.62.172938154\216673829" --ppapi-flash-args --lang=cs --crash-reporter-pid=5112 --enable-mse-h264-support --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_209.dll" --ppapi-flash-version=18.0.0.209 --crash-reporter-pid=5112 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="5096.63.1419704239\1706277900" /prefetch:673131151
"C:\Users\Pepik\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_209_pepper.exe -check pepperplugin
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-01 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1cc2bb80-20ab-43e5-b958-432d72b546ca}]
Great Find - C:\Program Files (x86)\Great Find\Extensions\1cc2bb80-20ab-43e5-b958-432d72b546ca.dll [2015-09-09 145608]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-08-07 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-01 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-07 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Power Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2011-05-10 1831528]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-07-23 386584]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-07-23 161304]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-07-23 415256]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-02-18 11779176]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BitTorrent"=C:\Users\Pepik\AppData\Roaming\BitTorrent\BitTorrent.exe [2015-08-19 1698152]
"SetupNO"=wscript.exe //B C:\Users\Pepik\AppData\Local\Temp\SetupNO.vbs []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
C:\Users\Pepik\AppData\Roaming\BitTorrent\BitTorrent.exe [2015-08-19 1698152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flvto Youtube Downloader]
Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe /minimize []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gaming Mouse Driver]
C:\Program Files (x86)\Gaming Mouse\Monitor.EXE [2011-09-09 200704]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OfficeSyncProcess]
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2010-03-16 718208]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Start WingMan Profiler]
C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-15 190536]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Pepik^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MEGAsync.lnk]
C:\Users\Pepik\AppData\Local\MEGAsync\MEGAsync.exe [2015-01-01 4147712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Pepik^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk]
C:\PROGRA~2\MICROS~2\Office14\ONENOTEM.EXE [2010-03-29 227712]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BackupManagerTray"=C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [2011-04-24 297280]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-07-02 5515496]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08 334896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-07-20 271360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2015-09-14 15:39:47 ----D---- C:\rsit
2015-09-09 17:31:42 ----D---- C:\ProgramData\GRETECH
2015-09-09 17:27:27 ----D---- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc
2015-09-09 17:27:26 ----D---- C:\Program Files (x86)\Great Find
2015-09-09 17:27:15 ----D---- C:\Users\Pepik\AppData\Roaming\GRETECH
2015-09-09 17:27:09 ----D---- C:\Users\Pepik\AppData\Roaming\OpenCandy
2015-08-26 23:24:22 ----A---- C:\Windows\system32\drivers\appliand.sys
2015-08-26 23:20:09 ----D---- C:\Users\Pepik\AppData\Roaming\Replay Media Catcher 5
2015-08-26 23:19:16 ----D---- C:\Windows\Jaksta
2015-08-26 23:11:10 ----D---- C:\Users\Pepik\AppData\Roaming\Total Recorder Editor Pro
2015-08-26 23:10:59 ----A---- C:\Windows\SYSWOW64\NCTWMAFile2.dll
2015-08-26 23:10:59 ----A---- C:\Windows\SYSWOW64\NCTTextToAudio2.dll
2015-08-26 20:15:53 ----D---- C:\Users\Pepik\AppData\Roaming\Replay Video Capture 7
2015-08-26 20:15:28 ----D---- C:\Program Files (x86)\Replay Video Capture 7
2015-08-22 19:37:24 ----D---- C:\Riot Games
2015-08-19 11:40:03 ----D---- C:\Program Files (x86)\Valve
2015-08-19 11:28:39 ----D---- C:\Users\Pepik\AppData\Roaming\WiseUpdate
2015-08-18 15:24:21 ----D---- C:\Program Files (x86)\logs
2015-08-18 15:03:55 ----RSH---- C:\Program Files (x86)\update20oct2014.ini
2015-08-18 15:03:54 ----RSH---- C:\Program Files (x86)\GTProtector.ini
2015-08-18 15:03:53 ----RSH---- C:\Program Files (x86)\GTProtector.dll
2015-08-18 15:01:24 ----D---- C:\Program Files (x86)\config
2015-08-18 15:01:11 ----D---- C:\Program Files (x86)\reslists
2015-08-18 15:00:59 ----RSH---- C:\Program Files (x86)\rev.ini
2015-08-18 15:00:58 ----D---- C:\Program Files (x86)\gldrv
2015-08-18 15:00:48 ----D---- C:\Program Files (x86)\platform
2015-08-18 15:00:45 ----D---- C:\Program Files (x86)\cstrike
======List of files/folders modified in the last 1 month======
2015-09-14 15:41:29 ----D---- C:\Program Files\trend micro
2015-09-14 15:16:54 ----D---- C:\Users\Pepik\AppData\Roaming\Mp3tag
2015-09-14 13:12:45 ----D---- C:\Windows\system32\config
2015-09-14 13:04:15 ----D---- C:\Users\Pepik\AppData\Roaming\BitTorrent
2015-09-14 13:03:52 ----D---- C:\Windows\Temp
2015-09-14 13:02:37 ----A---- C:\Windows\SYSWOW64\log.txt
2015-09-13 17:33:41 ----D---- C:\Windows\System32
2015-09-13 17:33:41 ----D---- C:\Windows\inf
2015-09-13 17:33:41 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-13 14:58:35 ----SHD---- C:\System Volume Information
2015-09-09 17:31:42 ----AD---- C:\ProgramData
2015-09-09 17:27:28 ----D---- C:\Program Files (x86)\Common Files
2015-09-09 17:27:26 ----D---- C:\Program Files (x86)
2015-09-09 17:27:09 ----D---- C:\Program Files (x86)\GRETECH
2015-09-04 18:13:47 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-09-04 18:03:39 ----D---- C:\Users\Pepik\AppData\Roaming\Skype
2015-09-04 17:49:58 ----D---- C:\Program Files (x86)\Firefly Studios
2015-09-01 15:02:04 ----SHD---- C:\Windows\Installer
2015-09-01 15:02:04 ----SHD---- C:\Config.Msi
2015-09-01 14:57:07 ----D---- C:\Windows\Tasks
2015-08-27 14:01:21 ----D---- C:\Windows
2015-08-26 23:24:28 ----D---- C:\Windows\system32\drivers
2015-08-26 23:19:15 ----D---- C:\Program Files (x86)\Applian Technologies
2015-08-26 23:11:42 ----D---- C:\Windows\SysWOW64
2015-08-22 20:03:57 ----RSD---- C:\Windows\assembly
2015-08-22 20:01:15 ----D---- C:\Windows\system32\catroot2
2015-08-22 19:38:05 ----D---- C:\Users\Pepik\AppData\Roaming\Riot Games
2015-08-22 19:22:01 ----D---- C:\Windows\Logs
2015-08-19 11:31:55 ----D---- C:\Windows\SYSWOW64\config
2015-08-19 10:10:22 ----D---- C:\Windows\system32\Tasks
2015-08-19 10:10:22 ----D---- C:\Program Files (x86)\Opera
2015-08-16 18:40:36 ----D---- C:\ProgramData\YTD Video Downloader
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-07-01 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-07-01 272248]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-04-13 540696]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-08-14 834544]
R1 appliand;Applian LightWeight Filter; C:\Windows\system32\DRIVERS\appliand.sys [2013-02-06 30304]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-07-01 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-07-01 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-07-02 442264]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-11-09 270912]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-07-01 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-07-01 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-07-01 137288]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-02 2750464]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-07-20 10603904]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-27 158976]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-02-22 2750312]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-01-18 412712]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-04-14 25816]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2011-03-10 18432]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2011-03-10 17408]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-28 26440]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2010-04-27 77512]
S2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam64.sys [2012-04-15 1071032]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-06-08 4729408]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-04-14 63704]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-09-22 243712]
S3 RtkBtFilter;Realtek Bluetooth Filter Driver; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [2015-01-20 585944]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2011-12-15 31232]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2010-04-28 16200]
S3 xhunter1;xhunter1; \??\C:\Windows\xhunter1.sys []
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-04-08 68992]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-07-01 343336]
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2011-05-26 29696]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-04-22 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2011-04-24 256832]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-08-18 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2014-12-24 214520]
R2 Service Mgr GreatFind;Service Mgr GreatFind; C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe [2015-09-14 1199328]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R2 Update Mgr GreatFind;Update Mgr GreatFind; C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe [2015-09-14 717536]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-04-14 1080120]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-10-09 655624]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2012-04-26 135584]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\syswow64\GameMon.des [2012-09-26 4460280]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-11-11 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosim o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Polska Pasha
- Vzorný návštěvník
- Příspěvky: 113
- Registrován: 29 čer 2014 09:06
-
Polska Pasha
- Vzorný návštěvník
- Příspěvky: 113
- Registrován: 29 čer 2014 09:06
Re: prosim o kontrolu
log zde:
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 18.9.2015
Čas skenování: 14:35
Protokol: sd.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.09.18.04
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Pepik
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 606962
Uplynulý čas: 3 hod, 33 min, 14 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Sken hloubkových rootkitů: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 11
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe, 2092, , [38247cb5c5c6d95df9d567759d64b749]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe, 3904, , [a6b6e54cf49778beaa249d3f02ff6e92]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe, 4112, , [d785a68baeddea4cdbf3f8e44fb221df]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe, 3160, , [d785a68baeddea4cdbf3f8e44fb221df]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10\Plugin.exe, 240, , [a9b39a9766250b2b8945d606c140fa06]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5\Plugin.exe, 3112, , [0e4e91a0117a59ddf5d9e7f512efab55]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\Plugin.exe, 1080, , [e17b6bc62e5dbc7ac30b35a769986799]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\Plugin.exe, 4008, , [e17b6bc62e5dbc7ac30b35a769986799]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8\Plugin.exe, 4516, , [5efe53dedcafdd590dc1974528d931cf]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\Plugin.exe, 3412, , [0b51f53c315ae74f5678924abf42619f]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\Plugin.exe, 1604, , [0b51f53c315ae74f5678924abf42619f]
Moduly: 3
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{A084C43D-AC30-49CB-A97F-3C3131DBF6AC}.dll, , [8bd1979a02893303735b4b9155acc739],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{90DA35A6-89CA-49F5-8A93-D22D38533A8D}.dll, , [441869c8cdbea0960dc1d309f60be917],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{90DA35A6-89CA-49F5-8A93-D22D38533A8D}.dll, , [441869c8cdbea0960dc1d309f60be917],
Klíče registru: 30
PUP.Optional.GreatFind, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr GreatFind, , [38247cb5c5c6d95df9d567759d64b749],
PUP.Optional.GreatFind, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr GreatFind, , [a6b6e54cf49778beaa249d3f02ff6e92],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{1cc2bb80-20ab-43e5-b958-432d72b546ca}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{1cc2bb80-20ab-43e5-b958-432d72b546ca}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\TYPELIB\{c73e229d-5127-4e12-80eb-a51818f55311}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\INTERFACE\{F4DD775F-ECBD-44A8-B472-916072DED4F7}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{F4DD775F-ECBD-44A8-B472-916072DED4F7}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{F4DD775F-ECBD-44A8-B472-916072DED4F7}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{c73e229d-5127-4e12-80eb-a51818f55311}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{c73e229d-5127-4e12-80eb-a51818f55311}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{1CC2BB80-20AB-43E5-B958-432D72B546CA}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}, , [6bf19a974f3c61d5857ef9ae8a78b848],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}, , [6bf19a974f3c61d5857ef9ae8a78b848],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, , [f76532ffadde979f7b8c6a3d89795ca4],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, , [f76532ffadde979f7b8c6a3d89795ca4],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Great Find, , [baa2072a0d7e5dd97757da027e83d52b],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3A3E5EDA-EF46-407B-9177-93262F18C4FB}, , [ed6f58d9f4979a9c3c8f721e9f657c84],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{ABAD1B96-722A-4F25-861B-EE56F752891B}, , [114b29082269a2946b629af6d82c7888],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\GreatFind, , [84d832ff5536bc7a8d12f8a26e9650b0],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21111111-1111-1111-1111-110211671166}, , [bca0d8591972201654775c34a361bf41],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3A3E5EDA-EF46-407B-9177-93262F18C4FB}, , [332939f85932e94d52796e2261a3bb45],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{ABAD1B96-722A-4F25-861B-EE56F752891B}, , [c09c49e8becd72c4cc01d4bc0ef67c84],
PUP.Optional.TidyNetwork, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\DRAGDROP\{70BC1CDB-0744-4172-BDA0-B5A487D00C3A}, , [abb1171aa3e83df97dc5efcfe71d0df3],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3A3E5EDA-EF46-407B-9177-93262F18C4FB}, , [5ffdad84ccbf60d63f6a533d26deb64a],
PUP.Optional.TNT, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{72A6AB0F-2FA8-4C73-9FCB-1E62A608F001}, , [b0ac60d18902b4820e5ed2ec709407f9],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81693EA1-7A1E-4F5F-8F23-D12A95A01096}, , [72eab67b2368f640218996fa30d4a55b],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90A1C5DF-E87B-473A-9B20-E7FF7854CC67}, , [2e2e52df58331c1a42681b75f70d7e82],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{ABAD1B96-722A-4F25-861B-EE56F752891B}, , [da822110593242f49c0fc8c87a8a52ae],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{BBC46506-7541-419C-AF76-1D7F84992765}, , [db81c46dc5c673c37e2da0f0fe0632ce],
PUP.Optional.OutBrowse, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\OB, , [9fbdcf62048766d0d53eeebe64a0f20e],
Hodnoty registru: 14
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3a3e5eda-ef46-407b-9177-93262f18c4fb}|AppName, SavePass 1.1-bg.exe, , [ed6f58d9f4979a9c3c8f721e9f657c84]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{abad1b96-722a-4f25-861b-ee56f752891b}|AppName, SavePass 1.1-codedownloader.exe, , [114b29082269a2946b629af6d82c7888]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21111111-1111-1111-1111-110211671166}|AppName, Discount Buddy-bg.exe, , [bca0d8591972201654775c34a361bf41]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3a3e5eda-ef46-407b-9177-93262f18c4fb}|AppName, SavePass 1.1-bg.exe, , [332939f85932e94d52796e2261a3bb45]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{abad1b96-722a-4f25-861b-ee56f752891b}|AppName, SavePass 1.1-codedownloader.exe, , [c09c49e8becd72c4cc01d4bc0ef67c84]
PUP.Optional.PluginContainer, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr GreatFind|ImagePath, "C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe", , [e775a889177491a547683c710cf8a45c]
PUP.Optional.Updater, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr GreatFind|ImagePath, "C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe", , [c29a38f98cffd06698be368a35cf956b]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3a3e5eda-ef46-407b-9177-93262f18c4fb}|AppName, SavePass 1.1-bg.exe, , [5ffdad84ccbf60d63f6a533d26deb64a]
PUP.Optional.TNT, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{72A6AB0F-2FA8-4C73-9FCB-1E62A608F001}|AppName, TNT2User.exe, , [b0ac60d18902b4820e5ed2ec709407f9]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81693EA1-7A1E-4F5F-8F23-D12A95A01096}|AppName, b9fa2d9b-e48c-497c-8cd2-81a6fca77ed6-2.exe-buttonutil.exe, , [72eab67b2368f640218996fa30d4a55b]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90A1C5DF-E87B-473A-9B20-E7FF7854CC67}|AppName, b9fa2d9b-e48c-497c-8cd2-81a6fca77ed6-2.exe-buttonutil.exe, , [2e2e52df58331c1a42681b75f70d7e82]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{abad1b96-722a-4f25-861b-ee56f752891b}|AppName, SavePass 1.1-codedownloader.exe, , [da822110593242f49c0fc8c87a8a52ae]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{BBC46506-7541-419C-AF76-1D7F84992765}|AppName, b9fa2d9b-e48c-497c-8cd2-81a6fca77ed6-2.exe-codedownloader.exe, , [db81c46dc5c673c37e2da0f0fe0632ce]
PUP.Optional.OutBrowse, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\OB|monitype17, 8/16/14 13:15:3, , [9fbdcf62048766d0d53eeebe64a0f20e]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 26
PUP.Optional.Amonetize, C:\Users\Pepik\AppData\Local\1449, , [91cb0c256a219d994275f835ee15d32d],
PUP.Optional.OpenCandy, C:\Users\Pepik\AppData\Roaming\OpenCandy, , [005cb0813259df57a8ceb642dc26c13f],
PUP.Optional.OpenCandy, C:\Users\Pepik\AppData\Roaming\OpenCandy\6B92B5B36AF94291A4BD479E4DE0B810, , [005cb0813259df57a8ceb642dc26c13f],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\resources, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12bak\resources, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\resources, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\resources, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc, , [2f2d83aec7c4e74f83687c98b74c21df],
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater, , [2f2d83aec7c4e74f83687c98b74c21df],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find, , [6fedeb46b1da69cd9953a272d62de917],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find\Extensions, , [6fedeb46b1da69cd9953a272d62de917],
Soubory: 40
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe, , [38247cb5c5c6d95df9d567759d64b749],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{A084C43D-AC30-49CB-A97F-3C3131DBF6AC}.dll, , [8bd1979a02893303735b4b9155acc739],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{90DA35A6-89CA-49F5-8A93-D22D38533A8D}.dll, , [441869c8cdbea0960dc1d309f60be917],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe, , [a6b6e54cf49778beaa249d3f02ff6e92],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe, , [d785a68baeddea4cdbf3f8e44fb221df],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10\Plugin.exe, , [a9b39a9766250b2b8945d606c140fa06],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5\Plugin.exe, , [0e4e91a0117a59ddf5d9e7f512efab55],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\Plugin.exe, , [e17b6bc62e5dbc7ac30b35a769986799],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8\Plugin.exe, , [5efe53dedcafdd590dc1974528d931cf],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\Plugin.exe, , [0b51f53c315ae74f5678924abf42619f],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find\Extensions\1cc2bb80-20ab-43e5-b958-432d72b546ca.dll, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.RiskWare.Tool.CK, C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\adobe.photoshop.cs6-patch.exe, , [283484ad55360c2a2eebc8feb54c837d],
PUP.RiskWare.Patcher, C:\Program Files (x86)\Applian Technologies\Replay Media Catcher 5\replay.media.catcher.5.0.1.15-MPT.exe, , [1b4147ea4d3e3bfbc512d4d6649d3ac6],
Trojan.Agent, C:\Program Files (x86)\GetFLV\GetFLV.v9.1.2.0.loader.exe, , [78e4042d5e2d67cfa8d233d8ee14ba46],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find\Uninstaller.exe, , [baa2072a0d7e5dd97757da027e83d52b],
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.bak, , [90ccfe337219b77fa42ab12b946d9b65],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.bak, , [4a12260baedd53e3933b7468f20f07f9],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10bak\Plugin.exe, , [a5b75fd24249d264c50923b95ea3ff01],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\resources\plugin.dll, , [bba110215c2fde5817b7fddf1be6eb15],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12bak\Plugin.exe, , [1448f73ad6b59f9716b84f8d28d9748c],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12bak\resources\plugin.dll, , [530991a0305bed49ab2303d9a65bf50b],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3bak\Plugin.exe, , [72eadd5491fad561319deeee61a0cd33],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5bak\Plugin.exe, , [afad1c155536cb6be1ede8f4bb4633cd],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\resources\38.0.5.dll, , [fd5f30018efd69cdac2219c3768b7789],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\resources\39.0.0.dll, , [8bd1939ed5b6af8721adb22a837e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\resources\40.0.0.dll, , [e17be24f7c0fec4ac5093f9d8978b14f],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\Plugin.exe, , [1a4258d9a8e38bab6866607c4db4748c],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\resources\38.0.5.dll, , [223aae83711a76c0438bfae2bf429c64],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\resources\39.0.0.dll, , [fb61ce63ccbf45f1725c8458cc35cf31],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\resources\40.0.0.dll, , [78e40829d2b975c1705e8359e0217e82],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8bak\Plugin.exe, , [74e8d65b365588ae04cac616a25feb15],
PUP.Optional.OpenCandy, C:\Users\Pepik\AppData\Local\Flvto Youtube Downloader\FlvtoConverterSetupV0.6.6.exe, , [a0bc32ff2a61e650d7d2b7de877e9d63],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Roaming\OpenCandy\6B92B5B36AF94291A4BD479E4DE0B810\setup.exe, , [61fb0b2691facb6b5d71bd1f6899e11f],
PUP.RiskWare.Patcher, C:\Users\Pepik\Downloads\Replay-Media-Catcher-v5.0.1.54-+-Crack.rar, , [6eee91a02a61d660c710efbbe21ffe02],
RiskWare.CrudeTheftMarker, C:\Users\Pepik\Downloads\Replay-Video-Capture-v6.0.6.rar, , [7ddf8da42a61f0465dda5b4bb151ac54],
PUP.RiskWare.Patcher, C:\Users\Pepik\YTD Video Downloader\patch.exe, , [471570c17d0e072f5483c8e2f01126da],
PUP.Optional.Amonetize, C:\Users\Pepik\AppData\Local\1449\status.cfg, , [91cb0c256a219d994275f835ee15d32d],
PUP.Optional.Amonetize, C:\Users\Pepik\AppData\Local\1449\Updater.xml, , [91cb0c256a219d994275f835ee15d32d],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\temp, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find\7za.exe, , [6fedeb46b1da69cd9953a272d62de917],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 18.9.2015
Čas skenování: 14:35
Protokol: sd.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.09.18.04
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Pepik
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 606962
Uplynulý čas: 3 hod, 33 min, 14 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Sken hloubkových rootkitů: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 11
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe, 2092, , [38247cb5c5c6d95df9d567759d64b749]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe, 3904, , [a6b6e54cf49778beaa249d3f02ff6e92]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe, 4112, , [d785a68baeddea4cdbf3f8e44fb221df]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe, 3160, , [d785a68baeddea4cdbf3f8e44fb221df]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10\Plugin.exe, 240, , [a9b39a9766250b2b8945d606c140fa06]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5\Plugin.exe, 3112, , [0e4e91a0117a59ddf5d9e7f512efab55]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\Plugin.exe, 1080, , [e17b6bc62e5dbc7ac30b35a769986799]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\Plugin.exe, 4008, , [e17b6bc62e5dbc7ac30b35a769986799]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8\Plugin.exe, 4516, , [5efe53dedcafdd590dc1974528d931cf]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\Plugin.exe, 3412, , [0b51f53c315ae74f5678924abf42619f]
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\Plugin.exe, 1604, , [0b51f53c315ae74f5678924abf42619f]
Moduly: 3
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{A084C43D-AC30-49CB-A97F-3C3131DBF6AC}.dll, , [8bd1979a02893303735b4b9155acc739],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{90DA35A6-89CA-49F5-8A93-D22D38533A8D}.dll, , [441869c8cdbea0960dc1d309f60be917],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{90DA35A6-89CA-49F5-8A93-D22D38533A8D}.dll, , [441869c8cdbea0960dc1d309f60be917],
Klíče registru: 30
PUP.Optional.GreatFind, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr GreatFind, , [38247cb5c5c6d95df9d567759d64b749],
PUP.Optional.GreatFind, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr GreatFind, , [a6b6e54cf49778beaa249d3f02ff6e92],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{1cc2bb80-20ab-43e5-b958-432d72b546ca}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{1cc2bb80-20ab-43e5-b958-432d72b546ca}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\TYPELIB\{c73e229d-5127-4e12-80eb-a51818f55311}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\INTERFACE\{F4DD775F-ECBD-44A8-B472-916072DED4F7}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{F4DD775F-ECBD-44A8-B472-916072DED4F7}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{F4DD775F-ECBD-44A8-B472-916072DED4F7}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{c73e229d-5127-4e12-80eb-a51818f55311}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{c73e229d-5127-4e12-80eb-a51818f55311}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{1CC2BB80-20AB-43E5-B958-432D72B546CA}, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}, , [6bf19a974f3c61d5857ef9ae8a78b848],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}, , [6bf19a974f3c61d5857ef9ae8a78b848],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, , [f76532ffadde979f7b8c6a3d89795ca4],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, , [f76532ffadde979f7b8c6a3d89795ca4],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Great Find, , [baa2072a0d7e5dd97757da027e83d52b],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3A3E5EDA-EF46-407B-9177-93262F18C4FB}, , [ed6f58d9f4979a9c3c8f721e9f657c84],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{ABAD1B96-722A-4F25-861B-EE56F752891B}, , [114b29082269a2946b629af6d82c7888],
PUP.Optional.GreatFind, HKLM\SOFTWARE\WOW6432NODE\GreatFind, , [84d832ff5536bc7a8d12f8a26e9650b0],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21111111-1111-1111-1111-110211671166}, , [bca0d8591972201654775c34a361bf41],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3A3E5EDA-EF46-407B-9177-93262F18C4FB}, , [332939f85932e94d52796e2261a3bb45],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{ABAD1B96-722A-4F25-861B-EE56F752891B}, , [c09c49e8becd72c4cc01d4bc0ef67c84],
PUP.Optional.TidyNetwork, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\DRAGDROP\{70BC1CDB-0744-4172-BDA0-B5A487D00C3A}, , [abb1171aa3e83df97dc5efcfe71d0df3],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3A3E5EDA-EF46-407B-9177-93262F18C4FB}, , [5ffdad84ccbf60d63f6a533d26deb64a],
PUP.Optional.TNT, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{72A6AB0F-2FA8-4C73-9FCB-1E62A608F001}, , [b0ac60d18902b4820e5ed2ec709407f9],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81693EA1-7A1E-4F5F-8F23-D12A95A01096}, , [72eab67b2368f640218996fa30d4a55b],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90A1C5DF-E87B-473A-9B20-E7FF7854CC67}, , [2e2e52df58331c1a42681b75f70d7e82],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{ABAD1B96-722A-4F25-861B-EE56F752891B}, , [da822110593242f49c0fc8c87a8a52ae],
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{BBC46506-7541-419C-AF76-1D7F84992765}, , [db81c46dc5c673c37e2da0f0fe0632ce],
PUP.Optional.OutBrowse, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\OB, , [9fbdcf62048766d0d53eeebe64a0f20e],
Hodnoty registru: 14
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3a3e5eda-ef46-407b-9177-93262f18c4fb}|AppName, SavePass 1.1-bg.exe, , [ed6f58d9f4979a9c3c8f721e9f657c84]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{abad1b96-722a-4f25-861b-ee56f752891b}|AppName, SavePass 1.1-codedownloader.exe, , [114b29082269a2946b629af6d82c7888]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{21111111-1111-1111-1111-110211671166}|AppName, Discount Buddy-bg.exe, , [bca0d8591972201654775c34a361bf41]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3a3e5eda-ef46-407b-9177-93262f18c4fb}|AppName, SavePass 1.1-bg.exe, , [332939f85932e94d52796e2261a3bb45]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{abad1b96-722a-4f25-861b-ee56f752891b}|AppName, SavePass 1.1-codedownloader.exe, , [c09c49e8becd72c4cc01d4bc0ef67c84]
PUP.Optional.PluginContainer, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr GreatFind|ImagePath, "C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe", , [e775a889177491a547683c710cf8a45c]
PUP.Optional.Updater, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr GreatFind|ImagePath, "C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe", , [c29a38f98cffd06698be368a35cf956b]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3a3e5eda-ef46-407b-9177-93262f18c4fb}|AppName, SavePass 1.1-bg.exe, , [5ffdad84ccbf60d63f6a533d26deb64a]
PUP.Optional.TNT, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{72A6AB0F-2FA8-4C73-9FCB-1E62A608F001}|AppName, TNT2User.exe, , [b0ac60d18902b4820e5ed2ec709407f9]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81693EA1-7A1E-4F5F-8F23-D12A95A01096}|AppName, b9fa2d9b-e48c-497c-8cd2-81a6fca77ed6-2.exe-buttonutil.exe, , [72eab67b2368f640218996fa30d4a55b]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90A1C5DF-E87B-473A-9B20-E7FF7854CC67}|AppName, b9fa2d9b-e48c-497c-8cd2-81a6fca77ed6-2.exe-buttonutil.exe, , [2e2e52df58331c1a42681b75f70d7e82]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{abad1b96-722a-4f25-861b-ee56f752891b}|AppName, SavePass 1.1-codedownloader.exe, , [da822110593242f49c0fc8c87a8a52ae]
PUP.Optional.CrossRider, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{BBC46506-7541-419C-AF76-1D7F84992765}|AppName, b9fa2d9b-e48c-497c-8cd2-81a6fca77ed6-2.exe-codedownloader.exe, , [db81c46dc5c673c37e2da0f0fe0632ce]
PUP.Optional.OutBrowse, HKU\S-1-5-21-2289079560-4057469565-1523236124-1000\SOFTWARE\OB|monitype17, 8/16/14 13:15:3, , [9fbdcf62048766d0d53eeebe64a0f20e]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 26
PUP.Optional.Amonetize, C:\Users\Pepik\AppData\Local\1449, , [91cb0c256a219d994275f835ee15d32d],
PUP.Optional.OpenCandy, C:\Users\Pepik\AppData\Roaming\OpenCandy, , [005cb0813259df57a8ceb642dc26c13f],
PUP.Optional.OpenCandy, C:\Users\Pepik\AppData\Roaming\OpenCandy\6B92B5B36AF94291A4BD479E4DE0B810, , [005cb0813259df57a8ceb642dc26c13f],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\resources, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12bak\resources, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\resources, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\resources, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8bak, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc, , [2f2d83aec7c4e74f83687c98b74c21df],
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater, , [2f2d83aec7c4e74f83687c98b74c21df],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find, , [6fedeb46b1da69cd9953a272d62de917],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find\Extensions, , [6fedeb46b1da69cd9953a272d62de917],
Soubory: 40
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe, , [38247cb5c5c6d95df9d567759d64b749],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{A084C43D-AC30-49CB-A97F-3C3131DBF6AC}.dll, , [8bd1979a02893303735b4b9155acc739],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Local\Temp\{90DA35A6-89CA-49F5-8A93-D22D38533A8D}.dll, , [441869c8cdbea0960dc1d309f60be917],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe, , [a6b6e54cf49778beaa249d3f02ff6e92],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe, , [d785a68baeddea4cdbf3f8e44fb221df],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10\Plugin.exe, , [a9b39a9766250b2b8945d606c140fa06],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5\Plugin.exe, , [0e4e91a0117a59ddf5d9e7f512efab55],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\Plugin.exe, , [e17b6bc62e5dbc7ac30b35a769986799],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8\Plugin.exe, , [5efe53dedcafdd590dc1974528d931cf],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\Plugin.exe, , [0b51f53c315ae74f5678924abf42619f],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find\Extensions\1cc2bb80-20ab-43e5-b958-432d72b546ca.dll, , [e27ab57ca3e87eb818a5459d4bb747b9],
PUP.RiskWare.Tool.CK, C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\adobe.photoshop.cs6-patch.exe, , [283484ad55360c2a2eebc8feb54c837d],
PUP.RiskWare.Patcher, C:\Program Files (x86)\Applian Technologies\Replay Media Catcher 5\replay.media.catcher.5.0.1.15-MPT.exe, , [1b4147ea4d3e3bfbc512d4d6649d3ac6],
Trojan.Agent, C:\Program Files (x86)\GetFLV\GetFLV.v9.1.2.0.loader.exe, , [78e4042d5e2d67cfa8d233d8ee14ba46],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find\Uninstaller.exe, , [baa2072a0d7e5dd97757da027e83d52b],
PUP.Optional.GreatFind, C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.bak, , [90ccfe337219b77fa42ab12b946d9b65],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.bak, , [4a12260baedd53e3933b7468f20f07f9],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10bak\Plugin.exe, , [a5b75fd24249d264c50923b95ea3ff01],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\resources\plugin.dll, , [bba110215c2fde5817b7fddf1be6eb15],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12bak\Plugin.exe, , [1448f73ad6b59f9716b84f8d28d9748c],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12bak\resources\plugin.dll, , [530991a0305bed49ab2303d9a65bf50b],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3bak\Plugin.exe, , [72eadd5491fad561319deeee61a0cd33],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5bak\Plugin.exe, , [afad1c155536cb6be1ede8f4bb4633cd],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\resources\38.0.5.dll, , [fd5f30018efd69cdac2219c3768b7789],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\resources\39.0.0.dll, , [8bd1939ed5b6af8721adb22a837e1ce4],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\resources\40.0.0.dll, , [e17be24f7c0fec4ac5093f9d8978b14f],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\Plugin.exe, , [1a4258d9a8e38bab6866607c4db4748c],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\resources\38.0.5.dll, , [223aae83711a76c0438bfae2bf429c64],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\resources\39.0.0.dll, , [fb61ce63ccbf45f1725c8458cc35cf31],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7bak\resources\40.0.0.dll, , [78e40829d2b975c1705e8359e0217e82],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8bak\Plugin.exe, , [74e8d65b365588ae04cac616a25feb15],
PUP.Optional.OpenCandy, C:\Users\Pepik\AppData\Local\Flvto Youtube Downloader\FlvtoConverterSetupV0.6.6.exe, , [a0bc32ff2a61e650d7d2b7de877e9d63],
PUP.Optional.GreatFind, C:\Users\Pepik\AppData\Roaming\OpenCandy\6B92B5B36AF94291A4BD479E4DE0B810\setup.exe, , [61fb0b2691facb6b5d71bd1f6899e11f],
PUP.RiskWare.Patcher, C:\Users\Pepik\Downloads\Replay-Media-Catcher-v5.0.1.54-+-Crack.rar, , [6eee91a02a61d660c710efbbe21ffe02],
RiskWare.CrudeTheftMarker, C:\Users\Pepik\Downloads\Replay-Video-Capture-v6.0.6.rar, , [7ddf8da42a61f0465dda5b4bb151ac54],
PUP.RiskWare.Patcher, C:\Users\Pepik\YTD Video Downloader\patch.exe, , [471570c17d0e072f5483c8e2f01126da],
PUP.Optional.Amonetize, C:\Users\Pepik\AppData\Local\1449\status.cfg, , [91cb0c256a219d994275f835ee15d32d],
PUP.Optional.Amonetize, C:\Users\Pepik\AppData\Local\1449\Updater.xml, , [91cb0c256a219d994275f835ee15d32d],
PUP.Optional.GreatFind, C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\temp, , [0d4f49e8fa91082e57933ed6659e1ce4],
PUP.Optional.GreatFind, C:\Program Files (x86)\Great Find\7za.exe, , [6fedeb46b1da69cd9953a272d62de917],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Přispějete na provoz fóra?