VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

nějaký viry ..

https://forum.viry.cz:443/viewtopic.php?t=146190

Stránka 1 z 3

nějaký viry ..

Napsal: 25 zář 2015 10:03
od bobik123
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-09-2015
Ran by ASUS (administrator) on PC (25-09-2015 10:59:47)
Running from C:\Users\ASUS\Desktop
Loaded Profiles: ASUS (Available Profiles: UpdatusUser & ASUS)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
() C:\WINDOWS\SysWOW64\PnkBstrA.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Intel Corporation) C:\WINDOWS\System32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(Microsoft Corporation) C:\WINDOWS\System32\GWX\GWX.exe
() C:\Users\ASUS\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\ASUS\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(GameRanger Technologies) C:\Users\ASUS\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
() C:\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\vnsaE8A0.tmp
() C:\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\knsfF424.tmpfs
() C:\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\jnsuCB3.tmp
(OB) C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-10.exe
() C:\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\hnsy2379.tmp
() C:\Users\ASUS\AppData\Local\AD361280-1443176701-81E2-3131-08606E160A3A\snse7DA0.tmp
(OB) C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-1-6.exe
() C:\Users\ASUS\AppData\Local\Ancode.exe
() C:\Program Files\Concom\Concom.exe
(Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\rundll32.exe
() C:\Users\ASUS\AppData\Local\Temp\Font__7226_il92329.exe
() C:\ProgramData\ApplicationHosting\ApplicationHosting.exe
() C:\ProgramData\Airron\Airron.exe
(Cinema PlusV24.09) C:\Users\ASUS\AppData\Local\Temp\nsx965E.tmp\Jhlvegevzuc.exe
() C:\ProgramData\Airron\Airron.exe
(OB) C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-64.exe
(CMI Limited) C:\Users\ASUS\AppData\Local\Temp\nsw559A.tmp
(Cinema PlusV24.09) C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-10.exe
(Cinema PlusV24.09) C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-1-6.exe
(Cinema PlusV24.09) C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-64.exe
(DTools LIMITED) C:\ProgramData\UWdsManProU\WdsManPro.exe
() C:\Users\ASUS\AppData\Local\Temp\nstBE7A.tmp
(MyBrowser) C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe
(MyBrowser) C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe
(TODO: <公司名>) C:\Program Files (x86)\SFK\SSFK.exe
(CMI Limited) C:\Users\ASUS\AppData\Local\Temp\nso248D.tmp
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\System32\msiexec.exe
(Cinema PlusV24.09) C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-3.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\ASUS\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13197456 2012-09-28] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2916584 2010-08-12] (ESET)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2013-05-01] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\RunOnce: [Update] => C:\Users\ASUS\AppData\Roaming\VOPackage\VOPackage.exe [931805 2015-09-25] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1447694392-248528962-4126827209-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
HKU\S-1-5-21-1447694392-248528962-4126827209-1002\...\Run: [EvolveClient] => C:\Program Files\Echobit\Evolve\EvolveClient.exe [3334016 2015-07-23] (Echobit LLC)
HKU\S-1-5-21-1447694392-248528962-4126827209-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\ASUS\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1447694392-248528962-4126827209-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\ASUS\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1447694392-248528962-4126827209-1002\...\Run: [GoogleChromeAutoLaunch_5F00D79597A684C35D384C6669E057DF] => C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe [636928 2015-08-29] (MyBrowser)
AppInit_DLLs: C:\ProgramData\Airron\Haykix.dll => C:\ProgramData\Airron\Haykix.dll [883200 2015-09-25] ()
AppInit_DLLs-x32: C:\ProgramData\Airron\Kantom.dll => C:\ProgramData\Airron\Kantom.dll [738816 2015-09-25] ()
Startup: C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [2015-07-09]
ShortcutTarget: GameRanger.lnk -> C:\Users\ASUS\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{56EE1D7F-67FF-4DA8-AF0F-643A1D516CE3}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{FC31EF48-E3C3-4A48-ABC5-1B2F6B3CB9A1}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1447694392-248528962-4126827209-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqICWRlg5p-Tqs2OVvqpTxFp_mf8596oJ0raYPS2lBR3JnibuQMfA_mb-rAreTX0THRAcx_1LRKClLpeY_JU6b_6EXZYM7HcHroknzRy_g0JFTeO4ABl7KG_RBoXrLNFjepdC8A12ONhPdGm2_5LngoPhfswJ&q={searchTerms}
HKU\S-1-5-21-1447694392-248528962-4126827209-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqICWRlg5p-Tqs2OVvqpTxFp_mf8596oJ0raYPS2lBR3JnibuQMfA_mb-rAreTX0THRAcx_1LRKClLpvqjMZMi5Vt-ap3r-nQH3vbz0x9zJA2HaS43JCDjXLYAp_sPFDbslysQS_zZmSxSOvP7ArKRgobZCX9
HKU\S-1-5-21-1447694392-248528962-4126827209-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqICWRlg5p-Tqs2OVvqpTxFp_mf8596oJ0raYPS2lBR3JnibuQMfA_mb-rAreTX0THRAcx_1LRKClLpeY_JU6b_6EXZYM7HcHroknzRy_g0JFTeO4ABl7KG_RBoXrLNFjepdC8A12ONhPdGm2_5LngoPhfswJ&q={searchTerms}
HKU\S-1-5-21-1447694392-248528962-4126827209-1002\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqICWRlg5p-Tqs2OVvqpTxFp_mf8596oJ0raYPS2lBR3JnibuQMfA_mb-rAreTX0THRAcx_1LRKClLpeY_JU6b_6EXZYM7HcHroknzRy_g0JFTeO4ABl7KG_RBoXrLNFjepdC8A12ONhPdGm2_5LngoPhfswJ&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL =
SearchScopes: HKLM-x32 -> ielnksrch URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqICWRlg5p-Tqs2OVvqpTxFp_mf8596oJ0raYPS2lBR3JnibuQMfA_mb-rAreTX0THRAcx_1LRKClLpeY_JU6b_6EXZYM7HcHroknzRy_g0JFTeO4ABl7KG_RBoXrLNFjepdC8A12ONhPdGm2_5LngoPhfswJ&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> DefaultScope {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqICWRlg5p-Tqs2OVvqpTxFp_mf8596oJ0raYPS2lBR3JnibuQMfA_mb-rAreTX0THRAcx_1LRKClLpeY_JU6b_6EXZYM7HcHroknzRy_g0JFTeO4ABl7KG_RBoXrLNFjepdC8A12ONhPdGm2_5LngoPhfswJ&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {060B046C-71E8-4393-B42C-F6E213AC19E1} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {0BBA08A4-3430-4924-BBD8-987539D419CE} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_16194
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {28FB04F3-498F-4FC4-BB59-56790F44FF2C} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_16194
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {356A085D-E3AB-460C-A3F1-3874890869B1} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {60CD57CE-8ED8-4F14-B488-39DCE95BEC7E} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_16194
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {78CF3F94-9144-427E-92C5-1B51230A2B0A} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {828F1FDD-72DA-483B-9599-4F5386202733} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {B6A4C9EB-A25A-4496-87E1-35432DD113C9} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_16194
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {FF057E0F-007F-4814-ABBD-5083D7857366} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-1447694392-248528962-4126827209-1002 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqICWRlg5p-Tqs2OVvqpTxFp_mf8596oJ0raYPS2lBR3JnibuQMfA_mb-rAreTX0THRAcx_1LRKClLpeY_JU6b_6EXZYM7HcHroknzRy_g0JFTeO4ABl7KG_RBoXrLNFjepdC8A12ONhPdGm2_5LngoPhfswJ&q={searchTerms}
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=14431696 ... RYDDZ8RYDX

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-22] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-22] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [2015-09-25] (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [2015-09-25] (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin HKU\S-1-5-21-1447694392-248528962-4126827209-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\ASUS\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1447694392-248528962-4126827209-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\ASUS\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-27] (Unity Technologies ApS)
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: No Name - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2015-06-16]

Chrome:
=======
CHR HomePage: Default -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWqICWRlg5p-Tqs2OVvqpTxFp_mf8596oJ0raYPS2lBR3JnibuQMfA_mb-rAreTX0THRAcx_1LRKClLpeDYPKh1k8l7ChCjf7-OeNDChoByk3k4CticzKuceTJz3Lms4Uu0d8z_0sjkad4ODVqOaz0noIKCHT9
CHR StartupUrls: Default -> "hxxp://www.mystartsearch.com/?type=hp&ts=14431 ... RYDDZ8RYDX"
CHR DefaultSearchURL: Default -> hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
CHR DefaultSearchKeyword: Default -> mystartsearch
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-03]
CHR Extension: (Dokumenty Google) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-03]
CHR Extension: (Disk Google) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-03]
CHR Extension: (YouTube) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-03]
CHR Extension: (Vyhledávání Google) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-03]
CHR Extension: (Tabulky Google) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02]
CHR Extension: (Skype Click to Call) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-08-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-03]
CHR Extension: (Gmail) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-03]
CHR Extension: () - C:\Users\ASUS\AppData\Local\Virtual Bus\Component [2015-09-25]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&t ... RYDDZ8RYDX

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Airron; C:\ProgramData\\Airron\\Airron.exe [441856 2015-09-20] () [File not signed]
R2 ApplicationHosting; C:\ProgramData\\ApplicationHosting\\ApplicationHosting.exe [441856 2015-09-21] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 Concom; C:\Program Files\Concom\Concom.exe [379904 2015-09-24] () [File not signed]
R2 dipubibu; C:\Users\ASUS\AppData\Local\AD361280-1443176701-81E2-3131-08606E160A3A\snse7DA0.tmp [303616 2015-09-25] () [File not signed]
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [42360 2010-08-12] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [810144 2010-08-12] (ESET)
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2015-07-13] (Echobit LLC)
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-09-25] (globalUpdate) [File not signed] <==== ATTENTION
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-09-25] (globalUpdate) [File not signed] <==== ATTENTION
S2 gupdate1d0a83d726de062; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-08-03] (Google Inc.)
S3 gupdatem1d0a83d728293cb; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-08-03] (Google Inc.)
R2 gyvixodu; C:\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\hnsy2379.tmp [203776 2015-09-25] () [File not signed]
R2 lehicewu; C:\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\jnsuCB3.tmp [181760 2015-09-25] () [File not signed]
R2 nowuedctepupdateama; C:\Users\ASUS\AppData\Local\Ancode.exe [77312 2015-09-25] () [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75064 2015-08-09] ()
R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [458400 2015-09-25] (TODO: <公司名>)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WdsManPro; C:\ProgramData\UWdsManProU\WdsManPro.exe [442504 2015-09-25] (DTools LIMITED)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 junikigy; C:\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\knsfF424.tmpfs [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ATP; C:\Windows\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUS Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.)
S3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [107328 2012-10-01] (Intel Corporation)
S3 DptfDevFan; C:\Windows\system32\DRIVERS\DptfDevFan.sys [42816 2012-10-01] (Intel Corporation)
S3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [64832 2012-10-01] (Intel Corporation)
S3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [96576 2012-10-01] (Intel Corporation)
S3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [229184 2012-10-01] (Intel Corporation)
S3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [363328 2012-10-01] (Intel Corporation)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [168544 2010-07-29] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [141264 2010-07-29] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [126320 2010-07-29] (ESET)
S3 IntcDAud; C:\Windows\system32\DRIVERS\IntcDAud.sys [342528 2012-10-08] (Intel(R) Corporation) [File not signed]
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew00.sys [3345376 2013-10-08] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S2 BstHdDrv; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [X]
S3 XFDriver64; \??\C:\Program Files (x86)\Xfire2\XFDriver64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-25 10:59 - 2015-09-25 11:00 - 00023963 _____ C:\Users\ASUS\Desktop\FRST.txt
2015-09-25 10:59 - 2015-09-25 10:58 - 00112640 _____ (forum.viry.cz) C:\Users\ASUS\Desktop\FRSTLauncher.exe
2015-09-25 10:58 - 2015-09-25 10:58 - 00112640 _____ (forum.viry.cz) C:\Users\ASUS\Downloads\FRSTLauncher.exe
2015-09-25 10:58 - 2015-09-25 10:58 - 00004008 _____ C:\WINDOWS\System32\Tasks\IisaTUcvyNpQTZEHP0tG
2015-09-25 10:58 - 2015-09-25 10:58 - 00001014 _____ C:\WINDOWS\Tasks\IisaTUcvyNpQTZEHP0tG.job
2015-09-25 10:56 - 2015-09-25 10:57 - 00000000 ____D C:\ProgramData\UWdsManProU
2015-09-25 10:54 - 2015-09-25 10:54 - 02192384 _____ (Farbar) C:\Users\ASUS\Downloads\FRST64.exe
2015-09-25 10:37 - 2015-09-25 10:58 - 00002450 _____ C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-5_user.job
2015-09-25 10:37 - 2015-09-25 10:37 - 00004012 _____ C:\WINDOWS\System32\Tasks\ccKE7KWDPeDYPanKq2PM9f
2015-09-25 10:37 - 2015-09-25 10:37 - 00001018 _____ C:\WINDOWS\Tasks\ccKE7KWDPeDYPanKq2PM9f.job
2015-09-25 10:36 - 2015-09-25 10:58 - 00008526 _____ C:\WINDOWS\System32\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-7
2015-09-25 10:36 - 2015-09-25 10:58 - 00008526 _____ C:\WINDOWS\System32\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-6
2015-09-25 10:36 - 2015-09-25 10:58 - 00007166 _____ C:\WINDOWS\System32\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-3
2015-09-25 10:36 - 2015-09-25 10:58 - 00006146 _____ C:\WINDOWS\System32\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-1-7
2015-09-25 10:36 - 2015-09-25 10:58 - 00006146 _____ C:\WINDOWS\System32\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-1-6
2015-09-25 10:36 - 2015-09-25 10:58 - 00005522 _____ C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-7.job
2015-09-25 10:36 - 2015-09-25 10:58 - 00005522 _____ C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-6.job
2015-09-25 10:36 - 2015-09-25 10:58 - 00005454 _____ C:\WINDOWS\System32\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-5
2015-09-25 10:36 - 2015-09-25 10:58 - 00004162 _____ C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-3.job
2015-09-25 10:36 - 2015-09-25 10:58 - 00003142 _____ C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-1-7.job
2015-09-25 10:36 - 2015-09-25 10:58 - 00003142 _____ C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-1-6.job
2015-09-25 10:36 - 2015-09-25 10:58 - 00002450 _____ C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-5.job
2015-09-25 10:36 - 2015-09-25 10:57 - 00002116 _____ C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-10_user.job
2015-09-25 10:36 - 2015-09-25 10:37 - 00000000 ____D C:\Program Files (x86)\CinemaPlus-3.2cV24.09
2015-09-25 10:36 - 2015-09-25 10:36 - 00000000 ____D C:\Program Files (x86)\963c382f-8ddd-4cf1-9fa0-d87507a907e9
2015-09-25 10:35 - 2015-09-25 10:56 - 00004038 _____ C:\WINDOWS\System32\Tasks\MyBrowser
2015-09-25 10:35 - 2015-09-25 10:56 - 00002322 _____ C:\Users\Public\Desktop\MyBrowser.lnk
2015-09-25 10:35 - 2015-09-25 10:56 - 00001052 _____ C:\WINDOWS\Tasks\MyBrowser.job
2015-09-25 10:35 - 2015-09-25 10:36 - 00000000 ____D C:\ProgramData\3WdsManPro3
2015-09-25 10:35 - 2015-09-25 10:35 - 00000000 __SHD C:\Users\ASUS\AppData\Roaming\AnyProtectEx
2015-09-25 10:35 - 2015-09-25 10:35 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\mystartsearch
2015-09-25 10:35 - 2015-09-25 10:35 - 00000000 ____D C:\Users\ASUS\AppData\Local\MyBrowser
2015-09-25 10:35 - 2015-09-25 10:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyBrowser
2015-09-25 10:35 - 2015-09-25 10:35 - 00000000 ____D C:\Program Files (x86)\AnyProtectEx
2015-09-25 10:34 - 2015-09-25 10:34 - 00000292 _____ C:\task.vbs
2015-09-25 10:34 - 2015-09-25 10:34 - 00000000 ____D C:\Program Files (x86)\MyBrowser
2015-09-25 10:30 - 2015-09-25 10:51 - 00000000 ____D C:\ProgramData\Airron
2015-09-25 10:30 - 2015-09-25 10:30 - 00003560 _____ C:\WINDOWS\System32\Tasks\snp
2015-09-25 10:30 - 2015-09-25 10:30 - 00002385 _____ C:\WINDOWS\SysWOW64\findit.xml
2015-09-25 10:30 - 2015-09-25 10:30 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Mozilla
2015-09-25 10:30 - 2015-09-25 10:30 - 00000000 ____D C:\ProgramData\ApplicationHosting
2015-09-25 10:30 - 2015-09-25 10:30 - 00000000 ____D C:\ProgramData\Airrons
2015-09-25 10:29 - 2015-09-25 10:29 - 00004154 _____ C:\WINDOWS\System32\Tasks\amiupdaterExi
2015-09-25 10:29 - 2015-09-25 10:29 - 00003372 _____ C:\WINDOWS\System32\Tasks\amiupdaterExd
2015-09-25 10:28 - 2015-09-25 10:28 - 00001002 _____ C:\Users\UpdatusUser\Desktop\Liveistream.lnk
2015-09-25 10:28 - 2015-09-25 10:28 - 00001002 _____ C:\Users\ASUS\Desktop\Liveistream.lnk
2015-09-25 10:28 - 2015-09-25 10:28 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Liveistream
2015-09-25 10:28 - 2015-09-25 10:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Liveistream
2015-09-25 10:28 - 2015-09-25 10:28 - 00000000 ____D C:\Program Files (x86)\Liveistream
2015-09-25 10:27 - 2015-09-25 10:57 - 00000000 ____D C:\Program Files (x86)\SFK
2015-09-25 10:27 - 2015-09-25 10:56 - 00000102 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-09-25 10:27 - 2015-09-25 10:28 - 00000000 ____D C:\ProgramData\aWdsManProa
2015-09-25 10:27 - 2015-09-25 10:27 - 00058765 _____ () C:\Users\ASUS\Desktop\PlayerStubWrapper1.exe
2015-09-25 10:27 - 2015-09-25 10:27 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\istartsurf
2015-09-25 10:25 - 2015-09-25 10:30 - 00000000 ____D C:\Users\ASUS\AppData\Local\AD361280-1443176701-81E2-3131-08606E160A3A
2015-09-25 10:25 - 2015-09-25 10:25 - 00077312 _____ C:\Users\ASUS\AppData\Local\Ancode.exe
2015-09-25 10:25 - 2015-09-25 10:25 - 00006128 _____ C:\WINDOWS\System32\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-1-7
2015-09-25 10:25 - 2015-09-25 10:25 - 00005784 _____ C:\WINDOWS\System32\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-1-6
2015-09-25 10:25 - 2015-09-25 10:25 - 00005436 _____ C:\WINDOWS\System32\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-5
2015-09-25 10:25 - 2015-09-25 10:25 - 00003124 _____ C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-1-7.job
2015-09-25 10:25 - 2015-09-25 10:25 - 00003042 _____ C:\WINDOWS\System32\Tasks\Virtual Bus
2015-09-25 10:25 - 2015-09-25 10:25 - 00002780 _____ C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-1-6.job
2015-09-25 10:25 - 2015-09-25 10:25 - 00002432 _____ C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-5_user.job
2015-09-25 10:25 - 2015-09-25 10:25 - 00002432 _____ C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-5.job
2015-09-25 10:25 - 2015-09-25 10:25 - 00000000 ____D C:\Users\ASUS\AppData\Local\Virtual Bus
2015-09-25 10:25 - 2015-09-25 10:25 - 00000000 ____D C:\Program Files\Concom
2015-09-25 10:24 - 2015-09-25 10:58 - 00003950 _____ C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineUA
2015-09-25 10:24 - 2015-09-25 10:58 - 00003714 _____ C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineCore
2015-09-25 10:24 - 2015-09-25 10:58 - 00000978 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-09-25 10:24 - 2015-09-25 10:58 - 00000974 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-09-25 10:24 - 2015-09-25 10:36 - 00000000 ____D C:\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A
2015-09-25 10:24 - 2015-09-25 10:25 - 00000000 ____D C:\Program Files (x86)\SavePass 1.1
2015-09-25 10:24 - 2015-09-25 10:24 - 00008508 _____ C:\WINDOWS\System32\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-7
2015-09-25 10:24 - 2015-09-25 10:24 - 00008508 _____ C:\WINDOWS\System32\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-6
2015-09-25 10:24 - 2015-09-25 10:24 - 00007148 _____ C:\WINDOWS\System32\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-3
2015-09-25 10:24 - 2015-09-25 10:24 - 00005504 _____ C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-7.job
2015-09-25 10:24 - 2015-09-25 10:24 - 00005504 _____ C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-6.job
2015-09-25 10:24 - 2015-09-25 10:24 - 00004144 _____ C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-3.job
2015-09-25 10:24 - 2015-09-25 10:24 - 00002098 _____ C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-10_user.job
2015-09-25 10:24 - 2015-09-25 10:24 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\VOPackage
2015-09-25 10:24 - 2015-09-25 10:24 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2015-09-25 10:24 - 2015-09-25 10:24 - 00000000 ____D C:\Users\ASUS\AppData\Local\globalUpdate
2015-09-25 10:24 - 2015-09-25 10:24 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2015-09-25 10:24 - 2015-09-25 10:24 - 00000000 ____D C:\Program Files (x86)\ba0c937c-4d5b-4ea1-8941-e9e2cff32790
2015-09-25 10:24 - 2015-08-02 21:51 - 00000753 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2015-09-25 10:23 - 2015-09-25 10:23 - 01661679 _____ C:\Users\ASUS\Downloads\Keygen_v7.rar
2015-09-25 10:21 - 2015-09-25 10:21 - 02007912 _____ (Gianpaolo Bottin ) C:\Users\ASUS\Downloads\MouseSpeedSetup (2).exe
2015-09-25 10:21 - 2015-09-25 10:21 - 02007912 _____ (Gianpaolo Bottin ) C:\Users\ASUS\Downloads\MouseSpeedSetup (1).exe
2015-09-25 10:21 - 2015-09-25 10:21 - 00001061 _____ C:\Users\ASUS\Desktop\Mouse Speed Switcher.lnk
2015-09-25 10:21 - 2015-09-25 10:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mouse Speed Switcher
2015-09-25 10:21 - 2015-09-25 10:21 - 00000000 ____D C:\Program Files (x86)\MouseSpeedSwitcher
2015-09-24 23:09 - 2015-09-24 23:09 - 00000594 _____ C:\WINDOWS\PFRO.log
2015-09-24 20:34 - 2015-09-24 23:10 - 00003270 _____ C:\WINDOWS\setupact.log
2015-09-24 20:34 - 2015-09-24 20:34 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-09-24 20:21 - 2015-09-24 20:21 - 00633886 _____ C:\Users\ASUS\Desktop\wawa_3daim_tdm.iwd
2015-09-24 16:57 - 2015-09-24 16:57 - 00000981 _____ C:\Users\ASUS\Desktop\GSC.lnk
2015-09-24 16:57 - 2015-09-24 16:57 - 00000000 ____D C:\Users\ASUS\Documents\GSC
2015-09-24 16:57 - 2015-09-24 16:57 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GSC 2.00
2015-09-24 16:56 - 2015-09-24 17:41 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\GSC 2.00
2015-09-24 16:56 - 2015-09-24 16:57 - 00000000 ____D C:\Program Files (x86)\GSC 2.00
2015-09-24 16:56 - 2015-09-24 16:56 - 00209144 _____ C:\Users\ASUS\Downloads\GSCSetup.exe
2015-09-23 20:41 - 2015-09-23 22:23 - 1803217814 _____ C:\Users\ASUS\Downloads\Obávaný-bojovník-(2006)-(CZ)-(Akční,-Drama,-Životopisný).avi.crdownload
2015-09-23 17:59 - 2015-09-23 17:59 - 07620921 _____ C:\Users\ASUS\Desktop\mp_disco.iwd
2015-09-23 15:52 - 2015-09-23 15:52 - 00000038 _____ C:\Users\ASUS\Desktop\flm dwlnd.txt
2015-09-23 11:08 - 2015-09-23 11:08 - 00047537 _____ C:\Users\ASUS\Desktop\399.ass
2015-09-23 10:50 - 2012-04-13 00:22 - 171182616 _____ C:\Users\ASUS\Desktop\400 - Rhapsody In Drew.avi
2015-09-21 17:22 - 2015-09-21 17:33 - 189493248 _____ C:\Users\ASUS\Downloads\Pokemon-08x393-Bobulí-dobrodružství.avi.crdownload
2015-09-21 13:05 - 2015-09-21 14:03 - 1047527424 _____ C:\Users\ASUS\Downloads\Přískra8.part06.rar
2015-09-20 19:55 - 2015-09-20 19:55 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Canneverbe Limited
2015-09-20 19:55 - 2015-09-20 19:55 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2015-09-20 19:54 - 2015-09-20 19:55 - 05650560 _____ (Canneverbe Limited ) C:\Users\ASUS\Downloads\cdbxp_setup_4.5.6.5844.exe
2015-09-20 19:48 - 2015-09-20 19:50 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Nero
2015-09-20 19:47 - 2015-09-24 18:15 - 00000000 ____D C:\ProgramData\Nero
2015-09-20 19:44 - 2015-09-20 19:44 - 59902132 _____ (Oleg N. Scherbakov) C:\Users\ASUS\Downloads\Nero-9.4.12.3_free-notoolbar.exe
2015-09-19 15:31 - 2015-09-19 15:31 - 00010457 _____ C:\Users\ASUS\Downloads\macro-sakura.lua
2015-09-19 13:04 - 2015-09-19 13:15 - 202790912 _____ C:\Users\ASUS\Downloads\Pokemon-08x392-Pacifidlogská-šance.avi.crdownload
2015-09-19 12:51 - 2015-09-19 13:50 - 1047527424 _____ C:\Users\ASUS\Downloads\Přískra8.part05.rar
2015-09-19 12:29 - 2015-09-19 12:39 - 188651520 _____ C:\Users\ASUS\Downloads\Pokemon-08x397-Zahájení-Velkých-slavností.avi
2015-09-19 11:40 - 2015-09-19 11:40 - 00045616 _____ C:\Users\ASUS\Desktop\398 red col.ass
2015-09-19 09:50 - 2015-09-19 09:50 - 00000488 _____ C:\Users\ASUS\Desktop\398.lnk
2015-09-19 09:46 - 2015-09-19 09:46 - 00001930 _____ C:\Users\ASUS\Downloads\Fonty.ass
2015-09-18 18:56 - 2015-09-18 19:06 - 161701888 _____ C:\Users\ASUS\Downloads\Pokemon-08x391-Chaotická-bitka-o-stuhu.avi
2015-09-18 18:09 - 2015-09-18 18:20 - 199135232 _____ C:\Users\ASUS\Downloads\Pokemon-08x390-Zamilovaní-Donphani.avi.crdownload
2015-09-18 18:03 - 2015-09-19 21:06 - 00005712 _____ C:\Users\ASUS\Desktop\PKMN files.txt
2015-09-17 21:46 - 2015-09-17 21:58 - 203270144 _____ C:\Users\ASUS\Downloads\Pokemon-08x389-Wynautí-spřežení.avi
2015-09-17 14:43 - 2015-09-17 14:54 - 199258112 _____ C:\Users\ASUS\Downloads\Pokemon-08x388-Zloděj-Linoone.avi.crdownload
2015-09-17 14:01 - 2015-09-17 14:12 - 200376320 _____ C:\Users\ASUS\Downloads\Pokemon-08x387-Osm-nestačí.avi.crdownload
2015-09-17 13:28 - 2015-09-17 13:39 - 200065024 _____ C:\Users\ASUS\Downloads\Pokemon-08x386-Důležitý-osmý-zápas.avi.crdownload
2015-09-17 12:44 - 2015-09-17 12:56 - 202438656 _____ C:\Users\ASUS\Downloads\Pokemon-08x385-Slyším-Raltse.avi
2015-09-17 10:28 - 2015-09-17 10:39 - 199852032 _____ C:\Users\ASUS\Downloads\Pokemon-08x384-Ledový-Snorunt.avi
2015-09-17 09:06 - 2015-09-17 09:20 - 191805440 _____ C:\Users\ASUS\Downloads\Pokemon-08x383-Absol-utní-pohroma.avi
2015-09-16 21:18 - 2015-09-16 21:29 - 191229952 _____ C:\Users\ASUS\Downloads\Pokemon-08x382-Tajemné-Trapinchí-jezero.avi
2015-09-16 18:35 - 2015-09-16 18:46 - 201375744 _____ C:\Users\ASUS\Downloads\Pokemon-08x381-Jedna-Mawile.avi
2015-09-16 16:07 - 2015-09-16 16:18 - 188633088 _____ C:\Users\ASUS\Downloads\Pokemon-08x380-Horem-dolem-Claydolem.avi
2015-09-16 09:25 - 2015-09-16 09:35 - 189833216 _____ C:\Users\ASUS\Downloads\Pokemon-08x378-Kde-je-Armaldo.avi
2015-09-16 08:51 - 2015-09-16 08:51 - 00046365 _____ C:\Users\ASUS\Desktop\398 (1).ass
2015-09-15 22:37 - 2015-09-15 22:47 - 186136576 _____ C:\Users\ASUS\Downloads\Pokemon-08x377-Drake-z-Elitní-čtyřky.avi
2015-09-15 17:16 - 2015-09-15 17:27 - 187629568 _____ C:\Users\ASUS\Downloads\Pokemon-08x376-Silný-jako-Solrock.avi.crdownload
2015-09-15 16:54 - 2015-09-15 17:05 - 186451968 _____ C:\Users\ASUS\Downloads\Pokemon-08x375-Zápas-ve-vesmírném-středisku!.avi.crdownload
2015-09-15 15:13 - 2015-09-15 15:13 - 00015788 _____ C:\Users\ASUS\Downloads\[kat.cr]pokemon.battle.frontier.47.end.of.a.journey.yet.beginning.of.a.journey.jap.eng.subs (1).torrent
2015-09-15 15:07 - 2015-09-15 15:07 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\dvdcss
2015-09-15 14:48 - 2015-09-15 15:02 - 00000000 ____D C:\Users\ASUS\Downloads\Pokemon Season 9 - Battle Frontier
2015-09-15 14:48 - 2015-09-15 14:48 - 00073454 _____ C:\Users\ASUS\Downloads\Pokemon_Season_9_-_Battle_Frontier.torrent
2015-09-15 14:43 - 2015-09-15 14:43 - 00015788 _____ C:\Users\ASUS\Downloads\[kat.cr]pokemon.battle.frontier.47.end.of.a.journey.yet.beginning.of.a.journey.jap.eng.subs.torrent
2015-09-15 14:40 - 2015-09-15 14:40 - 00040379 _____ C:\Users\ASUS\Downloads\C797E8D33B4334BC6B36F8B6AC4AFCAE64748013.torrent
2015-09-15 14:27 - 2015-09-15 15:22 - 00000000 ____D C:\Users\ASUS\Downloads\9 - Battle Frontier
2015-09-15 14:27 - 2015-09-15 15:02 - 250513050 _____ C:\Users\ASUS\Desktop\426 - Battle Arena! Kakutou taiketsu! (Jap+Eng).ogm
2015-09-15 14:24 - 2015-09-15 14:24 - 00062625 _____ C:\Users\ASUS\Downloads\39617053076DB50B3B86746541507B45439F2FDA.torrent
2015-09-15 14:17 - 2015-09-15 15:37 - 00000000 ____D C:\Users\ASUS\Downloads\Pokemon Season 9 Battle Frontier Complete 323-468 Episods Salman Sk Silver RG
2015-09-15 14:15 - 2015-09-15 14:15 - 00015438 _____ C:\Users\ASUS\Downloads\71A2A0DEF6097275389ED15CF67D66349FC31E25.torrent
2015-09-15 14:00 - 2015-09-15 14:00 - 00520376 _____ C:\Users\ASUS\Downloads\subrip_0.96b.zip
2015-09-15 12:59 - 2015-09-15 13:09 - 00000000 ____D C:\Users\ASUS\Desktop\SK
2015-09-15 12:14 - 2015-09-20 10:40 - 00672015 _____ C:\Users\ASUS\Downloads\Anglické titulky pro AB.rar
2015-09-15 12:04 - 2015-09-15 12:04 - 00315558 _____ C:\Users\ASUS\Downloads\Titulky.zip
2015-09-15 10:47 - 2015-09-15 10:53 - 00047875 _____ C:\Users\ASUS\Downloads\398.ass
2015-09-14 20:28 - 2015-09-14 20:38 - 188598272 _____ C:\Users\ASUS\Downloads\Pokemon-08x374-Souboj-titánů.avi
2015-09-14 20:05 - 2015-09-14 20:15 - 185581568 _____ C:\Users\ASUS\Downloads\Pokemon-08x373-Vzestup-Groudona.avi.crdownload
2015-09-14 17:24 - 2015-09-14 17:35 - 190349312 _____ C:\Users\ASUS\Downloads\Pokemon-08x372-Zápas-svalů.avi.crdownload
2015-09-14 16:58 - 2015-09-14 17:09 - 174955520 _____ C:\Users\ASUS\Downloads\PA3GKO7AMH1SN.avi.crdownload
2015-09-14 16:18 - 2015-09-14 16:29 - 178276352 _____ C:\Users\ASUS\Downloads\PA3GKO7AMH0SN.avi.crdownload
2015-09-14 14:35 - 2015-09-14 14:35 - 00000702 _____ C:\Users\ASUS\Desktop\legit_scoperifle_bySubversion2.ass
2015-09-14 14:01 - 2015-09-14 14:11 - 179212288 _____ C:\Users\ASUS\Downloads\PA3GKO6AMH9SN.avi.crdownload
2015-09-14 12:37 - 2015-09-14 12:37 - 00498420 _____ C:\Users\ASUS\Downloads\codehook.rar
2015-09-14 11:57 - 2015-09-14 11:57 - 00000039 _____ C:\Users\ASUS\Desktop\legit_scoperifle_bySubversion2.txt
2015-09-14 11:36 - 2015-09-14 12:11 - 630777134 _____ C:\Users\ASUS\Downloads\Poketo7.part8.rar
2015-09-14 09:17 - 2015-09-14 09:17 - 01233137 _____ C:\Users\ASUS\Downloads\GoT-ss.rar
2015-09-13 22:55 - 2015-09-13 22:55 - 10774603 _____ C:\Users\ASUS\Desktop\tdm bur.rar
2015-09-13 22:47 - 2015-09-20 12:12 - 00000000 ____D C:\Users\ASUS\Desktop\tdm bur
2015-09-13 11:27 - 2015-09-13 11:27 - 02007912 _____ (Gianpaolo Bottin ) C:\Users\ASUS\Downloads\MouseSpeedSetup.exe
2015-09-13 11:27 - 2015-09-13 11:27 - 00000000 ____D C:\ProgramData\Licenses
2015-09-13 10:18 - 2015-09-13 10:18 - 00324319 _____ C:\Users\ASUS\Downloads\buttons_default.cfg
2015-09-12 13:15 - 2015-09-12 13:15 - 06839982 _____ C:\Users\ASUS\Desktop\mp_shipment.iwd
2015-09-12 13:15 - 2015-09-12 13:15 - 01243997 _____ C:\Users\ASUS\Desktop\mp_jojo.iwd
2015-09-12 13:15 - 2015-09-12 13:15 - 00589187 _____ C:\Users\ASUS\Desktop\mp_glassarena.iwd
2015-09-12 12:12 - 2015-09-12 12:12 - 00042054 _____ C:\Users\ASUS\Downloads\ZuRoMoDZ Ultimate Patch V1.1 With Real Aimbot(2).zip
2015-09-11 22:45 - 2015-09-11 22:46 - 00722432 _____ C:\Users\ASUS\Downloads\Console Variable Unlocker_[www.unknowncheats.me]_.exe
2015-09-11 12:58 - 2015-09-11 13:57 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo7.part7.rar
2015-09-10 16:24 - 2015-09-10 16:35 - 188651520 _____ C:\Users\ASUS\Downloads\Pokemon-08x397-Zahájení-Velkých-slavností.avi.crdownload
2015-09-10 13:14 - 2015-09-16 09:35 - 00007153 _____ C:\Users\ASUS\Desktop\ep1 fear factor phony.srt
2015-09-10 10:33 - 2015-09-10 10:43 - 181393110 _____ C:\Users\ASUS\Downloads\Episode-396---Ash-and-May!-Heated-Battles-in-Hoenn!-(not-aired-in-english).avi
2015-09-09 20:47 - 2015-09-09 20:47 - 00000925 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASSDraw3.lnk
2015-09-09 20:47 - 2015-09-09 20:47 - 00000896 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aegisub.lnk
2015-09-09 20:40 - 2015-09-09 20:40 - 00053375 _____ C:\Users\ASUS\Desktop\UTF-8.txt
2015-09-09 19:43 - 2015-09-09 19:43 - 00053375 _____ C:\Users\ASUS\Desktop\UFT-8.ass
2015-09-09 19:32 - 2015-09-09 19:32 - 00053375 _____ C:\Users\ASUS\Downloads\398_tmp_ff98.ass
2015-09-09 19:32 - 2015-09-09 19:32 - 00053375 _____ C:\Users\ASUS\Downloads\398_tmp_faed.ass
2015-09-09 19:27 - 2015-09-09 19:40 - 182687402 _____ C:\Users\ASUS\Desktop\Episode-398---Deceit-And-Assist.avi
2015-09-09 18:31 - 2015-09-09 18:31 - 00000710 _____ C:\Users\ASUS\Downloads\Plocha – zástupce.lnk
2015-09-09 18:14 - 2015-09-09 18:14 - 00003447 _____ C:\Users\ASUS\Downloads\PKMN---WG.ass
2015-09-09 17:26 - 2015-09-09 17:30 - 73404416 _____ C:\Users\ASUS\Downloads\Pocket_Monsters._Pikachu_no_Fuyuyasumi_(2000)_-_1_-_Winter_Games_-_[JDS](6bf190a1)(dub_en).avi
2015-09-09 12:03 - 2015-09-09 13:01 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo7.part6.rar
2015-09-09 10:49 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-09-09 10:49 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-09-09 10:49 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-09-09 10:49 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-09-09 10:49 - 2015-07-22 16:19 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-09-09 10:49 - 2015-07-22 15:52 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-09-09 10:49 - 2015-07-17 16:15 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-09-09 10:49 - 2015-07-17 16:10 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-09-09 10:49 - 2015-07-03 23:51 - 01380056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-09-09 10:49 - 2015-07-03 16:00 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-09-09 10:49 - 2015-06-27 13:47 - 00118616 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2015-09-09 10:48 - 2015-07-13 21:10 - 00411455 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-09-09 10:48 - 2015-07-09 18:14 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-09-09 10:48 - 2015-06-19 19:07 - 02819072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-09-09 10:44 - 2015-07-10 21:06 - 00118272 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2015-09-09 10:32 - 2015-09-09 11:11 - 594912904 _____ C:\Users\ASUS\Downloads\Pokemon_-_Film_6_-_Jirachi_co_plni_prani.avi.crdownload
2015-09-09 10:24 - 2015-09-09 11:23 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo7.part5.rar
2015-09-09 06:30 - 2015-08-27 04:48 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-09-09 06:30 - 2015-08-26 20:00 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-09-09 06:30 - 2015-08-26 20:00 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-09-09 06:30 - 2015-08-26 20:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-09-09 06:30 - 2015-08-26 20:00 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-09-09 06:30 - 2015-08-26 16:46 - 03705344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-09-09 06:30 - 2015-08-26 16:29 - 02240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-09-09 06:30 - 2015-08-26 16:27 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-09-09 06:30 - 2015-08-26 16:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-09 06:30 - 2015-08-26 16:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-09-09 06:30 - 2015-08-26 16:26 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-09-09 06:30 - 2015-08-26 16:26 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-09-09 06:28 - 2015-08-22 20:19 - 25188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 06:28 - 2015-08-22 19:35 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 06:28 - 2015-08-22 19:34 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 06:28 - 2015-08-22 19:22 - 19856384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 06:28 - 2015-08-22 19:21 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 06:28 - 2015-08-22 19:20 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-09-09 06:28 - 2015-08-22 18:55 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 06:28 - 2015-08-22 18:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 06:28 - 2015-08-22 18:50 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-09-09 06:28 - 2015-08-22 18:45 - 00665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 06:28 - 2015-08-22 18:44 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-09-09 06:28 - 2015-08-22 18:41 - 14451712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 06:28 - 2015-08-22 18:41 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-09-09 06:28 - 2015-08-22 18:41 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-09-09 06:28 - 2015-08-22 18:41 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-09-09 06:28 - 2015-08-22 18:39 - 02126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-09-09 06:28 - 2015-08-22 18:28 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-09-09 06:28 - 2015-08-22 18:26 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-09-09 06:28 - 2015-08-22 18:23 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-09-09 06:28 - 2015-08-22 18:22 - 12857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 06:28 - 2015-08-22 18:20 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-09-09 06:28 - 2015-08-22 18:18 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-09-09 06:28 - 2015-08-22 18:18 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-09-09 06:28 - 2015-08-22 18:18 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-09-09 06:28 - 2015-08-22 18:14 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-09-09 06:28 - 2015-08-22 18:01 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-09-09 06:28 - 2015-08-22 18:00 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-09-09 06:28 - 2015-08-22 17:56 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-09-09 06:28 - 2015-08-22 17:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-09-09 06:28 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-09-09 06:28 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2015-09-09 06:27 - 2015-09-02 04:56 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-09-09 06:27 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 06:27 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 06:27 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 06:27 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-09 06:27 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2015-09-09 06:27 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2015-09-09 06:27 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2015-09-09 06:27 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2015-09-09 06:27 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2015-09-09 06:27 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 06:27 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2015-09-09 06:27 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2015-09-09 06:27 - 2015-07-22 16:34 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 06:27 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 06:27 - 2015-07-22 16:25 - 02461184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 06:27 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 06:27 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 06:27 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 06:27 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 06:27 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 06:27 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2015-09-08 17:18 - 2015-09-08 17:28 - 183238656 _____ C:\Users\ASUS\Downloads\348-the-bicker-the-better---Uploaded-for-AGoA.super-forum.net-by-Sedlois.avi.crdownload
2015-09-07 18:08 - 2015-09-07 18:51 - 725458305 _____ C:\Users\ASUS\Downloads\PK5H.rar
2015-09-07 14:25 - 2015-09-07 14:25 - 00149666 _____ C:\Users\ASUS\Desktop\Trainwreck.2015.V2.READNFO.HDRip.XviD.AC3-EVO.srt
2015-09-06 16:54 - 2015-09-06 17:02 - 130061469 _____ C:\Users\ASUS\Downloads\Pokemon-Chronicles-03---Povest-o-hromu.mp4
2015-09-06 16:47 - 2015-09-06 16:54 - 129596952 _____ C:\Users\ASUS\Downloads\Pokemon-Chronicles-02---Povest-o-hromu.mp4
2015-09-05 18:17 - 2015-09-05 19:15 - 00000000 ____D C:\Users\ASUS\Downloads\Trainwreck.2015.V2.READNFO.HDRip.XviD.AC3-EVO
2015-09-05 18:16 - 2015-09-05 18:16 - 00118629 _____ C:\Users\ASUS\Downloads\Trainwreck2015V2READNFOHDRipXviDAC3-EVO - ThePirateBay.TO.torrent
2015-09-05 18:14 - 2015-09-05 18:14 - 00059246 _____ C:\Users\ASUS\Downloads\trainwreck.(2015).cze.1cd.(6282764).zip
2015-09-04 19:01 - 2015-09-04 19:01 - 00000898 _____ C:\Users\ASUS\Documents\Obrázky – zástupce.lnk
2015-09-04 17:00 - 2015-09-04 17:00 - 00010032 _____ C:\Users\ASUS\Downloads\317.rar
2015-09-04 15:41 - 2013-01-09 22:57 - 230241234 _____ C:\Users\ASUS\Desktop\314- Budiž světlo!.avi
2015-09-04 15:40 - 2013-01-09 22:35 - 00036414 _____ C:\Users\ASUS\Desktop\314- Budiž světlo!.ass
2015-09-04 14:12 - 2015-09-04 14:12 - 00056207 _____ C:\Users\ASUS\Desktop\orig397(2).ass
2015-09-03 16:33 - 2015-09-03 16:33 - 00001839 _____ C:\Users\ASUS\Downloads\config (1).zip
2015-09-03 16:31 - 2015-09-03 16:31 - 00013439 _____ C:\Users\ASUS\Downloads\config.zip
2015-09-02 11:57 - 2015-09-02 11:57 - 09547376 _____ C:\Users\ASUS\Downloads\[Akaname] Pokemon SPECIAL v01ch14.zip
2015-09-02 09:02 - 2015-09-02 09:02 - 00056743 _____ C:\Users\ASUS\Downloads\397 (1).ass
2015-09-02 08:20 - 2015-09-02 08:20 - 00000000 ____D C:\Users\ASUS\AppData\Local\Aegisub
2015-09-02 08:19 - 2015-09-23 11:08 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Aegisub
2015-09-02 08:19 - 2015-09-09 20:47 - 00000000 ____D C:\Program Files\Aegisub
2015-09-02 08:19 - 2015-09-02 08:19 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-02 08:18 - 2015-09-02 08:18 - 20891980 _____ (Aegisub Team ) C:\Users\ASUS\Downloads\Aegisub-3.2.2-64.exe
2015-09-02 08:17 - 2015-09-02 08:18 - 19602087 _____ (Aegisub Team ) C:\Users\ASUS\Downloads\Aegisub-3.2.2-32.exe
2015-09-02 08:16 - 2015-09-02 08:16 - 00041535 _____ C:\Users\ASUS\Desktop\orig397.srt
2015-09-01 20:12 - 2015-09-01 22:42 - 00042035 _____ C:\Users\ASUS\Desktop\39777777777.srt
2015-09-01 19:41 - 2015-09-01 20:11 - 00042243 _____ C:\Users\ASUS\Desktop\39777.srt
2015-09-01 19:26 - 2015-09-01 19:37 - 183511040 _____ C:\Users\ASUS\Downloads\Episode-397---Hi-Ho-Silver-Wind!.avi
2015-09-01 16:18 - 2015-09-01 19:40 - 00056268 _____ C:\Users\ASUS\Downloads\397.ass
2015-09-01 13:43 - 2012-04-13 16:28 - 150499062 _____ C:\Users\ASUS\Desktop\423 - Fear Factor Phony.avi
2015-09-01 12:58 - 2015-09-01 12:58 - 01087682 _____ C:\Users\ASUS\Downloads\subtitleworkshop251.zip
2015-09-01 12:58 - 2015-09-01 12:58 - 00002150 _____ C:\Users\UpdatusUser\Desktop\Subtitle Workshop.lnk
2015-09-01 12:58 - 2015-09-01 12:58 - 00002150 _____ C:\Users\ASUS\Desktop\Subtitle Workshop.lnk
2015-09-01 12:58 - 2004-03-19 13:53 - 01107022 _____ C:\Users\ASUS\Desktop\SubtitleWorkshop251.exe
2015-09-01 12:40 - 2015-09-01 13:40 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo9.part1.rar
2015-09-01 11:58 - 2015-09-01 12:39 - 731164987 _____ C:\Users\ASUS\Downloads\Poketo6.part09.rar
2015-09-01 10:33 - 2015-09-01 11:13 - 732954624 _____ C:\Users\ASUS\Downloads\Pokémon navždy (2001).avi.crdownload
2015-09-01 10:19 - 2015-09-01 10:19 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-09-01 10:19 - 2015-09-01 10:19 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-09-01 10:17 - 2015-09-01 11:16 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo6.part08.rar
2015-08-30 13:23 - 2015-08-30 14:14 - 908635796 _____ C:\Users\ASUS\Downloads\Kód-Enigmy-CZ-dub.avi.crdownload
2015-08-29 17:17 - 2015-08-29 18:17 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo6.part06.rar
2015-08-29 09:36 - 2015-08-29 10:34 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo6.part05.rar
2015-08-28 15:18 - 2015-08-28 15:18 - 00010224 _____ C:\Users\ASUS\Downloads\291.rar
2015-08-28 15:05 - 2015-08-28 15:06 - 244375198 _____ C:\Users\ASUS\Desktop\290- Wurmple cimprcampr.avi
2015-08-28 15:05 - 2013-01-08 00:24 - 226804242 _____ C:\Users\ASUS\Desktop\288- Loudavý Lotad.avi
2015-08-28 15:05 - 2013-01-07 12:10 - 240023604 _____ C:\Users\ASUS\Desktop\289- Jde o to být nejhezčí!.avi
2015-08-28 15:04 - 2015-08-28 16:03 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo6.part04.rar
2015-08-28 15:04 - 2013-01-07 23:43 - 217555186 _____ C:\Users\ASUS\Desktop\287- Kousanec na pamětnou.avi
2015-08-28 15:04 - 2013-01-07 13:15 - 248700596 _____ C:\Users\ASUS\Desktop\284- Příběh se zápletkou.avi
2015-08-28 15:04 - 2013-01-07 13:03 - 221495792 _____ C:\Users\ASUS\Desktop\286- Nemluv s plnou pusou.avi
2015-08-28 15:04 - 2013-01-07 12:03 - 246806712 _____ C:\Users\ASUS\Desktop\283- Stromové ghetto.avi
2015-08-28 15:04 - 2013-01-07 11:21 - 233419278 _____ C:\Users\ASUS\Desktop\285- Mámo, táto, v komoře je Shroomish.avi
2015-08-28 15:03 - 2013-01-08 00:14 - 234978692 _____ C:\Users\ASUS\Desktop\280- Nezdolný Taillow.avi
2015-08-28 15:03 - 2013-01-08 00:04 - 217723210 _____ C:\Users\ASUS\Desktop\277- Tak ať Vám to šlape, chlape!.avi
2015-08-28 15:03 - 2013-01-07 12:52 - 222937772 _____ C:\Users\ASUS\Desktop\278- Ruiny s výhledem.avi
2015-08-28 15:03 - 2013-01-07 12:29 - 233586638 _____ C:\Users\ASUS\Desktop\282- Ukradená osobnost.avi
2015-08-28 15:03 - 2013-01-07 11:50 - 231638226 _____ C:\Users\ASUS\Desktop\281- Život v trenýrkách.avi
2015-08-28 15:03 - 2013-01-07 11:28 - 224424752 _____ C:\Users\ASUS\Desktop\279- Všude dobře, v Hoennu nejlépe.avi
2015-08-28 13:52 - 2015-08-28 13:52 - 00009079 _____ C:\Users\ASUS\Downloads\Chronicles 6.zip
2015-08-28 13:52 - 2015-08-28 13:52 - 00009079 _____ C:\Users\ASUS\Downloads\Chronicles 6 (1).zip
2015-08-28 13:51 - 2015-08-28 13:59 - 158361600 _____ C:\Users\ASUS\Downloads\06-Cerulean-Blues.avi.crdownload
2015-08-28 13:48 - 2015-08-28 14:50 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo6.part04.crdownload
2015-08-28 12:39 - 2015-08-28 12:46 - 135249920 _____ C:\Users\ASUS\Downloads\05-a-family-that-battles-together-stays-together_nový.avi.crdownload
2015-08-28 10:37 - 2015-08-28 11:40 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo6.part07.rar
2015-08-27 16:25 - 2015-08-27 17:07 - 735705088 _____ C:\Users\ASUS\Downloads\TEORIE VŠEHO - 2014 CZ dabing.avi
2015-08-27 15:28 - 2015-08-27 16:27 - 1047527424 _____ C:\Users\ASUS\Downloads\poketo6.part03.rar
2015-08-27 11:51 - 2015-08-27 12:03 - 226090340 _____ C:\Users\ASUS\Downloads\Pokemon-Chronicles-01---Povest-o-hromu.mpg
2015-08-26 12:40 - 2015-08-26 13:43 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo6.part02.rar
2015-08-26 11:10 - 2015-08-26 12:08 - 1047527424 _____ C:\Users\ASUS\Downloads\Poketo6.part01.rar
2015-08-26 09:28 - 2015-08-26 10:10 - 732407808 _____ C:\Users\ASUS\Downloads\Pokémon 3 (2000).avi.crdownload

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-25 11:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-25 10:59 - 2015-06-16 16:30 - 00000000 ____D C:\FRST
2015-09-25 10:54 - 2015-08-02 13:12 - 02192384 _____ (Farbar) C:\Users\ASUS\Desktop\FRST64.exe
2015-09-25 10:44 - 2015-06-16 16:05 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-25 10:43 - 2014-12-23 13:52 - 00214520 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2015-09-25 10:43 - 2014-10-22 14:30 - 00214520 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-09-25 10:36 - 2015-08-02 12:48 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-09-25 10:33 - 2014-08-05 17:38 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1447694392-248528962-4126827209-1002
2015-09-25 10:30 - 2014-10-03 16:30 - 00001436 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-09-25 10:25 - 2015-07-03 17:06 - 01204884 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-25 10:25 - 2014-07-28 18:18 - 00000000 ____D C:\ProgramData\Temp
2015-09-25 10:12 - 2014-10-17 20:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-25 10:09 - 2015-02-11 13:15 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Seznam.cz
2015-09-25 10:07 - 2014-10-06 16:38 - 00003798 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F961BA38-6AD9-450B-9D20-5BD9C5795238}
2015-09-25 10:04 - 2015-06-16 16:05 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-25 10:04 - 2014-10-03 16:32 - 00000000 __RDO C:\Users\ASUS\OneDrive
2015-09-24 23:42 - 2014-09-05 12:37 - 00000930 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1447694392-248528962-4126827209-1002UA.job
2015-09-24 23:10 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-24 22:45 - 2014-10-11 11:22 - 08551424 ___SH C:\Users\ASUS\Desktop\Thumbs.db
2015-09-24 21:28 - 2014-03-18 17:33 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-24 21:28 - 2014-03-18 16:54 - 00739924 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-24 21:28 - 2014-03-18 16:54 - 00151610 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-24 20:27 - 2015-02-11 14:12 - 00000000 ____D C:\Users\ASUS\Desktop\Filmy
2015-09-24 18:17 - 2015-03-03 13:59 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\TS3Client
2015-09-24 18:12 - 2015-08-13 18:40 - 00000000 ____D C:\Program Files (x86)\Vitware
2015-09-24 15:42 - 2015-03-13 19:44 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\vlc
2015-09-24 11:42 - 2014-09-05 12:37 - 00000908 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1447694392-248528962-4126827209-1002Core.job
2015-09-23 19:14 - 2015-08-14 10:30 - 00000124 _____ C:\Users\ASUS\Downloads\gammacfg.ini
2015-09-22 22:11 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-22 14:12 - 2014-10-17 20:06 - 00003666 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-09-22 11:16 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-20 09:48 - 2014-10-05 17:39 - 00836096 ___SH C:\Users\ASUS\Downloads\Thumbs.db
2015-09-19 17:35 - 2014-10-19 11:15 - 00000000 ____D C:\Users\ASUS\Desktop\Fotky
2015-09-18 13:21 - 2014-10-03 16:04 - 00000000 ____D C:\Users\ASUS
2015-09-16 20:39 - 2015-06-16 16:05 - 00003938 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 20:39 - 2015-06-16 16:05 - 00003702 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-15 15:37 - 2014-09-02 13:11 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\uTorrent
2015-09-15 10:19 - 2014-09-05 12:37 - 00003054 _____ C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1447694392-248528962-4126827209-1002UA
2015-09-15 10:19 - 2014-09-05 12:37 - 00002704 _____ C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1447694392-248528962-4126827209-1002Core
2015-09-15 10:19 - 2014-08-05 14:04 - 00000000 ____D C:\Users\ASUS\AppData\Local\Google
2015-09-15 03:18 - 2014-12-11 09:56 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 03:18 - 2014-12-11 09:56 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-12 08:53 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-09 17:55 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-09-09 14:58 - 2013-08-22 16:44 - 00346512 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-09 14:46 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-09-09 14:45 - 2014-08-05 17:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-09 06:35 - 2014-03-18 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-01 12:58 - 2015-03-06 14:52 - 00000000 ____D C:\Program Files (x86)\URUSoft
2015-09-01 10:22 - 2014-07-28 18:09 - 00000000 ____D C:\Program Files\Intel
2015-09-01 10:22 - 2014-07-28 18:03 - 00000000 ____D C:\ProgramData\Intel
2015-09-01 10:13 - 2014-10-29 17:51 - 00000000 ____D C:\ProgramData\ASUS
2015-08-27 09:06 - 2014-08-05 19:03 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Skype
2015-08-26 18:37 - 2014-08-05 17:30 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories =======

2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\ASUS\AppData\Roaming\ccKE7KWDPeDYPanKq2PM9f
2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\ASUS\AppData\Roaming\ccKE7KWDPeDYPanKq2PM9f.exe
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\ASUS\AppData\Roaming\IisaTUcvyNpQTZEHP0tG
2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\ASUS\AppData\Roaming\IisaTUcvyNpQTZEHP0tG.exe
2015-09-25 10:25 - 2015-09-25 10:25 - 0077312 _____ () C:\Users\ASUS\AppData\Local\Ancode.exe
2015-09-25 10:25 - 2015-09-25 10:25 - 0000187 _____ () C:\Users\ASUS\AppData\Local\Ancode.exe.config
2015-06-13 23:07 - 2015-06-13 23:07 - 0000000 _____ () C:\Users\ASUS\AppData\Local\Temp.dat
2013-05-01 13:15 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-05-01 13:15 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2015-09-25 10:27 - 2015-09-25 10:56 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Files to move or delete:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


Some files in TEMP:
====================
C:\Users\ASUS\AppData\Local\Temp\1024.exe
C:\Users\ASUS\AppData\Local\Temp\5232.exe
C:\Users\ASUS\AppData\Local\Temp\6789.exe
C:\Users\ASUS\AppData\Local\Temp\7830.exe
C:\Users\ASUS\AppData\Local\Temp\Font__7226_il92329.exe
C:\Users\ASUS\AppData\Local\Temp\fsd6AD4.exe
C:\Users\ASUS\AppData\Local\Temp\fsdA7EE.exe
C:\Users\ASUS\AppData\Local\Temp\nsbC3FE.exe
C:\Users\ASUS\AppData\Local\Temp\playerfile.exe
C:\Users\ASUS\AppData\Local\Temp\serial.exe
C:\Users\ASUS\AppData\Local\Temp\setup.exe
C:\Users\ASUS\AppData\Local\Temp\setup2.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-1-6.job => C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-1-7.job => C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-10_user.job => C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-3.job => C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-5.job => C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-5_user.job => C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-6.job => C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\09498501-e665-432c-b0e5-cf85d7a22393-7.job => C:\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-1-6.job => C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-1-7.job => C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-10_user.job => C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-3.job => C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-5.job => C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-5_user.job => C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-6.job => C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4181c76b-5ae2-4578-9f53-012a58eadba2-7.job => C:\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ccKE7KWDPeDYPanKq2PM9f.job => C:\Users\ASUS\AppData\Roaming\ccKE7KWDPeDYPanKq2PM9f.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1447694392-248528962-4126827209-1002Core.job => C:\Users\ASUS\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1447694392-248528962-4126827209-1002UA.job => C:\Users\ASUS\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\IisaTUcvyNpQTZEHP0tG.job => C:\Users\ASUS\AppData\Roaming\IisaTUcvyNpQTZEHP0tG.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\MyBrowser.job => C:\Program Files (x86)\MyBrowser\MyBrowser\Application\utility.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET NOD32 Antivirus 4.2 (Enabled - Out of date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 4.2 (Enabled - Out of date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\ASUS\Desktop" je 60946 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: nějaký viry ..

Napsal: 25 zář 2015 11:08
od Márty84
Zdravim :)

Haveti je tam spousta.

Ale proc by to mel nekdo resit, kdyz nedokoncujete prohlidky? Je to ztrata casu :42:

Re: nějaký viry ..

Napsal: 25 zář 2015 11:18
od bobik123
Já vím a teď toho vážně lituju a nevím jestli je už pozdě :( , ale mám ty starý logy pokud je ještě chcete vidět, vím jsem lenivý a omlouvám se ale mám teď tak pomalý a rozsekaný počítač a nemám se na koho obrátit, tak vás strašně prosím jestli by jste mi nemohli pomoc, slibuji že prohlídku dokončím!

Re: nějaký viry ..

Napsal: 25 zář 2015 11:34
od Márty84
bobik123 píše:slibuji že prohlídku dokončím!
Dobra. Ale jesti ne, upozornuji, ze dalsi sance uz nebude. Je to pak opravdu akorat ztrata naseho casu a takova spoluprace nas fakt nebavi :x


:arrow: Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.


:arrow: Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Re: nějaký viry ..

Napsal: 25 zář 2015 11:44
od bobik123
# AdwCleaner v5.008 - Logfile created 25/09/2015 at 12:40:12
# Updated 18/09/2015 by Xplode
# Database : 2015-09-23.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : ASUS - PC
# Running from : C:\Users\ASUS\Desktop\adwcleaner_5.008.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : globalUpdate
[-] Service Deleted : globalUpdatem
[-] Service Deleted : SSFK
[-] Service Deleted : WdsManPro
[-] Service Deleted : dipubibu
[-] Service Deleted : dymowuho
[-] Service Deleted : gyvixodu
[-] Service Deleted : lehicewu

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\AnyProtectEx
[-] Folder Deleted : C:\Program Files (x86)\globalUpdate
[-] Folder Deleted : C:\Program Files (x86)\SavePass 1.1
[-] Folder Deleted : C:\Program Files (x86)\Liveistream
[-] Folder Deleted : C:\Program Files (x86)\SFK
[-] Folder Deleted : C:\Program Files (x86)\MyBrowser
[!] Folder Not Deleted : C:\Program Files (x86)\SavePass 1.1
[-] Folder Deleted : C:\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A
[-] Folder Deleted : C:\Program Files (x86)\CinemaPlus-3.2cV24.09
[!] Folder Not Deleted : C:\Program Files (x86)\MyBrowser
[!] Folder Not Deleted : C:\Program Files (x86)\SavePass 1.1
[-] Folder Deleted : C:\ProgramData\saophase
[-] Folder Deleted : C:\ProgramData\Saophases
[-] Folder Deleted : C:\ProgramData\3WdsManPro3
[-] Folder Deleted : C:\ProgramData\aWdsManProa
[-] Folder Deleted : C:\ProgramData\UWdsManProU
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Liveistream
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyBrowser
[!] Folder Not Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyBrowser
[-] Folder Deleted : C:\Users\ASUS\AppData\Local\globalUpdate
[-] Folder Deleted : C:\Users\ASUS\AppData\Local\MyBrowser
[!] Folder Not Deleted : C:\Users\ASUS\AppData\Local\MyBrowser
[-] Folder Deleted : C:\Users\ASUS\AppData\Local\AD361280-1443176701-81E2-3131-08606E160A3A
[-] Folder Deleted : C:\Users\ASUS\AppData\Roaming\AnyProtectEx
[-] Folder Deleted : C:\Users\ASUS\AppData\Roaming\istartsurf
[-] Folder Deleted : C:\Users\ASUS\AppData\Roaming\VOPackage
[-] Folder Deleted : C:\Users\ASUS\AppData\Roaming\mystartsearch
[-] Folder Deleted : C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
[-] Folder Deleted : C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Liveistream

***** [ Files ] *****

[-] File Deleted : C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
[-] File Deleted : C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
[-] File Deleted : C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.snapdo.com_0.localstorage
[-] File Deleted : C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.snapdo.com_0.localstorage-journal
[-] File Deleted : C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage
[-] File Deleted : C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage-journal
[-] File Deleted : C:\Users\ASUS\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\MyBrowser.lnk
[-] File Deleted : C:\Users\ASUS\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MyBrowser.lnk
[-] File Deleted : C:\Users\ASUS\Desktop\Linkury Updater .lnk
[-] File Deleted : C:\Users\Public\Desktop\MyBrowser.lnk

***** [ Shortcuts ] *****

[-] Shortcut Disinfected : C:\Users\ASUS\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b8da4a38624bbb1e\Feedback.lnk

***** [ Scheduled tasks ] *****

[-] Task Deleted : globalUpdateUpdateTaskMachineCore
[-] Task Deleted : globalUpdateUpdateTaskMachineUA
[-] Task Deleted : amiupdaterExd
[-] Task Deleted : amiupdaterExi
[-] Task Deleted : snp
[-] Task Deleted : MyBrowser
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-1-6
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-1-7
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-10_user
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-3
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-5
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-5_user
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-6
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-7
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-1-6
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-1-7
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-10_user
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-3
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-5
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-5_user
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-6
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-7
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-1-6
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-1-7
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-10_user
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-3
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-5
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-5_user
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-6
[-] Task Deleted : 09498501-e665-432c-b0e5-cf85d7a22393-7
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-1-6
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-1-7
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-10_user
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-3
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-5
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-5_user
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-6
[-] Task Deleted : 4181c76b-5ae2-4578-9f53-012a58eadba2-7
[-] Task Deleted : globalUpdateUpdateTaskMachineCore
[-] Task Deleted : globalUpdateUpdateTaskMachineUA

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
[-] Key Deleted : HKLM\SOFTWARE\Classes\CRSBRWSHTML
[-] Value Deleted : HKLM\SOFTWARE\Classes\.htm\OpenWithProgids [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.html\OpenWithProgids [CRSBRWSHTML]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
[-] Value Deleted : HKLM\SOFTWARE\Classes\.xht\OpenWithProgIDs [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.webp\OpenWithProgIDs [CRSBRWSHTML]
[-] Value Deleted : HKLM\SOFTWARE\Classes\.shtml\OpenWithProgIDs [CRSBRWSHTML]
[-] Key Deleted : HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\IELNKSRCH
[-] Value Deleted : HKLM\SOFTWARE\RegisteredApplications [MyBrowser]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mybrowser.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\MediaPlayer\ShimInclusionList\mybrowser.exe
[-] Key Deleted : HKLM\SOFTWARE\Clients\StartMenuInternet\MyBrowser
[-] Key Deleted : HKLM\SOFTWARE\04db568c-b7a8-4146-ba3a-95845c6777de
[-] Key Deleted : HKLM\SOFTWARE\4d654686-a08e-4d0f-a7cf-690fc154f7f8
[-] Key Deleted : HKLM\SOFTWARE\7599b366-44fb-456d-9c5a-c19913f520f2
[-] Key Deleted : HKLM\SOFTWARE\8318ff51-55bf-4877-a487-16fa82014e07
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKCU\Software\GlobalUpdate
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\SavePass 1.1
[-] Key Deleted : HKCU\Software\CrossBrowser
[-] Key Deleted : HKCU\Software\Crossbrowse
[-] Key Deleted : HKCU\Software\YorkNewCin
[-] Key Deleted : HKCU\Software\HighDefAction
[-] Key Deleted : HKCU\Software\ArenaHD
[-] Key Deleted : HKCU\Software\MyBrowser
[-] Key Deleted : HKCU\Software\OB
[-] Key Deleted : HKCU\Software\WEBAPP
[!] Key Not Deleted : HKCU\Software\SavePass 1.1
[!] Key Not Deleted : HKCU\Software\SavePass 1.1
[-] Key Deleted : HKCU\Software\CinemaPlus-3.2cV24.09
[!] Key Not Deleted : HKCU\Software\MyBrowser
[!] Key Not Deleted : HKCU\Software\SavePass 1.1
[-] Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKLM\SOFTWARE\GlobalUpdate
[-] Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
[-] Key Deleted : HKLM\SOFTWARE\SavePass 1.1
[-] Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
[-] Key Deleted : HKLM\SOFTWARE\Crossbrowse
[-] Key Deleted : HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : HKLM\SOFTWARE\ArenaHD
[-] Key Deleted : HKLM\SOFTWARE\downchecker
[-] Key Deleted : HKLM\SOFTWARE\MyBrowser
[-] Key Deleted : HKLM\SOFTWARE\WdsManPro
[!] Key Not Deleted : HKLM\SOFTWARE\SavePass 1.1
[!] Key Not Deleted : HKLM\SOFTWARE\SavePass 1.1
[-] Key Deleted : HKLM\SOFTWARE\CinemaPlus-3.2cV24.09
[!] Key Not Deleted : HKLM\SOFTWARE\MyBrowser
[!] Key Not Deleted : HKLM\SOFTWARE\SavePass 1.1
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Liveistream
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\istartsurf uninstall
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyBrowser
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SU
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CinemaPlus-3.2cV24.09
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyBrowser
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
[!] Key Not Deleted : [x64] HKCU\Software\GlobalUpdate
[!] Key Not Deleted : [x64] HKCU\Software\InstalledBrowserExtensions
[!] Key Not Deleted : [x64] HKCU\Software\SavePass 1.1
[!] Key Not Deleted : [x64] HKCU\Software\CrossBrowser
[!] Key Not Deleted : [x64] HKCU\Software\Crossbrowse
[!] Key Not Deleted : [x64] HKCU\Software\YorkNewCin
[!] Key Not Deleted : [x64] HKCU\Software\HighDefAction
[!] Key Not Deleted : [x64] HKCU\Software\ArenaHD
[!] Key Not Deleted : [x64] HKCU\Software\MyBrowser
[!] Key Not Deleted : [x64] HKCU\Software\OB
[!] Key Not Deleted : [x64] HKCU\Software\WEBAPP
[!] Key Not Deleted : [x64] HKCU\Software\SavePass 1.1
[!] Key Not Deleted : [x64] HKCU\Software\SavePass 1.1
[!] Key Not Deleted : [x64] HKCU\Software\CinemaPlus-3.2cV24.09
[!] Key Not Deleted : [x64] HKCU\Software\MyBrowser
[!] Key Not Deleted : [x64] HKCU\Software\SavePass 1.1
[-] Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : [x64] HKLM\SOFTWARE\YorkNewCin
[-] Key Deleted : [x64] HKLM\SOFTWARE\HighDefAction
[-] Key Deleted : [x64] HKLM\SOFTWARE\ArenaHD
[-] Key Deleted : [x64] HKLM\SOFTWARE\downchecker
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[!] Key Not Deleted : HKU\S-1-5-21-1447694392-248528962-4126827209-1002\Software\AppDataLow\Software\Crossrider
[!] Key Not Deleted : HKU\S-1-5-18\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\ielnksrch
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
[-] Data Restored : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-1447694392-248528962-4126827209-1002\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
[-] Data Restored : HKU\S-1-5-21-1447694392-248528962-4126827209-1002\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command []
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs]

***** [ Web browsers ] *****

[-] [C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.mystartsearch.com/?type=hp&ts=14431 ... RYDDZ8RYDX
[-] [C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://www.mystartsearch.com/webfavicon.ico

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [19383 bytes] ##########

Re: nějaký viry ..

Napsal: 25 zář 2015 12:15
od Márty84
Slusna sbirka. Tak jeste ten MBAM a podle vysledku se zaridime dale.

Re: nějaký viry ..

Napsal: 25 zář 2015 12:26
od bobik123
ještě to skenuje ... DETEKOVANÉ OBEJKTY: 80 :roll:

Re: nějaký viry ..

Napsal: 25 zář 2015 14:58
od Márty84
No ja rikal, ze je tam toho spoustu. Test trva, ale je dukladny a nezbytny :-) Co se nestihne dnes, dodelame dalsi dny. Hlavne je potreba to docistit uplne, jinak to bude za chvili zpet.

Re: nějaký viry ..

Napsal: 25 zář 2015 15:43
od bobik123
to skenování už se táhne pomalu 4 hodiny .. hrozný, nikdy to neskončí :D

Re: nějaký viry ..

Napsal: 25 zář 2015 17:18
od Márty84
No, rekord, co jsem tu videl, byl nekolik desitek hodin :lol: Ale drtiva vetsina se vejde pod 8 hodin.

Re: nějaký viry ..

Napsal: 25 zář 2015 18:35
od bobik123
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 25. 9. 2015
Čas skenování: 12:48
Protokol: 6hodin.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.09.25.01
Databáze rootkitů: v2015.09.22.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: ASUS

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 579145
Uplynulý čas: 6 hod, 43 min, 57 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 2
Trojan.Agent.MSIL, C:\Users\ASUS\AppData\Local\Ancode.exe, 2020, , [1cf90d2792f97bbbc6feb2035aa710f0]
PUP.Optional.Amonetize, C:\Program Files\Concom\packages\cd4fc75c-6bf2-4021-8e55-fc82124ac46c\Stanron.exe, 2292, , [e82da88c177438fe80740fa06a9732ce]

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 21
Trojan.Agent.MSIL, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\nowuedctepupdateama, , [1cf90d2792f97bbbc6feb2035aa710f0],
PUP.Optional.Cinema, HKCU\SOFTWARE\CinemaP-1.9cV31.07-nv-ie, , [1bfa67cd5c2f7eb8c7117c13b84c41bf],
PUP.Optional.CinemaPlus, HKCU\SOFTWARE\CinemaPlus-3.2cV24.09-nv, , [ea2b64d0e0ab7cba84d73759be46847c],
PUP.Optional.CinemaPlus, HKCU\SOFTWARE\CinemaPlus-3.2cV24.09-nv-ie, , [1bfaf63e94f787aff16a642cab59a35d],
PUP.Optional.InternetSpeedChecker.PrxySvrRST, HKCU\SOFTWARE\Internet Speed Checker-nv-ie, , [c84db480afdca096f7528fa9dc27be42],
PUP.Optional.SavePass, HKCU\SOFTWARE\SavePass 1.1-nv, , [fd18db59197238fe457692272bd917e9],
PUP.Optional.SavePass, HKCU\SOFTWARE\SavePass 1.1-nv-ie, , [e431250f95f641f58f2cedcc9a6a51af],
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\CinemaPlus-3.2cV24.09-nv, , [060fb381701b4fe72358850bc83c4bb5],
PUP.Optional.DownChecker, HKLM\SOFTWARE\downchecker, , [dd38191b3c4f9f970463f93b46bdc937],
PUP.Optional.SavePass, HKLM\SOFTWARE\SavePass 1.1-nv, , [c84d88ac7d0e3ff7437cbefb29dbf60a],
PUP.Optional.Linkury, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Stpro.exe, , [bd5850e4800bca6cfa6b65718d77926e],
PUP.Optional.Cinema, HKLM\SOFTWARE\WOW6432NODE\CinemaP-1.9cV31.07-nv-ie, , [1203b67e74176bcb8f523e5132d2e41c],
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\WOW6432NODE\CinemaPlus-3.2cV24.09-nv, , [a570161e3c4fa78fcfac79178c787987],
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\WOW6432NODE\CinemaPlus-3.2cV24.09-nv-ie, , [0e0756dee9a273c3aad17719b84c06fa],
PUP.Optional.DownChecker, HKLM\SOFTWARE\WOW6432NODE\downchecker, , [2de80b2975163ef888dfe54ffa091ce4],
PUP.Optional.SavePass, HKLM\SOFTWARE\WOW6432NODE\SavePass 1.1-nv, , [30e5e74d96f516206a552a8ff70d32ce],
PUP.Optional.SavePass, HKLM\SOFTWARE\WOW6432NODE\SavePass 1.1-nv-ie, , [0f0638fcfe8d8aacdde2eecba2625fa1],
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\Saophase_RASAPI32, , [28edf2426625fb3bddda28ae3fc5669a],
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\Saophase_RASMANCS, , [12031b19cebdad89eacdf7dfa65e09f7],
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Stpro.exe, , [eb2a4aeaf794cf67eb7a528409fbb050],
PUP.Optional.CrossAd.Gen, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{9563BC59-9556-4805-8CD4-886781779D8D}, , [c550c76d02896fc71d78426ffd085aa6],

Hodnoty registru: 9
PUP.Optional.Linkury, HKCU\ENVIRONMENT|SNF, C:\ProgramData\Saophases\snp.sc, , [24f17eb67813d0663afdfeaa44c04bb5]
PUP.Optional.Linkury, HKCU\ENVIRONMENT|SNP, http://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D?publisher=APSFRec&co=CZ&userid=c35a965c-c953-5383-6c8e-332f11c983e3&searchtype=sc&installDate=25., , [57be82b22467fa3ce7512e7a778d6b95]
PUP.Optional.Linkury.ShrtCln, HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}, , [30e51b19fc8ff44297a4e69b61a3da26]
PUP.Optional.LiveIStream, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\SMPLAYER.EXE, C:\Program Files (x86)\Liveistream\smplayer.exe, , [9a7b1f15a0ebbd79601e4c5cac58f709]
PUP.Optional.MyBrowser, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|GoogleChromeAutoLaunch_5F00D79597A684C35D384C6669E057DF, "C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe" --no-startup-window, , [e23353e1b3d8ee481b9fab2a27ddd729]
PUP.Optional.MyBrowser, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS, MyBrowser, , [b560959f6c1fa88ef6db587a7f85db25]
PUP.Optional.MyBrowser, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|StubPath, "C:\Program Files (x86)\MyBrowser\MyBrowser\Application\39.5.2171.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level, , [0d0843f16823e056e9e8ece628dc2dd3]
PUP.Optional.MyBrowser, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|Localized Name, MyBrowser, , [b560b77d682333039d344f8324e03bc5]
PUP.Optional.Linkury.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}, , [0f06c56f256694a2ec52a3debb49ff01]

Data registru: 6
PUP.Optional.Linkury.ShrtCln, HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}),,[9e77250f2e5d93a3f5775225cd38c53b]
PUP.Optional.Linkury.ShrtCln, HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJp75irogpSDkM1CET6H3SmhLr__raMSSvsz6lWrlxZ0LNn8Y5IVcrHvbnMFDb4p2p2lCNH0ao5JCsovNgJs,, Dobré: (www.google.com), Špatné: (http://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJp75irogpSDkM1CET6H3SmhLr__raMSSvsz6lWrlxZ0LNn8Y5IVcrHvbnMFDb4p2p2lCNH0ao5JCsovNgJs,),,[bf56e3513b5096a082ebf08736cf7a86]
PUP.Optional.Linkury.ShrtCln, HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}),,[fb1af440ddae2d09ed7ff285c342a35d]
PUP.Optional.Linkury.ShrtCln, HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SearchAssistant, http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}),,[8d88c96b5c2f62d40765e1964fb621df]
PUP.Optional.Linkury.ShrtCln, HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}, Dobré: (www.google.com), Špatné: (http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgBkCk2PRuZ47-iCIJOQmT0W04ug0jUcdQBV8LoQRfYh_4M0aAjEyUiBEn16yPBHJpJxyWx5LLpE9Cn894beBq9DN8Gs3h2A-q14VlnNlVKLkTpYmYlSUxPIk8UUfociY-Lj0s-q4C6eTw5k3aQ,&q={searchTerms}),,[32e355df9bf03df9d896c3b4f70e5ba5]
PUP.Optional.Linkury.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {ielnksrch}, Dobré: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Špatné: ({ielnksrch}),,[50c5aa8a96f5d95d77fb6611c14431cf]

Složky: 11
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\net_search, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.GlobalUpdate, C:\Users\ASUS\AppData\Local\Temp\comh.488222, , [ee278da7a8e392a46b4e17038281748c],
PUP.Optional.GlobalUpdate, C:\Users\ASUS\AppData\Local\Temp\comh.496521, , [4fc645ef7e0d1d190bae67b34cb7bd43],
PUP.Optional.GlobalUpdate, C:\Users\ASUS\AppData\Local\Temp\comh.431993, , [be57cd67e2a9b97d38811cfe9172d828],
PUP.Optional.MindSpark, C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fphnecoppfkhnnbhhmdmpldmkpnflegp, , [71a4a78d503bf640c63e092ad52e619f],
PUP.Optional.Linkury.ShrtCln, C:\ProgramData\Airrons, , [8f8655df99f290a69750fbb3ad5835cb],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Component, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Bin, , [c550c76d02896fc71d78426ffd085aa6],

Soubory: 210
Trojan.Agent.MSIL, C:\Users\ASUS\AppData\Local\Ancode.exe, , [1cf90d2792f97bbbc6feb2035aa710f0],
PUP.Optional.Amonetize, C:\Program Files\Concom\packages\cd4fc75c-6bf2-4021-8e55-fc82124ac46c\Stanron.exe, , [e82da88c177438fe80740fa06a9732ce],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\963c382f-8ddd-4cf1-9fa0-d87507a907e9.dll.vir, , [7d98b282711a3df998ecd3e453ae39c7],
PUP.Optional.Nova, C:\AdwCleaner\Quarantine\C\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\9e8ce6a8-cc2b-493a-98f7-3d6f79e8bce7.dll.vir, , [987d1024d1ba4aecc9119826ce33f20e],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\ba0c937c-4d5b-4ea1-8941-e9e2cff32790.dll.vir, , [9b7a92a24b40d95d364ef1c6c63b8a76],
PUP.Optional.Nova, C:\AdwCleaner\Quarantine\C\Program Files (x86)\AD361280-1443169463-81E2-3131-08606E160A3A\ccdabd87-89b1-4ec5-9316-2623b03ab8f4.dll.vir, , [6da8e45092f91f175a8015a9f40d1de3],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\f7dab28f-9769-4a5d-9f56-e45da253027f-1-7.exe.vir, , [4bca8da7fa91b97dc0847e2c52b355ab],
PUP.Optional.Nova, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\bbcc8b6c-d921-4350-8999-c1fdbedc8c1a.dll.vir, , [6baaca6a3556f343d5058737be43ce32],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\be75327b-0785-420a-ae0c-93d4b63aef76.dll.vir, , [977ea0944e3ddf570282d0e76998ee12],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\f7dab28f-9769-4a5d-9f56-e45da253027f-1-6.exe.vir, , [7c9954e0c7c440f688bcb4f6b3527b85],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\f7dab28f-9769-4a5d-9f56-e45da253027f-11.exe.vir, , [52c31420098251e5e55f07a307feac54],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\f7dab28f-9769-4a5d-9f56-e45da253027f-3.exe.vir, , [a66fae86a5e6ab8b2c186a404eb7649c],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\f7dab28f-9769-4a5d-9f56-e45da253027f-5.exe.vir, , [3bda81b3f3985ed880c4268446bf27d9],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\f7dab28f-9769-4a5d-9f56-e45da253027f-6.exe.vir, , [3fd6ee464843e353cd771c8e58ad13ed],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\f7dab28f-9769-4a5d-9f56-e45da253027f-64.exe.vir, , [a075201414771e18a99b6e3cff060000],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\f7dab28f-9769-4a5d-9f56-e45da253027f-7.exe.vir, , [eb2a052f2f5c251190b42b7f03022ad6],
PUP.Optional.Downloader, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaP-1.9cV31.07\Uninstall.exe.vir, , [0a0bef45d5b64beb8f449427946d43bd],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-1-6.exe.vir, , [32e378bc2a6155e133f08426966f9e62],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-1-7.exe.vir, , [35e0d75d9bf0e84e60c39d0dd72e3cc4],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-10.exe.vir, , [22f37cb83754d066cb585258b550af51],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-3.exe.vir, , [cc49fc38305be94d041f03a7768fca36],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-5.exe.vir, , [28ede54fc0cb87af12115852c93cfa06],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-6.exe.vir, , [48cda98b93f89a9c0221f8b2a4616f91],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-64.exe.vir, , [f61f2311e1aa4fe7190aa901699cd62a],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\4181c76b-5ae2-4578-9f53-012a58eadba2-7.exe.vir, , [3fd6f63ecac1df5774af8b1f887d0cf4],
PUP.Optional.Nova, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\4d654686-a08e-4d0f-a7cf-690fc154f7f8.dll.vir, , [2de887ad1b7069cd03d7239bea173ac6],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\7599b366-44fb-456d-9c5a-c19913f520f2.dll.vir, , [888d5fd54447d4626a1a5166d130e61a],
PUP.Optional.Downloader, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\Uninstall.exe.vir, , [060f250f0685cb6b8a49c7f4a35eb050],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\UninstallBrw.exe.vir, , [cb4a87ad7c0f53e3aa798129f60fb050],
PUP.Optional.CinemaPlus, C:\AdwCleaner\Quarantine\C\Program Files (x86)\CinemaPlus-3.2cV24.09\utils.exe.vir, , [8b8a37fd6328ba7c4dd64e5c877e946c],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe.vir, , [49ccd262cbc0290dd56b25858f76b34d],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe.vir, , [66af270dcfbc4ee89a692a59b9485da3],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\metro_driver.dll.vir, , [fb1a1024b4d71f1746faf8b243c206fa],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\chrome_elf.dll.vir, , [38dd9a9a4d3ed75faa964a6059acdb25],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\delegate_execute.exe.vir, , [888daf8592f9ec4ada6651594bba49b7],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\nacl64.exe.vir, , [67ae8da795f60a2c9ba51c8ee223b54b],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe.vir, , [ae671c18127985b1132f04a647be6997],
PUP.Optional.CrossBrowse, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\setup.exe.vir, , [928360d4a3e83df92b17adfdb550b749],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\globalupdate.exe.vir, , [9c7990a43358d561f6e351261ee3cb35],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdate.exe.vir, , [0a0bec48bad1aa8cf5e42b4cfc05768a],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdateBroker.exe.vir, , [0b0a7bb9751660d695446116ef1226da],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdateCrashHandler.exe.vir, , [bb5a2113375482b4d009ccab80818779],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdateOnDemand.exe.vir, , [090cb87c91faa0962dac3b3cfd04b44c],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir, , [888d4be9c3c86bcb5b7e0572f1109a66],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir, , [b65fe74d5e2dd56147921661d22f1de3],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll.vir, , [898c1123e8a38da9c9102c4b2fd2b54b],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll.vir, , [b85d58dcafdc0135f6e33641926f9769],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir, , [3dd81a1ac8c3082ec514cbacef123bc5],
PUP.Optional.LiveIStream, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Liveistream\uninstall.exe.vir, , [ab6a78bc810a3afcdb1b0552867a7090],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\MyBrowser\MyBrowser\Application\utility.exe.vir, , [37de4de7aeddd95df95cb6f7689d6997],
PUP.Optional.MyBrowser, C:\AdwCleaner\Quarantine\C\Program Files (x86)\MyBrowser\MyBrowser\Application\39.5.2171.95\Installer\chrmstp.exe.vir, , [5bbaf93b434860d624f7bc21f80922de],
PUP.Optional.MyBrowser, C:\AdwCleaner\Quarantine\C\Program Files (x86)\MyBrowser\MyBrowser\Application\39.5.2171.95\Installer\setup.exe.vir, , [8491191b781310267d9ea93433ceba46],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-7.exe.vir, , [090c55df55365bdba331358a3ac79a66],
PUP.Optional.Nova, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\04db568c-b7a8-4146-ba3a-95845c6777de.dll.vir, , [c154e153583322140ad019a5926f52ae],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-1-6.exe.vir, , [e13456de9fecee4802d2754a3cc55da3],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-1-7.exe.vir, , [c451e054f2992d09dafa843b19e8b749],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-10.exe.vir, , [3bda41f3e1aab4825e766d52cb3638c8],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-3.exe.vir, , [b560dc58d0bbc07630a4cdf261a039c7],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-5.exe.vir, , [92835fd5cfbcc670aa2a665943bef50b],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-6.exe.vir, , [cd4862d2206b8fa718bc833c2cd53bc5],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\09498501-e665-432c-b0e5-cf85d7a22393-64.exe.vir, , [799c8ba95437231300d4d5ea53aed52b],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\8318ff51-55bf-4877-a487-16fa82014e07.dll.vir, , [ea2ba78d2368e650e79dc4f3b150c13f],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\UninstallBrw.exe.vir, , [2aeb4ce8ec9f8da9399bdfe0b64ba45c],
PUP.Optional.SavePass, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SavePass 1.1\utils.exe.vir, , [8e87bc78f49756e00dc75d62857c13ed],
PUP.Optional.WProtectManager, C:\AdwCleaner\Quarantine\C\ProgramData\3WdsManPro3\WdsManPro.exe.vir, , [4bca5adaeaa13ef82b4c149a29dc5ca4],
PUP.Optional.WProtectManager, C:\AdwCleaner\Quarantine\C\ProgramData\aWdsManProa\WdsManPro.exe.vir, , [9c792c08365515217dfa1d91f015fe02],
PUP.Optional.WProtectManager, C:\AdwCleaner\Quarantine\C\ProgramData\UWdsManProU\WdsManPro.exe.vir, , [c5504ee64f3c6bcb1c5b307e4cb9f709],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Users\ASUS\AppData\Roaming\pzMxsi6nDAv.exe.vir, , [d44138fcccbfe155d2871e9df60b619f],
PUP.Optional.BrowserWatch, C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowerWatchCH.dll.vir, , [c45170c46f1c78be8e9eaeafad5859a7],
PUP.Optional.BrowserWatch, C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowerWatchFF.dll.vir, , [71a41321dbb092a40e1ee27bac5921df],
PUP.Optional.SearchProtect, C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowserAction.dll.vir, , [ad682113d1ba55e195b6d79d32cf2ed2],
PUP.Optional.Giner, C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\CmdShell.exe.vir, , [6aab6ec6137864d2c8c9d5d742c306fa],
PUP.Optional.Giner, C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\HPNotify.exe.vir, , [8f8642f2d1ba082e771a9d0fc144a65a],
PUP.Optional.Giner, C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\IeWatchDog.dll.vir, , [8a8b88acec9f63d399f81f8d65a0768a],
PUP.Optional.Giner, C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\SupTab.dll.vir, , [f02576beeba02f07028fc2ea986d26da],
PUP.Optional.PCMechanic, C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Users\ASUS\AppData\Roaming\OpenCandy\C79FC06C60C946DAB3898614C5FD9914\pcmechanicpmROW_p1v2.exe.vir, , [cd482410d5b6f6400de66c3c6f92d927],
PUP.Optional.Linkury, C:\Program Files\Common Files\ncqwmj3j\53d44e30co4ie.exe, , [8d8844f03c4fa3935396b400ab56629e],
PUP.Optional.Nova, C:\Program Files (x86)\963c382f-8ddd-4cf1-9fa0-d87507a907e9\5ffd645f-175d-4de4-b4a7-b7289662bf4c.dll, , [ac6986ae0883a88e8f4bdfdf02ff14ec],
PUP.Optional.CrossRider, C:\Program Files (x86)\963c382f-8ddd-4cf1-9fa0-d87507a907e9\94440a7b-fde3-4399-bc7c-d4fd9fa22c5d.dll, , [7f96ec486922ca6c99eb576046bb56aa],
PUP.Optional.CrossRider, C:\Program Files (x86)\Adobe\23a45491-c09e-4201-9969-fc162e472fd5.dll, , [3bda1024addeae88770d2b8c41c0ca36],
PUP.Optional.Nova, C:\Program Files (x86)\Adobe\f1da7c86-6338-4d0c-84dd-8a628c9124af.dll, , [17fe43f1e7a45cda2baf1ca281802cd4],
PUP.Optional.Nova, C:\Program Files (x86)\ba0c937c-4d5b-4ea1-8941-e9e2cff32790\433749e3-bc53-4556-aa36-3a1e60242e4b.dll, , [db3af143543761d514c6a21c01004cb4],
PUP.Optional.CrossRider, C:\Program Files (x86)\ba0c937c-4d5b-4ea1-8941-e9e2cff32790\cbb8e832-bd87-4d88-9f10-a3cf2e1003a4.dll, , [bb5abe76573442f47e061b9cd62b0000],
PUP.Optional.APNToolBar, C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Package\Ask\AskPIP_FF_.exe, , [d63f59dbb2d9122441eeaf0b758ce020],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\uninst.exe, , [a075e94be5a6ca6c09fbbefeec153fc1],
PUP.Optional.SavePass, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\GUCYCO13\setup[1].exe, , [2ce9b084d5b6a39327ad6b543fc247b9],
PUP.Optional.AnyProtect, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\GUCYCO13\Setup[2].exe, , [f322b97bd3b874c2f761abe3bb47e51b],
PUP.Optional.PreInstaller, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\GUCYCO13\setup_362[2].exe, , [f81d30049dee58deb9ad8738e41dd42c],
PUP.Optional.CheckOffer, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\GUCYCO13\VuuPC_VO2_8907[2].exe, , [11042f05484325112c045c307b861ee2],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\NJZET45B\cmi_mystartsearch[1].exe, , [ed288aaac4c73afc89c09f097491c53b],
PUP.Optional.AnyProtect, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\VHMD6WOY\AnyProtectSetup[1].exe, , [5eb7151f5635bc7a5009206e36ccef11],
PUP.Optional.Amonetize, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\VHMD6WOY\Bundle_CPUminer[1].exe, , [14017eb65536e0562f4d1eb2f809c53b],
PUP.Optional.IStartSurf.ShrtCln, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\VHMD6WOY\obw_istartsurf[1].exe, , [59bc0c2897f48aac4f91287f7f86c040],
PUP.Optional.CrossRider, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\ZJEBM9VA\setup[3].exe, , [e03567cd1d6e6bcbd77eeac3aa5bcd33],
PUP.Optional.CinemaPlus, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\ZJEBM9VA\setup[4].exe, , [10051e16ddaeab8b8c97d3d7a85d7888],
PUP.Optional.Bundler, C:\Users\ASUS\AppData\Local\Microsoft\Windows\INetCache\IE\ZJEBM9VA\FinalInstaller_dotnet4[1].exe, , [67aef4401279003616892339d927728e],
PUP.Optional.Amonetize, C:\Users\ASUS\AppData\Local\Temp\nsbC3FE.exe, , [fb1ae153ddaeeb4bf102327d9b6619e7],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ASUS\AppData\Local\Temp\nseDBA8.tmp, , [5cb9a1938b002a0c0c3d3771d53059a7],
PUP.Optional.CheckOffer, C:\Users\ASUS\AppData\Local\Temp\nsfFA35.tmp, , [54c11f15e1aa082ef43c890308f928d8],
PUP.Optional.PreInstaller, C:\Users\ASUS\AppData\Local\Temp\nsh1582.tmp, , [eb2a2b098cffbd79aeb8f2cdd42da65a],
PUP.Optional.Bundler, C:\Users\ASUS\AppData\Local\Temp\fsd6AD4.exe, , [29ec052fc6c5d95db1ee362603fd9868],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ASUS\AppData\Local\Temp\nsr3E0D.tmp, , [cc49e54f0e7d86b0ca7f63453acbbe42],
PUP.Optional.PreInstaller, C:\Users\ASUS\AppData\Local\Temp\nsrA365.tmp, , [e92cce6690fbf93d88de7b44936e7888],
PUP.Optional.CheckOffer, C:\Users\ASUS\AppData\Local\Temp\nstBE7A.tmp, , [b85dbd77bccfff3748e8b3d93bc6a15f],
PUP.Optional.LiveIStream, C:\Users\ASUS\AppData\Local\Temp\playerfile.exe, , [94813afab6d5a09611e5e1765fa1e41c],
PUP.Optional.CrossRider, C:\Users\ASUS\AppData\Local\Temp\1024.exe, , [f81d290bd1badf574c090da0689d8080],
PUP.Optional.CinemaPlus, C:\Users\ASUS\AppData\Local\Temp\5232.exe, , [0a0bd85c286346f0e73cdecc3bcac040],
PUP.Optional.CrossRider, C:\Users\ASUS\AppData\Local\Temp\6789.exe, , [61b42212bccf9a9c292cbcf1000528d8],
PUP.Optional.CinemaPlus, C:\Users\ASUS\AppData\Local\Temp\7830.exe, , [a66f2b09028973c39a89ebbfc5409868],
Trojan.Agent.MSIL, C:\Users\ASUS\AppData\Local\Temp\aqqZi.tmp, , [ac69e84c9af180b63292caeb2dd46b95],
PUP.Optional.OutBrowse, C:\Users\ASUS\AppData\Local\Temp\beedbgajed.exe, , [1cf9be76becd56e0837903e2c33ec53b],
PUP.Optional.Bundler, C:\Users\ASUS\AppData\Local\Temp\fsdA7EE.exe, , [9b7ad26207843303bae5005cb54bf907],
PUP.Optional.Yesapps, C:\Users\ASUS\AppData\Local\Temp\serial.exe, , [73a2a193d6b50b2bc9f9736e0cf519e7],
PUP.Optional.CheckOffer, C:\Users\ASUS\AppData\Local\Temp\nso2C1.tmp\nsCBHTML5.dll, , [fc1988ac157678be40f0d5b7af52e818],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.488222\globalupdate.exe, , [cb4aa29234572d096b6ed4a37a87867a],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.488222\globalupdateBroker.exe, , [20f5df55305b6dc948915522da27b44c],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.488222\globalupdateCrashHandler.exe, , [bb5a62d2b8d30333d9000473ee13bd43],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.488222\globalupdateOnDemand.exe, , [9f7682b2612a95a15c7df2850ff26997],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.488222\goopdate.dll, , [af66d064ef9ce74f4b8eea8d53ae39c7],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.488222\goopdateres_en.dll, , [cd48dc58fa912c0a67727ff8bc4521df],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.488222\npglobalupdateUpdate4.dll, , [f0250430a5e642f4d801067108f9d729],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.488222\psmachine.dll, , [fa1b0e26e0abbe78568395e2a75ade22],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.488222\psuser.dll, , [080d69cbb6d593a30ecb0077748dab55],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.496521\globalupdate.exe, , [59bcfc38e9a20b2bb6231c5b4db4d52b],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.496521\globalupdateBroker.exe, , [db3a2d071972df57edec0473c63b966a],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.496521\globalupdateCrashHandler.exe, , [b85dcc68632891a500d97ef9e71aa060],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.496521\globalupdateOnDemand.exe, , [bf5667cd5d2e8da99d3c8fe83ac70af6],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.496521\goopdate.dll, , [d44164d08dfe59ddc8117ff837ca4bb5],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.496521\goopdateres_en.dll, , [9a7b181cc7c4c6701dbc2552758c57a9],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.496521\npglobalupdateUpdate4.dll, , [c055e74d0f7cf44297427dfa24dda060],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.496521\psmachine.dll, , [fb1a38fc6427ac8a4396ec8b728f17e9],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.496521\psuser.dll, , [ac69d262a8e32a0ca8314a2d51b0db25],
Trojan.MSIL.Dropper, C:\Users\ASUS\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe, , [878e43f15f2cef475164e9726b9af60a],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.431993\globalupdate.exe, , [3bda55df6625d95db8219dda5ca539c7],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.431993\globalupdateBroker.exe, , [f1247bb97912f640ab2ef18649b8d729],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.431993\globalupdateCrashHandler.exe, , [cf46c371acdf0432ffda0572ae532cd4],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.431993\globalupdateOnDemand.exe, , [65b0ec488407ea4c9841b8bf976a4eb2],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.431993\goopdate.dll, , [e92c52e2c8c39d996277fc7b7d8414ec],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.431993\goopdateres_en.dll, , [2ee75dd7a5e69a9ce0f941366899d62a],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.431993\npglobalupdateUpdate4.dll, , [fd180c284348de589445d2a5f30e1ae6],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.431993\psmachine.dll, , [e72e93a1fd8ee35310c90c6b3cc54eb2],
PUP.Optional.ModGoog, C:\Users\ASUS\AppData\Local\Temp\comh.431993\psuser.dll, , [6fa6c76d7615ef474e8bdf98d22fd22e],
PUP.Optional.CrossRider, C:\Users\ASUS\AppData\Local\Temp\261719258\setup.exe, , [3cd989ab3358e1552222d6d48a7bb050],
Trojan.Agent.MSIL, C:\Users\ASUS\AppData\Local\Temp\aqqZi\xrc.exe, , [cb4ac96bbdcebe78705424910df4758b],
PUP.Optional.CrossRider, C:\Users\ASUS\AppData\Roaming\ccKE7KWDPeDYPanKq2PM9f.exe, , [27ee50e41c6f45f1fa5f04b7629f0df3],
PUP.Optional.CrossRider, C:\Users\ASUS\AppData\Roaming\IisaTUcvyNpQTZEHP0tG.exe, , [b065250ff794f73ffe5ba6157b866e92],
PUP.Optional.Amonetize, C:\WINDOWS\Temp\tmp223F.tmp, , [da3b82b2d4b75cdae311b3fcb84926da],
PUP.Optional.Linkury, C:\WINDOWS\Temp\tmpFF84.tmp, , [1ef77db716759f97866361534eb3d927],
PUP.Optional.CrossRider, C:\zoek_backup\C_PROGRA~2_23a45491-c09e-4201-9969-fc162e472fd5\7bec3ab9-3c37-41c3-9951-9443526d0529.dll, , [3ed757dd7f0c63d34e36813690718080],
PUP.Optional.Nova, C:\zoek_backup\C_PROGRA~2_23a45491-c09e-4201-9969-fc162e472fd5\fd2b616e-a8d0-4c07-b89e-736fe4073be2.dll, , [d342a29258331e18865410aed62b659b],
PUP.Optional.Amonetize, C:\zoek_backup\C_Users_ASUS_AppData_Local_25500\Updater.exe, , [8c89999b0e7def47c6e6ed68e917f20e],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\config.ini, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\everything.dll, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\everything.exe, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\helper.dll, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\Patch.dll, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\SearchBase.db, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\SearchBase.exe, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\SearchHand.dll, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\SFKEX.dll, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\SFKEX.exe, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\SFKEX64.dll, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\SFKEX64.exe, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\net_search\bing.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\net_search\google.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\net_search\search_config.ini, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\net_search\SFK.ini, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\net_search\SFKEX.ini, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\net_search\yahoo.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\bing.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\caret.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\FileListItem.xml, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\FileListItem_bing.xml, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\FileListItem_google.xml, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\frame.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\frame2.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\google.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\guide.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\icon_search.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\mainpanel.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\MainPannel.xml, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\panel_base.xml, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\search_content_list.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\WndMask.xml, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Everything, C:\Users\ASUS\AppData\Everything\skin\yahoo.png, , [23f2a2926823d85e882e0b90bb4922de],
PUP.Optional.Linkury.Gen, C:\WINDOWS\SysWOW64\findit.xml, , [0213cc685e2d91a5e08a792f08fcd22e],
PUP.Optional.LiveIStream, C:\Users\ASUS\Desktop\Liveistream.lnk, , [d73e10242e5d53e3c3b81791e321fd03],
PUP.Optional.LiveIStream, C:\Users\UpdatusUser\Desktop\Liveistream.lnk, , [9580ad8797f403336c0f099f07fd5aa6],
PUP.Optional.GlobalUpdate, C:\Users\ASUS\AppData\Local\Temp\comh.488222\globalupdateHelper.msi, , [ee278da7a8e392a46b4e17038281748c],
PUP.Optional.GlobalUpdate, C:\Users\ASUS\AppData\Local\Temp\comh.496521\globalupdateHelper.msi, , [4fc645ef7e0d1d190bae67b34cb7bd43],
PUP.Optional.GlobalUpdate, C:\Users\ASUS\AppData\Local\Temp\comh.431993\globalupdateHelper.msi, , [be57cd67e2a9b97d38811cfe9172d828],
PUP.Optional.MindSpark, C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fphnecoppfkhnnbhhmdmpldmkpnflegp\000003.log, , [71a4a78d503bf640c63e092ad52e619f],
PUP.Optional.MindSpark, C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fphnecoppfkhnnbhhmdmpldmkpnflegp\CURRENT, , [71a4a78d503bf640c63e092ad52e619f],
PUP.Optional.MindSpark, C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fphnecoppfkhnnbhhmdmpldmkpnflegp\LOCK, , [71a4a78d503bf640c63e092ad52e619f],
PUP.Optional.MindSpark, C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fphnecoppfkhnnbhhmdmpldmkpnflegp\LOG, , [71a4a78d503bf640c63e092ad52e619f],
PUP.Optional.MindSpark, C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fphnecoppfkhnnbhhmdmpldmkpnflegp\LOG.old, , [71a4a78d503bf640c63e092ad52e619f],
PUP.Optional.MindSpark, C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fphnecoppfkhnnbhhmdmpldmkpnflegp\MANIFEST-000001, , [71a4a78d503bf640c63e092ad52e619f],
PUP.Optional.Linkury.ShrtCln, C:\ProgramData\Airrons\ff.HP, , [8f8655df99f290a69750fbb3ad5835cb],
PUP.Optional.Linkury.ShrtCln, C:\ProgramData\Airrons\ff.NT, , [8f8655df99f290a69750fbb3ad5835cb],
PUP.Optional.Linkury.ShrtCln, C:\ProgramData\Airrons\snp.sc, , [8f8655df99f290a69750fbb3ad5835cb],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Component\config.json, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Component\hello.js, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Component\log.html, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Component\manifest.json, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Component\scriptTagContext.js, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Component\tmp_bg.js, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Component\uconfig.json, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Bin\c.dat, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Bin\shgkj.dll, , [c550c76d02896fc71d78426ffd085aa6],
PUP.Optional.CrossAd.Gen, C:\Users\ASUS\AppData\Local\Virtual Bus\Bin\VirtualBus.dll, , [c550c76d02896fc71d78426ffd085aa6],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Re: nějaký viry ..

Napsal: 25 zář 2015 18:55
od Márty84
Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc test s MBAM zopakujte (staci uz jen sken hrozeb - bude rychlejsi), at vime, jestli se to nevraci. Napiste zase vysledek testu a podle nej zvolim dalsi postup.

Re: nějaký viry ..

Napsal: 25 zář 2015 18:56
od bobik123
dobře :thumbsup:

Re: nějaký viry ..

Napsal: 25 zář 2015 19:04
od bobik123
btw, po restartu mi to hodilo tuhle podivnou hlášku :P

Re: nějaký viry ..

Napsal: 25 zář 2015 19:33
od Márty84
To se pak docisti :-)
Všechny časy jsou v UTC+01:00
Stránka 1 z 3

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz