Zdravím na internetu vyskakuje reklama samovolně se otvírají okna v pravidelných časových intervalech. Nelze změnit domovskou stránku. Už to bylo i horší a brácha s vaší pomocí mi od toho pomohl. Nechci čekat, až se to zhorší takže to zkouším sám, snad mě spasíte. Jsem dost velký amatér co se týče IT, ale s dobrým návodem to snad zvládnu. Log přikládám.
Logfile of random's system information tool 1.10 (written by random/random)
Run by marek at 2015-12-15 19:06:38
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 12 GB (8%) free of 150 GB
Total RAM: 4094 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:06:41, on 15.12.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.17566)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\MPC Cleaner\MPCTray.exe
C:\Users\marek\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\trend micro\marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {f999a48b-1950-4d81-9971-79018f807b4b} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: (no name) - {f999a48b-1950-4d81-9971-79018f807b4b} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [upgmsd_re_004010007.exe] C:\Users\marek\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe -runonce
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\Users\marek\AppData\Local\Temp\E_S6891.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher
O4 - HKCU\..\Run: [Browser Extensions] "C:\Users\marek\AppData\Roaming\BrowserExtensions\BEHelper.exe"
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil64_19_0_0_245_ActiveX.exe -update activex
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files (x86)\Ralink\Common\RaUI.exe
O4 - Global Startup: WebBrowserMixVideoPlayer.lnk = C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Site Finder - {CCC7B152-1D8C-11E3-B2AD-F3EF3D58318D} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - http://www.sibelius.com/download/softwa ... Plugin.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: JMB36X - Unknown owner - C:\Windows\SysWOW64\XSrvSetup.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MPC Core Protect Service (MPCProtectService) - DotCash Limited - C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RalinkRegistryWriter - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry.exe
O23 - Service: RalinkRegistryWriter64 - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
O23 - Service: Ralink UPnP Media Server (RaMediaServer) - Unknown owner - C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: IE Search Set (SearchProtectionService) - Unknown owner - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11840 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 19075232
\??\C:\Windows\system32\conhost.exe "426836660106078657210542811261127397946-285937455137096393620514735301981725064
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
"C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE"
C:\Windows\SysWOW64\XSrvSetup.exe
"C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe"
"C:\Program Files (x86)\Ralink\Common\RaRegistry.exe"
"C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe"
"C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe"
"C:\Program Files (x86)\MPC Cleaner\MPCTray.exe"
"C:\Program Files (x86)\MPC Cleaner\MPCTray64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2852
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Users\marek\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe" -runhelper
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"C:\Program Files (x86)\Ralink\Common\RaUI.exe" -s
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe" /medium
taskeng.exe {1D18F001-E8FD-43D7-9E2E-1AE72E3938DE}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe26_ Global\UsGthrCtrlFltPipeMssGthrPipe26 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\marek\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41545534-0076-A76A-76A7-7A786E7484D7}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f999a48b-1950-4d81-9971-79018f807b4b}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Pro [2012-12-03 6527128]
"AdobeAAMUpdater-1.0"=C:\Pro [2012-12-03 6527128]
"CDAServer"=C:\Pro [2012-12-03 6527128]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Pro [2012-12-03 6527128]
"Handy Updater"=C:\Pro [2012-12-03 6527128]
"TomTomHOME.exe"=C:\Pro [2012-12-03 6527128]
"CCleaner Monitoring"=C:\Pro [2012-12-03 6527128]
"EPSON Stylus DX4400 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE [2007-03-01 211456]
"EEDSpeedLauncher"=C:\Windows\system32\eed_ec.dll [2014-03-05 3112960]
"Browser Extensions"=C:\Users\marek\AppData\Roaming\BrowserExtensions\BEHelper.exe [2015-11-27 553968]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\Windows\system32\Macromed\Flash\FlashUtil64_19_0_0_245_ActiveX.exe [2015-12-13 876232]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
"WinampAgent"=C:\Pro [2012-12-03 6527128]
"AvastUI.exe"=C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"upgmsd_re_004010007.exe"=C:\Users\marek\AppData\Local\gmsd_re_004010007\upgmsd_re_004010007.exe [2015-06-19 3307688]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Ralink Wireless Utility.lnk - C:\Program Files (x86)\Ralink\Common\RaUI.exe
WebBrowserMixVideoPlayer.lnk - C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe
C:\Users\marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-12-15 18:59:33 ----D---- C:\FRST
2015-12-13 18:48:25 ----D---- C:\Program Files (x86)\gmsd_re_004010007
2015-12-13 18:48:19 ----D---- C:\Program Files (x86)\MixVideoPlayer
2015-12-13 18:48:18 ----D---- C:\Users\marek\AppData\Roaming\yoursearching
2015-12-13 18:48:04 ----A---- C:\Windows\system32\drivers\MPCKpt.sys
2015-12-13 18:47:59 ----D---- C:\Program Files (x86)\MPC Cleaner
2015-12-09 07:34:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-12-09 07:34:26 ----A---- C:\Windows\system32\tzres.dll
2015-12-09 07:34:21 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-12-09 07:34:21 ----A---- C:\Windows\system32\usp10.dll
2015-12-09 07:34:18 ----A---- C:\Windows\system32\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wucltux.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups2.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\nlsbres.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-09 07:34:06 ----A---- C:\Windows\system32\win32k.sys
2015-12-09 07:34:06 ----A---- C:\Windows\system32\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\user32.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\FntCache.dll
2015-12-09 07:34:04 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-09 07:33:59 ----A---- C:\Windows\system32\mshtml.dll
2015-12-09 07:33:58 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-09 07:33:57 ----A---- C:\Windows\system32\ieframe.dll
2015-12-09 07:33:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-09 07:33:55 ----A---- C:\Windows\system32\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\system32\wininet.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\iertutil.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-12-09 07:33:48 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ie4uinit.exe
2015-12-09 07:33:47 ----A---- C:\Windows\system32\dxtmsft.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\system32\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\iesetup.dll
2015-12-09 07:32:50 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-09 07:32:47 ----A---- C:\Windows\SYSWOW64\els.dll
2015-12-09 07:32:47 ----A---- C:\Windows\system32\els.dll
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files\AV
2015-11-25 14:36:21 ----D---- C:\Program Files (x86)\Dealio Toolbar
2015-11-25 14:36:21 ----D---- C:\Program Files (x86)\Application Updater
======List of files/folders modified in the last 1 month======
2015-12-15 19:06:41 ----D---- C:\Windows\Prefetch
2015-12-15 19:06:40 ----D---- C:\Windows\Temp
2015-12-15 19:06:39 ----D---- C:\Program Files\trend micro
2015-12-15 18:59:36 ----D---- C:\Windows
2015-12-15 18:55:00 ----D---- C:\Windows\system32\NDF
2015-12-15 17:20:49 ----SHD---- C:\System Volume Information
2015-12-15 17:17:54 ----D---- C:\Windows\system32\config
2015-12-15 17:14:02 ----D---- C:\ProgramData\NVIDIA
2015-12-15 17:13:59 ----D---- C:\Windows\Tasks
2015-12-15 17:13:59 ----D---- C:\Windows\system32\wfp
2015-12-15 17:13:57 ----D---- C:\Windows\system32\wbem
2015-12-15 17:13:11 ----D---- C:\Windows\system32\DriverStore
2015-12-15 17:13:11 ----D---- C:\Windows\system32\catroot2
2015-12-15 17:13:11 ----D---- C:\Windows\System32
2015-12-15 17:13:10 ----D---- C:\Windows\registration
2015-12-13 19:00:15 ----RD---- C:\Program Files (x86)
2015-12-13 19:00:15 ----HD---- C:\ProgramData
2015-12-13 18:59:39 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-12-13 18:58:37 ----SHD---- C:\Windows\Installer
2015-12-13 18:49:19 ----D---- C:\Windows\system32\Tasks
2015-12-13 18:48:04 ----D---- C:\Windows\system32\drivers
2015-12-12 12:54:41 ----D---- C:\Windows\inf
2015-12-12 12:54:41 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-12 09:17:18 ----D---- C:\Windows\rescache
2015-12-09 20:17:19 ----D---- C:\Windows\Microsoft.NET
2015-12-09 20:16:56 ----RSD---- C:\Windows\assembly
2015-12-09 15:47:28 ----D---- C:\Windows\winsxs
2015-12-09 15:44:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-12-09 15:44:17 ----D---- C:\Windows\SysWOW64
2015-12-09 15:44:17 ----D---- C:\Windows\system32\cs-CZ
2015-12-09 15:44:14 ----RSD---- C:\Windows\Fonts
2015-12-09 15:44:14 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-09 15:44:13 ----D---- C:\Windows\ehome
2015-12-09 15:44:13 ----D---- C:\Program Files\Internet Explorer
2015-12-09 12:48:04 ----D---- C:\ProgramData\Microsoft Help
2015-12-09 07:33:54 ----D---- C:\Windows\system32\MRT
2015-12-09 07:33:49 ----A---- C:\Windows\system32\MRT.exe
2015-12-07 18:12:22 ----D---- C:\Windows\Minidump
2015-12-03 17:57:45 ----D---- C:\Users\marek\AppData\Roaming\BrowserExtensions
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files
2015-12-03 14:38:06 ----D---- C:\Program Files (x86)\Common Files
2015-12-02 13:18:58 ----N---- C:\Windows\system32\MpSigStub.exe
2015-11-19 14:53:16 ----SD---- C:\Users\marek\AppData\Roaming\Microsoft
2015-11-18 17:12:02 ----D---- C:\Program Files (x86)\Adobe
2015-11-18 17:11:56 ----D---- C:\ProgramData\Adobe
2015-11-17 16:49:02 ----D---- C:\Users\marek\AppData\Roaming\vlc
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-21 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-21 272248]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-01-27 115312]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-07-03 834544]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-21 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-21 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-28 442264]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 MPCKpt;MPCKpt; C:\Windows\system32\DRIVERS\MPCKpt.sys [2015-12-13 55528]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-21 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-21 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-21 137288]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2015-12-15 25640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-02 2536040]
R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys [2011-09-09 1660480]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 75776]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 177152]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys []
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2013-01-29 30528]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys [2008-11-19 17920]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys [2008-11-19 27136]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys [2008-11-19 33792]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 vkpzkcdi;vkpzkcdi; \??\C:\Windows\system32\drivers\ngiodriver_x64 []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S4 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Pro [2012-12-03 6527128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Pro [2012-12-03 6527128]
R2 Application Updater;Application Updater; C:\Pro [2012-12-03 6527128]
R2 avast! Antivirus;Avast Antivirus; C:\Pro [2012-12-03 6527128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\Pro [2012-12-03 6527128]
R2 ES lite Service;ES lite Service for program management.; C:\Pro [2012-12-03 6527128]
R2 JMB36X;JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [2010-01-19 72304]
R2 MPCProtectService;MPC Core Protect Service; C:\Pro [2012-12-03 6527128]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 884512]
R2 RalinkRegistryWriter;RalinkRegistryWriter; C:\Pro [2012-12-03 6527128]
R2 RalinkRegistryWriter64;RalinkRegistryWriter64; C:\Pro [2012-12-03 6527128]
R2 SearchProtectionService;IE Search Set; C:\Pro [2012-12-03 6527128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Pro [2012-12-03 6527128]
R2 TomTomHOMEService;TomTomHOMEService; C:\Pro [2012-12-03 6527128]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Pro [2012-12-03 6527128]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Pro [2012-12-03 6527128]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Pro [2012-12-03 6527128]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-13 269000]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Pro [2012-12-03 6527128]
S3 gusvc;Google Software Updater; C:\Pro [2012-12-03 6527128]
S3 IDriverT;InstallDriver Table Manager; C:\Pro [2012-12-03 6527128]
S3 odserv;Microsoft Office Diagnostics Service; C:\Pro [2012-12-03 6527128]
S3 ose;Office Source Engine; C:\Pro [2012-12-03 6527128]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RaMediaServer;Ralink UPnP Media Server; C:\Pro [2012-12-03 6527128]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-04 1255736]
S4 AvastVBoxSvc;AvastVBox COM Service; C:\Pro [2012-12-03 6527128]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
DOTĚRNÁ REKLAMA
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: DOTĚRNÁ REKLAMA
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: DOTĚRNÁ REKLAMA
Dobrý podvečer díky za rychlou reakci. Bohužel já se dostal k počítači až teď.
Doporučení bylo ale jasné.
Provedeno.
# AdwCleaner v5.025 - Logfile created 16/12/2015 at 17:35:30
# Updated 13/12/2015 by Xplode
# Database : 2015-12-13.2 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : marek - MAREK-PC
# Running from : C:\Users\marek\Desktop\adwcleaner_5.025.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : Application Updater
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\Application Updater
[-] Folder Deleted : C:\Program Files (x86)\Conduit
[-] Folder Deleted : C:\Program Files (x86)\Dealio Toolbar
[-] Folder Deleted : C:\Program Files (x86)\freeonlineradioplayerrecorder
[-] Folder Deleted : C:\Program Files (x86)\SweetPlayer
[-] Folder Deleted : C:\Program Files (x86)\LibraryProc
[-] Folder Deleted : C:\Program Files (x86)\UniDeals
[-] Folder Deleted : C:\Program Files (x86)\UnoIoDealesa
[-] Folder Deleted : C:\Program Files (x86)\gmsd_re_004010007
[!] Folder Not Deleted : C:\Program Files (x86)\gmsd_re_004010007
[-] Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
[-] Folder Deleted : C:\Program Files (x86)\Common Files\ProgramManager
[-] Folder Deleted : C:\ProgramData\12169307612735601558
[-] Folder Deleted : C:\ProgramData\{ff08b061-bd75-c54b-ff08-8b061bd7c186}
[-] Folder Deleted : C:\ProgramData\jjlnfkopbjgmajmgphmpkngdgdebhgbg
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SweetPlayer
[-] Folder Deleted : C:\Users\marek\AppData\Local\BrowserWeb
[-] Folder Deleted : C:\Users\marek\AppData\Local\gmsd_re_004010007
[!] Folder Not Deleted : C:\Users\marek\AppData\Local\gmsd_re_004010007
[-] Folder Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbonimgkpojnocmgjgkgigbfgffpcjnp
[-] Folder Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff
[!] Folder Not Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff
[-] Folder Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl
[-] Folder Deleted : C:\Users\marek\AppData\LocalLow\Conduit
[-] Folder Deleted : C:\Users\marek\AppData\LocalLow\Dealio
[-] Folder Deleted : C:\Users\marek\AppData\LocalLow\freeonlineradioplayerrecorder
[-] Folder Deleted : C:\Users\marek\AppData\Roaming\BrowserExtensions
[-] Folder Deleted : C:\Users\marek\AppData\Roaming\yoursearching
***** [ Files ] *****
[-] File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WebBrowserMixVideoPlayer.lnk
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ainbkicbloikcngphmjfpjdemblcojdd_0.localstorage
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jlnfdbbladgcmhhamgkioifhbobjaoof_0.localstorage
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jlnfdbbladgcmhhamgkioifhbobjaoof
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\plimopelmdneikoknbgpopffpbmlhgpa
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gdkjpmpailfmnokiabeoimelcgdglpff
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gdkjpmpailfmnokiabeoimelcgdglpff
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_icfefgaiandjaieopcfbidalbebjlhjl_0.localstorage
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_icfefgaiandjaieopcfbidalbebjlhjl_0.localstorage-journal
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\icfefgaiandjaieopcfbidalbebjlhjl
[-] File Deleted : C:\Users\marek\Desktop\MixVideoPlayer.lnk
[-] File Deleted : C:\Users\Public\Desktop\SweetPlayer.lnk
[-] File Deleted : C:\Users\UpdatusUser\Desktop\MixVideoPlayer.lnk
***** [ DLLs ] *****
***** [ Shortcuts ] *****
[-] Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\marek\Desktop\launcher.exe – zástupce.lnk
[-] Shortcut Disinfected : C:\Users\marek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
***** [ Scheduled tasks ] *****
[-] Task Deleted : MixVideoPlayer Update
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Extensions]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\ask.com
[-] Key Deleted : HKLM\SOFTWARE\Classes\Applications\MixVideoPlayer.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\ForeceRemove
[-] Key Deleted : HKLM\SOFTWARE\CLASSES\dream.capture.1
[-] Key Deleted : HKLM\SOFTWARE\CLASSES\dream.capture
[-] Key Deleted : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
[-] Key Deleted : HKLM\SOFTWARE\ad5bec9f-3666-0e3c-1de2-deb8799e184f
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{163ac2d4}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{1eeea34e}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2737658
[-] Key Deleted : HKCU\Software\Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66D59105-FE06-43A4-B292-EB0097E9EB74}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{138E44EF-8988-4DC7-8F48-FBC4FCEF83D1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BB50CC62-09E1-4DD9-912C-F1DA4D6D71D8}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\Interface\{66d59105-fe06-43a4-b292-eb0097e9eb74}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{41F978F3-431A-4464-A789-5C0692D562FB}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F999A48B-1950-4D81-9971-79018F807B4B}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7B152-1D8C-11E3-B2AD-F3EF3D58318D}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CCC7B152-1D8C-11E3-B2AD-F3EF3D58318D}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66D59105-FE06-43A4-B292-EB0097E9EB74}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9103C314-C4E2-4463-8934-B19BCB46236D}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97CEF41C-5055-474A-855A-892D4FE3E596}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66d59105-fe06-43a4-b292-eb0097e9eb74}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9103c314-c4e2-4463-8934-b19bcb46236d}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97cef41c-5055-474a-855a-892d4fe3e596}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d375ee64-f893-498a-a0e9-0e9829c88c3d}
[-] Value Deleted : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks [{D8278076-BC68-4484-9233-6E7F1628B56C}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F999A48B-1950-4D81-9971-79018F807B4B}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{F999A48B-1950-4D81-9971-79018F807B4B}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66D59105-FE06-43A4-B292-EB0097E9EB74}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9103C314-C4E2-4463-8934-B19BCB46236D}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{138E44EF-8988-4DC7-8F48-FBC4FCEF83D1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BB50CC62-09E1-4DD9-912C-F1DA4D6D71D8}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66d59105-fe06-43a4-b292-eb0097e9eb74}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9103c314-c4e2-4463-8934-b19bcb46236d}
[-] Key Deleted : HKCU\Software\Dealio
[-] Key Deleted : HKCU\Software\Tutorials
[-] Key Deleted : HKCU\Software\TutoTag
[-] Key Deleted : HKCU\Software\GAMESDESKTOP
[-] Key Deleted : HKCU\Software\WEBAPP
[-] Key Deleted : HKCU\Software\Microsoft\Tinstalls
[-] Key Deleted : HKCU\Software\AppDataLow\Toolbar
[-] Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKCU\Software\AppDataLow\Software\adawarebp
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Dealio
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Settings Manager
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Browser Extensions
[-] Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Key Deleted : HKLM\SOFTWARE\Application Updater
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Dealio
[-] Key Deleted : HKLM\SOFTWARE\Tutorials
[-] Key Deleted : HKLM\SOFTWARE\GAMESDESKTOP
[-] Key Deleted : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
[-] Key Deleted : HKLM\SOFTWARE\MixVideoPlayer
[-] Key Deleted : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKLM\SOFTWARE\SiteFinder
[-] Key Deleted : HKLM\SOFTWARE\yoursearchingSoftware
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\337Games
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FreeOnlineRadioPlayerRecorder Toolbar
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3F5700A1-5116-4BAA-9AD8-3FB238BE9334}_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MixVideoPlayer
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BDB38365-BCF2-1BF7-0020-507553315EA5}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\yoursearching uninstall
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{11F6D5AB-263F-388E-74DE-E3DECD390E3F}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_re_004010007_is1
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_re_004010007_is1
[-] Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Key Deleted : HKU\.DEFAULT\Software\IM
[-] Key Deleted : HKU\.DEFAULT\Software\ImInstaller
[-] Key Deleted : HKU\.DEFAULT\Software\SweetIM
[-] Key Deleted : HKU\.DEFAULT\Software\WNLT
[-] Key Deleted : HKU\.DEFAULT\Software\VNT
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
[-] Data Restored : HKU\S-1-5-21-2854584554-3035274672-59398493-1000_Classes\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command []
***** [ Web browsers ] *****
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.yoursearching.com/?type=hp&ts=14500 ... J9CB309112
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://www.yoursearching.com/webfavicon.ico
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fbonimgkpojnocmgjgkgigbfgffpcjnp
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : icfefgaiandjaieopcfbidalbebjlhjl
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oglbipcbkmlknhfhabolnniekmlhfoek
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ogminpmldncgcmokldnmmapddoccmhfl
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : plimopelmdneikoknbgpopffpbmlhgpa
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://www.yoursearching.com/?type=hp&ts=14500 ... J9CB309112
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [18557 bytes] ##########
Doporučení bylo ale jasné.
Provedeno.
# AdwCleaner v5.025 - Logfile created 16/12/2015 at 17:35:30
# Updated 13/12/2015 by Xplode
# Database : 2015-12-13.2 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : marek - MAREK-PC
# Running from : C:\Users\marek\Desktop\adwcleaner_5.025.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : Application Updater
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\Application Updater
[-] Folder Deleted : C:\Program Files (x86)\Conduit
[-] Folder Deleted : C:\Program Files (x86)\Dealio Toolbar
[-] Folder Deleted : C:\Program Files (x86)\freeonlineradioplayerrecorder
[-] Folder Deleted : C:\Program Files (x86)\SweetPlayer
[-] Folder Deleted : C:\Program Files (x86)\LibraryProc
[-] Folder Deleted : C:\Program Files (x86)\UniDeals
[-] Folder Deleted : C:\Program Files (x86)\UnoIoDealesa
[-] Folder Deleted : C:\Program Files (x86)\gmsd_re_004010007
[!] Folder Not Deleted : C:\Program Files (x86)\gmsd_re_004010007
[-] Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
[-] Folder Deleted : C:\Program Files (x86)\Common Files\ProgramManager
[-] Folder Deleted : C:\ProgramData\12169307612735601558
[-] Folder Deleted : C:\ProgramData\{ff08b061-bd75-c54b-ff08-8b061bd7c186}
[-] Folder Deleted : C:\ProgramData\jjlnfkopbjgmajmgphmpkngdgdebhgbg
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SweetPlayer
[-] Folder Deleted : C:\Users\marek\AppData\Local\BrowserWeb
[-] Folder Deleted : C:\Users\marek\AppData\Local\gmsd_re_004010007
[!] Folder Not Deleted : C:\Users\marek\AppData\Local\gmsd_re_004010007
[-] Folder Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbonimgkpojnocmgjgkgigbfgffpcjnp
[-] Folder Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff
[!] Folder Not Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff
[-] Folder Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl
[-] Folder Deleted : C:\Users\marek\AppData\LocalLow\Conduit
[-] Folder Deleted : C:\Users\marek\AppData\LocalLow\Dealio
[-] Folder Deleted : C:\Users\marek\AppData\LocalLow\freeonlineradioplayerrecorder
[-] Folder Deleted : C:\Users\marek\AppData\Roaming\BrowserExtensions
[-] Folder Deleted : C:\Users\marek\AppData\Roaming\yoursearching
***** [ Files ] *****
[-] File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WebBrowserMixVideoPlayer.lnk
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ainbkicbloikcngphmjfpjdemblcojdd_0.localstorage
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jlnfdbbladgcmhhamgkioifhbobjaoof_0.localstorage
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jlnfdbbladgcmhhamgkioifhbobjaoof
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\plimopelmdneikoknbgpopffpbmlhgpa
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gdkjpmpailfmnokiabeoimelcgdglpff
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gdkjpmpailfmnokiabeoimelcgdglpff
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_icfefgaiandjaieopcfbidalbebjlhjl_0.localstorage
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_icfefgaiandjaieopcfbidalbebjlhjl_0.localstorage-journal
[-] File Deleted : C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\icfefgaiandjaieopcfbidalbebjlhjl
[-] File Deleted : C:\Users\marek\Desktop\MixVideoPlayer.lnk
[-] File Deleted : C:\Users\Public\Desktop\SweetPlayer.lnk
[-] File Deleted : C:\Users\UpdatusUser\Desktop\MixVideoPlayer.lnk
***** [ DLLs ] *****
***** [ Shortcuts ] *****
[-] Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\marek\Desktop\launcher.exe – zástupce.lnk
[-] Shortcut Disinfected : C:\Users\marek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
***** [ Scheduled tasks ] *****
[-] Task Deleted : MixVideoPlayer Update
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Extensions]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\ask.com
[-] Key Deleted : HKLM\SOFTWARE\Classes\Applications\MixVideoPlayer.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\ForeceRemove
[-] Key Deleted : HKLM\SOFTWARE\CLASSES\dream.capture.1
[-] Key Deleted : HKLM\SOFTWARE\CLASSES\dream.capture
[-] Key Deleted : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
[-] Key Deleted : HKLM\SOFTWARE\ad5bec9f-3666-0e3c-1de2-deb8799e184f
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{163ac2d4}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{1eeea34e}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2737658
[-] Key Deleted : HKCU\Software\Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66D59105-FE06-43A4-B292-EB0097E9EB74}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{138E44EF-8988-4DC7-8F48-FBC4FCEF83D1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BB50CC62-09E1-4DD9-912C-F1DA4D6D71D8}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\Interface\{66d59105-fe06-43a4-b292-eb0097e9eb74}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{41F978F3-431A-4464-A789-5C0692D562FB}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F999A48B-1950-4D81-9971-79018F807B4B}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7B152-1D8C-11E3-B2AD-F3EF3D58318D}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CCC7B152-1D8C-11E3-B2AD-F3EF3D58318D}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66D59105-FE06-43A4-B292-EB0097E9EB74}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9103C314-C4E2-4463-8934-B19BCB46236D}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97CEF41C-5055-474A-855A-892D4FE3E596}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66d59105-fe06-43a4-b292-eb0097e9eb74}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9103c314-c4e2-4463-8934-b19bcb46236d}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97cef41c-5055-474a-855a-892d4fe3e596}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d375ee64-f893-498a-a0e9-0e9829c88c3d}
[-] Value Deleted : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks [{D8278076-BC68-4484-9233-6E7F1628B56C}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F999A48B-1950-4D81-9971-79018F807B4B}]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{F999A48B-1950-4D81-9971-79018F807B4B}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66D59105-FE06-43A4-B292-EB0097E9EB74}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9103C314-C4E2-4463-8934-B19BCB46236D}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{138E44EF-8988-4DC7-8F48-FBC4FCEF83D1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BB50CC62-09E1-4DD9-912C-F1DA4D6D71D8}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66d59105-fe06-43a4-b292-eb0097e9eb74}
[!] Key Not Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9103c314-c4e2-4463-8934-b19bcb46236d}
[-] Key Deleted : HKCU\Software\Dealio
[-] Key Deleted : HKCU\Software\Tutorials
[-] Key Deleted : HKCU\Software\TutoTag
[-] Key Deleted : HKCU\Software\GAMESDESKTOP
[-] Key Deleted : HKCU\Software\WEBAPP
[-] Key Deleted : HKCU\Software\Microsoft\Tinstalls
[-] Key Deleted : HKCU\Software\AppDataLow\Toolbar
[-] Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKCU\Software\AppDataLow\Software\adawarebp
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Dealio
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Settings Manager
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Browser Extensions
[-] Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Key Deleted : HKLM\SOFTWARE\Application Updater
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Dealio
[-] Key Deleted : HKLM\SOFTWARE\Tutorials
[-] Key Deleted : HKLM\SOFTWARE\GAMESDESKTOP
[-] Key Deleted : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
[-] Key Deleted : HKLM\SOFTWARE\MixVideoPlayer
[-] Key Deleted : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKLM\SOFTWARE\SiteFinder
[-] Key Deleted : HKLM\SOFTWARE\yoursearchingSoftware
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\337Games
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FreeOnlineRadioPlayerRecorder Toolbar
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3F5700A1-5116-4BAA-9AD8-3FB238BE9334}_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MixVideoPlayer
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BDB38365-BCF2-1BF7-0020-507553315EA5}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\yoursearching uninstall
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{11F6D5AB-263F-388E-74DE-E3DECD390E3F}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_re_004010007_is1
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_re_004010007_is1
[-] Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Key Deleted : HKU\.DEFAULT\Software\IM
[-] Key Deleted : HKU\.DEFAULT\Software\ImInstaller
[-] Key Deleted : HKU\.DEFAULT\Software\SweetIM
[-] Key Deleted : HKU\.DEFAULT\Software\WNLT
[-] Key Deleted : HKU\.DEFAULT\Software\VNT
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
[-] Data Restored : HKU\S-1-5-21-2854584554-3035274672-59398493-1000_Classes\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command []
***** [ Web browsers ] *****
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.yoursearching.com/?type=hp&ts=14500 ... J9CB309112
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://www.yoursearching.com/webfavicon.ico
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fbonimgkpojnocmgjgkgigbfgffpcjnp
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : icfefgaiandjaieopcfbidalbebjlhjl
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oglbipcbkmlknhfhabolnniekmlhfoek
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ogminpmldncgcmokldnmmapddoccmhfl
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : plimopelmdneikoknbgpopffpbmlhgpa
[-] [C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://www.yoursearching.com/?type=hp&ts=14500 ... J9CB309112
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [18557 bytes] ##########
Re: DOTĚRNÁ REKLAMA
zkusil jsem změnit domovskou stránku na náš firemní web, nebo na seznam, ale nic.
vždycky se to přepíše na MPC safe navigation powered by google.
Ale co se týče vyskakování reklamy, vypadá to nadějně, nejvíc se to projevovalo při sledováni videa, tedy když byl spuštěný nějaký přehrávač, ale i jindy, jen méně často. Zatím je to v poho.
vždycky se to přepíše na MPC safe navigation powered by google.
Ale co se týče vyskakování reklamy, vypadá to nadějně, nejvíc se to projevovalo při sledováni videa, tedy když byl spuštěný nějaký přehrávač, ale i jindy, jen méně často. Zatím je to v poho.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: DOTĚRNÁ REKLAMA
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: DOTĚRNÁ REKLAMA
Do teď, žádná reklama. Super.
Co se týče nemožnosti změnit domovskou stránku z MPC safe navigation. Všiml jsem si, že mám na ploše zástupce z nainstalovaného programu MPC cleaner. Nejsem si vědomý, že bych něco takového do počítače úmyslně instaloval. Tváří se to jako program na údržbu počítače a radí mi abych ho spustil a počítač vyčistil. To jsem neudělal, spíš uvažuju, že bych ho zkusil odinstalovat, jestli to náhodou není původce oné vtipné nemožosti změnit domovskou stránku. Přikládám log a těším se na další odpověď.
Logfile of random's system information tool 1.10 (written by random/random)
Run by marek at 2015-12-17 15:20:14
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 11 GB (7%) free of 150 GB
Total RAM: 4094 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:20:17, on 17.12.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.17566)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\MPC Cleaner\MPCTray.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\trend micro\marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [20150107] C:\Program Files\AVAST Software\Avast\setup\emupdate\41d104c3-4703-43ee-94d6-37839714caea.exe /check
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\Users\marek\AppData\Local\Temp\E_S6891.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files (x86)\Ralink\Common\RaUI.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - http://www.sibelius.com/download/softwa ... Plugin.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: JMB36X - Unknown owner - C:\Windows\SysWOW64\XSrvSetup.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MPC Core Protect Service (MPCProtectService) - DotCash Limited - C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RalinkRegistryWriter - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry.exe
O23 - Service: RalinkRegistryWriter64 - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
O23 - Service: Ralink UPnP Media Server (RaMediaServer) - Unknown owner - C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: IE Search Set (SearchProtectionService) - Unknown owner - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11073 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 22379072
\??\C:\Windows\system32\conhost.exe "-1837376930-151627645215765907992082658012-271115165-2101667018-123200709034772135
C:\Windows\System32\spoolsv.exe
taskeng.exe {00830EE7-BDA4-456D-9EB4-DB91D30D3627}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE"
C:\Windows\SysWOW64\XSrvSetup.exe
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Ralink\Common\RaRegistry.exe"
"C:\Program Files (x86)\Ralink\Common\RaUI.exe" -s
"C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3080
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe"
"C:\Program Files (x86)\MPC Cleaner\MPCTray.exe"
"C:\Program Files (x86)\MPC Cleaner\MPCTray64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe" /medium
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\CompatTelRunner.exe
\??\C:\Windows\system32\conhost.exe "-532876871163283896101670951063609217-454379223435605908-2081351898-1768368588
C:\Windows\system32\CompatTelRunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2854584554-3035274672-59398493-10002_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2854584554-3035274672-59398493-10002 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Windows\TEMP\F059D4C5-817D-4F8E-9296-C885169C0485\dismhost.exe {F3A18BC7-BAF2-4F18-82DE-88BE25900D1A}
C:\Windows\servicing\TrustedInstaller.exe
"C:\Users\marek\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41545534-0076-A76A-76A7-7A786E7484D7}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Pro [2012-12-03 6527128]
"AdobeAAMUpdater-1.0"=C:\Pro [2012-12-03 6527128]
"CDAServer"=C:\Pro [2012-12-03 6527128]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Pro [2012-12-03 6527128]
"Handy Updater"=C:\Pro [2012-12-03 6527128]
"TomTomHOME.exe"=C:\Pro [2012-12-03 6527128]
"CCleaner Monitoring"=C:\Pro [2012-12-03 6527128]
"EPSON Stylus DX4400 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE [2007-03-01 211456]
"EEDSpeedLauncher"=C:\Windows\system32\eed_ec.dll [2014-03-05 3112960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
"WinampAgent"=C:\Pro [2012-12-03 6527128]
"AvastUI.exe"=C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"20150107"=C:\Pro [2012-12-03 6527128]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Ralink Wireless Utility.lnk - C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Users\marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-12-16 17:29:31 ----D---- C:\AdwCleaner
2015-12-15 18:59:33 ----D---- C:\FRST
2015-12-13 18:48:19 ----D---- C:\Program Files (x86)\MixVideoPlayer
2015-12-13 18:48:04 ----A---- C:\Windows\system32\drivers\MPCKpt.sys
2015-12-13 18:47:59 ----D---- C:\Program Files (x86)\MPC Cleaner
2015-12-09 07:34:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-12-09 07:34:26 ----A---- C:\Windows\system32\tzres.dll
2015-12-09 07:34:21 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-12-09 07:34:21 ----A---- C:\Windows\system32\usp10.dll
2015-12-09 07:34:18 ----A---- C:\Windows\system32\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wucltux.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups2.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\nlsbres.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-09 07:34:06 ----A---- C:\Windows\system32\win32k.sys
2015-12-09 07:34:06 ----A---- C:\Windows\system32\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\user32.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\FntCache.dll
2015-12-09 07:34:04 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-09 07:33:59 ----A---- C:\Windows\system32\mshtml.dll
2015-12-09 07:33:58 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-09 07:33:57 ----A---- C:\Windows\system32\ieframe.dll
2015-12-09 07:33:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-09 07:33:55 ----A---- C:\Windows\system32\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\system32\wininet.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\iertutil.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-12-09 07:33:48 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ie4uinit.exe
2015-12-09 07:33:47 ----A---- C:\Windows\system32\dxtmsft.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\system32\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\iesetup.dll
2015-12-09 07:32:50 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-09 07:32:47 ----A---- C:\Windows\SYSWOW64\els.dll
2015-12-09 07:32:47 ----A---- C:\Windows\system32\els.dll
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files\AV
======List of files/folders modified in the last 1 month======
2015-12-17 15:20:17 ----D---- C:\Windows\Prefetch
2015-12-17 15:20:15 ----D---- C:\Windows\Temp
2015-12-17 15:20:15 ----D---- C:\Program Files\trend micro
2015-12-17 15:18:57 ----D---- C:\Windows\system32\config
2015-12-17 15:13:38 ----D---- C:\ProgramData\NVIDIA
2015-12-16 17:44:08 ----D---- C:\Windows\System32
2015-12-16 17:44:08 ----D---- C:\Windows\inf
2015-12-16 17:44:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-16 17:35:37 ----D---- C:\Windows\system32\Tasks
2015-12-16 17:35:35 ----RD---- C:\Program Files (x86)
2015-12-16 17:35:35 ----HD---- C:\ProgramData
2015-12-16 17:35:35 ----D---- C:\Program Files (x86)\Common Files
2015-12-15 18:59:36 ----D---- C:\Windows
2015-12-15 18:55:00 ----D---- C:\Windows\system32\NDF
2015-12-15 17:20:49 ----SHD---- C:\System Volume Information
2015-12-15 17:13:59 ----D---- C:\Windows\Tasks
2015-12-15 17:13:59 ----D---- C:\Windows\system32\wfp
2015-12-15 17:13:57 ----D---- C:\Windows\system32\wbem
2015-12-15 17:13:11 ----D---- C:\Windows\system32\DriverStore
2015-12-15 17:13:11 ----D---- C:\Windows\system32\catroot2
2015-12-15 17:13:10 ----D---- C:\Windows\registration
2015-12-13 18:59:39 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-12-13 18:58:37 ----SHD---- C:\Windows\Installer
2015-12-13 18:48:04 ----D---- C:\Windows\system32\drivers
2015-12-12 09:17:18 ----D---- C:\Windows\rescache
2015-12-09 20:17:19 ----D---- C:\Windows\Microsoft.NET
2015-12-09 20:16:56 ----RSD---- C:\Windows\assembly
2015-12-09 15:47:28 ----D---- C:\Windows\winsxs
2015-12-09 15:44:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-12-09 15:44:17 ----D---- C:\Windows\SysWOW64
2015-12-09 15:44:17 ----D---- C:\Windows\system32\cs-CZ
2015-12-09 15:44:14 ----RSD---- C:\Windows\Fonts
2015-12-09 15:44:14 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-09 15:44:13 ----D---- C:\Windows\ehome
2015-12-09 15:44:13 ----D---- C:\Program Files\Internet Explorer
2015-12-09 12:48:04 ----D---- C:\ProgramData\Microsoft Help
2015-12-09 07:39:17 ----D---- C:\Windows\system32\MRT
2015-12-09 07:33:49 ----A---- C:\Windows\system32\MRT.exe
2015-12-07 18:12:22 ----D---- C:\Windows\Minidump
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files
2015-12-02 13:18:58 ----N---- C:\Windows\system32\MpSigStub.exe
2015-11-19 14:53:16 ----SD---- C:\Users\marek\AppData\Roaming\Microsoft
2015-11-18 17:12:02 ----D---- C:\Program Files (x86)\Adobe
2015-11-18 17:11:56 ----D---- C:\ProgramData\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-21 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-21 272248]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-01-27 115312]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-07-03 834544]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-21 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-21 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-28 442264]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 MPCKpt;MPCKpt; C:\Windows\system32\DRIVERS\MPCKpt.sys [2015-12-16 55016]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-21 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-21 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-21 137288]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2015-12-17 25640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-02 2536040]
R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys [2011-09-09 1660480]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 75776]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 177152]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys []
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2013-01-29 30528]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys [2008-11-19 17920]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys [2008-11-19 27136]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys [2008-11-19 33792]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 vkpzkcdi;vkpzkcdi; \??\C:\Windows\system32\drivers\ngiodriver_x64 []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S4 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Pro [2012-12-03 6527128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Pro [2012-12-03 6527128]
R2 avast! Antivirus;Avast Antivirus; C:\Pro [2012-12-03 6527128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\Pro [2012-12-03 6527128]
R2 ES lite Service;ES lite Service for program management.; C:\Pro [2012-12-03 6527128]
R2 JMB36X;JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [2010-01-19 72304]
R2 MPCProtectService;MPC Core Protect Service; C:\Pro [2012-12-03 6527128]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 884512]
R2 RalinkRegistryWriter;RalinkRegistryWriter; C:\Pro [2012-12-03 6527128]
R2 RalinkRegistryWriter64;RalinkRegistryWriter64; C:\Pro [2012-12-03 6527128]
R2 SearchProtectionService;IE Search Set; C:\Pro [2012-12-03 6527128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Pro [2012-12-03 6527128]
R2 TomTomHOMEService;TomTomHOMEService; C:\Pro [2012-12-03 6527128]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Pro [2012-12-03 6527128]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Pro [2012-12-03 6527128]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Pro [2012-12-03 6527128]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-13 269000]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Pro [2012-12-03 6527128]
S3 gusvc;Google Software Updater; C:\Pro [2012-12-03 6527128]
S3 IDriverT;InstallDriver Table Manager; C:\Pro [2012-12-03 6527128]
S3 odserv;Microsoft Office Diagnostics Service; C:\Pro [2012-12-03 6527128]
S3 ose;Office Source Engine; C:\Pro [2012-12-03 6527128]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RaMediaServer;Ralink UPnP Media Server; C:\Pro [2012-12-03 6527128]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-04 1255736]
S4 AvastVBoxSvc;AvastVBox COM Service; C:\Pro [2012-12-03 6527128]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Co se týče nemožnosti změnit domovskou stránku z MPC safe navigation. Všiml jsem si, že mám na ploše zástupce z nainstalovaného programu MPC cleaner. Nejsem si vědomý, že bych něco takového do počítače úmyslně instaloval. Tváří se to jako program na údržbu počítače a radí mi abych ho spustil a počítač vyčistil. To jsem neudělal, spíš uvažuju, že bych ho zkusil odinstalovat, jestli to náhodou není původce oné vtipné nemožosti změnit domovskou stránku. Přikládám log a těším se na další odpověď.
Logfile of random's system information tool 1.10 (written by random/random)
Run by marek at 2015-12-17 15:20:14
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 11 GB (7%) free of 150 GB
Total RAM: 4094 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:20:17, on 17.12.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.17566)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\MPC Cleaner\MPCTray.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\trend micro\marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [20150107] C:\Program Files\AVAST Software\Avast\setup\emupdate\41d104c3-4703-43ee-94d6-37839714caea.exe /check
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\Users\marek\AppData\Local\Temp\E_S6891.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files (x86)\Ralink\Common\RaUI.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - http://www.sibelius.com/download/softwa ... Plugin.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: JMB36X - Unknown owner - C:\Windows\SysWOW64\XSrvSetup.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MPC Core Protect Service (MPCProtectService) - DotCash Limited - C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RalinkRegistryWriter - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry.exe
O23 - Service: RalinkRegistryWriter64 - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
O23 - Service: Ralink UPnP Media Server (RaMediaServer) - Unknown owner - C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: IE Search Set (SearchProtectionService) - Unknown owner - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11073 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 22379072
\??\C:\Windows\system32\conhost.exe "-1837376930-151627645215765907992082658012-271115165-2101667018-123200709034772135
C:\Windows\System32\spoolsv.exe
taskeng.exe {00830EE7-BDA4-456D-9EB4-DB91D30D3627}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE"
C:\Windows\SysWOW64\XSrvSetup.exe
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Ralink\Common\RaRegistry.exe"
"C:\Program Files (x86)\Ralink\Common\RaUI.exe" -s
"C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3080
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe"
"C:\Program Files (x86)\MPC Cleaner\MPCTray.exe"
"C:\Program Files (x86)\MPC Cleaner\MPCTray64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe" /medium
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\CompatTelRunner.exe
\??\C:\Windows\system32\conhost.exe "-532876871163283896101670951063609217-454379223435605908-2081351898-1768368588
C:\Windows\system32\CompatTelRunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2854584554-3035274672-59398493-10002_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2854584554-3035274672-59398493-10002 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Windows\TEMP\F059D4C5-817D-4F8E-9296-C885169C0485\dismhost.exe {F3A18BC7-BAF2-4F18-82DE-88BE25900D1A}
C:\Windows\servicing\TrustedInstaller.exe
"C:\Users\marek\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41545534-0076-A76A-76A7-7A786E7484D7}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Pro [2012-12-03 6527128]
"AdobeAAMUpdater-1.0"=C:\Pro [2012-12-03 6527128]
"CDAServer"=C:\Pro [2012-12-03 6527128]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Pro [2012-12-03 6527128]
"Handy Updater"=C:\Pro [2012-12-03 6527128]
"TomTomHOME.exe"=C:\Pro [2012-12-03 6527128]
"CCleaner Monitoring"=C:\Pro [2012-12-03 6527128]
"EPSON Stylus DX4400 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE [2007-03-01 211456]
"EEDSpeedLauncher"=C:\Windows\system32\eed_ec.dll [2014-03-05 3112960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
"WinampAgent"=C:\Pro [2012-12-03 6527128]
"AvastUI.exe"=C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"20150107"=C:\Pro [2012-12-03 6527128]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Ralink Wireless Utility.lnk - C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Users\marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-12-16 17:29:31 ----D---- C:\AdwCleaner
2015-12-15 18:59:33 ----D---- C:\FRST
2015-12-13 18:48:19 ----D---- C:\Program Files (x86)\MixVideoPlayer
2015-12-13 18:48:04 ----A---- C:\Windows\system32\drivers\MPCKpt.sys
2015-12-13 18:47:59 ----D---- C:\Program Files (x86)\MPC Cleaner
2015-12-09 07:34:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-12-09 07:34:26 ----A---- C:\Windows\system32\tzres.dll
2015-12-09 07:34:21 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-12-09 07:34:21 ----A---- C:\Windows\system32\usp10.dll
2015-12-09 07:34:18 ----A---- C:\Windows\system32\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wucltux.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups2.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\nlsbres.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-09 07:34:06 ----A---- C:\Windows\system32\win32k.sys
2015-12-09 07:34:06 ----A---- C:\Windows\system32\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\user32.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\FntCache.dll
2015-12-09 07:34:04 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-09 07:33:59 ----A---- C:\Windows\system32\mshtml.dll
2015-12-09 07:33:58 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-09 07:33:57 ----A---- C:\Windows\system32\ieframe.dll
2015-12-09 07:33:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-09 07:33:55 ----A---- C:\Windows\system32\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\system32\wininet.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\iertutil.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-12-09 07:33:48 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ie4uinit.exe
2015-12-09 07:33:47 ----A---- C:\Windows\system32\dxtmsft.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\system32\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\iesetup.dll
2015-12-09 07:32:50 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-09 07:32:47 ----A---- C:\Windows\SYSWOW64\els.dll
2015-12-09 07:32:47 ----A---- C:\Windows\system32\els.dll
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files\AV
======List of files/folders modified in the last 1 month======
2015-12-17 15:20:17 ----D---- C:\Windows\Prefetch
2015-12-17 15:20:15 ----D---- C:\Windows\Temp
2015-12-17 15:20:15 ----D---- C:\Program Files\trend micro
2015-12-17 15:18:57 ----D---- C:\Windows\system32\config
2015-12-17 15:13:38 ----D---- C:\ProgramData\NVIDIA
2015-12-16 17:44:08 ----D---- C:\Windows\System32
2015-12-16 17:44:08 ----D---- C:\Windows\inf
2015-12-16 17:44:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-16 17:35:37 ----D---- C:\Windows\system32\Tasks
2015-12-16 17:35:35 ----RD---- C:\Program Files (x86)
2015-12-16 17:35:35 ----HD---- C:\ProgramData
2015-12-16 17:35:35 ----D---- C:\Program Files (x86)\Common Files
2015-12-15 18:59:36 ----D---- C:\Windows
2015-12-15 18:55:00 ----D---- C:\Windows\system32\NDF
2015-12-15 17:20:49 ----SHD---- C:\System Volume Information
2015-12-15 17:13:59 ----D---- C:\Windows\Tasks
2015-12-15 17:13:59 ----D---- C:\Windows\system32\wfp
2015-12-15 17:13:57 ----D---- C:\Windows\system32\wbem
2015-12-15 17:13:11 ----D---- C:\Windows\system32\DriverStore
2015-12-15 17:13:11 ----D---- C:\Windows\system32\catroot2
2015-12-15 17:13:10 ----D---- C:\Windows\registration
2015-12-13 18:59:39 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-12-13 18:58:37 ----SHD---- C:\Windows\Installer
2015-12-13 18:48:04 ----D---- C:\Windows\system32\drivers
2015-12-12 09:17:18 ----D---- C:\Windows\rescache
2015-12-09 20:17:19 ----D---- C:\Windows\Microsoft.NET
2015-12-09 20:16:56 ----RSD---- C:\Windows\assembly
2015-12-09 15:47:28 ----D---- C:\Windows\winsxs
2015-12-09 15:44:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-12-09 15:44:17 ----D---- C:\Windows\SysWOW64
2015-12-09 15:44:17 ----D---- C:\Windows\system32\cs-CZ
2015-12-09 15:44:14 ----RSD---- C:\Windows\Fonts
2015-12-09 15:44:14 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-09 15:44:13 ----D---- C:\Windows\ehome
2015-12-09 15:44:13 ----D---- C:\Program Files\Internet Explorer
2015-12-09 12:48:04 ----D---- C:\ProgramData\Microsoft Help
2015-12-09 07:39:17 ----D---- C:\Windows\system32\MRT
2015-12-09 07:33:49 ----A---- C:\Windows\system32\MRT.exe
2015-12-07 18:12:22 ----D---- C:\Windows\Minidump
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files
2015-12-02 13:18:58 ----N---- C:\Windows\system32\MpSigStub.exe
2015-11-19 14:53:16 ----SD---- C:\Users\marek\AppData\Roaming\Microsoft
2015-11-18 17:12:02 ----D---- C:\Program Files (x86)\Adobe
2015-11-18 17:11:56 ----D---- C:\ProgramData\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-21 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-21 272248]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-01-27 115312]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-07-03 834544]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-21 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-21 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-28 442264]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 MPCKpt;MPCKpt; C:\Windows\system32\DRIVERS\MPCKpt.sys [2015-12-16 55016]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-21 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-21 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-21 137288]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2015-12-17 25640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-02 2536040]
R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys [2011-09-09 1660480]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 75776]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 177152]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys []
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2013-01-29 30528]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys [2008-11-19 17920]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys [2008-11-19 27136]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys [2008-11-19 33792]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 vkpzkcdi;vkpzkcdi; \??\C:\Windows\system32\drivers\ngiodriver_x64 []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S4 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Pro [2012-12-03 6527128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Pro [2012-12-03 6527128]
R2 avast! Antivirus;Avast Antivirus; C:\Pro [2012-12-03 6527128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\Pro [2012-12-03 6527128]
R2 ES lite Service;ES lite Service for program management.; C:\Pro [2012-12-03 6527128]
R2 JMB36X;JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [2010-01-19 72304]
R2 MPCProtectService;MPC Core Protect Service; C:\Pro [2012-12-03 6527128]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 884512]
R2 RalinkRegistryWriter;RalinkRegistryWriter; C:\Pro [2012-12-03 6527128]
R2 RalinkRegistryWriter64;RalinkRegistryWriter64; C:\Pro [2012-12-03 6527128]
R2 SearchProtectionService;IE Search Set; C:\Pro [2012-12-03 6527128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Pro [2012-12-03 6527128]
R2 TomTomHOMEService;TomTomHOMEService; C:\Pro [2012-12-03 6527128]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Pro [2012-12-03 6527128]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Pro [2012-12-03 6527128]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Pro [2012-12-03 6527128]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-13 269000]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Pro [2012-12-03 6527128]
S3 gusvc;Google Software Updater; C:\Pro [2012-12-03 6527128]
S3 IDriverT;InstallDriver Table Manager; C:\Pro [2012-12-03 6527128]
S3 odserv;Microsoft Office Diagnostics Service; C:\Pro [2012-12-03 6527128]
S3 ose;Office Source Engine; C:\Pro [2012-12-03 6527128]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RaMediaServer;Ralink UPnP Media Server; C:\Pro [2012-12-03 6527128]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-04 1255736]
S4 AvastVBoxSvc;AvastVBox COM Service; C:\Pro [2012-12-03 6527128]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: DOTĚRNÁ REKLAMA
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Program Files (x86)\Google\Google Toolbar
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\system32\drivers\MPCKpt.sys
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41545534-0076-A76A-76A7-7A786E7484D7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]/64
:services
MPCKpt
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: DOTĚRNÁ REKLAMA
Nejsem si jistý jestli jsem postupoval správně, jediný vypínač co jsem v avastu našel jsem uvedl do polohy vypnuto, ale neozvala se žádná hláška o tom že by v tem moment byl počítač nechráněn. Naopak všechny štíty aktivní, myslím že jsem vypl pouze nějako podružnou funkci. Presto jsem provedl akci a počítač se následně sám zrestartoval.
Jestli jsem to nezvládl tak mi prosím poraďte jak se vypíná avast.
A tak jsem to asi pos..., teď jsem zkusil změnit domovskou a zase nic.
Než bude odpověď, budu hledat ten správný vypínač a eventuálně to celé zopakuju.
Logfile of random's system information tool 1.10 (written by random/random)
Run by marek at 2015-12-18 08:49:17
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 12 GB (8%) free of 150 GB
Total RAM: 4094 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:49:18, on 18.12.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.17566)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\MPC Cleaner\MPCTray.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\trend micro\marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\Users\marek\AppData\Local\Temp\E_S6891.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files (x86)\Ralink\Common\RaUI.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - http://www.sibelius.com/download/softwa ... Plugin.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: JMB36X - Unknown owner - C:\Windows\SysWOW64\XSrvSetup.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MPC Core Protect Service (MPCProtectService) - DotCash Limited - C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RalinkRegistryWriter - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry.exe
O23 - Service: RalinkRegistryWriter64 - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
O23 - Service: Ralink UPnP Media Server (RaMediaServer) - Unknown owner - C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: IE Search Set (SearchProtectionService) - Unknown owner - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10636 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 25133248
\??\C:\Windows\system32\conhost.exe "16247170691311967599-1621534983-673796120-620631676-1197315574-11563309161575203883
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
"C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE"
C:\Windows\SysWOW64\XSrvSetup.exe
"C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe"
"C:\Program Files (x86)\Ralink\Common\RaRegistry.exe"
"C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe"
"C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2768
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"taskhost.exe"
taskeng.exe {30C2CE34-A226-48A7-91AA-99873E53A2FE}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\MPC Cleaner\MPCTray.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
"C:\Program Files (x86)\MPC Cleaner\MPCTray64.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
taskeng.exe {80D9480D-6179-4667-8DC2-9D975AD779D6}
"C:\Program Files (x86)\Ralink\Common\RaUI.exe" -s
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Internet Explorer\iexplore.exe"
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\marek\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Pro [2012-12-03 6527128]
"AdobeAAMUpdater-1.0"=C:\Pro [2012-12-03 6527128]
"CDAServer"=C:\Pro [2012-12-03 6527128]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Pro [2012-12-03 6527128]
"Handy Updater"=C:\Pro [2012-12-03 6527128]
"TomTomHOME.exe"=C:\Pro [2012-12-03 6527128]
"CCleaner Monitoring"=C:\Pro [2012-12-03 6527128]
"EPSON Stylus DX4400 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE [2007-03-01 211456]
"EEDSpeedLauncher"=C:\Windows\system32\eed_ec.dll [2014-03-05 3112960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
"WinampAgent"=C:\Pro [2012-12-03 6527128]
"AvastUI.exe"=C:\Pro [2012-12-03 6527128]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Ralink Wireless Utility.lnk - C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Users\marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-12-18 08:39:45 ----D---- C:\_OTM
2015-12-16 17:29:31 ----D---- C:\AdwCleaner
2015-12-15 18:59:33 ----D---- C:\FRST
2015-12-13 18:48:19 ----D---- C:\Program Files (x86)\MixVideoPlayer
2015-12-13 18:48:04 ----A---- C:\Windows\system32\drivers\MPCKpt.sys
2015-12-13 18:47:59 ----D---- C:\Program Files (x86)\MPC Cleaner
2015-12-09 07:34:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-12-09 07:34:26 ----A---- C:\Windows\system32\tzres.dll
2015-12-09 07:34:21 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-12-09 07:34:21 ----A---- C:\Windows\system32\usp10.dll
2015-12-09 07:34:18 ----A---- C:\Windows\system32\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wucltux.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups2.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\nlsbres.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-09 07:34:06 ----A---- C:\Windows\system32\win32k.sys
2015-12-09 07:34:06 ----A---- C:\Windows\system32\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\user32.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\FntCache.dll
2015-12-09 07:34:04 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-09 07:33:59 ----A---- C:\Windows\system32\mshtml.dll
2015-12-09 07:33:58 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-09 07:33:57 ----A---- C:\Windows\system32\ieframe.dll
2015-12-09 07:33:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-09 07:33:55 ----A---- C:\Windows\system32\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\system32\wininet.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\iertutil.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-12-09 07:33:48 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ie4uinit.exe
2015-12-09 07:33:47 ----A---- C:\Windows\system32\dxtmsft.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\system32\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\iesetup.dll
2015-12-09 07:32:50 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-09 07:32:47 ----A---- C:\Windows\SYSWOW64\els.dll
2015-12-09 07:32:47 ----A---- C:\Windows\system32\els.dll
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files\AV
======List of files/folders modified in the last 1 month======
2015-12-18 08:49:18 ----D---- C:\Program Files\trend micro
2015-12-18 08:49:17 ----D---- C:\Windows\Temp
2015-12-18 08:45:22 ----D---- C:\Windows\Prefetch
2015-12-18 08:39:46 ----D---- C:\Windows\Tasks
2015-12-18 08:39:46 ----D---- C:\Program Files (x86)\Google
2015-12-17 17:58:15 ----D---- C:\ProgramData\NVIDIA
2015-12-17 15:18:57 ----D---- C:\Windows\system32\config
2015-12-16 17:44:08 ----D---- C:\Windows\System32
2015-12-16 17:44:08 ----D---- C:\Windows\inf
2015-12-16 17:44:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-16 17:35:37 ----D---- C:\Windows\system32\Tasks
2015-12-16 17:35:35 ----RD---- C:\Program Files (x86)
2015-12-16 17:35:35 ----HD---- C:\ProgramData
2015-12-16 17:35:35 ----D---- C:\Program Files (x86)\Common Files
2015-12-15 18:59:36 ----D---- C:\Windows
2015-12-15 18:55:00 ----D---- C:\Windows\system32\NDF
2015-12-15 17:20:49 ----SHD---- C:\System Volume Information
2015-12-15 17:13:59 ----D---- C:\Windows\system32\wfp
2015-12-15 17:13:57 ----D---- C:\Windows\system32\wbem
2015-12-15 17:13:11 ----D---- C:\Windows\system32\DriverStore
2015-12-15 17:13:11 ----D---- C:\Windows\system32\catroot2
2015-12-15 17:13:10 ----D---- C:\Windows\registration
2015-12-13 18:59:39 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-12-13 18:58:37 ----SHD---- C:\Windows\Installer
2015-12-13 18:48:04 ----D---- C:\Windows\system32\drivers
2015-12-12 09:17:18 ----D---- C:\Windows\rescache
2015-12-09 20:17:19 ----D---- C:\Windows\Microsoft.NET
2015-12-09 20:16:56 ----RSD---- C:\Windows\assembly
2015-12-09 15:47:28 ----D---- C:\Windows\winsxs
2015-12-09 15:44:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-12-09 15:44:17 ----D---- C:\Windows\SysWOW64
2015-12-09 15:44:17 ----D---- C:\Windows\system32\cs-CZ
2015-12-09 15:44:14 ----RSD---- C:\Windows\Fonts
2015-12-09 15:44:14 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-09 15:44:13 ----D---- C:\Windows\ehome
2015-12-09 15:44:13 ----D---- C:\Program Files\Internet Explorer
2015-12-09 12:48:04 ----D---- C:\ProgramData\Microsoft Help
2015-12-09 07:39:17 ----D---- C:\Windows\system32\MRT
2015-12-09 07:33:49 ----A---- C:\Windows\system32\MRT.exe
2015-12-07 18:12:22 ----D---- C:\Windows\Minidump
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files
2015-12-02 13:18:58 ----N---- C:\Windows\system32\MpSigStub.exe
2015-11-19 14:53:16 ----SD---- C:\Users\marek\AppData\Roaming\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-21 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-21 272248]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-01-27 115312]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-07-03 834544]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-21 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-21 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-28 442264]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 MPCKpt;MPCKpt; C:\Windows\system32\DRIVERS\MPCKpt.sys [2015-12-16 55016]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-21 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-21 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-21 137288]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2015-12-17 25640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-02 2536040]
R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys [2011-09-09 1660480]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 75776]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 177152]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys []
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2013-01-29 30528]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys [2008-11-19 17920]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys [2008-11-19 27136]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys [2008-11-19 33792]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 vkpzkcdi;vkpzkcdi; \??\C:\Windows\system32\drivers\ngiodriver_x64 []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S4 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Pro [2012-12-03 6527128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Pro [2012-12-03 6527128]
R2 avast! Antivirus;Avast Antivirus; C:\Pro [2012-12-03 6527128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\Pro [2012-12-03 6527128]
R2 ES lite Service;ES lite Service for program management.; C:\Pro [2012-12-03 6527128]
R2 JMB36X;JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [2010-01-19 72304]
R2 MPCProtectService;MPC Core Protect Service; C:\Pro [2012-12-03 6527128]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 884512]
R2 RalinkRegistryWriter;RalinkRegistryWriter; C:\Pro [2012-12-03 6527128]
R2 RalinkRegistryWriter64;RalinkRegistryWriter64; C:\Pro [2012-12-03 6527128]
R2 SearchProtectionService;IE Search Set; C:\Pro [2012-12-03 6527128]
R2 TomTomHOMEService;TomTomHOMEService; C:\Pro [2012-12-03 6527128]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Pro [2012-12-03 6527128]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Pro [2012-12-03 6527128]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Pro [2012-12-03 6527128]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Pro [2012-12-03 6527128]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-13 269000]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Pro [2012-12-03 6527128]
S3 gusvc;Google Software Updater; C:\Pro [2012-12-03 6527128]
S3 IDriverT;InstallDriver Table Manager; C:\Pro [2012-12-03 6527128]
S3 odserv;Microsoft Office Diagnostics Service; C:\Pro [2012-12-03 6527128]
S3 ose;Office Source Engine; C:\Pro [2012-12-03 6527128]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RaMediaServer;Ralink UPnP Media Server; C:\Pro [2012-12-03 6527128]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-04 1255736]
S4 AvastVBoxSvc;AvastVBox COM Service; C:\Pro [2012-12-03 6527128]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Jestli jsem to nezvládl tak mi prosím poraďte jak se vypíná avast.
A tak jsem to asi pos..., teď jsem zkusil změnit domovskou a zase nic.
Než bude odpověď, budu hledat ten správný vypínač a eventuálně to celé zopakuju.
Logfile of random's system information tool 1.10 (written by random/random)
Run by marek at 2015-12-18 08:49:17
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 12 GB (8%) free of 150 GB
Total RAM: 4094 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:49:18, on 18.12.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.17566)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\MPC Cleaner\MPCTray.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\trend micro\marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = search.mpc.am
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = search.mpc.am
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\Users\marek\AppData\Local\Temp\E_S6891.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files (x86)\Ralink\Common\RaUI.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - http://www.sibelius.com/download/softwa ... Plugin.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: JMB36X - Unknown owner - C:\Windows\SysWOW64\XSrvSetup.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MPC Core Protect Service (MPCProtectService) - DotCash Limited - C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RalinkRegistryWriter - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry.exe
O23 - Service: RalinkRegistryWriter64 - Ralink Technology, Corp. - C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
O23 - Service: Ralink UPnP Media Server (RaMediaServer) - Unknown owner - C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: IE Search Set (SearchProtectionService) - Unknown owner - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10636 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 25133248
\??\C:\Windows\system32\conhost.exe "16247170691311967599-1621534983-673796120-620631676-1197315574-11563309161575203883
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
"C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE"
C:\Windows\SysWOW64\XSrvSetup.exe
"C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe"
"C:\Program Files (x86)\Ralink\Common\RaRegistry.exe"
"C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe"
"C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2768
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"taskhost.exe"
taskeng.exe {30C2CE34-A226-48A7-91AA-99873E53A2FE}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\MPC Cleaner\MPCTray.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
"C:\Program Files (x86)\MPC Cleaner\MPCTray64.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
taskeng.exe {80D9480D-6179-4667-8DC2-9D975AD779D6}
"C:\Program Files (x86)\Ralink\Common\RaUI.exe" -s
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Internet Explorer\iexplore.exe"
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\marek\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Pro [2012-12-03 6527128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Pro [2012-12-03 6527128]
"AdobeAAMUpdater-1.0"=C:\Pro [2012-12-03 6527128]
"CDAServer"=C:\Pro [2012-12-03 6527128]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Pro [2012-12-03 6527128]
"Handy Updater"=C:\Pro [2012-12-03 6527128]
"TomTomHOME.exe"=C:\Pro [2012-12-03 6527128]
"CCleaner Monitoring"=C:\Pro [2012-12-03 6527128]
"EPSON Stylus DX4400 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE [2007-03-01 211456]
"EEDSpeedLauncher"=C:\Windows\system32\eed_ec.dll [2014-03-05 3112960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
"WinampAgent"=C:\Pro [2012-12-03 6527128]
"AvastUI.exe"=C:\Pro [2012-12-03 6527128]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Ralink Wireless Utility.lnk - C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Users\marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-12-18 08:39:45 ----D---- C:\_OTM
2015-12-16 17:29:31 ----D---- C:\AdwCleaner
2015-12-15 18:59:33 ----D---- C:\FRST
2015-12-13 18:48:19 ----D---- C:\Program Files (x86)\MixVideoPlayer
2015-12-13 18:48:04 ----A---- C:\Windows\system32\drivers\MPCKpt.sys
2015-12-13 18:47:59 ----D---- C:\Program Files (x86)\MPC Cleaner
2015-12-09 07:34:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-12-09 07:34:26 ----A---- C:\Windows\system32\tzres.dll
2015-12-09 07:34:21 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-12-09 07:34:21 ----A---- C:\Windows\system32\usp10.dll
2015-12-09 07:34:18 ----A---- C:\Windows\system32\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wucltux.dll
2015-12-09 07:34:17 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups2.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wups.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wudriver.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wuapp.exe
2015-12-09 07:34:16 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-09 07:34:16 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2015-12-09 07:34:10 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\nlsbres.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-09 07:34:09 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-09 07:34:06 ----A---- C:\Windows\system32\win32k.sys
2015-12-09 07:34:06 ----A---- C:\Windows\system32\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\user32.dll
2015-12-09 07:34:05 ----A---- C:\Windows\system32\FntCache.dll
2015-12-09 07:34:04 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-09 07:33:59 ----A---- C:\Windows\system32\mshtml.dll
2015-12-09 07:33:58 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-09 07:33:57 ----A---- C:\Windows\system32\ieframe.dll
2015-12-09 07:33:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-09 07:33:55 ----A---- C:\Windows\system32\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-09 07:33:54 ----A---- C:\Windows\system32\wininet.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\vbscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\urlmon.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\jscript.dll
2015-12-09 07:33:49 ----A---- C:\Windows\system32\iertutil.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-12-09 07:33:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-12-09 07:33:48 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-12-09 07:33:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\msrating.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ieui.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iesysprep.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iernonce.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-09 07:33:47 ----A---- C:\Windows\system32\ie4uinit.exe
2015-12-09 07:33:47 ----A---- C:\Windows\system32\dxtmsft.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-12-09 07:33:46 ----A---- C:\Windows\system32\jsproxy.dll
2015-12-09 07:33:46 ----A---- C:\Windows\system32\iesetup.dll
2015-12-09 07:32:50 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\wshrm.dll
2015-12-09 07:32:50 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-09 07:32:49 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-09 07:32:47 ----A---- C:\Windows\SYSWOW64\els.dll
2015-12-09 07:32:47 ----A---- C:\Windows\system32\els.dll
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files\AV
======List of files/folders modified in the last 1 month======
2015-12-18 08:49:18 ----D---- C:\Program Files\trend micro
2015-12-18 08:49:17 ----D---- C:\Windows\Temp
2015-12-18 08:45:22 ----D---- C:\Windows\Prefetch
2015-12-18 08:39:46 ----D---- C:\Windows\Tasks
2015-12-18 08:39:46 ----D---- C:\Program Files (x86)\Google
2015-12-17 17:58:15 ----D---- C:\ProgramData\NVIDIA
2015-12-17 15:18:57 ----D---- C:\Windows\system32\config
2015-12-16 17:44:08 ----D---- C:\Windows\System32
2015-12-16 17:44:08 ----D---- C:\Windows\inf
2015-12-16 17:44:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-16 17:35:37 ----D---- C:\Windows\system32\Tasks
2015-12-16 17:35:35 ----RD---- C:\Program Files (x86)
2015-12-16 17:35:35 ----HD---- C:\ProgramData
2015-12-16 17:35:35 ----D---- C:\Program Files (x86)\Common Files
2015-12-15 18:59:36 ----D---- C:\Windows
2015-12-15 18:55:00 ----D---- C:\Windows\system32\NDF
2015-12-15 17:20:49 ----SHD---- C:\System Volume Information
2015-12-15 17:13:59 ----D---- C:\Windows\system32\wfp
2015-12-15 17:13:57 ----D---- C:\Windows\system32\wbem
2015-12-15 17:13:11 ----D---- C:\Windows\system32\DriverStore
2015-12-15 17:13:11 ----D---- C:\Windows\system32\catroot2
2015-12-15 17:13:10 ----D---- C:\Windows\registration
2015-12-13 18:59:39 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-12-13 18:58:37 ----SHD---- C:\Windows\Installer
2015-12-13 18:48:04 ----D---- C:\Windows\system32\drivers
2015-12-12 09:17:18 ----D---- C:\Windows\rescache
2015-12-09 20:17:19 ----D---- C:\Windows\Microsoft.NET
2015-12-09 20:16:56 ----RSD---- C:\Windows\assembly
2015-12-09 15:47:28 ----D---- C:\Windows\winsxs
2015-12-09 15:44:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-12-09 15:44:17 ----D---- C:\Windows\SysWOW64
2015-12-09 15:44:17 ----D---- C:\Windows\system32\cs-CZ
2015-12-09 15:44:14 ----RSD---- C:\Windows\Fonts
2015-12-09 15:44:14 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-09 15:44:13 ----D---- C:\Windows\ehome
2015-12-09 15:44:13 ----D---- C:\Program Files\Internet Explorer
2015-12-09 12:48:04 ----D---- C:\ProgramData\Microsoft Help
2015-12-09 07:39:17 ----D---- C:\Windows\system32\MRT
2015-12-09 07:33:49 ----A---- C:\Windows\system32\MRT.exe
2015-12-07 18:12:22 ----D---- C:\Windows\Minidump
2015-12-03 14:38:06 ----D---- C:\Program Files\Common Files
2015-12-02 13:18:58 ----N---- C:\Windows\system32\MpSigStub.exe
2015-11-19 14:53:16 ----SD---- C:\Users\marek\AppData\Roaming\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-21 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-21 272248]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-01-27 115312]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-07-03 834544]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-21 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-21 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-28 442264]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 MPCKpt;MPCKpt; C:\Windows\system32\DRIVERS\MPCKpt.sys [2015-12-16 55016]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-21 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-21 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-21 137288]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2015-12-17 25640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-02 2536040]
R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys [2011-09-09 1660480]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 75776]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 177152]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys []
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2013-01-29 30528]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys [2008-11-19 17920]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys [2008-11-19 27136]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys [2008-11-19 33792]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 vkpzkcdi;vkpzkcdi; \??\C:\Windows\system32\drivers\ngiodriver_x64 []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S4 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Pro [2012-12-03 6527128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Pro [2012-12-03 6527128]
R2 avast! Antivirus;Avast Antivirus; C:\Pro [2012-12-03 6527128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\Pro [2012-12-03 6527128]
R2 ES lite Service;ES lite Service for program management.; C:\Pro [2012-12-03 6527128]
R2 JMB36X;JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [2010-01-19 72304]
R2 MPCProtectService;MPC Core Protect Service; C:\Pro [2012-12-03 6527128]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 884512]
R2 RalinkRegistryWriter;RalinkRegistryWriter; C:\Pro [2012-12-03 6527128]
R2 RalinkRegistryWriter64;RalinkRegistryWriter64; C:\Pro [2012-12-03 6527128]
R2 SearchProtectionService;IE Search Set; C:\Pro [2012-12-03 6527128]
R2 TomTomHOMEService;TomTomHOMEService; C:\Pro [2012-12-03 6527128]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Pro [2012-12-03 6527128]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Pro [2012-12-03 6527128]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Pro [2012-12-03 6527128]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Pro [2012-12-03 6527128]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-13 269000]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Pro [2012-12-03 6527128]
S3 gusvc;Google Software Updater; C:\Pro [2012-12-03 6527128]
S3 IDriverT;InstallDriver Table Manager; C:\Pro [2012-12-03 6527128]
S3 odserv;Microsoft Office Diagnostics Service; C:\Pro [2012-12-03 6527128]
S3 ose;Office Source Engine; C:\Pro [2012-12-03 6527128]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RaMediaServer;Ralink UPnP Media Server; C:\Pro [2012-12-03 6527128]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-04 1255736]
S4 AvastVBoxSvc;AvastVBox COM Service; C:\Pro [2012-12-03 6527128]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: DOTĚRNÁ REKLAMA
Ještě to budete muste spustit jednou s tímto skriptem:
:files
C:\Program Files (x86)\MPC Cleaner
C:\Windows\system32\drivers\MPCKpt.sys
:services
MPCKpt
:commands
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Avast se vypíná vypnutím rezdentních štítů.
:files
C:\Program Files (x86)\MPC Cleaner
C:\Windows\system32\drivers\MPCKpt.sys
:services
MPCKpt
:commands
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Avast se vypíná vypnutím rezdentních štítů.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: DOTĚRNÁ REKLAMA
Rozepsal jsem si odpověď, a při tom jsem pátral po internetu jestli se něco nedovím o té mé šlamastice. Pouze na stránkách YAC píšou že se jedná o virus, který přesměrovává na své stránky, zřejmě kvůli prodeji reklamy a možnosti vzdáleně ovládnout počítač. Stánky jsou ale anglicky a moje angličtina prach bídná. Co se týče MPC cleaner, zjistil jsem, že různé servery jej nabízejí zdarma ke stažení jako nástroj na čištění počítače.
Je víc takových jako já, tedy se stejným problémem? Někdo kdo si to už prodělal? Zatím jsem nikoho nenašel.
All processes killed
========== FILES ==========
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner scheduled to be moved on reboot.
File/Folder C:\Windows\system32\drivers\MPCKpt.sys not found.
========== SERVICES/DRIVERS ==========
Error: Unable to stop service MPCKpt!
Unable to delete service\driver key MPCKpt.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 313848 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: marek
->Temp folder emptied: 588067218 bytes
->Temporary Internet Files folder emptied: 3095502915 bytes
->Google Chrome cache emptied: 24 bytes
->Flash cache emptied: 79492 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56468 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 213753767 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 342 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 195 bytes
RecycleBin emptied: 2369536 bytes
Total Files Cleaned = 3 719,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: marek
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 12202015_080250
Files moved on Reboot...
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner scheduled to be moved on reboot.
C:\Users\marek\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\7A7E08C8-3FF5-45F2-873D-A84D669DC82F.dat moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GZ61SJHH\context[1].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GZ61SJHH\context[2].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFACHPBR\afr[1].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFACHPBR\afr[2].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFACHPBR\viewtopic[1].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Je víc takových jako já, tedy se stejným problémem? Někdo kdo si to už prodělal? Zatím jsem nikoho nenašel.
All processes killed
========== FILES ==========
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner scheduled to be moved on reboot.
File/Folder C:\Windows\system32\drivers\MPCKpt.sys not found.
========== SERVICES/DRIVERS ==========
Error: Unable to stop service MPCKpt!
Unable to delete service\driver key MPCKpt.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 313848 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: marek
->Temp folder emptied: 588067218 bytes
->Temporary Internet Files folder emptied: 3095502915 bytes
->Google Chrome cache emptied: 24 bytes
->Flash cache emptied: 79492 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56468 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 213753767 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 342 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 195 bytes
RecycleBin emptied: 2369536 bytes
Total Files Cleaned = 3 719,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: marek
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 12202015_080250
Files moved on Reboot...
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence_BackUp scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade\Silence scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP\Upgrade scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\TEMP scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Uninstall scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Tray scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\CrashReport scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin\Cleaner scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Skin scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb\EC9FA525EE4C464B80B7A91B570888922 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\ntkrnlmp.pdb scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Microsoft.VC90.CRT scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SoIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SgIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image\SearchIcon scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Image scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Exe scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Drivers scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config\DB scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner\Config scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\MPC Cleaner scheduled to be moved on reboot.
C:\Users\marek\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\7A7E08C8-3FF5-45F2-873D-A84D669DC82F.dat moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GZ61SJHH\context[1].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GZ61SJHH\context[2].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFACHPBR\afr[1].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFACHPBR\afr[2].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AFACHPBR\viewtopic[1].htm moved successfully.
C:\Users\marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: DOTĚRNÁ REKLAMA
Změnilo se něco?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: DOTĚRNÁ REKLAMA
Pardon, píšu kraviny a zapomněl jsem napsat jak to dopadlo. No pokrok žádný, domovská stránka stále nejde změnit.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: DOTĚRNÁ REKLAMA
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: DOTĚRNÁ REKLAMA
Tak tohle je nejspíš to co jsem měl udělat.
Jednu položku to označilo jako Malware, zbývajících 498 jako potenciálně škodlivé. To ale nejspíš poznáte i beze mně.
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 20.12.2015
Čas skenování: 17:23
Protokol: LOG.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2015.12.20.04
Databáze rootkitů: v2015.12.18.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: marek
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 371544
Uplynulý čas: 11 min, 14 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 1
PUP.Optional.Handy, C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe, 1580, , [8aca802727640b2b7f9875ba54ad758b]
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 24
PUP.Optional.LemurLeap, HKLM\SOFTWARE\CLASSES\TYPELIB\{68731C4D-20A2-4D44-9D11-7944C839BEF9}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\CLASSES\INTERFACE\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{68731C4D-20A2-4D44-9D11-7944C839BEF9}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{68731C4D-20A2-4D44-9D11-7944C839BEF9}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}, , [98bc5d4ad1ba1620f9a2adfa3fc5c53b],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}, , [98bc5d4ad1ba1620f9a2adfa3fc5c53b],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{A97B89CD-B65C-49DD-AF46-2B772C627456}, , [98bc5d4ad1ba1620f9a2adfa3fc5c53b],
PUP.Optional.BrowserWeb, HKLM\SOFTWARE\MICROSOFT\TRACING\BrowserWeb_RASAPI32, , [9eb6129593f88ea8960f6a901be8dd23],
PUP.Optional.BrowserWeb, HKLM\SOFTWARE\MICROSOFT\TRACING\BrowserWeb_RASMANCS, , [56fe3572d5b640f6cadb8179ab58a957],
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, , [98bc1d8a0784b185f1d357a749ba847c],
PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\FreeOnlineRadioPlayerRecorder, , [ef659215632854e2189c523f8a7912ee],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\HD01-V2.1V22.09, , [c19382257b109e9837ece5b1c241f40c],
PUP.Optional.RichMediaView, HKLM\SOFTWARE\WOW6432NODE\RichMediaViewV1release1276, , [4113188f5d2e73c33a792e876f94e21e],
PUP.Optional.uTorrentBar, HKLM\SOFTWARE\WOW6432NODE\uTorrentBar, , [b3a1683ff695f244276408bbd72cbd43],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{817143FE-82DB-416B-B406-1CFE1F35E10D}, , [2331ced9008bc0762a9b335e9f647c84],
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, , [7dd7efb81b70d85e15af57a7e41fa15f],
PUP.Optional.uTorrentBar, HKU\S-1-5-21-2854584554-3035274672-59398493-1000\SOFTWARE\uTorrentBar, , [3f151e893d4e5adc484200c32dd6649c],
PUP.Optional.uTorrentBar, HKU\S-1-5-21-2854584554-3035274672-59398493-1000\SOFTWARE\APPDATALOW\SOFTWARE\uTorrentBar, , [5ef6d4d39eed46f0f79217ac956e22de],
PUP.Optional.MultiPlug, HKU\S-1-5-21-2854584554-3035274672-59398493-1000_Classes\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, , [0c485f482b601422a2575e75a55e50b0],
PUP.Optional.MultiPlug, HKU\S-1-5-21-2854584554-3035274672-59398493-1000_Classes\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, , [0c485f482b601422a2575e75a55e50b0],
PUP.Optional.uTorrentBar, HKU\S-1-5-21-2854584554-3035274672-59398493-1003\SOFTWARE\APPDATALOW\SOFTWARE\uTorrentBar, , [d381d9ce325965d1f9901ba8c14213ed],
PUP.Optional.MindSpark, HKU\S-1-5-21-2854584554-3035274672-59398493-1003\SOFTWARE\APPDATALOW\SOFTWARE\VideoDownloadConverter_4z, , [63f1782f2b60f64058bad2d8dc27f50b],
Hodnoty registru: 5
PUP.Optional.Handy, HKU\S-1-5-21-2854584554-3035274672-59398493-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Handy Updater, "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe", , [8aca802727640b2b7f9875ba54ad758b]
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [98bc1d8a0784b185f1d357a749ba847c]
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{817143FE-82DB-416B-B406-1CFE1F35E10D}|AppPath, C:\Users\marek\AppData\Local\Conduit\CT2786678, , [2331ced9008bc0762a9b335e9f647c84]
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [7dd7efb81b70d85e15af57a7e41fa15f]
PUP.Optional.BrowserWeb, HKU\S-1-5-21-2854584554-3035274672-59398493-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|BrowserWeb.exe, 11001, , [9aba0f984b4080b6cbe97595b84c46ba]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 128
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\config, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\Playlists, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\Snap, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Controls, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Windows, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixVideoPlayer, , [76de83245b30be78a3556c3fc93a1ee2],
PUP.Optional.NoNoizeBrowse, C:\Program Files (x86)\NuoNoizeBrowse, , [afa5c0e774171a1c5f09d6d819eabb45],
PUP.Optional.CrossRider, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\plimopelmdneikoknbgpopffpbmlhgpa, , [7dd7d0d7107bdd595936711b927025db],
PUP.Optional.DiscountMan, C:\Program Files (x86)\DiscountMan, , [c98b61461e6dd75f3c99b0ddc33ffc04],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\com\MixVideoPlayer.exe_Url_0uxwaewrhelcgghll0o5cintgfcbqdxr, , [b3a1b1f654372d09f1ffe6b254ae41bf],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\com\MixVideoPlayer.exe_Url_0uxwaewrhelcgghll0o5cintgfcbqdxr\1.0.0.25, , [b3a1b1f654372d09f1ffe6b254ae41bf],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\alakoggmijiicdlcjjeakffojoinhlpg\13031.6501.1099_0, , [e47007a03952dc5a005ef1c42adaf50b],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\alakoggmijiicdlcjjeakffojoinhlpg, , [e47007a03952dc5a005ef1c42adaf50b],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\icons, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\scripts, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\_metadata, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\search, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ar, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\bg, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ca, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\cs, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\da, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\de, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\el, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\en, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\es, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fi, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fr, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\he, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hr, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hu, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\id, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\it, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ja, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ko, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nb, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nl, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pl, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_BR, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_PT, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ro, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ru, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sk, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sl, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sr, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sv, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\te, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\tr, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\uk, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\vi, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_CN, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_TW, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_metadata, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\icons, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\_metadata, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\css, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\html, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\bg, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ca, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\cs, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\da, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\de, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\el, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en_GB, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es_419, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\et, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fi, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fil, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fr, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hi, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hr, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hu, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\id, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\it, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ja, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ko, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lt, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lv, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nb, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nl, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pl, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_BR, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_PT, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ro, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ru, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sk, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sl, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sr, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sv, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\th, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\tr, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\uk, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\vi, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_CN, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_TW, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_metadata, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda, , [391b0d9a0b802511fb6305b081838977],
Soubory: 341
PUP.Optional.Handy, C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe, , [8aca802727640b2b7f9875ba54ad758b],
PUP.Optional.MultiPlug.Uns, C:\Program Files (x86)\DiscountMan\DiscountMan.exe, , [8fc576310982d0668146dc25da28f10f],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll, , [eb6993148dfed561c1da85226a9a27d9],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\hk64tbuTo0.dll, , [d282297e96f5999d19823275c93b33cd],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\hk64tbuTo2.dll, , [064ef7b092f9a1954853f6b114f0ba46],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\hktbuTo0.dll, , [e37144634348cc6ac8d31c8bf1137f81],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\hktbuTo2.dll, , [144070374942f640cecd377052b28e72],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\ldrtbuTo0.dll, , [e76db9eef5962a0c2d6eb0f7da2a12ee],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\ldrtbuTo2.dll, , [afa501a6a5e62610099264432cd8b050],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\ldrtbuTor.dll, , [6be9fea9335839fd5f3cd5d2c63e649c],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll, , [98bc5d4ad1ba1620f9a2adfa3fc5c53b],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\prxtbuTo2.dll, , [e074f3b4bfccc96d613ab9eee2229d63],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\tbuTo0.dll, , [ed67d7d02269142264373c6b4bb9cd33],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\tbuTo2.dll, , [361eb2f5583361d57427d0d7d82c2ad6],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\tbuTor.dll, , [ee66c4e394f740f6fba0dccb07fd24dc],
PUP.Optional.Conduit, C:\Program Files (x86)\uTorrentBar\uTorrentBarToolbarHelper.exe, , [ca8a75323d4e1620b767e844bd4349b7],
PUP.Optional.Conduit, C:\Program Files (x86)\uTorrentBar\uTorrentBarToolbarHelper1.exe, , [e56f1394aedded498b933def8e729b65],
PUP.Optional.MixiVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\FrameworkControl.exe, , [da7a881fe4a70135c5544d6b7091b24e],
PUP.Optional.Amonetize, C:\Users\marek\AppData\Local\Temp\GotClipDownloader_Setup.exe, , [fd571c8ba1ead36309d74b6fc04146ba],
PUP.Optional.APNToolBar, C:\Users\marek\Documents\APNSetup.exe, , [f95b42656328da5c26bee646768b25db],
PUP.Optional.APNToolBar, C:\Users\marek\Downloads\aTube_Catcher.exe, , [8bc9b1f6f39869cd6481be6eb24f44bc],
PUP.Optional.Spigot, C:\Windows\Installer\19fc272.msi, , [ea6a3d6a2962b68022e6db584bb652ae],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\log.txt, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\config\config.ini, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\mixvideoplayer.affcode, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\DeleteTasks.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\dotNetFx40_Full_setup.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\icon-uninstall.ico, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\icon.ico, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\LTV2.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\LTVNetSdk.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Microsoft.Win32.TaskScheduler.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\mixUpdater.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\MixVideoPlayer.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\mixvideoplayer.uidnum, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Newtonsoft.Json.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\NLog.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\PhotoLoader.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\policy.2.0.taglib-sharp.config, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\policy.2.0.taglib-sharp.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Sider.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Snowplow.Tracker.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\taglib-sharp.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Controls\ifishplayer-icon2.ico, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Controls\Thumbs.db, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Hindi.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Arabic.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Bulgarian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Catalan.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\ChineseS.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\ChineseT.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Czech.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Danish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Dutch.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\English.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Estonian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Finnish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\French.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\German.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Greek.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\HaitianCreole.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Hebrew.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Hungarian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Indonesian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Italian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Japanese.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Korean.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Latvian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Lithuanian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Norwegian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Polish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Portuguese.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Romanian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Russian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Slovak.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Slovenian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Spanish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Swedish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Thai.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Turkish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Ukrainian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Vietnamese.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\extaudio.png, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\extvideo.png, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\ffmpeg.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\ffmpeg.zip, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\folder.png, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\Interop.SHDocVw.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\libreria.png, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\mixChecker.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\NDde.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\Newtonsoft.Json.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\PhotoLoader.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\policy.2.0.taglib-sharp.config, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\policy.2.0.taglib-sharp.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\taglib-sharp.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\Thumbs.db, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Windows\logopeq-icon.ico, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Windows\Thumbs.db, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixVideoPlayer\Uninstall MixVideoPlayer.lnk, , [76de83245b30be78a3556c3fc93a1ee2],
PUP.Optional.MixVideoPlayer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixVideoPlayer\MixVideoPlayer.lnk, , [76de83245b30be78a3556c3fc93a1ee2],
PUP.Optional.NoNoizeBrowse, C:\Program Files (x86)\NuoNoizeBrowse\L1RVUB36kBAvdR.tlb, , [afa5c0e774171a1c5f09d6d819eabb45],
PUP.Optional.NoNoizeBrowse, C:\Program Files (x86)\NuoNoizeBrowse\L1RVUB36kBAvdR.dat, , [afa5c0e774171a1c5f09d6d819eabb45],
Trojan.Agent.Trace, C:\Users\marek\Desktop\.url, , [a4b05c4b43482f07b351dff9d72c7f81],
PUP.Optional.DiscountMan, C:\Program Files (x86)\DiscountMan\DiscountMan.dat, , [c98b61461e6dd75f3c99b0ddc33ffc04],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\com\MixVideoPlayer.exe_Url_0uxwaewrhelcgghll0o5cintgfcbqdxr\1.0.0.25\user.config, , [b3a1b1f654372d09f1ffe6b254ae41bf],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\GottenAppsContextMenu.xml, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\OtherAppsContextMenu.xml, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\SharedAppsContextMenu.xml, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\toolbar.cfg, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\ToolbarContextMenu.xml, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\uninstall.exe, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\alakoggmijiicdlcjjeakffojoinhlpg\13031.6501.1099_0\manifest.json, , [e47007a03952dc5a005ef1c42adaf50b],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\manifest.json, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\background.html, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\config.json, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\icons\sa-128.png, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\icons\sa-19.png, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\icons\sa-48.png, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\scripts\background.js, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\scripts\loader_1036.js, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\scripts\utils.js, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\_metadata\computed_hashes.json, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\_metadata\verified_contents.json, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\manifest.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\adblock_start_chrome.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\adblock_start_common.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\background.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\bandaids.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\CHANGELOG.txt, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\checkupdates.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\chrome_oauth_receiver.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\chrome_oauth_receiver.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\dropbox-datastores.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\functions.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\idlehandler.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\LICENSE, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\port.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\README.markdown, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\stats.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\translators.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\ytchannel.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\popup.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\popup.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\popup.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\search\search.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\search\search.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\domainset.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filternormalizer.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filteroptions.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filterset.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filtertypes.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\myfilters.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\delete.gif, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\dropbox1.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\dropbox2.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\dropbox3.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\facebook-sprite.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\gifloader.gif, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\gplus-sprite.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon128.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon16.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon16_grayscale.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon16_grayscale@2x.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon19-grayscale.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon19-whitelisted.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon19.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon24.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon32.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon38-grayscale.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon38-whitelisted.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon38.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon48.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\logo.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\twitter-sprite.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\check.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\magnifying_glass.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search-engine-card_no-shadow.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search-engine-icons.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search-omnibox-card_no-shadow.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search_engine_select_arrow.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\jquery-ui.custom.min.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\jquery.cookie.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\jquery.min.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\jquery-ui.custom.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\override-page.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_flat_55_999999_40x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_flat_75_aaaaaa_40x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_glass_45_0078ae_1x400.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_glass_55_f8da4e_1x400.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_glass_75_79c9ec_1x400.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_gloss-wave_50_38cfff_500x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_gloss-wave_75_2191c0_500x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_inset-hard_100_fcfdfd_1x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-icons_056b93_256x240.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-icons_d8e7f3_256x240.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\customize.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\customize.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\filters.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\filters.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\general.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\general.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\index.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\index.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\options.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\support.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\support.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\adreport.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\adreport.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\resourceblock.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\resourceblock.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\subscribe.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\subscribe.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\focus.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\incognito.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\pitchpage.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\search-plus-one.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\secure_reminder.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\serp.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\load_jquery_ui.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\send_content_to_back.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\top_open_blacklist_ui.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\top_open_whitelist_ui.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\blacklistui.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\clickwatcher.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\elementchain.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\overlay.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\rightclick_hook.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ar\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\bg\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ca\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\cs\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\da\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\de\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\el\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\en\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\es\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fi\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fr\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\he\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hr\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hu\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\id\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\it\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ja\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ko\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nb\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nl\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pl\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_BR\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_PT\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ro\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ru\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sk\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sl\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sr\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sv\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\te\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\tr\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\uk\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\vi\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_CN\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_TW\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_metadata\computed_hashes.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_metadata\verified_contents.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\manifest.json, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\config.json, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\icons\nth-128.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\icons\nth-48.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\android-icon.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\empty-favicon.ico, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\ios-icon.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\jquery.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\newtab.css, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\newtab.html, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\newtab.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\no_thumb.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\search-icon.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\background.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\jquery.min.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\ntp.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\ntp_bkgd.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\ntp_util.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\utils.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\_metadata\computed_hashes.json, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\_metadata\verified_contents.json, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\manifest.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\craw_background.js, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\craw_window.js, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\css\craw_window.css, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\html\craw_window.html, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\flapper.gif, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\icon_128.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\icon_16.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_close.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_hover.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_maximize.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_pressed.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\bg\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ca\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\cs\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\da\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\de\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\el\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en_GB\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es_419\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\et\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fi\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fil\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fr\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hi\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hr\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hu\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\id\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\it\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ja\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ko\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lt\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lv\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nb\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nl\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pl\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_BR\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_PT\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ro\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ru\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sk\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sl\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sr\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sv\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\th\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\tr\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\uk\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\vi\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_CN\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_TW\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_metadata\verified_contents.json, , [391b0d9a0b802511fb6305b081838977],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Jednu položku to označilo jako Malware, zbývajících 498 jako potenciálně škodlivé. To ale nejspíš poznáte i beze mně.
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 20.12.2015
Čas skenování: 17:23
Protokol: LOG.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2015.12.20.04
Databáze rootkitů: v2015.12.18.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: marek
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 371544
Uplynulý čas: 11 min, 14 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 1
PUP.Optional.Handy, C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe, 1580, , [8aca802727640b2b7f9875ba54ad758b]
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 24
PUP.Optional.LemurLeap, HKLM\SOFTWARE\CLASSES\TYPELIB\{68731C4D-20A2-4D44-9D11-7944C839BEF9}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\CLASSES\INTERFACE\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{68731C4D-20A2-4D44-9D11-7944C839BEF9}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.LemurLeap, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{68731C4D-20A2-4D44-9D11-7944C839BEF9}, , [3420cbdccbc02c0a6332e278966c3ac6],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}, , [98bc5d4ad1ba1620f9a2adfa3fc5c53b],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}, , [98bc5d4ad1ba1620f9a2adfa3fc5c53b],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{A97B89CD-B65C-49DD-AF46-2B772C627456}, , [98bc5d4ad1ba1620f9a2adfa3fc5c53b],
PUP.Optional.BrowserWeb, HKLM\SOFTWARE\MICROSOFT\TRACING\BrowserWeb_RASAPI32, , [9eb6129593f88ea8960f6a901be8dd23],
PUP.Optional.BrowserWeb, HKLM\SOFTWARE\MICROSOFT\TRACING\BrowserWeb_RASMANCS, , [56fe3572d5b640f6cadb8179ab58a957],
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, , [98bc1d8a0784b185f1d357a749ba847c],
PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\FreeOnlineRadioPlayerRecorder, , [ef659215632854e2189c523f8a7912ee],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\HD01-V2.1V22.09, , [c19382257b109e9837ece5b1c241f40c],
PUP.Optional.RichMediaView, HKLM\SOFTWARE\WOW6432NODE\RichMediaViewV1release1276, , [4113188f5d2e73c33a792e876f94e21e],
PUP.Optional.uTorrentBar, HKLM\SOFTWARE\WOW6432NODE\uTorrentBar, , [b3a1683ff695f244276408bbd72cbd43],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{817143FE-82DB-416B-B406-1CFE1F35E10D}, , [2331ced9008bc0762a9b335e9f647c84],
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, , [7dd7efb81b70d85e15af57a7e41fa15f],
PUP.Optional.uTorrentBar, HKU\S-1-5-21-2854584554-3035274672-59398493-1000\SOFTWARE\uTorrentBar, , [3f151e893d4e5adc484200c32dd6649c],
PUP.Optional.uTorrentBar, HKU\S-1-5-21-2854584554-3035274672-59398493-1000\SOFTWARE\APPDATALOW\SOFTWARE\uTorrentBar, , [5ef6d4d39eed46f0f79217ac956e22de],
PUP.Optional.MultiPlug, HKU\S-1-5-21-2854584554-3035274672-59398493-1000_Classes\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, , [0c485f482b601422a2575e75a55e50b0],
PUP.Optional.MultiPlug, HKU\S-1-5-21-2854584554-3035274672-59398493-1000_Classes\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, , [0c485f482b601422a2575e75a55e50b0],
PUP.Optional.uTorrentBar, HKU\S-1-5-21-2854584554-3035274672-59398493-1003\SOFTWARE\APPDATALOW\SOFTWARE\uTorrentBar, , [d381d9ce325965d1f9901ba8c14213ed],
PUP.Optional.MindSpark, HKU\S-1-5-21-2854584554-3035274672-59398493-1003\SOFTWARE\APPDATALOW\SOFTWARE\VideoDownloadConverter_4z, , [63f1782f2b60f64058bad2d8dc27f50b],
Hodnoty registru: 5
PUP.Optional.Handy, HKU\S-1-5-21-2854584554-3035274672-59398493-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Handy Updater, "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe", , [8aca802727640b2b7f9875ba54ad758b]
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [98bc1d8a0784b185f1d357a749ba847c]
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{817143FE-82DB-416B-B406-1CFE1F35E10D}|AppPath, C:\Users\marek\AppData\Local\Conduit\CT2786678, , [2331ced9008bc0762a9b335e9f647c84]
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [7dd7efb81b70d85e15af57a7e41fa15f]
PUP.Optional.BrowserWeb, HKU\S-1-5-21-2854584554-3035274672-59398493-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|BrowserWeb.exe, 11001, , [9aba0f984b4080b6cbe97595b84c46ba]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 128
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\config, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\Playlists, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\Snap, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Controls, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Windows, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixVideoPlayer, , [76de83245b30be78a3556c3fc93a1ee2],
PUP.Optional.NoNoizeBrowse, C:\Program Files (x86)\NuoNoizeBrowse, , [afa5c0e774171a1c5f09d6d819eabb45],
PUP.Optional.CrossRider, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\plimopelmdneikoknbgpopffpbmlhgpa, , [7dd7d0d7107bdd595936711b927025db],
PUP.Optional.DiscountMan, C:\Program Files (x86)\DiscountMan, , [c98b61461e6dd75f3c99b0ddc33ffc04],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\com\MixVideoPlayer.exe_Url_0uxwaewrhelcgghll0o5cintgfcbqdxr, , [b3a1b1f654372d09f1ffe6b254ae41bf],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\com\MixVideoPlayer.exe_Url_0uxwaewrhelcgghll0o5cintgfcbqdxr\1.0.0.25, , [b3a1b1f654372d09f1ffe6b254ae41bf],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\alakoggmijiicdlcjjeakffojoinhlpg\13031.6501.1099_0, , [e47007a03952dc5a005ef1c42adaf50b],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\alakoggmijiicdlcjjeakffojoinhlpg, , [e47007a03952dc5a005ef1c42adaf50b],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\icons, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\scripts, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\_metadata, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\search, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ar, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\bg, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ca, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\cs, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\da, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\de, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\el, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\en, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\es, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fi, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fr, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\he, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hr, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hu, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\id, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\it, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ja, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ko, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nb, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nl, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pl, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_BR, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_PT, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ro, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ru, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sk, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sl, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sr, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sv, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\te, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\tr, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\uk, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\vi, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_CN, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_TW, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_metadata, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\icons, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\_metadata, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\css, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\html, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\bg, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ca, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\cs, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\da, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\de, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\el, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en_GB, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es_419, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\et, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fi, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fil, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fr, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hi, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hr, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hu, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\id, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\it, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ja, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ko, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lt, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lv, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nb, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nl, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pl, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_BR, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_PT, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ro, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ru, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sk, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sl, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sr, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sv, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\th, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\tr, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\uk, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\vi, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_CN, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_TW, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_metadata, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda, , [391b0d9a0b802511fb6305b081838977],
Soubory: 341
PUP.Optional.Handy, C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe, , [8aca802727640b2b7f9875ba54ad758b],
PUP.Optional.MultiPlug.Uns, C:\Program Files (x86)\DiscountMan\DiscountMan.exe, , [8fc576310982d0668146dc25da28f10f],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll, , [eb6993148dfed561c1da85226a9a27d9],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\hk64tbuTo0.dll, , [d282297e96f5999d19823275c93b33cd],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\hk64tbuTo2.dll, , [064ef7b092f9a1954853f6b114f0ba46],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\hktbuTo0.dll, , [e37144634348cc6ac8d31c8bf1137f81],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\hktbuTo2.dll, , [144070374942f640cecd377052b28e72],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\ldrtbuTo0.dll, , [e76db9eef5962a0c2d6eb0f7da2a12ee],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\ldrtbuTo2.dll, , [afa501a6a5e62610099264432cd8b050],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\ldrtbuTor.dll, , [6be9fea9335839fd5f3cd5d2c63e649c],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll, , [98bc5d4ad1ba1620f9a2adfa3fc5c53b],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\prxtbuTo2.dll, , [e074f3b4bfccc96d613ab9eee2229d63],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\tbuTo0.dll, , [ed67d7d02269142264373c6b4bb9cd33],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\tbuTo2.dll, , [361eb2f5583361d57427d0d7d82c2ad6],
PUP.Optional.ConduitTB.Gen, C:\Program Files (x86)\uTorrentBar\tbuTor.dll, , [ee66c4e394f740f6fba0dccb07fd24dc],
PUP.Optional.Conduit, C:\Program Files (x86)\uTorrentBar\uTorrentBarToolbarHelper.exe, , [ca8a75323d4e1620b767e844bd4349b7],
PUP.Optional.Conduit, C:\Program Files (x86)\uTorrentBar\uTorrentBarToolbarHelper1.exe, , [e56f1394aedded498b933def8e729b65],
PUP.Optional.MixiVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\FrameworkControl.exe, , [da7a881fe4a70135c5544d6b7091b24e],
PUP.Optional.Amonetize, C:\Users\marek\AppData\Local\Temp\GotClipDownloader_Setup.exe, , [fd571c8ba1ead36309d74b6fc04146ba],
PUP.Optional.APNToolBar, C:\Users\marek\Documents\APNSetup.exe, , [f95b42656328da5c26bee646768b25db],
PUP.Optional.APNToolBar, C:\Users\marek\Downloads\aTube_Catcher.exe, , [8bc9b1f6f39869cd6481be6eb24f44bc],
PUP.Optional.Spigot, C:\Windows\Installer\19fc272.msi, , [ea6a3d6a2962b68022e6db584bb652ae],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\log.txt, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\mixvideoplayer\config\config.ini, , [332110971576f34316e0416a0ef5946c],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\mixvideoplayer.affcode, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\DeleteTasks.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\dotNetFx40_Full_setup.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\icon-uninstall.ico, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\icon.ico, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\LTV2.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\LTVNetSdk.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Microsoft.Win32.TaskScheduler.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\mixUpdater.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\MixVideoPlayer.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\mixvideoplayer.uidnum, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Newtonsoft.Json.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\NLog.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\PhotoLoader.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\policy.2.0.taglib-sharp.config, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\policy.2.0.taglib-sharp.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Sider.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Snowplow.Tracker.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\taglib-sharp.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Controls\ifishplayer-icon2.ico, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Controls\Thumbs.db, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Hindi.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Arabic.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Bulgarian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Catalan.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\ChineseS.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\ChineseT.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Czech.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Danish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Dutch.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\English.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Estonian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Finnish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\French.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\German.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Greek.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\HaitianCreole.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Hebrew.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Hungarian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Indonesian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Italian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Japanese.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Korean.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Latvian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Lithuanian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Norwegian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Polish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Portuguese.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Romanian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Russian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Slovak.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Slovenian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Spanish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Swedish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Thai.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Turkish.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Ukrainian.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Languages\Vietnamese.ini, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\extaudio.png, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\extvideo.png, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\ffmpeg.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\ffmpeg.zip, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\folder.png, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\Interop.SHDocVw.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\libreria.png, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\mixChecker.exe, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\NDde.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\Newtonsoft.Json.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\PhotoLoader.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\policy.2.0.taglib-sharp.config, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\policy.2.0.taglib-sharp.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\taglib-sharp.dll, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\references\Thumbs.db, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Windows\logopeq-icon.ico, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\Program Files (x86)\MixVideoPlayer\Windows\Thumbs.db, , [6be97f28cbc06cca41b6d7d424dfaf51],
PUP.Optional.MixVideoPlayer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixVideoPlayer\Uninstall MixVideoPlayer.lnk, , [76de83245b30be78a3556c3fc93a1ee2],
PUP.Optional.MixVideoPlayer, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixVideoPlayer\MixVideoPlayer.lnk, , [76de83245b30be78a3556c3fc93a1ee2],
PUP.Optional.NoNoizeBrowse, C:\Program Files (x86)\NuoNoizeBrowse\L1RVUB36kBAvdR.tlb, , [afa5c0e774171a1c5f09d6d819eabb45],
PUP.Optional.NoNoizeBrowse, C:\Program Files (x86)\NuoNoizeBrowse\L1RVUB36kBAvdR.dat, , [afa5c0e774171a1c5f09d6d819eabb45],
Trojan.Agent.Trace, C:\Users\marek\Desktop\.url, , [a4b05c4b43482f07b351dff9d72c7f81],
PUP.Optional.DiscountMan, C:\Program Files (x86)\DiscountMan\DiscountMan.dat, , [c98b61461e6dd75f3c99b0ddc33ffc04],
PUP.Optional.MixVideoPlayer, C:\Users\marek\AppData\Local\com\MixVideoPlayer.exe_Url_0uxwaewrhelcgghll0o5cintgfcbqdxr\1.0.0.25\user.config, , [b3a1b1f654372d09f1ffe6b254ae41bf],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\GottenAppsContextMenu.xml, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\OtherAppsContextMenu.xml, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\SharedAppsContextMenu.xml, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\toolbar.cfg, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\ToolbarContextMenu.xml, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.uTorrentBar, C:\Program Files (x86)\uTorrentBar\uninstall.exe, , [ca8ac4e3b0db1a1cf488d3d1a65cbe42],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\alakoggmijiicdlcjjeakffojoinhlpg\13031.6501.1099_0\manifest.json, , [e47007a03952dc5a005ef1c42adaf50b],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\manifest.json, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\background.html, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\config.json, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\icons\sa-128.png, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\icons\sa-19.png, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\icons\sa-48.png, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\scripts\background.js, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\scripts\loader_1036.js, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\scripts\utils.js, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\_metadata\computed_hashes.json, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjpmpailfmnokiabeoimelcgdglpff\1.4_0\_metadata\verified_contents.json, , [94c01f8847441e1839152e8642c29070],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\manifest.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\adblock_start_chrome.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\adblock_start_common.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\background.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\bandaids.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\CHANGELOG.txt, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\checkupdates.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\chrome_oauth_receiver.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\chrome_oauth_receiver.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\dropbox-datastores.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\functions.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\idlehandler.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\LICENSE, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\port.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\README.markdown, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\stats.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\translators.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\ytchannel.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\popup.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\popup.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\popup.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\search\search.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\button\search\search.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\domainset.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filternormalizer.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filteroptions.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filterset.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\filtertypes.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\filtering\myfilters.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\delete.gif, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\dropbox1.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\dropbox2.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\dropbox3.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\facebook-sprite.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\gifloader.gif, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\gplus-sprite.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon128.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon16.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon16_grayscale.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon16_grayscale@2x.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon19-grayscale.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon19-whitelisted.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon19.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon24.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon32.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon38-grayscale.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon38-whitelisted.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon38.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\icon48.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\logo.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\twitter-sprite.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\check.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\magnifying_glass.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search-engine-card_no-shadow.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search-engine-icons.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search-omnibox-card_no-shadow.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\img\search\search_engine_select_arrow.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\jquery-ui.custom.min.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\jquery.cookie.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\jquery.min.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\jquery-ui.custom.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\override-page.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_flat_55_999999_40x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_flat_75_aaaaaa_40x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_glass_45_0078ae_1x400.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_glass_55_f8da4e_1x400.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_glass_75_79c9ec_1x400.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_gloss-wave_50_38cfff_500x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_gloss-wave_75_2191c0_500x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-bg_inset-hard_100_fcfdfd_1x100.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-icons_056b93_256x240.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\jquery\css\images\ui-icons_d8e7f3_256x240.png, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\customize.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\customize.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\filters.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\filters.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\general.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\general.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\index.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\index.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\options.css, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\support.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\options\support.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\adreport.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\adreport.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\resourceblock.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\resourceblock.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\subscribe.html, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\pages\subscribe.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\focus.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\incognito.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\pitchpage.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\search-plus-one.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\secure_reminder.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\search\serp.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\load_jquery_ui.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\send_content_to_back.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\top_open_blacklist_ui.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\top_open_whitelist_ui.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\blacklistui.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\clickwatcher.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\elementchain.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\overlay.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\uiscripts\blacklisting\rightclick_hook.js, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ar\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\bg\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ca\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\cs\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\da\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\de\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\el\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\en\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\es\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fi\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\fr\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\he\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hr\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\hu\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\id\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\it\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ja\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ko\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nb\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\nl\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pl\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_BR\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\pt_PT\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ro\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\ru\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sk\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sl\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sr\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\sv\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\te\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\tr\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\uk\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\vi\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_CN\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_locales\zh_TW\messages.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_metadata\computed_hashes.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.18.1_0\_metadata\verified_contents.json, , [94c01d8a7b100531d18d585d5aaa5aa6],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\manifest.json, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\config.json, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\icons\nth-128.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\icons\nth-48.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\android-icon.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\empty-favicon.ico, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\ios-icon.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\jquery.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\newtab.css, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\newtab.html, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\newtab.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\no_thumb.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\ntp\search-icon.png, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\background.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\jquery.min.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\ntp.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\ntp_bkgd.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\ntp_util.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\scripts\utils.js, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\_metadata\computed_hashes.json, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.Spigot, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfefgaiandjaieopcfbidalbebjlhjl\1.7_0\_metadata\verified_contents.json, , [d480a304a2e93ef84ffffaba93719f61],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\manifest.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\craw_background.js, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\craw_window.js, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\css\craw_window.css, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\html\craw_window.html, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\flapper.gif, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\icon_128.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\icon_16.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_close.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_hover.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_maximize.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\images\topbar_floating_button_pressed.png, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\bg\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ca\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\cs\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\da\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\de\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\el\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\en_GB\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\es_419\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\et\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fi\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fil\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\fr\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hi\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hr\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\hu\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\id\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\it\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ja\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ko\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lt\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\lv\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nb\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\nl\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pl\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_BR\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\pt_PT\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ro\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\ru\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sk\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sl\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sr\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\sv\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\th\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\tr\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\uk\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\vi\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_CN\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_locales\zh_TW\messages.json, , [391b0d9a0b802511fb6305b081838977],
PUP.Optional.HijackModifiedExtension, C:\Users\marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0\_metadata\verified_contents.json, , [391b0d9a0b802511fb6305b081838977],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: DOTĚRNÁ REKLAMA
Všechny nálezy smažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?
