VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Dobry den - mozila vyskakuji okna

https://forum.viry.cz:443/viewtopic.php?t=150879

Stránka 1 z 1

Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 10:15
od teKK
Dobry den. prosim o pomoc. mozila pri prohlizeni internetu me furt otevira okna na jine stranky. (chyceno pravdepodobne z pornhubu)
postupoval sem podle navodu. pri zapnuti FRSTLauncher me pise ze nemuze najit msgbox.exe.
addition zde:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Ran by teKKno (17-12-2016 10:06:02)
Running from C:\Users\Petr\Desktop
Windows 8.1 (Update) (X64) (2016-04-22 12:44:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-862737385-3700638203-1335148913-500 - Administrator - Disabled)
Guest (S-1-5-21-862737385-3700638203-1335148913-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-862737385-3700638203-1335148913-1004 - Limited - Enabled)
teKKno (S-1-5-21-862737385-3700638203-1335148913-1002 - Administrator - Enabled) => C:\Users\Petr
UpdatusUser (S-1-5-21-862737385-3700638203-1335148913-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Spy Emergency (Disabled - Up to date) {CF31796E-7D30-C232-4F2D-6993AAA725AC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Amazon 1Button App (HKLM-x32\...\{3E69CC95-C0F6-4C74-8F43-74F9046F20B2}) (Version: 1.0.10 - Amazon) <==== ATTENTION
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
CCSDK (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.0.3.4 - Lenovo)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.28.50 - Conexant)
Connection Meter (HKLM-x32\...\ConMet) (Version: - )
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd)
Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden
Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.0.35 - Lenovo)
Energy Manager (x32 Version: 1.0.0.35 - Lenovo) Hidden
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
Free Opener (HKLM\...\{A1F2C608-32D6-467D-B035-BBEF509042BA}_is1) (Version: 1.4 - EZ Freeware)
Giana Sisters - Twisted Dreams (HKLM-x32\...\Giana Sisters - Twisted Dreams) (Version: 1.0 - Black Forest Games)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3910 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.0.1098 - Intel Corporation)
Intel(R) Wireless Bluetooth(R)(patch version 17.1.1431.1) (HKLM\...\{302600C1-6BDF-4FD1-1407-148929CC1385}) (Version: 17.1.1407.0480 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{313c06de-4aa7-4a1f-930a-f10f80380426}) (Version: 17.14.0 - Intel Corporation)
Jagged Alliance Back in Action (HKLM-x32\...\Jagged Alliance Back in Action_R.G. Shift_is1) (Version: - R.G. Shift, Galfimbul)
K-Lite Codec Pack 7.0.0 (Standard) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.0.0 - )
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Life Is Strange (HKLM-x32\...\{33E1C9A1-60A7-4D34-A7B6-6C65FF9AE4A7}_is1) (Version: EP 1.2.3.4.5 - Square Enix)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4641.3004 - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2008 SP1 (HKLM-x32\...\Microsoft Report Viewer Redistributable 2008 SP1) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 50.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 50.0.2 (x86 cs)) (Version: 50.0.2 - Mozilla)
Mozilla Firefox 50.1.0 (x64 cs) (HKLM\...\Mozilla Firefox 50.1.0 (x64 cs)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
NVIDIA GeForce Experience 1.7 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.7 - NVIDIA Corporation)
NVIDIA Graphics Driver 354.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 354.35 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.0927 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0927 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Onekey Theater (HKLM-x32\...\{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}) (Version: 3.0.1.2 - Lenovo)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.39052 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.8.4.9 - Reimage) <==== ATTENTION
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.1.8.0 - Lenovo Group Limited)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Spy Emergency (HKLM\...\Spy Emergency_is1) (Version: - NETGATE Technologies s.r.o.)
Spyware Terminator 2015 (HKLM-x32\...\{56736259-613E-4A3B-B428-6235F2E76F44}_is1) (Version: 3.0.1.107 - Crawler Group)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1230 - SUPERAntiSpyware.com)
Time Adjuster STANDARD 3.1 (HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\TimeAdjuster) (Version: - IrekSoftware.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH)
UESDK (HKLM-x32\...\{EB3F6640-58AE-4886-B8BA-466B6939A933}_is1) (Version: 1.0.2.7 - Lenovo)
Winamp (HKLM-x32\...\Winamp) (Version: 5.66 - Nullsoft, Inc)
Windows Deployment Tools (HKLM-x32\...\{BFC9778E-9765-C94C-C082-C2514F8DEB9B}) (Version: 8.59.25584 - Microsoft)
Windows Driver Package - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Windows PE x86 x64 (HKLM-x32\...\{F89D69CA-6EE1-E037-DD3B-08CDDE1BED1C}) (Version: 8.59.25584 - Microsoft)
Windows PE x86 x64 wims (HKLM-x32\...\{85F4ACB1-E7DC-C3C6-F4FD-BB936DF2695E}) (Version: 8.59.25584 - Microsoft)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {018D0185-BD8F-46F5-9D22-C93E163AFA7D} - System32\Tasks\SUPERAntiSpyware Scheduled Task 76993db4-8ddb-4714-a274-49a3907f547d => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {0BD94A96-2A4F-45F9-B645-10F2D4BB6193} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-15] (Piriform Ltd)
Task: {107A4B49-7B92-4516-8402-023AD60A2731} - System32\Tasks\SUPERAntiSpyware Scheduled Task ea951a82-9b6d-4850-85f6-11ed99fcb65d => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {27AB1157-ABE9-4635-9111-C5D4595641B6} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
Task: {692EDF71-7167-4691-9C6B-7DD0779CB537} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {766B399E-BDE2-4295-A648-045286ACEDDF} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Office2013\OFFICEICON.vbs [2013-06-03] ()
Task: {97A6E683-4300-4ED8-BAA8-C6694573BD4B} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] ()
Task: {A977DE7C-EA55-4AA5-A7E1-2D0006D5D824} - System32\Tasks\SafeZone scheduled Autoupdate 1461385722 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {AC3086BF-987C-4919-84B4-3E46CDF44616} - System32\Tasks\SteamClient => C:\Users\Petr\AppData\Roaming\Steam\SteamHelper.exe <==== ATTENTION
Task: {B7FEBB93-7D96-4C0F-A9C5-C600FE98FDB8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {E6298743-3ECE-4613-824E-6E0740AAD241} - System32\Tasks\ReimageUpdater => C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REIGUARD.EXE [2016-11-06] (Reimage®) <==== ATTENTION
Task: {F0538B24-380B-4E84-AC15-492CB8A256EB} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-07] (AVAST Software)
Task: {F2485EE6-D66F-44F2-88A3-2F2B96021596} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-08-19] (Lenovo)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\SUPERAntiSpyware Scheduled Task 76993db4-8ddb-4714-a274-49a3907f547d.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\windows\Tasks\SUPERAntiSpyware Scheduled Task ea951a82-9b6d-4850-85f6-11ed99fcb65d.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-02-08 23:27 - 2015-10-15 04:59 - 00126256 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-12 06:09 - 2007-11-02 15:20 - 00243712 _____ () C:\Program Files\NETGATE\Spy Emergency\SSLEAY32.dll
2016-12-12 06:09 - 2007-11-02 15:20 - 01403904 _____ () C:\Program Files\NETGATE\Spy Emergency\LIBEAY32.dll
2016-12-12 06:09 - 2007-09-04 14:25 - 00198144 _____ () C:\Program Files\NETGATE\Spy Emergency\unrar.dll
2015-02-08 23:43 - 2010-10-26 05:40 - 00049056 _____ () C:\PROGRAM FILES\CONEXANT\FORTECONFIG\FMAPP.EXE
2016-11-15 21:25 - 2016-11-15 21:25 - 00061440 _____ () C:\PROGRAM FILES\CCLEANER\lang\lang-1029.dll
2015-02-09 00:22 - 2014-07-10 02:19 - 00592880 _____ () C:\PROGRAM FILES (X86)\LENOVO\CCSDK\CCSDK.EXE
2016-04-22 14:11 - 2015-09-17 16:52 - 00150392 _____ () C:\totalcmd\wcmzip64.dll
2016-04-22 14:11 - 2015-09-17 16:52 - 00260184 _____ () C:\totalcmd\unRAR64.dll
2016-09-07 13:33 - 2016-09-07 13:33 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-12-17 03:46 - 2016-12-17 03:46 - 03131344 _____ () C:\Program Files\AVAST Software\Avast\defs\16121601\algo.dll
2016-09-07 13:33 - 2016-09-07 13:33 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-02-09 00:26 - 2014-07-04 05:35 - 00627672 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2014-07-04 21:35 - 2014-07-04 21:35 - 00016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2016-08-08 13:30 - 2016-08-08 13:30 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-09 00:22 - 2014-07-10 02:19 - 00592880 _____ () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
2015-02-08 23:33 - 2013-09-16 20:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-02-08 23:53 - 2013-07-08 13:30 - 00176640 _____ () C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.1821.18261_x86__hgg5mn3xps74a\SubtitleProvider.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:A1EDB939 [120]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VDWFP => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VisualDiscovery => ""="service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-862737385-3700638203-1335148913-1002\Software\Classes\.scr: AutoCADScriptFile => C:\windows\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)




frst zde:



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
Ran by teKKno (administrator) on TEKKNO (17-12-2016 10:05:18)
Running from C:\Users\Petr\Desktop
Loaded Profiles: UpdatusUser & teKKno (Available Profiles: UpdatusUser & teKKno)
Platform: Windows 8.1 (Update) (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(NETGATE Technologies s.r.o.) C:\Program Files\NETGATE\Spy Emergency\SpyEmergencyHealth.exe
(NETGATE Technologies s.r.o.) C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo) C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Mgr. Tomáš Papoušek) C:\Program Files (x86)\ConMet\ConMet.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
(forum.viry.cz) C:\Users\Petr\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-02-26] (Intel Corporation)
HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2013-10-17] (Realtek semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-05] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-15] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2015-02-09] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2015-02-09] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-17] (AVAST Software)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-08-29] (Disc Soft Ltd)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [ConMet] => C:\Program Files (x86)\ConMet\ConMet.exe [4483584 2016-12-06] (Mgr. Tomáš Papoušek)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [CCleaner Monitoring] => C:\PROGRAM FILES\CCLEANER\CCLEANER64.EXE [9105112 2016-11-15] (Piriform Ltd)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [SpyEmergency] => C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe [3291072 2016-11-09] (NETGATE Technologies s.r.o.)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7943072 2016-12-06] (SUPERAntiSpyware)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Policies\Explorer: []
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\MountPoints2: {0cf6f064-77df-11e6-8275-68f72834c5dc} - "F:\GS_Setup.exe"
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\MountPoints2: {fda9a723-93a7-11e6-8279-68f72834c5dc} - "H:\setup.exe"
AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => No File
AppInit_DLLs-x32: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-07] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

AutoConfigURL: [S-1-5-21-862737385-3700638203-1335148913-1002] => hxxp://no-stop.biz/wpad.dat?13a4b7aae798f0846768e60ccf46319221553441
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{4D764AEE-A710-45E0-8761-C0878267398F}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{9765EEF9-40E2-43B2-98E0-3DFB9C1AB7F6}: [DhcpNameServer] 150.211.1.3
ManualProxies: 0hxxp://no-stop.biz/wpad.dat?13a4b7aae798f0846768e60ccf46319221553441

Internet Explorer:
==================
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
URLSearchHook: [S-1-5-21-862737385-3700638203-1335148913-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-862737385-3700638203-1335148913-1002 -> DefaultScope {A7B1B7B5-DC2D-4140-909B-4E52208341C4} URL =
SearchScopes: HKU\S-1-5-21-862737385-3700638203-1335148913-1002 -> {A7B1B7B5-DC2D-4140-909B-4E52208341C4} URL =
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard64.dll [2016-04-09] (Crawler Group, LLC)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-24] (AVAST Software)
BHO-x32: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard.dll [2016-04-09] (Crawler Group, LLC)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-24] (AVAST Software)

FireFox:
========
FF DefaultProfile: w62hy25v.default
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\w62hy25v.default [2016-12-17]
FF Homepage: Mozilla\Firefox\Profiles\w62hy25v.default -> hxxps://www.seznam.cz/
FF Extension: (Google Analytics Opt-out Browser Add-on) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\w62hy25v.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2016-12-07]
FF Extension: (Adblock Plus) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\w62hy25v.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-07]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-07]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\1587602890.js [2016-12-06] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\1587602890.cfg [2016-12-06] <==== ATTENTION

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-07] (AVAST Software)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-10] ()
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-02-26] (Intel Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [121304 2014-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\windows\system32\igfxCUIService.exe [318568 2014-08-20] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-23] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-02-09] (Lenovo(beijing) Limited)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] ()
R2 ReimageRealTimeProtector; C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REIGUARD.EXE [8016240 2016-11-06] (Reimage®)
R2 SpyEmrgHealth; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencyHealth.exe [379192 2015-03-20] (NETGATE Technologies s.r.o.)
R2 SpyEmrgSrv; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe [3335008 2015-03-20] (NETGATE Technologies s.r.o.)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [3269864 2016-04-09] (Crawler Group, LLC)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHdsKe; C:\windows\system32\drivers\aswHdsKe.sys [83312 2016-08-13] (AVAST Software)
S3 aswHwid; C:\windows\system32\drivers\aswHwid.sys [37656 2016-09-07] (AVAST Software)
R1 aswKbd; C:\windows\system32\drivers\aswKbd.sys [37144 2016-09-07] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [108816 2016-09-07] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [103064 2016-09-07] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-07] (AVAST Software)
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [969184 2016-09-13] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [513632 2016-09-22] (AVAST Software)
S2 aswStm; C:\windows\system32\drivers\aswStm.sys [163416 2016-09-07] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
S3 btmaux; C:\windows\system32\DRIVERS\btmaux.sys [141624 2014-05-13] (Motorola Solutions, Inc.)
R3 btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [1424184 2014-06-17] (Motorola Solutions, Inc.)
R1 CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 dtlitescsibus; C:\windows\System32\drivers\dtlitescsibus.sys [30264 2016-04-23] (Disc Soft Ltd)
R3 dtliteusbbus; C:\windows\System32\drivers\dtliteusbbus.sys [47672 2016-04-23] (Disc Soft Ltd)
R3 ibtusb; C:\windows\system32\DRIVERS\ibtusb.sys [220104 2014-08-07] (Intel Corporation)
R3 MEIx64; C:\windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NETwNb64; C:\windows\system32\DRIVERS\NETwbw02.sys [3494680 2015-03-09] (Intel Corporation)
S3 NETwNe64; C:\windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 rtsuvc; C:\windows\system32\DRIVERS\rtsuvc.sys [8876248 2013-10-17] (Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SpyEmrg; C:\windows\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\windows\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o.)
R3 SpyEmrgGuard; C:\windows\System32\Drivers\spyemrg_guard.sys [19768 2015-03-09] (NETGATE Technologies s.r.o.)
R2 sp_rsdrv2; C:\windows\System32\DRIVERS\stflt.sys [51496 2011-08-24] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 wsvd; C:\windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-17 10:05 - 2016-12-17 10:05 - 00018241 _____ C:\Users\Petr\Desktop\FRST.txt
2016-12-17 10:04 - 2016-12-17 10:04 - 00112640 _____ (forum.viry.cz) C:\Users\Petr\Desktop\FRSTLauncher.exe
2016-12-17 10:03 - 2016-12-17 10:04 - 00112640 _____ (forum.viry.cz) C:\Users\Petr\Downloads\FRSTLauncher.exe
2016-12-17 09:42 - 2016-12-17 09:46 - 00000000 ____D C:\FRST
2016-12-17 09:34 - 2016-12-17 09:34 - 02420224 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2016-12-17 09:00 - 2016-12-17 09:00 - 00004272 _____ C:\windows\System32\Tasks\ReimageUpdater
2016-12-17 08:59 - 2016-12-17 09:00 - 00000000 ____D C:\ProgramData\Reimage Protector
2016-12-17 08:59 - 2016-12-17 09:00 - 00000000 ____D C:\Program Files\Reimage
2016-12-17 08:59 - 2016-12-17 08:59 - 00001966 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
2016-12-17 08:59 - 2016-12-17 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
2016-12-17 08:58 - 2016-12-17 09:01 - 00000150 _____ C:\windows\Reimage.ini
2016-12-17 08:58 - 2016-12-17 09:01 - 00000000 ____D C:\rei
2016-12-17 08:57 - 2016-12-17 08:58 - 00604928 _____ (Reimage) C:\Users\Petr\Downloads\ReimageRepair.exe
2016-12-17 05:57 - 2016-12-17 05:57 - 00075734 _____ C:\Users\Petr\Downloads\The-Grand-Tour-S01E01(0000279394).srt
2016-12-17 05:56 - 2016-12-17 05:58 - 535020540 ____R C:\Users\Petr\Downloads\The.Grand.Tour.S01E01.The.Holy.Trinity.720p.WEBRip.2CH.x265.HEVC-PSA.mkv
2016-12-17 04:53 - 2016-12-17 04:53 - 00038262 _____ C:\Users\Petr\Documents\cc_20161217_045329.reg
2016-12-17 04:53 - 2016-12-17 04:53 - 00003436 _____ C:\Users\Petr\Documents\cc_20161217_045343.reg
2016-12-17 04:39 - 2016-12-17 04:39 - 00068158 _____ C:\Users\Petr\Documents\cc_20161217_043902.reg
2016-12-17 04:30 - 2016-12-17 05:02 - 00000526 _____ C:\windows\Tasks\SUPERAntiSpyware Scheduled Task ea951a82-9b6d-4850-85f6-11ed99fcb65d.job
2016-12-17 04:30 - 2016-12-17 05:02 - 00000526 _____ C:\windows\Tasks\SUPERAntiSpyware Scheduled Task 76993db4-8ddb-4714-a274-49a3907f547d.job
2016-12-17 04:30 - 2016-12-17 04:30 - 00003578 _____ C:\windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 76993db4-8ddb-4714-a274-49a3907f547d
2016-12-17 04:30 - 2016-12-17 04:30 - 00003496 _____ C:\windows\System32\Tasks\SUPERAntiSpyware Scheduled Task ea951a82-9b6d-4850-85f6-11ed99fcb65d
2016-12-17 04:29 - 2016-12-17 04:29 - 00001831 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2016-12-17 04:29 - 2016-12-17 04:29 - 00000000 ____D C:\Users\Petr\AppData\Roaming\SUPERAntiSpyware.com
2016-12-17 04:29 - 2016-12-17 04:29 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2016-12-17 04:29 - 2016-12-17 04:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2016-12-17 04:29 - 2016-12-17 04:29 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-12-17 04:28 - 2016-12-17 04:28 - 28615664 _____ (SUPERAntiSpyware) C:\Users\Petr\Downloads\SUPERAntiSpyware.exe
2016-12-16 18:35 - 2016-12-16 18:35 - 00093532 _____ C:\Users\Petr\Downloads\Inferno(0000279846).srt
2016-12-16 15:53 - 2016-12-16 15:56 - 00000000 ____D C:\Users\Petr\Downloads\Inferno.2016.HC.HDRip.X264.AC3-EVO
2016-12-16 15:42 - 2016-12-16 15:42 - 00148461 _____ C:\Users\Petr\Downloads\Citizenfour(0000258723).srt
2016-12-16 15:41 - 2016-12-16 15:43 - 00000000 ____D C:\Users\Petr\Downloads\Citizenfour (2014)
2016-12-16 06:52 - 2016-12-16 07:15 - 00000000 ____D C:\AdwCleaner
2016-12-16 06:52 - 2016-12-16 06:52 - 03977168 _____ C:\Users\Petr\Desktop\adwcleaner_6.041.exe
2016-12-15 18:51 - 2016-12-15 18:51 - 00170674 _____ C:\Users\Petr\Downloads\Zero-Days(0000277739).srt
2016-12-15 18:33 - 2016-12-15 18:33 - 00000000 ____D C:\Users\Petr\Downloads\Zero.Days.2016.720p.WEBRip.x264.AAC-ETRG
2016-12-14 19:16 - 2016-12-14 19:16 - 00073279 _____ C:\Users\Petr\Downloads\The-Magnificent-Seven(0000280134).srt
2016-12-14 18:57 - 2016-12-14 18:57 - 00000000 ____D C:\Users\Petr\Downloads\The.Magnificent.Seven.2016.720p.BRRip.x264.AAC-ETRG
2016-12-12 19:33 - 2016-12-12 19:33 - 00049243 _____ C:\Users\Petr\Downloads\Donnie-Darko-Director-s-cut-(0000130895).sub
2016-12-12 19:31 - 2016-12-16 16:04 - 00000000 ____D C:\Users\Petr\Downloads\Donnie Darko DIRECTORS CUT (2001)
2016-12-12 06:09 - 2016-12-12 19:19 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Spy Emergency
2016-12-12 06:09 - 2016-12-12 06:09 - 00001016 _____ C:\Users\Public\Desktop\Spy Emergency.lnk
2016-12-12 06:09 - 2016-12-12 06:09 - 00000000 ____D C:\ProgramData\NETGATE
2016-12-12 06:09 - 2016-12-12 06:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Emergency
2016-12-12 06:09 - 2016-12-12 06:09 - 00000000 ____D C:\Program Files\NETGATE
2016-12-12 06:09 - 2015-03-09 11:26 - 00019768 _____ (NETGATE Technologies s.r.o.) C:\windows\system32\Drivers\spyemrg_guard.sys
2016-12-12 06:09 - 2011-04-21 10:31 - 00024408 _____ (NETGATE Technologies s.r.o.) C:\windows\system32\Drivers\spyemrg_access.sys
2016-12-12 06:09 - 2011-04-21 10:31 - 00017240 _____ (NETGATE Technologies s.r.o.) C:\windows\system32\Drivers\spyemrg.sys
2016-12-12 06:07 - 2016-12-12 06:08 - 34847032 _____ C:\Users\Petr\Downloads\se-setup.exe
2016-12-10 21:18 - 2016-12-10 21:18 - 00125816 _____ C:\Users\Petr\Downloads\Snowden(0000280236).srt
2016-12-10 21:16 - 2016-12-10 21:18 - 00000000 ____D C:\Users\Petr\Downloads\Snowden.2016.BRRip.XViD.AC3-ETRG
2016-12-10 18:53 - 2016-12-10 18:53 - 00065995 _____ C:\Users\Petr\Downloads\SHERLOCK-S02E03-The-Reichenbach-Fall.zip
2016-12-10 18:53 - 2013-12-30 11:04 - 00082456 _____ C:\Users\Petr\Downloads\SHERLOCK S02E03 - The Reichenbach Fall (HDTV).srt
2016-12-10 18:47 - 2016-12-10 18:52 - 734504352 _____ C:\Users\Petr\Downloads\Sherlock.2x03.The.Reichenbach.Fall.HDTV.XviD-FoV.avi
2016-12-10 17:06 - 2016-12-10 17:06 - 00000085 _____ C:\windows\wininit.ini
2016-12-10 16:58 - 2016-12-16 07:07 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2016-12-10 16:58 - 2016-12-10 18:08 - 00000000 ____D C:\ProgramData\Spyware Terminator
2016-12-10 16:58 - 2016-12-10 16:58 - 00001061 _____ C:\Users\Public\Desktop\Spyware Terminator 2015.lnk
2016-12-10 16:58 - 2016-12-10 16:58 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Spyware Terminator
2016-12-10 16:58 - 2016-12-10 16:58 - 00000000 ____D C:\Users\Petr\AppData\LocalLow\Spyware Terminator
2016-12-10 16:58 - 2016-12-10 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2015
2016-12-10 16:35 - 2016-12-10 16:35 - 00002690 _____ C:\Users\Petr\Desktop\µTorrent.lnk
2016-12-10 16:35 - 2016-12-10 16:35 - 00001046 _____ C:\Users\Petr\Desktop\ByteFence Anti-Malware.lnk
2016-12-10 16:33 - 2016-12-17 05:59 - 00000000 ____D C:\Users\Petr\AppData\Roaming\uTorrent
2016-12-10 16:05 - 2016-12-10 16:05 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-12-10 16:05 - 2016-12-10 16:05 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-12-10 16:00 - 2015-01-06 04:01 - 00072192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndproxy.sys
2016-12-10 16:00 - 2015-01-06 03:59 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\wanarp.sys
2016-12-10 16:00 - 2015-01-06 02:12 - 00185856 _____ (Microsoft Corporation) C:\windows\system32\rascfg.dll
2016-12-10 16:00 - 2015-01-06 02:02 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\rascfg.dll
2016-12-10 15:59 - 2016-03-08 15:44 - 00138240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2016-12-10 15:59 - 2015-12-16 18:11 - 01200128 _____ (Microsoft Corporation) C:\windows\system32\Windows.Globalization.dll
2016-12-10 15:59 - 2015-12-16 17:51 - 00868864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Globalization.dll
2016-12-10 15:59 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\kbdgeoqw.dll
2016-12-10 15:59 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZST.DLL
2016-12-10 15:59 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZEL.DLL
2016-12-10 15:59 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZE.DLL
2016-12-10 15:59 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\kbdgeoqw.dll
2016-12-10 15:59 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZST.DLL
2016-12-10 15:59 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZEL.DLL
2016-12-10 15:59 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZE.DLL
2016-12-10 15:59 - 2015-10-22 17:21 - 00323072 _____ (Microsoft Corporation) C:\windows\system32\GlobCollationHost.dll
2016-12-10 15:59 - 2015-10-22 16:58 - 00200704 _____ (Microsoft Corporation) C:\windows\SysWOW64\GlobCollationHost.dll
2016-12-10 15:59 - 2015-10-22 15:08 - 00513456 _____ C:\windows\SysWOW64\locale.nls
2016-12-10 15:59 - 2015-10-22 15:08 - 00513456 _____ C:\windows\system32\locale.nls
2016-12-10 15:59 - 2014-11-17 21:17 - 00672984 _____ (Microsoft Corporation) C:\windows\system32\MDMAgent.exe
2016-12-10 15:59 - 2014-11-15 20:05 - 00801584 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2016-12-10 15:59 - 2014-11-15 07:29 - 00962216 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2016-12-10 15:59 - 2014-11-14 07:57 - 01027584 _____ (Microsoft Corporation) C:\windows\system32\MFMediaEngine.dll
2016-12-10 15:59 - 2014-11-14 07:54 - 00463872 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.Handlers.dll
2016-12-10 15:59 - 2014-11-14 06:03 - 00885760 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFMediaEngine.dll
2016-12-10 15:59 - 2014-11-10 03:57 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\agilevpn.sys
2016-12-10 15:59 - 2014-11-10 02:20 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2016-12-10 15:59 - 2014-11-10 02:08 - 00702464 _____ (Microsoft Corporation) C:\windows\system32\rasapi32.dll
2016-12-10 15:59 - 2014-11-10 01:57 - 00624640 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasapi32.dll
2016-12-10 15:59 - 2014-11-08 05:00 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndistapi.sys
2016-12-10 15:59 - 2014-11-08 04:56 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\kmddsp.tsp
2016-12-10 15:59 - 2014-11-08 04:56 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\rasmxs.dll
2016-12-10 15:59 - 2014-11-08 04:56 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\rasser.dll
2016-12-10 15:59 - 2014-11-08 04:24 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\rasdiag.dll
2016-12-10 15:59 - 2014-11-08 04:13 - 00039424 _____ (Microsoft Corporation) C:\windows\SysWOW64\kmddsp.tsp
2016-12-10 15:59 - 2014-11-08 04:13 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasmxs.dll
2016-12-10 15:59 - 2014-11-08 04:13 - 00022528 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasser.dll
2016-12-10 15:59 - 2014-11-08 03:48 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasdiag.dll
2016-12-10 15:59 - 2014-11-08 03:03 - 00733696 _____ (Microsoft Corporation) C:\windows\system32\SkyDriveTelemetry.dll
2016-12-10 15:59 - 2014-11-08 02:58 - 04837376 _____ (Microsoft Corporation) C:\windows\system32\SyncEngine.dll
2016-12-10 15:59 - 2014-11-08 02:49 - 01154048 _____ (Microsoft Corporation) C:\windows\system32\SkyDrive.exe
2016-12-10 15:59 - 2014-11-05 03:12 - 00211968 _____ (Microsoft Corporation) C:\windows\system32\QSHVHOST.DLL
2016-12-10 15:59 - 2014-11-05 03:12 - 00128000 _____ (Microsoft Corporation) C:\windows\system32\QSVRMGMT.DLL
2016-12-10 15:59 - 2014-11-05 03:06 - 00514048 _____ (Microsoft Corporation) C:\windows\system32\DevicePairing.dll
2016-12-10 15:59 - 2014-11-05 02:44 - 00657920 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2016-12-10 15:59 - 2014-11-05 02:43 - 00252416 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2016-12-10 15:59 - 2014-11-05 02:39 - 00155648 _____ (Microsoft Corporation) C:\windows\SysWOW64\QSHVHOST.DLL
2016-12-10 15:59 - 2014-11-05 02:39 - 00094208 _____ (Microsoft Corporation) C:\windows\SysWOW64\QSVRMGMT.DLL
2016-12-10 15:59 - 2014-11-05 02:33 - 00465408 _____ (Microsoft Corporation) C:\windows\SysWOW64\DevicePairing.dll
2016-12-10 15:59 - 2014-11-05 02:21 - 00658432 _____ (Microsoft Corporation) C:\windows\system32\WSDApi.dll
2016-12-10 15:59 - 2014-11-05 02:20 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2016-12-10 15:59 - 2014-11-05 02:14 - 00309760 _____ (Microsoft Corporation) C:\windows\system32\WSDMon.dll
2016-12-10 15:59 - 2014-11-05 02:06 - 00555520 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSDApi.dll
2016-12-10 15:59 - 2014-11-04 20:33 - 00058176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dam.sys
2016-12-10 15:59 - 2014-11-04 07:27 - 00128512 _____ (Microsoft Corporation) C:\windows\splwow64.exe
2016-12-10 15:59 - 2014-11-04 06:01 - 00827392 _____ (Microsoft Corporation) C:\windows\system32\spoolsv.exe
2016-12-10 15:59 - 2014-10-29 02:55 - 00242176 _____ (Microsoft Corporation) C:\windows\system32\WinSCard.dll
2016-12-10 15:59 - 2014-10-29 02:13 - 00169984 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSCard.dll
2016-12-10 15:59 - 2014-10-21 02:59 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\eventcls.dll
2016-12-10 15:59 - 2014-10-21 02:19 - 00015360 _____ (Microsoft Corporation) C:\windows\SysWOW64\eventcls.dll
2016-12-10 15:59 - 2014-10-21 01:50 - 00074752 _____ (Microsoft Corporation) C:\windows\system32\vsstrace.dll
2016-12-10 15:59 - 2014-10-21 01:31 - 01574400 _____ (Microsoft Corporation) C:\windows\system32\vssapi.dll
2016-12-10 15:59 - 2014-10-21 01:31 - 00055296 _____ (Microsoft Corporation) C:\windows\SysWOW64\vsstrace.dll
2016-12-10 15:59 - 2014-10-21 01:20 - 01142272 _____ (Microsoft Corporation) C:\windows\SysWOW64\vssapi.dll
2016-12-10 15:59 - 2014-10-17 05:56 - 00039744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelpep.sys
2016-12-10 15:59 - 2014-10-17 04:35 - 00086336 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pdc.sys
2016-12-10 15:58 - 2015-05-01 02:13 - 06521800 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2016-12-10 15:58 - 2015-05-01 02:13 - 01488000 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2016-12-10 15:58 - 2015-05-01 02:13 - 00261376 _____ (Microsoft Corporation) C:\windows\system32\sppwinob.dll
2016-12-10 15:57 - 2015-06-09 23:39 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\BTHUSB.SYS
2016-12-10 15:57 - 2015-06-09 23:39 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthenum.sys
2016-12-10 15:57 - 2015-06-09 23:38 - 01201664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2016-12-10 15:45 - 2016-12-10 12:03 - 00453476 ____R C:\windows\system32\Drivers\etc\hosts.20161210-154507.backup
2016-12-10 15:01 - 2016-12-10 15:50 - 00003418 _____ C:\windows\System32\Tasks\SteamClient
2016-12-10 13:51 - 2016-12-10 13:51 - 00018790 _____ C:\Users\Petr\Documents\cc_20161210_135102.reg
2016-12-10 13:40 - 2016-12-10 13:40 - 00013952 _____ C:\Users\Petr\Documents\cc_20161210_133958.reg
2016-12-10 13:40 - 2016-12-10 13:40 - 00000794 _____ C:\Users\Petr\Documents\cc_20161210_134016.reg
2016-12-10 13:39 - 2016-12-10 13:39 - 00128386 _____ C:\Users\Petr\Documents\cc_20161210_133902.reg
2016-12-10 13:35 - 2016-12-10 13:35 - 00002794 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2016-12-10 13:35 - 2016-12-10 13:35 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-12-10 13:35 - 2016-12-10 13:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-12-10 13:35 - 2016-12-10 13:35 - 00000000 ____D C:\Program Files\CCleaner
2016-12-10 13:33 - 2016-12-10 13:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-12-10 13:33 - 2016-12-10 13:33 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-12-10 13:24 - 2016-12-10 13:24 - 00000017 _____ C:\Users\Petr\AppData\Local\resmon.resmoncfg
2016-12-10 12:25 - 2013-10-17 08:01 - 02214216 _____ (ELAN Microelectronics Corp.) C:\windows\ETDUninst.dll
2016-12-10 12:03 - 2016-12-06 20:02 - 00453364 ____R C:\windows\system32\Drivers\etc\hosts.20161210-120328.backup
2016-12-06 20:02 - 2016-12-06 18:27 - 00453364 ____R C:\windows\system32\Drivers\etc\hosts.20161206-200210.backup
2016-12-06 18:27 - 2013-08-22 14:25 - 00000824 _____ C:\windows\system32\Drivers\etc\hosts.20161206-182713.backup
2016-12-06 18:16 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2016-12-06 17:52 - 2016-12-06 17:52 - 00001034 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Connection Meter.lnk
2016-12-06 17:50 - 2016-12-10 17:06 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-12-06 17:50 - 2016-12-06 17:50 - 00000000 ____D C:\windows\System32\Tasks\Safer-Networking
2016-12-06 17:49 - 2016-12-10 18:14 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-12-06 17:47 - 2016-12-17 10:05 - 00000000 ____D C:\ProgramData\ConMet
2016-12-06 17:47 - 2016-12-17 08:47 - 00000000 ____D C:\Users\Petr\AppData\Roaming\ConMet
2016-12-06 17:47 - 2016-12-06 17:47 - 00000000 ____D C:\Program Files (x86)\ConMet
2016-11-29 15:29 - 2016-11-29 15:29 - 00001574 _____ C:\Users\Petr\Desktop\Cities – zástupce.lnk
2016-11-27 16:51 - 2016-11-27 16:51 - 00000000 ____D C:\Users\Petr\AppData\Local\Steam
2016-11-21 08:59 - 2016-11-21 08:59 - 00000000 ____D C:\Games (x86)
2016-11-21 08:40 - 2016-11-21 08:40 - 00000000 ____D C:\Users\Petr\AppData\LocalLow\Playdead
2016-11-21 08:39 - 2016-11-21 08:39 - 00000000 ____D C:\Users\Petr\Documents\CPY_SAVES
2016-11-21 06:16 - 2016-11-21 06:16 - 00000000 ____D C:\Users\Petr\AppData\Roaming\NVIDIA
2016-11-20 15:40 - 2016-11-20 15:40 - 00000000 ___HD C:\windows\msdownld.tmp
2016-11-20 15:32 - 2016-11-20 15:32 - 00000000 ____D C:\Users\Petr\AppData\Roaming\A
2016-11-20 15:30 - 2016-11-20 15:30 - 00000000 ____D C:\Users\Petr\AppData\LocalLow\CampoSanto
2016-11-20 15:29 - 2016-11-20 15:40 - 00000000 ____D C:\windows\SysWOW64\directx
2016-11-19 05:47 - 2016-12-17 05:32 - 00000000 ____D C:\Users\Petr\AppData\LocalLow\Mozilla
2016-11-18 08:37 - 2016-12-15 15:23 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-11-17 16:47 - 2016-11-21 09:02 - 00000000 ____D C:\Users\Petr\Documents\My Games
2016-11-17 16:40 - 2016-11-17 16:40 - 00001489 _____ C:\Users\Public\Desktop\Life Is Strange.lnk
2016-11-17 16:40 - 2016-11-17 16:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Life Is Strange
2016-11-17 16:01 - 2016-11-18 06:26 - 00000000 ____D C:\Program Files (x86)\Life Is Strange

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-17 09:04 - 2016-04-22 13:51 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-862737385-3700638203-1335148913-1002
2016-12-17 05:59 - 2016-04-23 06:35 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Media Player Classic
2016-12-17 05:04 - 2013-08-22 14:36 - 00000000 ____D C:\windows\Inf
2016-12-17 05:02 - 2013-08-22 15:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-12-17 05:01 - 2013-08-22 15:44 - 00337840 _____ C:\windows\system32\FNTCACHE.DAT
2016-12-17 04:56 - 2016-04-23 05:39 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Skype
2016-12-17 04:51 - 2016-04-22 14:26 - 00000000 ____D C:\Program Files\Autodesk
2016-12-17 04:48 - 2016-04-22 14:13 - 00000000 ____D C:\ProgramData\Autodesk
2016-12-17 04:47 - 2016-04-22 14:13 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Autodesk
2016-12-17 04:47 - 2013-08-22 16:36 - 00000000 ___SD C:\windows\Downloaded Program Files
2016-12-17 03:37 - 2016-04-23 05:27 - 00004180 _____ C:\windows\System32\Tasks\avast! Emergency Update
2016-12-16 07:17 - 2013-08-22 14:25 - 00262144 ___SH C:\windows\system32\config\BBI
2016-12-16 07:07 - 2016-04-23 05:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-11 10:26 - 2013-08-22 16:36 - 00000000 ____D C:\windows\rescache
2016-12-10 17:38 - 2016-09-25 19:07 - 00000000 ____D C:\Games
2016-12-10 17:33 - 2016-08-26 20:49 - 00000000 ____D C:\Users\Petr\Downloads\11111111
2016-12-10 17:32 - 2016-08-23 14:04 - 00000000 ____D C:\Users\Petr\Downloads\_series
2016-12-10 17:26 - 2016-10-18 16:52 - 00000000 ____D C:\Users\Petr\Downloads\_games
2016-12-10 16:10 - 2015-02-08 23:27 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-10 16:08 - 2013-08-22 16:36 - 00000000 ____D C:\windows\SysWOW64\setup
2016-12-10 16:08 - 2013-08-22 16:36 - 00000000 ____D C:\windows\system32\setup
2016-12-10 16:06 - 2016-04-23 05:21 - 00000000 ____D C:\Users\teKKno
2016-12-10 16:06 - 2015-02-08 23:46 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-10 16:06 - 2015-02-08 23:34 - 00000000 ____D C:\ProgramData\Intel
2016-12-10 16:06 - 2015-02-08 23:23 - 00000000 ___HD C:\Intel
2016-12-10 16:06 - 2013-08-22 16:20 - 00000000 ____D C:\windows\CbsTemp
2016-12-10 16:05 - 2015-02-08 23:23 - 00000000 ____D C:\Program Files (x86)\Intel
2016-12-10 16:04 - 2015-02-08 23:24 - 00000000 ____D C:\Program Files\Intel
2016-12-10 16:01 - 2015-02-08 23:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-10 14:12 - 2016-08-13 12:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-10 13:52 - 2015-02-09 00:22 - 00000000 ____D C:\Program Files (x86)\Lenovo
2016-12-10 13:47 - 2016-04-22 13:45 - 00000000 ____D C:\Users\Petr\AppData\Local\Packages
2016-12-10 13:47 - 2013-08-22 16:36 - 00000000 ____D C:\windows\AppReadiness
2016-12-10 13:45 - 2015-02-09 00:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-12-10 13:45 - 2015-02-08 23:32 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-10 13:41 - 2013-08-22 16:36 - 00000000 ___HD C:\windows\ELAMBKUP
2016-12-10 13:38 - 2016-04-23 05:48 - 00000000 ____D C:\Users\Petr\AppData\Roaming\DAEMON Tools Lite
2016-12-10 13:37 - 2014-04-03 20:15 - 00000000 ____D C:\windows\Panther
2016-12-10 13:26 - 2015-02-08 23:31 - 00740946 _____ C:\windows\system32\perfh005.dat
2016-12-10 13:26 - 2015-02-08 23:31 - 00152150 _____ C:\windows\system32\perfc005.dat
2016-12-10 13:26 - 2014-03-18 10:53 - 01749406 _____ C:\windows\system32\PerfStringBackup.INI
2016-12-10 12:25 - 2015-02-09 00:28 - 00006656 _____ C:\windows\system32\VfService.trf
2016-12-10 12:25 - 2015-02-09 00:23 - 00000000 ____D C:\ProgramData\Lenovo
2016-12-10 12:24 - 2016-09-10 18:35 - 00000000 ____D C:\Program Files\VideoLAN
2016-12-10 05:00 - 2013-08-22 16:36 - 00000000 ____D C:\windows\system32\NDF
2016-12-07 08:30 - 2016-08-23 14:01 - 00000000 ____D C:\Users\Petr\Downloads\_movies
2016-12-07 07:42 - 2016-04-22 13:44 - 00000000 ____D C:\Users\Petr\AppData\Local\VirtualStore
2016-12-07 07:13 - 2015-02-09 00:34 - 00000000 ____D C:\ProgramData\Energy Manager
2016-12-06 18:16 - 2016-04-23 05:11 - 00000000 ____D C:\Program Files\Common Files\AV
2016-12-05 11:43 - 2015-02-09 00:28 - 00000000 ____D C:\ProgramData\CyberLink
2016-12-05 11:39 - 2015-02-09 00:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Photo Master
2016-12-05 10:15 - 2016-10-13 15:20 - 00000000 ___HD C:\Program Files (x86)\InstallJammer Registry
2016-11-23 20:23 - 2016-04-23 05:39 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-23 20:23 - 2016-04-23 05:39 - 00000000 ____D C:\ProgramData\Skype
2016-11-18 06:22 - 2016-04-22 13:53 - 00000000 __SHD C:\Users\Petr\AppData\LocalLow\EmieUserList
2016-11-18 06:22 - 2016-04-22 13:53 - 00000000 __SHD C:\Users\Petr\AppData\Local\EmieUserList
2016-11-18 06:22 - 2016-04-22 13:53 - 00000000 __SHD C:\Users\Petr\AppData\Local\EmieSiteList
2016-11-18 06:22 - 2016-04-22 13:52 - 00000000 __SHD C:\Users\Petr\AppData\LocalLow\EmieSiteList
2016-11-17 17:20 - 2016-04-22 13:52 - 00002420 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Menu.lnk

==================== Files in the root of some directories =======

2016-12-10 13:24 - 2016-12-10 13:24 - 0000017 _____ () C:\Users\Petr\AppData\Local\resmon.resmoncfg
2015-02-08 23:43 - 2015-02-08 23:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-04-22 14:28 - 2016-04-22 14:28 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\Petr\AppData\Local\Temp\AcDeltree.exe
C:\Users\Petr\AppData\Local\Temp\FNP_ACT_InstallerCA.dll
C:\Users\Petr\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Petr\AppData\Local\Temp\UniProtectorPackage.exe


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\SUPERAntiSpyware Scheduled Task 76993db4-8ddb-4714-a274-49a3907f547d.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\windows\Tasks\SUPERAntiSpyware Scheduled Task ea951a82-9b6d-4850-85f6-11ed99fcb65d.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\Temp:A1EDB939 [120]

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Spy Emergency (Disabled - Up to date) {CF31796E-7D30-C232-4F2D-6993AAA725AC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Petr\Desktop" je 3478 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================


dekuji

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 11:18
od altrok
Krasny den Vam preju :bye:


:arrow: V ramci cisteni Vam budou vyprazdneny docasne adresare (vysypani Kose a tempu, vyprazdneni cache prohlizecu apod.).


:arrow: Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
  • ukoncete vsechny programy
  • kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
  • kliknete na Scan (Skenovani), pote na Clean (Cisteni)
  • po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 11:58
od teKK
# AdwCleaner v6.041 - Logfile created 17/12/2016 at 11:50:01
# Updated on 16/12/2016 by Malwarebytes
# Database : 2016-12-17.2 [Server]
# Operating System : Windows 8.1 (X64)
# Username : teKKno - TEKKNO
# Running from : C:\Users\Petr\Desktop\adwcleaner_6.041.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****

[-] Service deleted: sp_rsdrv2


***** [ Folders ] *****



***** [ Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: [x64] HKLM\SOFTWARE\Reimage
[-] Key deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1061 Bytes] - [17/12/2016 11:50:01]
C:\AdwCleaner\AdwCleaner[S0].txt - [1368 Bytes] - [17/12/2016 11:49:20]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1207 Bytes] ##########

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 12:04
od altrok
:arrow: Po restartu dejte vedet, jak se PC chova.



  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CreateRestorePoint:
CloseProcesses:
File: C:\Users\Petr\AppData\Roaming\Steam\SteamHelper.exe
Task: {E6298743-3ECE-4613-824E-6E0740AAD241} - System32\Tasks\ReimageUpdater => C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REIGUARD.EXE [2016-11-06] (Reimage®) <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Temp:A1EDB939 [120]
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-08-29] (Disc Soft Ltd)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Policies\Explorer: []
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\MountPoints2: {0cf6f064-77df-11e6-8275-68f72834c5dc} - "F:\GS_Setup.exe"
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\MountPoints2: {fda9a723-93a7-11e6-8279-68f72834c5dc} - "H:\setup.exe"
AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => No File
AppInit_DLLs-x32: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL => No File
AutoConfigURL: [S-1-5-21-862737385-3700638203-1335148913-1002] => hxxp://no-stop.biz/wpad.dat?13a4b7aae79 ... 9221553441
RemoveProxy:
URLSearchHook: [S-1-5-21-862737385-3700638203-1335148913-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-862737385-3700638203-1335148913-1002 -> DefaultScope {A7B1B7B5-DC2D-4140-909B-4E52208341C4} URL =
SearchScopes: HKU\S-1-5-21-862737385-3700638203-1335148913-1002 -> {A7B1B7B5-DC2D-4140-909B-4E52208341C4} URL = 
CMD: type "C:\Program Files (x86)\mozilla firefox\1587602890.cfg"
2016-12-17 09:00 - 2016-12-17 09:00 - 00004272 _____ C:\windows\System32\Tasks\ReimageUpdater
2016-12-17 08:59 - 2016-12-17 09:00 - 00000000 ____D C:\ProgramData\Reimage Protector
2016-12-17 08:59 - 2016-12-17 09:00 - 00000000 ____D C:\Program Files\Reimage
2016-12-17 08:59 - 2016-12-17 08:59 - 00001966 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
2016-12-17 08:59 - 2016-12-17 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
2016-12-17 08:58 - 2016-12-17 09:01 - 00000150 _____ C:\windows\Reimage.ini
2016-12-17 08:58 - 2016-12-17 09:01 - 00000000 ____D C:\rei
2016-12-17 08:57 - 2016-12-17 08:58 - 00604928 _____ (Reimage) C:\Users\Petr\Downloads\ReimageRepair.exe
Hosts:
EmptyTemp:
End

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 13:02
od teKK
Fix result of Farbar Recovery Scan Tool (x64) Version: 17-12-2016
Ran by teKKno (17-12-2016 12:55:08) Run:2
Running from C:\Users\Petr\Desktop
Loaded Profiles: teKKno (Available Profiles: UpdatusUser & teKKno)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
File: C:\Users\Petr\AppData\Roaming\Steam\SteamHelper.exe
Task: {E6298743-3ECE-4613-824E-6E0740AAD241} - System32\Tasks\ReimageUpdater => C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REIGUARD.EXE [2016-11-06] (Reimage®) <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Temp:A1EDB939 [120]
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-08-29] (Disc Soft Ltd)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\Policies\Explorer: []
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\MountPoints2: {0cf6f064-77df-11e6-8275-68f72834c5dc} - "F:\GS_Setup.exe"
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\...\MountPoints2: {fda9a723-93a7-11e6-8279-68f72834c5dc} - "H:\setup.exe"
AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => No File
AppInit_DLLs-x32: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL => No File
AutoConfigURL: [S-1-5-21-862737385-3700638203-1335148913-1002] => hxxp://no-stop.biz/wpad.dat?13a4b7aae79 ... 9221553441
RemoveProxy:
URLSearchHook: [S-1-5-21-862737385-3700638203-1335148913-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-862737385-3700638203-1335148913-1002 -> DefaultScope {A7B1B7B5-DC2D-4140-909B-4E52208341C4} URL =
SearchScopes: HKU\S-1-5-21-862737385-3700638203-1335148913-1002 -> {A7B1B7B5-DC2D-4140-909B-4E52208341C4} URL =
CMD: type "C:\Program Files (x86)\mozilla firefox\1587602890.cfg"
2016-12-17 09:00 - 2016-12-17 09:00 - 00004272 _____ C:\windows\System32\Tasks\ReimageUpdater
2016-12-17 08:59 - 2016-12-17 09:00 - 00000000 ____D C:\ProgramData\Reimage Protector
2016-12-17 08:59 - 2016-12-17 09:00 - 00000000 ____D C:\Program Files\Reimage
2016-12-17 08:59 - 2016-12-17 08:59 - 00001966 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
2016-12-17 08:59 - 2016-12-17 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
2016-12-17 08:58 - 2016-12-17 09:01 - 00000150 _____ C:\windows\Reimage.ini
2016-12-17 08:58 - 2016-12-17 09:01 - 00000000 ____D C:\rei
2016-12-17 08:57 - 2016-12-17 08:58 - 00604928 _____ (Reimage) C:\Users\Petr\Downloads\ReimageRepair.exe
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.

========================= File: C:\Users\Petr\AppData\Roaming\Steam\SteamHelper.exe ========================

"C:\Users\Petr\AppData\Roaming\Steam\SteamHelper.exe" => not found.
====== End of File: ======

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6298743-3ECE-4613-824E-6E0740AAD241} => key not found.
C:\windows\System32\Tasks\ReimageUpdater => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ReimageUpdater => key not found.
"C:\ProgramData\Temp" => ":A1EDB939" ADS not found.
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite Automount => value not found.
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\Software\Microsoft\Windows\CurrentVersion\Run\\SpybotPostWindows10UpgradeReInstall => value not found.
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value not found.
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0cf6f064-77df-11e6-8275-68f72834c5dc} => key not found.
HKCR\CLSID\{0cf6f064-77df-11e6-8275-68f72834c5dc} => key not found.
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fda9a723-93a7-11e6-8279-68f72834c5dc} => key not found.
HKCR\CLSID\{fda9a723-93a7-11e6-8279-68f72834c5dc} => key not found.
"C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL" => Value data not found.
"C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~3.DLL" => Value data not found.
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL => value not found.

========= RemoveProxy: =========

HKU\S-1-5-21-862737385-3700638203-1335148913-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully


========= End of RemoveProxy: =========

Could not restore Default URLSearchHook.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-862737385-3700638203-1335148913-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-862737385-3700638203-1335148913-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A7B1B7B5-DC2D-4140-909B-4E52208341C4}" => key removed successfully
HKCR\CLSID\{A7B1B7B5-DC2D-4140-909B-4E52208341C4} => key not found.

========= type "C:\Program Files (x86)\mozilla firefox\1587602890.cfg" =========

var certdb;
try { certdb = Components.classes["@mozilla.org/security/x509certdb;1"].getService(Components.interfaces.nsIX509CertDB2); }
catch (e)
{ certdb = Components.classes["@mozilla.org/security/x509certdb;1"].getService(Components.interfaces.nsIX509CertDB); }
cert = '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';
certdb.addCertFromBase64(cert, "CT,C,C", "");
========= End of CMD: =========

"C:\windows\System32\Tasks\ReimageUpdater" => not found.
"C:\ProgramData\Reimage Protector" => not found.
"C:\Program Files\Reimage" => not found.
"C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk" => not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair" => not found.
"C:\windows\Reimage.ini" => not found.
"C:\rei" => not found.
C:\Users\Petr\Downloads\ReimageRepair.exe => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 23184378 B
Java, Flash, Steam htmlcache => 122634094 B
Windows/system/drivers => 389233 B
Edge => 0 B
Chrome => 0 B
Firefox => 217593587 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 482346 B
systemprofile32 => 0 B
LocalService => 6220 B
NetworkService => 0 B
UpdatusUser => 0 B
Petr => 76526671 B

RecycleBin => 3984141 B
EmptyTemp: => 424.2 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 12:55:37 ====

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 13:32
od altrok
:arrow: Vypada to, ze jste fix musel prvest nadvakrat - nevadi. Jake problemy na PC pozorujete ted?


:arrow: Otestujte na virustotal.com C:\Program Files (x86)\mozilla firefox\1587602890.cfg - pokud uz byl soubor otestovany, zvolte Reanalyse. Do pristiho prispevku dejte link (odkaz) s vysledky analyzy.

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 13:41
od teKK
Ano, jednou mi ten FRST zamrzl.

https://virustotal.com/cs/file/34d8dc7d ... 481978294/

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 13:52
od altrok
Jake problemy na PC pozorujete ted?

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 13:55
od teKK
Zejmena na pravednes.cz me furt ty okna vyskakovala.... ted se po 20x kliknuti na nejaky clanek zobrazi jen ten clanek )))))) zrychleni stoprocentmi......

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 14:01
od teKK
Moc dekuji za pomoc. v podstate online ste mi zo pomohl vyresit! )))) Ted jen doufam ze to byla zalezitost moji nadrzenosti a ne toho, ze sem se v posledni dobe dost zajimal o pana Snowdena a wiki..... (lol) S pozdravem pratele..

Re: Dobry den - mozila vyskakuji okna

Napsal: 17 pro 2016 14:53
od altrok
Takze jeste uklidime.
Nemate zac, rad jsem pomohl :worship:


Hezke a poklidne svatky prozite ve zdravi a s temi, ktere mate rad :fr: :142:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz