Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím kontrolu logu.

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
KaLaXeL
Návštěvník
Návštěvník
Příspěvky: 60
Registrován: 10 dub 2014 18:33

Prosím kontrolu logu.

#1 Příspěvek od KaLaXeL »

Zdravím, v příloze log z FRST.
Děkuji za odpověď a radu. :)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-01-2017 01
Ran by Lucie (administrator) on LUCIE-PC (29-01-2017 16:38:09)
Running from C:\Users\Lucie\Downloads
Loaded Profiles: Lucie (Available Profiles: Lucie)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.6\ToolbarUpdater.exe
() C:\Program Files (x86)\MyWIFIRouter\bmser.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Huawei) C:\Program Files (x86)\HiSuite\HiSuite.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Huawei) C:\Users\Lucie\AppData\Local\Hisuite\userdata\hwtools\hdbtransport.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-05-26] (Alcor Micro Corp.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [1023616 2012-05-30] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [801920 2012-05-30] (Atheros Commnucations)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3331312 2012-02-24] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-26] (Intel Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5138032 2012-04-02] (VIA)
HKLM-x32\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [102568 2012-02-21] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-20] (CyberLink)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Sweetpacks Communicator] => C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ApnUpdater] => "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2180680 2016-11-12] ()
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\Run: [EA Core] => C:\Program Files (x86)\Electronic Arts\EADM\Core.exe [3325952 2009-03-28] (Electronic Arts)
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\Run: [ROC_JAN2013_TB] => "C:\Program Files (x86)\AVG Secure Search\ROC_JAN2013_TB.exe" /PROMPT /CMPID=JAN2013_TB
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\Run: [Facebook Update] => C:\Users\Lucie\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-03-28] (Facebook Inc.)
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: G - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {01e8e7bd-80f7-11e6-ab33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {01e8e7eb-80f7-11e6-ab33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {e8aab3ec-9dd3-11e6-aa33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {f3180335-f0d5-11e3-86ed-3085a980afd2} - G:\setup_vmb_lite.exe /checkApplicationPresence
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166568 2014-07-02] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-07-02] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-06-16]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Update ESET's license.lnk [2014-07-31]
ShortcutTarget: Update ESET's license.lnk -> C:\Program Files (x86)\ESET\MiNODLogin\launcher.exe (No File)
Startup: C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk [2014-10-13]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AF85B725-851E-423D-9A4B-4F7BB97B0ED4}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={E97384ED-5477-4E19-8263-E9C5BA5DBC55}&mid=06351d3e493b47d08469e1ccef644621-39fbb058a9cb49f8c06cd5c53d1684bf5614f93d&lang=en&ds=AVG&coid=avgtbavg&cmpid=0915wt&pr=sa&d=2015-09-09 10:35:24&v=4.3.1.831&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
URLSearchHook: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 - (No Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - No File
URLSearchHook: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll No File
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={F297B218-2B1F-11E2-BF1C-3085A980AFD2}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={F297B218-2B1F-11E2-BF1C-3085A980AFD2}
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={E97384ED-5477-4E19-8263-E9C5BA5DBC55}&mid=06351d3e493b47d08469e1ccef644621-39fbb058a9cb49f8c06cd5c53d1684bf5614f93d&lang=en&ds=AVG&coid=avgtbavg&cmpid=0915tb&pr=sa&d=2015-09-09 10:35:24&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={E97384ED-5477-4E19-8263-E9C5BA5DBC55}&mid=06351d3e493b47d08469e1ccef644621-39fbb058a9cb49f8c06cd5c53d1684bf5614f93d&lang=en&ds=AVG&coid=avgtbavg&cmpid=0915tb&pr=sa&d=2015-09-09 10:35:24&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> {ED050794-68C5-4FED-9CE1-2725FD405D4C} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ATU2&o=14670&src=kw&q={searchTerms}&locale=&apn_ptnrs=T8&apn_dtid=YYYYYYYYCZ&apn_uid=b3a623bd-f7c8-431f-ae18-90067931ba8e&apn_sauid=204FC15A-6B2B-46D3-8734-8E671FB02678
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&st=6&barid={F297B218-2B1F-11E2-BF1C-3085A980AFD2}
BHO: No Name -> {4154552D-5341-5400-76A7-7A786E7484D7} -> No File
BHO: No Name -> {41545534-0076-A76A-76A7-7A786E7484D7} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20121109110134.dll => No File
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll => No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-16] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-23] (Oracle Corporation)
BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20121109110134.dll => No File
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-05-30] (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.6.255\AVG Web TuneUp.dll [2016-11-12] (AVG)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-23] (Oracle Corporation)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll No File
Toolbar: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> No Name - {4154552D-5341-5400-76A7-7A786E7484D7} - No File
Toolbar: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> No Name - {41545534-0076-A76A-76A7-7A786E7484D7} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default [2016-12-23]
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\yvx8jvrc.default ->
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\yvx8jvrc.default -> Ask Search
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\yvx8jvrc.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\yvx8jvrc.default -> Bing
FF Homepage: Mozilla\Firefox\Profiles\yvx8jvrc.default -> hxxps://mysearch.avg.com/?cid={E97384ED-5477-4E19-8263-E9C5BA5DBC55}&mid=06351d3e493b47d08469e1ccef644621-39fbb058a9cb49f8c06cd5c53d1684bf5614f93d&lang=en&ds=AVG&coid=avgtbavg&cmpid=0915wt&pr=sa&d=2015-09-09 10:35:24&v=4.2.1.951&pid=wtu&sg=&sap=hp
FF Keyword.URL: Mozilla\Firefox\Profiles\yvx8jvrc.default -> hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF Extension: (AVG Web TuneUp) - C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default\Extensions\avg@toolbar.xpi [2016-11-12]
FF SearchPlugin: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default\searchplugins\ask-search.xml [2015-01-04]
FF SearchPlugin: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default\searchplugins\askcom.xml [2012-08-08]
FF SearchPlugin: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default\searchplugins\avg-secure-search.xml [2017-01-12]
FF SearchPlugin: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default\searchplugins\bingp.xml [2015-01-03]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: (McAfee Security Scan Plus) - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] [not signed]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml [2013-01-05]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\wtu-secure-search.xml [2016-11-12]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-05] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-05] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.6\\npsitesafety.dll [No File]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-2891975063-4093424103-33966677-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Lucie\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> search.ask.com/?gct=hp
CHR DefaultSearchURL: Profile 1 -> hxxp://www.search.ask.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> search.ask.com
CHR DefaultSuggestURL: Profile 1 -> hxxp://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms}
CHR Profile: C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default [2016-11-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-11-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-27]
CHR Profile: C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-01-29]
CHR Extension: (Disk Google) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-23]
CHR Extension: (YouTube) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-23]
CHR Extension: (Chrome Media Router) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR HKLM\...\Chrome\Extension: [aaaaadgepjkdffhjbkfjgnnffnfcffbg] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2891975063-4093424103-33966677-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [aaaaadgepjkdffhjbkfjgnnffnfcffbg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [aaaapoomnboffjcgcebabolakmhbblbk] - C:\Users\Lucie\AppData\Local\APN\GoogleCRXs\aaaapoomnboffjcgcebabolakmhbblbk_7.17.0.0.crx [2012-11-14]
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [119424 2012-05-30] (Atheros Commnucations) [File not signed]
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [971160 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5337600 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [725976 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-03-07] ()
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2016-08-26] () [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-03-23] (VIA Technologies, Inc.)
R2 vToolbarUpdater40.3.6; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.6\ToolbarUpdater.exe [1349704 2016-11-12] (AVG Secure Search)
R2 WIFIGXENDHCPSER; C:\Program Files (x86)\MyWIFIRouter\bmser.exe [1656416 2013-12-12] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [980552 2016-11-12] ()
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [327296 2012-05-30] (Atheros) [File not signed]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2012-04-11] (Windows (R) Win 7 DDK provider)
R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2012-04-11] (Windows (R) Win 7 DDK provider)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312576 2016-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [254208 2016-09-26] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [299264 2016-07-27] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-11-17] (DT Soft Ltd)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18816 2016-05-25] (Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-05-25] (Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S1 prodrv06; C:\Windows\SysWOW64\drivers\prodrv06.sys [52224 2004-01-26] (Protection Technology) [File not signed]
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [95552 2004-01-26] (Protection Technology) [File not signed]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [File not signed]
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-01-29 16:38 - 2017-01-29 16:43 - 00034417 _____ C:\Users\Lucie\Downloads\FRST.txt
2017-01-29 16:37 - 2017-01-29 16:38 - 00000000 ____D C:\FRST
2017-01-29 16:36 - 2017-01-29 16:37 - 02420736 _____ (Farbar) C:\Users\Lucie\Downloads\FRST64.exe
2017-01-20 15:13 - 2017-01-20 15:54 - 735147942 _____ C:\Users\Lucie\Downloads\Prci-prci-prcičky-5-Nahá-míle-CZ-dabing-Rudolfhoos.avi
2017-01-20 14:23 - 2017-01-20 17:23 - 00000404 _____ C:\Windows\Tasks\AVG-SSU_0117tb_RML.job
2017-01-20 14:23 - 2017-01-20 16:23 - 00002898 _____ C:\Windows\System32\Tasks\AVG-SSU_0117tb_RML
2017-01-20 14:22 - 2017-01-20 17:33 - 00000570 _____ C:\Windows\Tasks\AVG-SSU_0117tb.job
2017-01-20 14:22 - 2017-01-20 14:22 - 00002934 _____ C:\Windows\System32\Tasks\AVG-SSU_0117tb_DELETE
2017-01-20 14:22 - 2017-01-20 14:22 - 00002866 _____ C:\Windows\System32\Tasks\AVG-SSU_0117tb
2017-01-20 14:22 - 2017-01-20 14:22 - 00000432 _____ C:\Windows\Tasks\AVG-SSU_0117tb_DELETE.job
2017-01-20 14:22 - 2017-01-20 14:22 - 00000000 ____D C:\ProgramData\Avg_Update_0117tb
2017-01-19 17:02 - 2017-01-19 17:43 - 722188288 _____ C:\Users\Lucie\Downloads\02-Prci,-prci,-prcičky-2.avi
2017-01-11 09:22 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-11 09:22 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-11 09:22 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-01-11 09:22 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-01-11 09:22 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-11 09:22 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-11 09:22 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-11 09:22 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-11 09:22 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-11 09:22 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-01-11 09:22 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-01-05 11:20 - 2017-01-05 12:01 - 733188096 _____ C:\Users\Lucie\Downloads\Špion-2015-cz-dabing-Jason-Statham-komedie.avi
2017-01-05 10:11 - 2017-01-05 10:58 - 848582324 _____ C:\Users\Lucie\Downloads\Stážista-2015-cz-dabing.avi
2017-01-04 23:08 - 2017-01-04 23:41 - 608628540 _____ C:\Users\Lucie\Downloads\Dámy-nebo-nedá-mi-cz.avi
2017-01-03 15:08 - 2017-01-03 16:04 - 986071452 _____ C:\Users\Lucie\Downloads\Spravni-chlapi-novinka-2016-cz-dabing.avi
2017-01-03 12:44 - 2017-01-03 13:23 - 698446178 _____ C:\Users\Lucie\Downloads\Polednice-2016-cz-[natu3].avi
2017-01-01 16:26 - 2017-01-01 16:32 - 57780311 _____ C:\Users\Lucie\Downloads\Můj-film.wmv

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-01-29 16:43 - 2015-07-15 22:24 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf44af3eb9e1.job
2017-01-29 16:32 - 2013-01-05 12:12 - 00000000 ____D C:\ProgramData\MFAData
2017-01-29 16:31 - 2015-08-30 14:38 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0e32937f8fad8.job
2017-01-29 16:31 - 2011-02-19 06:36 - 00672408 _____ C:\Windows\system32\perfh005.dat
2017-01-29 16:31 - 2011-02-19 06:36 - 00142972 _____ C:\Windows\system32\perfc005.dat
2017-01-29 16:31 - 2009-07-14 06:13 - 01593302 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-29 16:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-01-29 16:30 - 2014-02-17 08:00 - 00000000 ____D C:\Users\Lucie\AppData\Roaming\Skype
2017-01-29 16:29 - 2015-05-15 15:50 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f1e74dc9bfd.job
2017-01-29 16:29 - 2014-03-28 15:05 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001UA.job
2017-01-29 16:29 - 2012-11-19 18:10 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-01-29 16:29 - 2012-11-08 23:58 - 00000387 _____ C:\Users\Lucie\AppData\Roaming\sp_data.sys
2017-01-29 16:24 - 2016-02-03 06:43 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d15e45c9467eb0.job
2017-01-29 16:24 - 2015-12-05 09:25 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d12f36886cff46.job
2017-01-29 16:24 - 2015-02-04 06:11 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d040393c4f0f4.job
2017-01-29 16:24 - 2012-11-19 18:12 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2017-01-25 18:17 - 2016-12-12 15:43 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2017-01-25 18:17 - 2012-11-19 18:12 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2017-01-25 15:10 - 2014-03-28 15:05 - 00000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001Core.job
2017-01-25 14:01 - 2015-05-15 15:50 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f1e74b36882.job
2017-01-25 07:30 - 2009-07-14 05:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-25 07:30 - 2009-07-14 05:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-23 14:43 - 2012-11-27 19:55 - 00000000 ____D C:\Users\Lucie\AppData\Local\CrashDumps
2017-01-23 13:23 - 2012-07-31 20:28 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2017-01-18 16:21 - 2016-12-12 15:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-01-13 12:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-01-12 08:31 - 2012-11-09 00:01 - 00000000 ____D C:\Users\Lucie\Documents\Bluetooth Folder
2017-01-12 08:29 - 2013-01-30 16:19 - 00000354 _____ C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job
2017-01-12 08:29 - 2012-07-31 20:28 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2017-01-12 08:27 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-12 08:07 - 2013-08-06 09:54 - 00000000 ____D C:\Windows\system32\MRT
2017-01-12 08:01 - 2012-11-09 02:02 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-10 23:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2017-01-02 17:25 - 2016-12-12 15:26 - 00000000 ____D C:\Users\Lucie\AppData\Local\Avg

==================== Files in the root of some directories =======

2012-11-08 23:58 - 2017-01-29 16:29 - 0000387 _____ () C:\Users\Lucie\AppData\Roaming\sp_data.sys
2013-07-20 12:48 - 2016-12-28 13:07 - 0007680 _____ () C:\Users\Lucie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-02-24 12:55 - 2010-10-06 18:45 - 0131984 _____ () C:\ProgramData\FullRemove.exe
2012-07-31 20:54 - 2012-07-31 20:55 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2012-07-31 20:53 - 2012-07-31 20:54 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2012-07-31 20:53 - 2012-07-31 20:53 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

Some files in TEMP:
====================
2013-03-04 23:32 - 2014-12-19 16:34 - 0666520 _____ (Ask Partner Network) C:\Users\Lucie\AppData\Local\Temp\APNSetup.exe
2015-04-23 19:02 - 2015-04-23 19:04 - 17172816 _____ (DsNET Corp ) C:\Users\Lucie\AppData\Local\Temp\atcMedia3111429819367.exe
2012-11-29 06:05 - 2012-11-29 06:06 - 8929280 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD11AC.exe
2015-08-20 14:08 - 2015-08-20 14:09 - 15536128 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD11AD.exe
2015-07-16 08:32 - 2015-07-16 08:32 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1277.exe
2012-12-28 10:23 - 2012-12-28 10:23 - 0552960 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1286.exe
2014-01-06 06:05 - 2014-01-06 06:09 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD13ED.exe
2014-01-16 06:17 - 2014-01-16 06:17 - 0468992 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD17A4.exe
2016-06-18 14:00 - 2016-06-18 14:00 - 7688192 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD17C4.exe
2016-12-12 15:33 - 2016-12-12 15:34 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD19D6.exe
2013-03-20 19:12 - 2013-03-20 19:13 - 7129088 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD19E6.exe
2013-12-10 19:45 - 2013-12-10 19:45 - 0524288 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1B4.exe
2014-02-15 12:46 - 2014-02-15 12:46 - 0299008 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1FA0.exe
2014-05-03 07:57 - 2014-05-03 07:57 - 0690176 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1FDE.exe
2013-02-28 19:06 - 2013-02-28 19:06 - 1544192 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD20D8.exe
2014-06-10 20:43 - 2014-06-10 20:43 - 0651264 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD226E.exe
2012-12-05 18:40 - 2012-12-05 18:41 - 1042432 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2422.exe
2014-12-13 09:11 - 2014-12-13 09:11 - 0354304 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD24ED.exe
2017-01-12 08:30 - 2017-01-12 08:31 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD256A.exe
2016-02-11 11:29 - 2016-02-11 11:30 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD25B8.exe
2012-12-08 07:45 - 2012-12-08 07:45 - 0505856 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2664.exe
2015-11-13 21:06 - 2015-11-13 21:06 - 4163584 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD27CB.exe
2012-12-04 20:34 - 2012-12-04 20:34 - 0493568 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD29CE.exe
2012-12-13 19:25 - 2012-12-13 19:25 - 0307200 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2CD9.exe
2014-08-29 14:10 - 2014-08-29 14:10 - 2351104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2CDA.exe
2014-04-23 12:22 - 2014-04-23 12:22 - 0770048 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2DC3.exe
2013-01-15 20:14 - 2013-01-15 20:15 - 3885056 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD30CF.exe
2013-01-11 06:16 - 2013-01-11 06:16 - 5009408 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3581.exe
2012-11-30 23:19 - 2012-11-30 23:19 - 0200704 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3745.exe
2013-12-17 06:07 - 2013-12-17 06:07 - 0624640 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3783.exe
2013-09-12 17:16 - 2013-09-12 17:16 - 0276480 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD389C.exe
2015-07-18 10:42 - 2015-07-18 10:42 - 3926016 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3996.exe
2012-11-29 19:08 - 2012-11-29 19:09 - 3713024 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3A32.exe
2012-11-28 19:10 - 2012-11-28 19:10 - 2119680 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3D6.exe
2012-12-08 10:41 - 2012-12-08 10:41 - 0483328 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3D7.exe
2016-11-12 16:56 - 2016-11-12 16:56 - 14600192 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3D8.exe
2014-06-10 20:49 - 2014-06-10 20:49 - 0434176 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3FAE.exe
2012-12-02 09:49 - 2012-12-02 09:50 - 8486912 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD428B.exe
2013-01-02 08:56 - 2013-01-02 08:56 - 0757760 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD48E1.exe
2013-04-25 14:36 - 2013-04-25 14:36 - 0692224 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4A58.exe
2013-06-14 17:49 - 2013-06-14 17:49 - 0700416 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4AB5.exe
2015-02-13 16:03 - 2015-02-13 16:03 - 0862208 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4B42.exe
2015-03-26 15:53 - 2015-03-26 16:01 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4BE7.exe
2012-12-15 09:53 - 2012-12-15 09:53 - 0292864 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4D64.exe
2016-12-27 14:55 - 2016-12-27 14:55 - 10004480 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4E0F.exe
2016-03-26 17:55 - 2016-03-26 17:55 - 8302592 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4FA5.exe
2014-03-15 09:40 - 2014-03-15 09:40 - 2281472 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD50CD.exe
2015-02-28 16:30 - 2015-02-28 16:30 - 0737280 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD51E.exe
2013-01-01 16:26 - 2013-01-01 16:26 - 0563200 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD5C13.exe
2013-12-19 10:39 - 2013-12-19 10:45 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD5C32.exe
2012-12-11 16:35 - 2012-12-11 16:35 - 1439744 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD5CA0.exe
2015-11-14 15:45 - 2015-11-14 15:45 - 9316352 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD5DE7.exe
2013-01-13 09:29 - 2013-01-13 09:31 - 12879872 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6029.exe
2014-06-14 12:25 - 2014-06-14 12:25 - 2136064 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD60B5.exe
2015-12-25 12:07 - 2015-12-25 12:07 - 13803520 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD61AE.exe
2014-05-25 16:09 - 2014-05-25 16:09 - 5976064 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD622B.exe
2012-12-11 19:44 - 2012-12-11 19:49 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6315.exe
2013-01-30 16:20 - 2013-01-30 16:21 - 6518784 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6373.exe
2012-12-07 06:08 - 2012-12-07 06:09 - 2328576 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6382.exe
2015-05-23 10:21 - 2015-05-23 10:22 - 13428736 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD63B1.exe
2014-01-24 16:37 - 2014-01-24 16:37 - 0815104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6558.exe
2012-12-14 14:25 - 2012-12-14 14:25 - 0145408 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD69E8.exe
2012-12-10 06:29 - 2012-12-10 06:29 - 1054720 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD69F8.exe
2012-12-09 11:04 - 2012-12-09 11:09 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6A94.exe
2015-09-11 19:30 - 2015-09-11 19:31 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6BBD.exe
2014-03-08 08:17 - 2014-03-08 08:17 - 3166208 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6D23.exe
2013-03-14 16:45 - 2013-03-14 16:45 - 0364544 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6E9A.exe
2016-04-14 10:57 - 2016-04-14 10:57 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6F2.exe
2015-05-14 06:00 - 2015-05-14 06:00 - 2461696 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6FD2.exe
2014-03-24 10:00 - 2014-03-24 10:01 - 0227366 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD7158.exe
2016-05-12 13:52 - 2016-05-12 13:52 - 13103104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD7213.exe
2013-01-04 14:18 - 2013-01-04 14:19 - 2652160 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD76C4.exe
2016-07-17 18:16 - 2016-07-17 18:16 - 4272128 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD7879.exe
2016-03-10 17:41 - 2016-03-10 17:42 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD7FFA.exe
2013-09-14 15:07 - 2013-09-14 15:07 - 2725888 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD80C3.exe
2013-08-18 12:53 - 2013-08-18 12:53 - 0227328 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD80D2.exe
2016-12-15 21:02 - 2016-12-15 21:02 - 46940160 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD85B2.exe
2016-11-09 18:47 - 2016-11-09 18:47 - 9684992 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD867D.exe
2012-12-03 11:10 - 2012-12-03 11:13 - 31690752 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD878.exe
2013-06-08 09:10 - 2013-06-08 09:10 - 0616448 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD87A5.exe
2012-12-04 16:20 - 2012-12-04 16:22 - 14278656 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD87C5.exe
2016-12-23 18:13 - 2016-12-23 18:13 - 4130816 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD8A92.exe
2014-08-06 12:05 - 2014-08-06 12:05 - 0360448 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD8D12.exe
2014-06-16 13:31 - 2014-06-16 13:31 - 1034240 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9137.exe
2013-04-10 17:39 - 2013-04-10 17:39 - 0311296 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD95B9.exe
2013-11-15 10:29 - 2013-11-15 10:29 - 3203072 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD95E8.exe
2012-12-20 09:44 - 2012-12-20 09:44 - 0169984 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD96B3.exe
2016-09-22 20:05 - 2016-09-22 20:05 - 4626432 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD97BC.exe
2012-12-06 15:34 - 2012-12-06 15:34 - 0901120 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9829.exe
2014-09-12 14:30 - 2014-09-12 14:31 - 2844672 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9942.exe
2013-01-10 06:07 - 2013-01-10 06:08 - 0872448 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9DC4.exe
2017-01-07 21:45 - 2017-01-07 21:45 - 1521664 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9E03.exe
2017-01-10 23:04 - 2017-01-10 23:05 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA063.exe
2015-12-25 11:27 - 2015-12-25 11:27 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA533.exe
2013-07-11 09:20 - 2013-07-11 09:20 - 6275072 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA68B.exe
2013-12-11 06:41 - 2013-12-11 06:41 - 0440320 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA9A.exe
2013-07-14 15:49 - 2013-07-14 15:49 - 0548864 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA9E5.exe
2013-12-12 15:36 - 2013-12-12 15:40 - 24846336 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADABB9.exe
2014-08-16 15:25 - 2014-08-16 15:30 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADADAC.exe
2012-12-01 08:44 - 2012-12-01 08:44 - 0983040 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADAE09.exe
2012-12-12 16:31 - 2012-12-12 16:31 - 1824768 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADAFBE.exe
2013-10-29 14:37 - 2013-10-29 14:38 - 3026944 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB079.exe
2016-09-21 12:37 - 2016-09-21 12:38 - 23955456 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB3C5.exe
2013-01-05 14:51 - 2013-01-05 14:51 - 1591296 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB4EC.exe
2013-05-24 12:11 - 2013-05-24 12:11 - 0315392 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB598.exe
2012-12-17 13:05 - 2012-12-17 13:11 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB5A7.exe
2015-09-12 14:30 - 2015-09-12 14:30 - 19042304 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB634.exe
2014-10-18 08:22 - 2014-10-18 08:22 - 4282368 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB636.exe
2014-10-29 06:09 - 2014-10-29 06:09 - 4009984 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB846.exe
2013-02-13 09:08 - 2013-02-13 09:09 - 3209216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB856.exe
2013-10-12 11:52 - 2013-10-12 11:52 - 0378880 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADBA78.exe
2013-03-17 18:18 - 2013-03-17 18:18 - 0753664 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADBC9A.exe
2015-04-18 12:28 - 2015-04-18 12:28 - 1570816 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADBF19.exe
2014-04-02 17:40 - 2014-04-02 17:40 - 0972800 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC01.exe
2012-12-29 21:15 - 2012-12-29 21:15 - 0430080 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC071.exe
2016-01-14 10:51 - 2016-01-14 10:51 - 28043264 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC245.exe
2015-03-04 21:24 - 2015-03-04 21:26 - 13172736 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC2C1.exe
2016-05-26 21:51 - 2016-05-26 21:51 - 29833216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC2C2.exe
2014-10-19 09:26 - 2014-10-19 09:27 - 1116160 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC310.exe
2015-01-15 16:53 - 2015-01-15 16:54 - 7231488 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC419.exe
2013-12-14 00:52 - 2013-12-14 00:52 - 0491520 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC5ED.exe
2015-06-13 17:56 - 2015-06-13 17:56 - 18704384 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC68A.exe
2016-03-26 14:58 - 2016-03-26 14:59 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC773.exe
2013-04-30 14:24 - 2013-04-30 14:24 - 0493568 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC7B1.exe
2016-09-14 09:24 - 2016-09-14 09:25 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC908.exe
2015-03-02 06:34 - 2015-03-02 06:34 - 3663872 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCBA7.exe
2015-09-10 17:34 - 2015-09-10 17:35 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCCB1.exe
2014-08-15 14:20 - 2014-08-15 14:20 - 0972800 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCCC.exe
2016-12-12 17:02 - 2016-12-12 17:02 - 20019200 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCCC0.exe
2016-08-02 07:05 - 2016-08-02 07:05 - 1839104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCDF3.exe
2014-07-16 02:33 - 2014-07-16 02:34 - 1552384 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCE65.exe
2015-07-22 03:53 - 2015-07-22 03:53 - 38637568 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCE75.exe
2013-09-28 08:20 - 2013-09-28 08:20 - 3483648 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCF6E.exe
2013-03-18 15:34 - 2013-03-18 15:34 - 0270336 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD060.exe
2015-12-19 16:22 - 2015-12-19 16:22 - 4812800 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD2E8.exe
2012-11-28 16:25 - 2012-11-28 16:30 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD6ED.exe
2016-10-13 10:04 - 2016-10-13 10:04 - 9504768 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD864.exe
2013-01-03 16:27 - 2013-01-03 16:30 - 31111168 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD8E0.exe
2012-12-20 19:20 - 2012-12-20 19:20 - 0309248 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDAC4.exe
2013-01-08 16:29 - 2013-01-08 16:31 - 9498624 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDAD4.exe
2016-08-31 08:53 - 2016-08-31 08:53 - 6029312 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDB31.exe
2014-04-08 20:51 - 2014-04-08 20:51 - 1748992 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDE3D.exe
2013-03-28 09:58 - 2013-03-28 09:58 - 0274432 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDE3E.exe
2014-12-11 06:46 - 2014-12-11 06:46 - 0315392 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDEAA.exe
2013-05-09 17:58 - 2013-05-09 17:58 - 0565248 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE091.exe
2015-07-23 13:29 - 2015-07-23 13:29 - 25427968 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE0EB.exe
2014-04-10 14:23 - 2014-04-10 14:31 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE159.exe
2012-11-27 19:53 - 2012-11-27 20:00 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE16C.exe
2016-01-02 14:57 - 2016-01-02 14:57 - 32309248 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE197.exe
2014-11-13 06:55 - 2014-11-13 06:55 - 2121728 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE2CF.exe
2012-12-13 16:24 - 2012-12-13 16:24 - 1947648 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE32D.exe
2012-11-30 18:58 - 2012-11-30 18:59 - 4878336 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE474.exe
2014-07-31 01:49 - 2014-07-31 01:49 - 6787072 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE510.exe
2015-03-29 12:35 - 2015-03-29 12:41 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE61.exe
2012-12-05 06:09 - 2012-12-05 06:09 - 0471040 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE648.exe
2013-12-04 14:59 - 2013-12-04 15:00 - 6785024 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE7E7.exe
2012-12-16 10:05 - 2012-12-16 10:06 - 1361920 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE7FD.exe
2014-07-31 02:26 - 2014-07-31 02:26 - 1974272 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE8C8.exe
2016-10-26 09:57 - 2016-10-26 09:58 - 17938432 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE8C9.exe
2016-10-29 13:34 - 2016-10-29 13:34 - 18386944 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE8CA.exe
2015-04-19 14:33 - 2015-04-19 14:33 - 0675840 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE9A0.exe
2013-01-17 21:58 - 2013-01-17 21:58 - 1210368 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE9E9.exe
2013-01-07 15:23 - 2013-01-07 15:26 - 22011904 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEACB.exe
2012-12-03 17:35 - 2012-12-03 17:36 - 9263104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEB19.exe
2013-04-10 16:52 - 2013-04-10 16:52 - 0610304 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEB96.exe
2016-08-16 12:00 - 2016-08-16 12:00 - 8708096 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEC03.exe
2012-12-24 22:58 - 2012-12-24 22:58 - 1257472 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADECFC.exe
2012-12-05 16:19 - 2012-12-05 16:21 - 12625920 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADED0C.exe
2013-02-16 00:50 - 2013-02-16 00:50 - 3045376 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEEE0.exe
2015-08-13 14:45 - 2015-08-13 14:46 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEF6D.exe
2016-05-08 11:00 - 2016-05-08 11:00 - 14227456 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEF8C.exe
2014-11-20 15:05 - 2014-11-20 15:05 - 0313344 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF17F.exe
2012-12-16 19:18 - 2012-12-16 19:18 - 1331200 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF1BD.exe
2013-06-18 17:56 - 2013-06-18 17:56 - 0393216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF2A7.exe
2012-12-06 06:09 - 2012-12-06 06:09 - 0679936 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF305.exe
2013-01-09 15:24 - 2013-01-09 15:30 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF372.exe
2012-12-09 16:24 - 2012-12-09 16:24 - 0415744 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF3EF.exe
2016-06-17 10:07 - 2016-06-17 10:07 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF41E.exe
2015-12-09 12:16 - 2015-12-09 12:17 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF4D9.exe
2012-12-10 15:31 - 2012-12-10 15:34 - 28598272 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF4E8.exe
2012-12-04 06:11 - 2012-12-04 06:11 - 0579584 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF749.exe
2014-05-10 09:16 - 2014-05-10 09:17 - 3889152 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF890.exe
2016-07-06 10:02 - 2016-07-06 10:02 - 10670080 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF8FE.exe
2012-11-30 14:18 - 2012-11-30 14:19 - 7487488 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADFD22.exe
2014-05-16 08:37 - 2014-05-16 08:37 - 0937984 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADFD61.exe
2013-02-06 20:32 - 2013-02-06 20:32 - 1004608 _____ (Solid State Networks) C:\Users\Lucie\AppData\Local\Temp\install_flashplayer11x32_mssa_aih.exe
2014-09-29 18:06 - 2014-09-29 18:06 - 0937896 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
2016-07-21 16:02 - 2016-07-21 16:02 - 0741440 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u101-windows-au.exe
2016-10-19 12:02 - 2016-10-19 12:02 - 0737856 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u111-windows-au.exe
2017-01-17 23:02 - 2017-01-17 23:02 - 0739904 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u121-windows-au.exe
2015-05-01 00:37 - 2015-05-01 00:37 - 0562272 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u45-windows-au.exe
2015-08-30 14:36 - 2015-08-30 14:37 - 0585824 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u60-windows-au.exe
2015-10-21 12:02 - 2015-10-21 12:02 - 0585824 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u65-windows-au.exe
2015-11-22 20:02 - 2015-11-22 20:02 - 0585824 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u66-windows-au.exe
2016-01-19 23:02 - 2016-01-19 23:02 - 0644704 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u71-windows-au.exe
2016-02-07 19:42 - 2016-02-07 19:42 - 0736352 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u73-windows-au.exe
2016-04-23 17:02 - 2016-06-26 03:40 - 0739904 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u91-windows-au.exe
2014-08-17 20:35 - 2014-08-17 20:43 - 0016815 _____ () C:\Users\Lucie\AppData\Local\Temp\KMP_3.9.0.126.exe
2012-03-22 23:18 - 2012-03-22 23:18 - 0524096 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\Nv3DVisionIePlugin64.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0362304 _____ () C:\Users\Lucie\AppData\Local\Temp\nv3DVStreaming.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0694080 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvSCPAPI.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0789312 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvSCPAPI64.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0154944 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvStereoApiI.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0187200 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvStereoApiI64.dll
2012-03-22 23:19 - 2012-03-22 23:19 - 0590656 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvStInst.exe
2014-07-31 01:21 - 2014-07-31 01:21 - 0021888 _____ () C:\Users\Lucie\AppData\Local\Temp\ochelper.exe
2013-02-21 11:09 - 2013-02-21 11:09 - 3085904 _____ () C:\Users\Lucie\AppData\Local\Temp\oi_{B9DA95FE-7E27-42AF-A6EE-DBBCCCCE86C1}.exe
2014-07-31 01:21 - 2014-07-31 01:21 - 1281456 _____ (Ask.com) C:\Users\Lucie\AppData\Local\Temp\PIPInstaller_PTV_.exe
2013-02-19 16:37 - 2013-02-19 16:32 - 3971208 _____ (Ask) C:\Users\Lucie\AppData\Local\Temp\setup.exe
2012-11-10 11:18 - 2012-11-10 11:18 - 2962432 _____ (SweetIM Technologies Lt) C:\Users\Lucie\AppData\Local\Temp\SIMEEI2Installer.exe
2012-11-10 11:18 - 2012-11-10 11:18 - 3380216 _____ (SweetIM Technologies Lt) C:\Users\Lucie\AppData\Local\Temp\SIMEEIInstaller.exe
2013-02-03 18:27 - 2013-01-30 16:19 - 1014448 _____ () C:\Users\Lucie\AppData\Local\Temp\UNINSTALL.EXE
2014-01-07 06:27 - 2014-01-07 06:27 - 0363576 _____ () C:\Users\Lucie\AppData\Local\Temp\winpcap4.1.3repark.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-01-24 15:48

==================== End of FRST.txt ============================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119672
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím kontrolu logu.

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
KaLaXeL
Návštěvník
Návštěvník
Příspěvky: 60
Registrován: 10 dub 2014 18:33

Re: Prosím kontrolu logu.

#3 Příspěvek od KaLaXeL »

# AdwCleaner v6.043 - Log vytvořen 29/01/2017 v 17:23:42
# Aktualizováno dne 27/01/2017 z Malwarebytes
# Databáze : 2017-01-28.2 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Lucie - LUCIE-PC
# Spuštěno z : C:\Users\Lucie\Downloads\adwcleaner_6.043.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Složky ] *****

[-] Složka smazána: C:\ProgramData\Avg_Update_0117tb
[-] Složka smazána: C:\ProgramData\Avg_Update_0814tb
[-] Složka smazána: C:\Users\Lucie\AppData\Local\apn
[-] Složka smazána: C:\Users\Lucie\AppData\LocalLow\AskToolbar
[-] Složka smazána: C:\Users\Lucie\AppData\LocalLow\AVG Secure Search
[-] Složka smazána: C:\Users\Lucie\AppData\Roaming\OpenCandy
[-] Složka smazána: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default\SweetPacksToolbarData
[-] Složka smazána: C:\ProgramData\apn
[-] Složka smazána: C:\ProgramData\Ask
[-] Složka smazána: C:\ProgramData\SweetIM
[#] Složka smazána po restartu: C:\ProgramData\Application Data\apn
[#] Složka smazána po restartu: C:\ProgramData\Application Data\Ask
[#] Složka smazána po restartu: C:\ProgramData\Application Data\SweetIM
[-] Složka smazána: C:\Program Files (x86)\AVG Security Toolbar
[-] Složka smazána: C:\Program Files (x86)\SweetIM
[-] Složka smazána: C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
[-] Složka smazána: C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
[-] Složka smazána: C:\Users\Lucie\AppData\Local\Temp\apn
[-] Složka smazána: C:\Users\Lucie\AppData\Local\Temp\APN-Stub
[-] Složka smazána: C:\Users\Lucie\AppData\Local\Temp\AskSearch
[-] Složka smazána: C:\Users\Lucie\AppData\Local\Temp\APNLogs


***** [ Soubory ] *****

[-] Soubor smazán: C:\Windows\SysNative\roboot64.exe
[-] Soubor smazán: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default\searchplugins\Askcom.xml
[-] Soubor smazán: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default\searchplugins\ask-search.xml
[-] Soubor smazán: C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml
[-] Soubor smazán: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default\searchplugins\bingp.xml
[-] Soubor smazán: C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[#] Soubor smazán: C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml
[#] Soubor smazán: C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[#] Soubor smazán: C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml
[#] Soubor smazán: C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****

[-] Úloha smazána: Scheduled Update for Ask Toolbar
[-] Úloha smazána: Scheduled Update for Ask Toolbar


***** [ Registry ] *****

[-] Klíč smazán: HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
[-] Klíč smazán: HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
[-] Klíč smazán: HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
[-] Klíč smazán: HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\sim-packages
[-] Klíč smazán: HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
[-] Klíč smazán: HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook
[-] Klíč smazán: HKLM\SOFTWARE\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Toolbar3.SWEETIE
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Toolbar3.SWEETIE.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\sim-packages
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Toolbar3.SWEETIE
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Toolbar3.SWEETIE.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-] Hodnota smazána: HKU\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks [{D8278076-BC68-4484-9233-6E7F1628B56C}]
[-] Hodnota smazána: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
[-] Hodnota smazána: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{D8278076-BC68-4484-9233-6E7F1628B56C}]
[-] Klíč smazán: HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Klíč smazán: HKU\.DEFAULT\Software\AVG Secure Search
[-] Klíč smazán: HKU\.DEFAULT\Software\VNT
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\APN
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\APN PIP
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Ask.com
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\SweetIM
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\USyndication
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\usyndication.com
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\AppDataLow\Software\AskToolbar
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2891975063-4093424103-33966677-1001\Software\AskPartnerNetwork
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2891975063-4093424103-33966677-1001\Software\SweetIM
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\AskPartnerNetwork
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\AVG Secure Search
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\VNT
[#] Klíč smazán po restartu: HKCU\Software\APN
[#] Klíč smazán po restartu: HKCU\Software\APN PIP
[#] Klíč smazán po restartu: HKCU\Software\Ask.com
[#] Klíč smazán po restartu: HKCU\Software\SweetIM
[#] Klíč smazán po restartu: HKCU\Software\USyndication
[#] Klíč smazán po restartu: HKCU\Software\usyndication.com
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\AskToolbar
[-] Klíč smazán: HKLM\SOFTWARE\APN
[-] Klíč smazán: HKLM\SOFTWARE\AskToolbar
[-] Klíč smazán: HKLM\SOFTWARE\PIP
[-] Klíč smazán: HKLM\SOFTWARE\SweetIM
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2891975063-4093424103-33966677-1001\Software\AskPartnerNetwork
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2891975063-4093424103-33966677-1001\Software\SweetIM
[#] Klíč smazán po restartu: [x64] HKCU\Software\APN
[#] Klíč smazán po restartu: [x64] HKCU\Software\APN PIP
[#] Klíč smazán po restartu: [x64] HKCU\Software\Ask.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\SweetIM
[#] Klíč smazán po restartu: [x64] HKCU\Software\USyndication
[#] Klíč smazán po restartu: [x64] HKCU\Software\usyndication.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\AskToolbar
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Speedchecker Limited
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Hodnota smazána: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\SearchScopes [DoNotAskAgain]
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\SearchScopes\{ED050794-68C5-4FED-9CE1-2725FD405D4C}
[-] Klíč smazán: HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[#] Hodnota smazána po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DoNotAskAgain]
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ED050794-68C5-4FED-9CE1-2725FD405D4C}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[-] Data obnovena: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[#] Hodnota smazána po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DoNotAskAgain]
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ED050794-68C5-4FED-9CE1-2725FD405D4C}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaadgepjkdffhjbkfjgnnffnfcffbg
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaadgepjkdffhjbkfjgnnffnfcffbg
[-] Klíč smazán: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[#] Klíč smazán po restartu: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Prohlížeče ] *****

[-] Firefox předvolby vyčištěny: "browser.search.defaultengine" - "Ask Search"
[-] Firefox předvolby vyčištěny: "browser.search.order.1" - "Ask Search"
[-] Firefox předvolby vyčištěny: "browser.startup.homepage" - "hxxps://mysearch.avg.com/?cid={E97384ED-5477-4E19-8263-E9C5BA5DBC55}&mid=06351d3e493b47d08469e1ccef644621-39fbb058a9cb49f8c06cd5c53d1684bf5614f93d&lang=en&ds=AVG&coid=avgtbavg&cmpid=0915wt&pr=sa&d=2015-09-09 10:35:24&v=4.2.1.951&pid=wtu&sg=&sap=hp"
[-] Firefox předvolby vyčištěny: "extensions.asktb.ff-original-keyword-url" - "hxxp://search.sweetim.com/search.asp?barid={F297B218-2B1F-11E2-BF1C-3085A980AFD2}&src=2&crg=3.1010000.10005&q="
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.RevertDialog.enable" - "false"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.UserSelectedSaveSettings" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.Visibility.VisibilityGuardLastUnHide" - "0"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.Visibility.enable" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.Visibility.intervaldays" - "7"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.cda.DisableOveride.enable" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.cda.HideOveride.enable" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.cda.RemoveOveride.enable" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.0.enable" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.0.handler" - "chrome://sim_toolbar_package/content/optionsdialog-handler.js"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.0.height" - "335"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.0.id" - "id_options_dialog"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.0.title" - "$string.config.label;"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.0.url" - "hxxp://www.sweetim.com/simffbar/options_remote ... crg=$cargo;"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.0.width" - "761"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.1.enable" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.1.handler" - "chrome://sim_toolbar_package/content/exampledialog-handler.js"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.1.height" - "300"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.1.id" - "id_example_dialog"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.1.title" - "Example (unit-test) dialog"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.1.url" - "chrome://sim_toolbar_package/content/exampledialog.html"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.1.width" - "500"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.2.enable" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.2.handler" - "chrome://sim_toolbar_package/content/cdadialog-handler.js"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.2.height" - "150"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.2.id" - "id_dialog_hide_disable_remove"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.2.title" - "Option Dialog"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.2.url" - "hxxp://www.sweetim.com/simffbar/simcdadialog.asp"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dialogs.2.width" - "530"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.dnscatch.domain-blacklist" - ".*.sweetim.com/.* .*.facebook.com/.* .*.google.com/.* .*.google.co.in/.* .*.google.com.br/.* .*.google.es/.* .*.youtube.com/.* .*.yahoo.com/.* .*.orkut.com.br/.* .*login.live.com/.* .*youtubedownloader.mybrowserbar.com/.*"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.highlight.colors" - "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.keywordUrlGuard.enable" - "false"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.logger.ConsoleHandler.MinReportLevel" - "7"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.logger.FileHandler.FileName" - "ff-toolbar.log"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.logger.FileHandler.MaxFileSize" - "200000"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.logger.FileHandler.MinReportLevel" - "7"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.mode.debug" - "false"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.newtab.created" - "false"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.newtab.enable" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.previous.keyword.URL" - ""
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.rc.url" - "hxxp://www.sweetim.com/simffbar/rc.html?toolba ... crg=$cargo;"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.0.addcontextdiv" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.0.callback" - "simVerification"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.0.domain-blacklist" - ""
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.0.domain-whitelist" - "hxxp://(www. apps.)?facebook\\.com.*"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.0.elementid" - "id_script_sim_fb"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.0.enable" - "false"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.0.id" - "id_script_fb"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.0.url" - "hxxp://sc.sweetim.com/apps/in/fb/infb.js"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.1.addcontextdiv" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.1.callback" - "simVerification"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.1.domain-blacklist" - ""
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.1.domain-whitelist" - "hxxps://(www. apps.)?facebook\\.com.*"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.1.elementid" - "id_script_sim_fb"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.1.enable" - "false"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.1.id" - "id_script_fb_hxxpS"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.1.url" - "hxxps://sc.sweetim.com/apps/in/fb/infb.js"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.2.addcontextdiv" - "false"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.2.callback" - ""
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.2.domain-blacklist" - ".*.google..* .*.bing..* .*.live..* .*.msn..* .*.yahoo..* .*.youtube.com.* .*ask.com.* .*.sweetim.com.*"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.2.domain-whitelist" - ""
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.2.elementid" - "id_predict_include_script"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.2.enable" - "false"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.2.id" - "id_script_prad"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.scripts.2.url" - "hxxp://cdn1.certified-apps.com/scripts/shared/enable.js?si=3104&tid=chff1"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.search.external" - "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engine=\"hxxp://*google.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.yahoo.com/*\" param=\"p=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.sweetim.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.live.*/*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://*youtube.com/\" param=\"search_query=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.ebay.*/search/*\" param=\"satitle=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.amazon.com/s/*\" param=\"field-keywords=\" /></TOOLBAR>"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.search.history.capacity" - "10"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.searchguard.enable" - "false"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.searchguard.initialized_by_rc" - "true"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.simapp_id" - "{F297B218-2B1F-11E2-BF1C-3085A980AFD2}"
[-] Firefox předvolby vyčištěny: "sweetim.toolbar.version" - "1.9.0.0"
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: aaaaadgepjkdffhjbkfjgnnffnfcffbg
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: bopakagnckmlgajfccecajhnimjiiedh
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: jcdgjdiieiljkfkdcloehkohchhpekkn
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: ndibdjnfmopecpmkdieinmbadjfpblof
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: ogccgbmabaphcakpiclgcnmcnimhokcj
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1] [extension] Smazáno: aaaaadgepjkdffhjbkfjgnnffnfcffbg
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1] [extension] Smazáno: chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1] [extension] Smazáno: fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1] [extension] Smazáno: jcdgjdiieiljkfkdcloehkohchhpekkn
[-] [C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1] [extension] Smazáno: ogccgbmabaphcakpiclgcnmcnimhokcj


*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [43103 Bajty] - [29/01/2017 17:23:42]
C:\AdwCleaner\AdwCleaner[S0].txt - [47255 Bajty] - [29/01/2017 17:21:27]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [43251 Bajty] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119672
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím kontrolu logu.

#4 Příspěvek od Rudy »

Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
KaLaXeL
Návštěvník
Návštěvník
Příspěvky: 60
Registrován: 10 dub 2014 18:33

Re: Prosím kontrolu logu.

#5 Příspěvek od KaLaXeL »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-01-2017 01
Ran by Lucie (administrator) on LUCIE-PC (29-01-2017 17:39:35)
Running from C:\Users\Lucie\Downloads
Loaded Profiles: Lucie (Available Profiles: Lucie)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
() C:\Program Files (x86)\MyWIFIRouter\bmser.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmprph.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-05-26] (Alcor Micro Corp.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-26] (Intel Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5138032 2012-04-02] (VIA)
HKLM-x32\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [102568 2012-02-21] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-03] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: G - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {01e8e7bd-80f7-11e6-ab33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {01e8e7eb-80f7-11e6-ab33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {e8aab3ec-9dd3-11e6-aa33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {f3180335-f0d5-11e3-86ed-3085a980afd2} - G:\setup_vmb_lite.exe /checkApplicationPresence
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166568 2014-07-02] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-07-02] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AF85B725-851E-423D-9A4B-4F7BB97B0ED4}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: No Name -> {4154552D-5341-5400-76A7-7A786E7484D7} -> No File
BHO: No Name -> {41545534-0076-A76A-76A7-7A786E7484D7} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20121109110134.dll => No File
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll => No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-23] (Oracle Corporation)
BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20121109110134.dll => No File
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-05-30] (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-23] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> No Name - {4154552D-5341-5400-76A7-7A786E7484D7} - No File
Toolbar: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> No Name - {41545534-0076-A76A-76A7-7A786E7484D7} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\yvx8jvrc.default [2017-01-29]
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\yvx8jvrc.default ->
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\yvx8jvrc.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\yvx8jvrc.default -> Bing
FF Keyword.URL: Mozilla\Firefox\Profiles\yvx8jvrc.default -> hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: (McAfee Security Scan Plus) - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-05] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-05] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2891975063-4093424103-33966677-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Lucie\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default [2016-11-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-11-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-27]
CHR Profile: C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-01-29]
CHR Extension: (Disk Google) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-23]
CHR Extension: (YouTube) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-23]
CHR Extension: (Chrome Media Router) - C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR HKLM-x32\...\Chrome\Extension: [aaaapoomnboffjcgcebabolakmhbblbk] - C:\Users\Lucie\AppData\Local\APN\GoogleCRXs\aaaapoomnboffjcgcebabolakmhbblbk_7.17.0.0.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [119424 2012-05-30] (Atheros Commnucations) [File not signed]
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-03-07] ()
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2016-08-26] () [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-03-23] (VIA Technologies, Inc.)
R2 WIFIGXENDHCPSER; C:\Program Files (x86)\MyWIFIRouter\bmser.exe [1656416 2013-12-12] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [327296 2012-05-30] (Atheros) [File not signed]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2012-04-11] (Windows (R) Win 7 DDK provider)
R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2012-04-11] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-11-17] (DT Soft Ltd)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18816 2016-05-25] (Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-05-25] (Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S1 prodrv06; C:\Windows\SysWOW64\drivers\prodrv06.sys [52224 2004-01-26] (Protection Technology) [File not signed]
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [95552 2004-01-26] (Protection Technology) [File not signed]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [File not signed]
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-01-29 17:36 - 2017-01-29 17:36 - 00000000 ____D C:\Windows\pss
2017-01-29 17:20 - 2017-01-29 17:23 - 00000000 ____D C:\AdwCleaner
2017-01-29 17:20 - 2017-01-29 17:20 - 04015056 _____ C:\Users\Lucie\Downloads\adwcleaner_6.043.exe
2017-01-29 17:02 - 2017-01-29 17:02 - 00002021 _____ C:\Users\Public\Desktop\Adobe Reader X.lnk
2017-01-29 16:46 - 2017-01-29 16:49 - 00042637 _____ C:\Users\Lucie\Downloads\Addition.txt
2017-01-29 16:38 - 2017-01-29 17:39 - 00023114 _____ C:\Users\Lucie\Downloads\FRST.txt
2017-01-29 16:37 - 2017-01-29 17:39 - 00000000 ____D C:\FRST
2017-01-29 16:36 - 2017-01-29 16:37 - 02420736 _____ (Farbar) C:\Users\Lucie\Downloads\FRST64.exe
2017-01-20 15:13 - 2017-01-20 15:54 - 735147942 _____ C:\Users\Lucie\Downloads\Prci-prci-prcičky-5-Nahá-míle-CZ-dabing-Rudolfhoos.avi
2017-01-19 17:02 - 2017-01-19 17:43 - 722188288 _____ C:\Users\Lucie\Downloads\02-Prci,-prci,-prcičky-2.avi
2017-01-11 09:22 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-11 09:22 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-11 09:22 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-11 09:22 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-01-11 09:22 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-01-11 09:22 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-01-11 09:22 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-11 09:22 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-11 09:22 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-11 09:22 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-11 09:22 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-11 09:22 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-01-11 09:22 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-01-05 11:20 - 2017-01-05 12:01 - 733188096 _____ C:\Users\Lucie\Downloads\Špion-2015-cz-dabing-Jason-Statham-komedie.avi
2017-01-05 10:11 - 2017-01-05 10:58 - 848582324 _____ C:\Users\Lucie\Downloads\Stážista-2015-cz-dabing.avi
2017-01-04 23:08 - 2017-01-04 23:41 - 608628540 _____ C:\Users\Lucie\Downloads\Dámy-nebo-nedá-mi-cz.avi
2017-01-03 15:08 - 2017-01-03 16:04 - 986071452 _____ C:\Users\Lucie\Downloads\Spravni-chlapi-novinka-2016-cz-dabing.avi
2017-01-03 12:44 - 2017-01-03 13:23 - 698446178 _____ C:\Users\Lucie\Downloads\Polednice-2016-cz-[natu3].avi
2017-01-01 16:26 - 2017-01-01 16:32 - 57780311 _____ C:\Users\Lucie\Downloads\Můj-film.wmv

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-01-29 17:39 - 2014-02-17 08:00 - 00000000 ____D C:\Users\Lucie\AppData\Roaming\Skype
2017-01-29 17:36 - 2009-07-14 05:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-29 17:36 - 2009-07-14 05:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-29 17:30 - 2015-08-30 14:38 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0e32937f8fad8.job
2017-01-29 17:30 - 2012-11-09 00:01 - 00000000 ____D C:\Users\Lucie\Documents\Bluetooth Folder
2017-01-29 17:29 - 2015-05-15 15:50 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f1e74dc9bfd.job
2017-01-29 17:28 - 2012-11-19 18:10 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-01-29 17:28 - 2012-11-08 23:58 - 00000387 _____ C:\Users\Lucie\AppData\Roaming\sp_data.sys
2017-01-29 17:27 - 2015-05-15 15:50 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f1e74b36882.job
2017-01-29 17:27 - 2012-11-19 18:12 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2017-01-29 17:27 - 2012-07-31 20:28 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2017-01-29 17:26 - 2013-01-30 16:19 - 00000354 _____ C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job
2017-01-29 17:25 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-29 17:16 - 2012-11-19 18:12 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2017-01-29 17:05 - 2016-12-12 15:36 - 00000000 ____D C:\ProgramData\Avg
2017-01-29 17:05 - 2016-12-12 15:26 - 00000000 ____D C:\Users\Lucie\AppData\Local\AvgSetupLog
2017-01-29 17:02 - 2012-02-24 12:39 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2017-01-29 16:55 - 2016-12-12 15:26 - 00000000 ____D C:\Users\Lucie\AppData\Local\Avg
2017-01-29 16:55 - 2013-01-05 12:12 - 00000000 ____D C:\ProgramData\MFAData
2017-01-29 16:52 - 2016-02-03 06:43 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d15e45c9467eb0.job
2017-01-29 16:48 - 2015-12-05 09:25 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d12f36886cff46.job
2017-01-29 16:43 - 2015-07-15 22:24 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf44af3eb9e1.job
2017-01-29 16:31 - 2011-02-19 06:36 - 00672408 _____ C:\Windows\system32\perfh005.dat
2017-01-29 16:31 - 2011-02-19 06:36 - 00142972 _____ C:\Windows\system32\perfc005.dat
2017-01-29 16:31 - 2009-07-14 06:13 - 01593302 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-29 16:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-01-29 16:29 - 2014-03-28 15:05 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001UA.job
2017-01-29 16:24 - 2015-02-04 06:11 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d040393c4f0f4.job
2017-01-25 15:10 - 2014-03-28 15:05 - 00000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001Core.job
2017-01-23 14:43 - 2012-11-27 19:55 - 00000000 ____D C:\Users\Lucie\AppData\Local\CrashDumps
2017-01-23 13:23 - 2012-07-31 20:28 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2017-01-13 12:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-01-12 08:07 - 2013-08-06 09:54 - 00000000 ____D C:\Windows\system32\MRT
2017-01-12 08:01 - 2012-11-09 02:02 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-10 23:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF

==================== Files in the root of some directories =======

2012-11-08 23:58 - 2017-01-29 17:28 - 0000387 _____ () C:\Users\Lucie\AppData\Roaming\sp_data.sys
2013-07-20 12:48 - 2016-12-28 13:07 - 0007680 _____ () C:\Users\Lucie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-02-24 12:55 - 2010-10-06 18:45 - 0131984 _____ () C:\ProgramData\FullRemove.exe
2012-07-31 20:54 - 2012-07-31 20:55 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2012-07-31 20:53 - 2012-07-31 20:54 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2012-07-31 20:53 - 2012-07-31 20:53 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

Some files in TEMP:
====================
2013-03-04 23:32 - 2014-12-19 16:34 - 0666520 _____ (Ask Partner Network) C:\Users\Lucie\AppData\Local\Temp\APNSetup.exe
2015-04-23 19:02 - 2015-04-23 19:04 - 17172816 _____ (DsNET Corp ) C:\Users\Lucie\AppData\Local\Temp\atcMedia3111429819367.exe
2012-11-29 06:05 - 2012-11-29 06:06 - 8929280 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD11AC.exe
2015-08-20 14:08 - 2015-08-20 14:09 - 15536128 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD11AD.exe
2015-07-16 08:32 - 2015-07-16 08:32 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1277.exe
2012-12-28 10:23 - 2012-12-28 10:23 - 0552960 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1286.exe
2014-01-06 06:05 - 2014-01-06 06:09 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD13ED.exe
2014-01-16 06:17 - 2014-01-16 06:17 - 0468992 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD17A4.exe
2016-06-18 14:00 - 2016-06-18 14:00 - 7688192 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD17C4.exe
2016-12-12 15:33 - 2016-12-12 15:34 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD19D6.exe
2013-03-20 19:12 - 2013-03-20 19:13 - 7129088 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD19E6.exe
2013-12-10 19:45 - 2013-12-10 19:45 - 0524288 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1B4.exe
2014-02-15 12:46 - 2014-02-15 12:46 - 0299008 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1FA0.exe
2014-05-03 07:57 - 2014-05-03 07:57 - 0690176 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD1FDE.exe
2013-02-28 19:06 - 2013-02-28 19:06 - 1544192 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD20D8.exe
2014-06-10 20:43 - 2014-06-10 20:43 - 0651264 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD226E.exe
2012-12-05 18:40 - 2012-12-05 18:41 - 1042432 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2422.exe
2014-12-13 09:11 - 2014-12-13 09:11 - 0354304 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD24ED.exe
2017-01-12 08:30 - 2017-01-12 08:31 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD256A.exe
2016-02-11 11:29 - 2016-02-11 11:30 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD25B8.exe
2012-12-08 07:45 - 2012-12-08 07:45 - 0505856 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2664.exe
2015-11-13 21:06 - 2015-11-13 21:06 - 4163584 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD27CB.exe
2012-12-04 20:34 - 2012-12-04 20:34 - 0493568 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD29CE.exe
2012-12-13 19:25 - 2012-12-13 19:25 - 0307200 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2CD9.exe
2014-08-29 14:10 - 2014-08-29 14:10 - 2351104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2CDA.exe
2014-04-23 12:22 - 2014-04-23 12:22 - 0770048 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD2DC3.exe
2013-01-15 20:14 - 2013-01-15 20:15 - 3885056 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD30CF.exe
2013-01-11 06:16 - 2013-01-11 06:16 - 5009408 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3581.exe
2017-01-29 17:28 - 2017-01-29 17:29 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD368A.exe
2012-11-30 23:19 - 2012-11-30 23:19 - 0200704 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3745.exe
2013-12-17 06:07 - 2013-12-17 06:07 - 0624640 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3783.exe
2013-09-12 17:16 - 2013-09-12 17:16 - 0276480 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD389C.exe
2015-07-18 10:42 - 2015-07-18 10:42 - 3926016 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3996.exe
2012-11-29 19:08 - 2012-11-29 19:09 - 3713024 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3A32.exe
2012-11-28 19:10 - 2012-11-28 19:10 - 2119680 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3D6.exe
2012-12-08 10:41 - 2012-12-08 10:41 - 0483328 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3D7.exe
2016-11-12 16:56 - 2016-11-12 16:56 - 14600192 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3D8.exe
2014-06-10 20:49 - 2014-06-10 20:49 - 0434176 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD3FAE.exe
2012-12-02 09:49 - 2012-12-02 09:50 - 8486912 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD428B.exe
2013-01-02 08:56 - 2013-01-02 08:56 - 0757760 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD48E1.exe
2013-04-25 14:36 - 2013-04-25 14:36 - 0692224 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4A58.exe
2013-06-14 17:49 - 2013-06-14 17:49 - 0700416 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4AB5.exe
2015-02-13 16:03 - 2015-02-13 16:03 - 0862208 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4B42.exe
2015-03-26 15:53 - 2015-03-26 16:01 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4BE7.exe
2012-12-15 09:53 - 2012-12-15 09:53 - 0292864 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4D64.exe
2016-12-27 14:55 - 2016-12-27 14:55 - 10004480 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4E0F.exe
2016-03-26 17:55 - 2016-03-26 17:55 - 8302592 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD4FA5.exe
2014-03-15 09:40 - 2014-03-15 09:40 - 2281472 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD50CD.exe
2015-02-28 16:30 - 2015-02-28 16:30 - 0737280 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD51E.exe
2013-01-01 16:26 - 2013-01-01 16:26 - 0563200 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD5C13.exe
2013-12-19 10:39 - 2013-12-19 10:45 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD5C32.exe
2012-12-11 16:35 - 2012-12-11 16:35 - 1439744 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD5CA0.exe
2015-11-14 15:45 - 2015-11-14 15:45 - 9316352 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD5DE7.exe
2013-01-13 09:29 - 2013-01-13 09:31 - 12879872 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6029.exe
2014-06-14 12:25 - 2014-06-14 12:25 - 2136064 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD60B5.exe
2015-12-25 12:07 - 2015-12-25 12:07 - 13803520 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD61AE.exe
2014-05-25 16:09 - 2014-05-25 16:09 - 5976064 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD622B.exe
2012-12-11 19:44 - 2012-12-11 19:49 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6315.exe
2013-01-30 16:20 - 2013-01-30 16:21 - 6518784 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6373.exe
2012-12-07 06:08 - 2012-12-07 06:09 - 2328576 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6382.exe
2015-05-23 10:21 - 2015-05-23 10:22 - 13428736 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD63B1.exe
2014-01-24 16:37 - 2014-01-24 16:37 - 0815104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6558.exe
2012-12-14 14:25 - 2012-12-14 14:25 - 0145408 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD69E8.exe
2012-12-10 06:29 - 2012-12-10 06:29 - 1054720 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD69F8.exe
2012-12-09 11:04 - 2012-12-09 11:09 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6A94.exe
2015-09-11 19:30 - 2015-09-11 19:31 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6BBD.exe
2014-03-08 08:17 - 2014-03-08 08:17 - 3166208 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6D23.exe
2013-03-14 16:45 - 2013-03-14 16:45 - 0364544 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6E9A.exe
2016-04-14 10:57 - 2016-04-14 10:57 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6F2.exe
2015-05-14 06:00 - 2015-05-14 06:00 - 2461696 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD6FD2.exe
2014-03-24 10:00 - 2014-03-24 10:01 - 0227366 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD7158.exe
2016-05-12 13:52 - 2016-05-12 13:52 - 13103104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD7213.exe
2013-01-04 14:18 - 2013-01-04 14:19 - 2652160 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD76C4.exe
2016-07-17 18:16 - 2016-07-17 18:16 - 4272128 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD7879.exe
2016-03-10 17:41 - 2016-03-10 17:42 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD7FFA.exe
2013-09-14 15:07 - 2013-09-14 15:07 - 2725888 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD80C3.exe
2013-08-18 12:53 - 2013-08-18 12:53 - 0227328 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD80D2.exe
2016-12-15 21:02 - 2016-12-15 21:02 - 46940160 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD85B2.exe
2016-11-09 18:47 - 2016-11-09 18:47 - 9684992 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD867D.exe
2012-12-03 11:10 - 2012-12-03 11:13 - 31690752 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD878.exe
2013-06-08 09:10 - 2013-06-08 09:10 - 0616448 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD87A5.exe
2012-12-04 16:20 - 2012-12-04 16:22 - 14278656 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD87C5.exe
2017-01-29 16:58 - 2017-01-29 17:01 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD8A63.exe
2016-12-23 18:13 - 2016-12-23 18:13 - 4130816 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD8A92.exe
2014-08-06 12:05 - 2014-08-06 12:05 - 0360448 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD8D12.exe
2014-06-16 13:31 - 2014-06-16 13:31 - 1034240 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9137.exe
2013-04-10 17:39 - 2013-04-10 17:39 - 0311296 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD95B9.exe
2013-11-15 10:29 - 2013-11-15 10:29 - 3203072 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD95E8.exe
2012-12-20 09:44 - 2012-12-20 09:44 - 0169984 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD96B3.exe
2016-09-22 20:05 - 2016-09-22 20:05 - 4626432 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD97BC.exe
2012-12-06 15:34 - 2012-12-06 15:34 - 0901120 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9829.exe
2014-09-12 14:30 - 2014-09-12 14:31 - 2844672 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9942.exe
2013-01-10 06:07 - 2013-01-10 06:08 - 0872448 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9DC4.exe
2017-01-07 21:45 - 2017-01-07 21:45 - 1521664 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EAD9E03.exe
2017-01-10 23:04 - 2017-01-10 23:05 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA063.exe
2015-12-25 11:27 - 2015-12-25 11:27 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA533.exe
2013-07-11 09:20 - 2013-07-11 09:20 - 6275072 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA68B.exe
2013-12-11 06:41 - 2013-12-11 06:41 - 0440320 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA9A.exe
2013-07-14 15:49 - 2013-07-14 15:49 - 0548864 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADA9E5.exe
2013-12-12 15:36 - 2013-12-12 15:40 - 24846336 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADABB9.exe
2014-08-16 15:25 - 2014-08-16 15:30 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADADAC.exe
2012-12-01 08:44 - 2012-12-01 08:44 - 0983040 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADAE09.exe
2012-12-12 16:31 - 2012-12-12 16:31 - 1824768 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADAFBE.exe
2013-10-29 14:37 - 2013-10-29 14:38 - 3026944 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB079.exe
2016-09-21 12:37 - 2016-09-21 12:38 - 23955456 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB3C5.exe
2013-01-05 14:51 - 2013-01-05 14:51 - 1591296 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB4EC.exe
2013-05-24 12:11 - 2013-05-24 12:11 - 0315392 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB598.exe
2012-12-17 13:05 - 2012-12-17 13:11 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB5A7.exe
2015-09-12 14:30 - 2015-09-12 14:30 - 19042304 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB634.exe
2014-10-18 08:22 - 2014-10-18 08:22 - 4282368 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB636.exe
2014-10-29 06:09 - 2014-10-29 06:09 - 4009984 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB846.exe
2013-02-13 09:08 - 2013-02-13 09:09 - 3209216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADB856.exe
2013-10-12 11:52 - 2013-10-12 11:52 - 0378880 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADBA78.exe
2013-03-17 18:18 - 2013-03-17 18:18 - 0753664 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADBC9A.exe
2015-04-18 12:28 - 2015-04-18 12:28 - 1570816 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADBF19.exe
2014-04-02 17:40 - 2014-04-02 17:40 - 0972800 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC01.exe
2012-12-29 21:15 - 2012-12-29 21:15 - 0430080 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC071.exe
2016-01-14 10:51 - 2016-01-14 10:51 - 28043264 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC245.exe
2015-03-04 21:24 - 2015-03-04 21:26 - 13172736 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC2C1.exe
2016-05-26 21:51 - 2016-05-26 21:51 - 29833216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC2C2.exe
2014-10-19 09:26 - 2014-10-19 09:27 - 1116160 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC310.exe
2015-01-15 16:53 - 2015-01-15 16:54 - 7231488 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC419.exe
2013-12-14 00:52 - 2013-12-14 00:52 - 0491520 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC5ED.exe
2015-06-13 17:56 - 2015-06-13 17:56 - 18704384 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC68A.exe
2016-03-26 14:58 - 2016-03-26 14:59 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC773.exe
2013-04-30 14:24 - 2013-04-30 14:24 - 0493568 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC7B1.exe
2016-09-14 09:24 - 2016-09-14 09:25 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADC908.exe
2015-03-02 06:34 - 2015-03-02 06:34 - 3663872 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCBA7.exe
2015-09-10 17:34 - 2015-09-10 17:35 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCCB1.exe
2014-08-15 14:20 - 2014-08-15 14:20 - 0972800 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCCC.exe
2016-12-12 17:02 - 2016-12-12 17:02 - 20019200 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCCC0.exe
2016-08-02 07:05 - 2016-08-02 07:05 - 1839104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCDF3.exe
2014-07-16 02:33 - 2014-07-16 02:34 - 1552384 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCE65.exe
2015-07-22 03:53 - 2015-07-22 03:53 - 38637568 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCE75.exe
2013-09-28 08:20 - 2013-09-28 08:20 - 3483648 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADCF6E.exe
2013-03-18 15:34 - 2013-03-18 15:34 - 0270336 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD060.exe
2015-12-19 16:22 - 2015-12-19 16:22 - 4812800 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD2E8.exe
2012-11-28 16:25 - 2012-11-28 16:30 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD6ED.exe
2016-10-13 10:04 - 2016-10-13 10:04 - 9504768 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD864.exe
2013-01-03 16:27 - 2013-01-03 16:30 - 31111168 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADD8E0.exe
2012-12-20 19:20 - 2012-12-20 19:20 - 0309248 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDAC4.exe
2013-01-08 16:29 - 2013-01-08 16:31 - 9498624 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDAD4.exe
2016-08-31 08:53 - 2016-08-31 08:53 - 6029312 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDB31.exe
2014-04-08 20:51 - 2014-04-08 20:51 - 1748992 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDE3D.exe
2013-03-28 09:58 - 2013-03-28 09:58 - 0274432 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDE3E.exe
2014-12-11 06:46 - 2014-12-11 06:46 - 0315392 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADDEAA.exe
2013-05-09 17:58 - 2013-05-09 17:58 - 0565248 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE091.exe
2015-07-23 13:29 - 2015-07-23 13:29 - 25427968 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE0EB.exe
2014-04-10 14:23 - 2014-04-10 14:31 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE159.exe
2012-11-27 19:53 - 2012-11-27 20:00 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE16C.exe
2016-01-02 14:57 - 2016-01-02 14:57 - 32309248 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE197.exe
2014-11-13 06:55 - 2014-11-13 06:55 - 2121728 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE2CF.exe
2012-12-13 16:24 - 2012-12-13 16:24 - 1947648 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE32D.exe
2012-11-30 18:58 - 2012-11-30 18:59 - 4878336 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE474.exe
2014-07-31 01:49 - 2014-07-31 01:49 - 6787072 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE510.exe
2015-03-29 12:35 - 2015-03-29 12:41 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE61.exe
2012-12-05 06:09 - 2012-12-05 06:09 - 0471040 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE648.exe
2013-12-04 14:59 - 2013-12-04 15:00 - 6785024 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE7E7.exe
2012-12-16 10:05 - 2012-12-16 10:06 - 1361920 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE7FD.exe
2014-07-31 02:26 - 2014-07-31 02:26 - 1974272 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE8C8.exe
2016-10-26 09:57 - 2016-10-26 09:58 - 17938432 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE8C9.exe
2016-10-29 13:34 - 2016-10-29 13:34 - 18386944 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE8CA.exe
2015-04-19 14:33 - 2015-04-19 14:33 - 0675840 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE9A0.exe
2013-01-17 21:58 - 2013-01-17 21:58 - 1210368 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADE9E9.exe
2013-01-07 15:23 - 2013-01-07 15:26 - 22011904 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEACB.exe
2012-12-03 17:35 - 2012-12-03 17:36 - 9263104 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEB19.exe
2013-04-10 16:52 - 2013-04-10 16:52 - 0610304 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEB96.exe
2016-08-16 12:00 - 2016-08-16 12:00 - 8708096 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEC03.exe
2012-12-24 22:58 - 2012-12-24 22:58 - 1257472 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADECFC.exe
2012-12-05 16:19 - 2012-12-05 16:21 - 12625920 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADED0C.exe
2013-02-16 00:50 - 2013-02-16 00:50 - 3045376 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEEE0.exe
2015-08-13 14:45 - 2015-08-13 14:46 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEF6D.exe
2016-05-08 11:00 - 2016-05-08 11:00 - 14227456 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADEF8C.exe
2014-11-20 15:05 - 2014-11-20 15:05 - 0313344 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF17F.exe
2012-12-16 19:18 - 2012-12-16 19:18 - 1331200 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF1BD.exe
2013-06-18 17:56 - 2013-06-18 17:56 - 0393216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF2A7.exe
2012-12-06 06:09 - 2012-12-06 06:09 - 0679936 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF305.exe
2013-01-09 15:24 - 2013-01-09 15:30 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF372.exe
2012-12-09 16:24 - 2012-12-09 16:24 - 0415744 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF3EF.exe
2016-06-17 10:07 - 2016-06-17 10:07 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF41E.exe
2015-12-09 12:16 - 2015-12-09 12:17 - 47796216 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF4D9.exe
2012-12-10 15:31 - 2012-12-10 15:34 - 28598272 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF4E8.exe
2012-12-04 06:11 - 2012-12-04 06:11 - 0579584 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF749.exe
2014-05-10 09:16 - 2014-05-10 09:17 - 3889152 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF890.exe
2016-07-06 10:02 - 2016-07-06 10:02 - 10670080 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADF8FE.exe
2012-11-30 14:18 - 2012-11-30 14:19 - 7487488 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADFD22.exe
2014-05-16 08:37 - 2014-05-16 08:37 - 0937984 _____ (Electronic Arts, Inc.) C:\Users\Lucie\AppData\Local\Temp\EADFD61.exe
2013-02-06 20:32 - 2013-02-06 20:32 - 1004608 _____ (Solid State Networks) C:\Users\Lucie\AppData\Local\Temp\install_flashplayer11x32_mssa_aih.exe
2014-09-29 18:06 - 2014-09-29 18:06 - 0937896 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
2016-07-21 16:02 - 2016-07-21 16:02 - 0741440 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u101-windows-au.exe
2016-10-19 12:02 - 2016-10-19 12:02 - 0737856 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u111-windows-au.exe
2017-01-17 23:02 - 2017-01-17 23:02 - 0739904 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u121-windows-au.exe
2015-05-01 00:37 - 2015-05-01 00:37 - 0562272 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u45-windows-au.exe
2015-08-30 14:36 - 2015-08-30 14:37 - 0585824 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u60-windows-au.exe
2015-10-21 12:02 - 2015-10-21 12:02 - 0585824 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u65-windows-au.exe
2015-11-22 20:02 - 2015-11-22 20:02 - 0585824 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u66-windows-au.exe
2016-01-19 23:02 - 2016-01-19 23:02 - 0644704 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u71-windows-au.exe
2016-02-07 19:42 - 2016-02-07 19:42 - 0736352 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u73-windows-au.exe
2016-04-23 17:02 - 2016-06-26 03:40 - 0739904 _____ (Oracle Corporation) C:\Users\Lucie\AppData\Local\Temp\jre-8u91-windows-au.exe
2014-08-17 20:35 - 2014-08-17 20:43 - 0016815 _____ () C:\Users\Lucie\AppData\Local\Temp\KMP_3.9.0.126.exe
2012-03-22 23:18 - 2012-03-22 23:18 - 0524096 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\Nv3DVisionIePlugin64.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0362304 _____ () C:\Users\Lucie\AppData\Local\Temp\nv3DVStreaming.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0694080 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvSCPAPI.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0789312 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvSCPAPI64.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0154944 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvStereoApiI.dll
2012-03-22 23:18 - 2012-03-22 23:18 - 0187200 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvStereoApiI64.dll
2012-03-22 23:19 - 2012-03-22 23:19 - 0590656 _____ (NVIDIA Corporation) C:\Users\Lucie\AppData\Local\Temp\nvStInst.exe
2014-07-31 01:21 - 2014-07-31 01:21 - 0021888 _____ () C:\Users\Lucie\AppData\Local\Temp\ochelper.exe
2013-02-21 11:09 - 2013-02-21 11:09 - 3085904 _____ () C:\Users\Lucie\AppData\Local\Temp\oi_{B9DA95FE-7E27-42AF-A6EE-DBBCCCCE86C1}.exe
2014-07-31 01:21 - 2014-07-31 01:21 - 1281456 _____ (Ask.com) C:\Users\Lucie\AppData\Local\Temp\PIPInstaller_PTV_.exe
2013-02-19 16:37 - 2013-02-19 16:32 - 3971208 _____ (Ask) C:\Users\Lucie\AppData\Local\Temp\setup.exe
2012-11-10 11:18 - 2012-11-10 11:18 - 2962432 _____ (SweetIM Technologies Lt) C:\Users\Lucie\AppData\Local\Temp\SIMEEI2Installer.exe
2012-11-10 11:18 - 2012-11-10 11:18 - 3380216 _____ (SweetIM Technologies Lt) C:\Users\Lucie\AppData\Local\Temp\SIMEEIInstaller.exe
2013-02-03 18:27 - 2013-01-30 16:19 - 1014448 _____ () C:\Users\Lucie\AppData\Local\Temp\UNINSTALL.EXE
2014-01-07 06:27 - 2014-01-07 06:27 - 0363576 _____ () C:\Users\Lucie\AppData\Local\Temp\winpcap4.1.3repark.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-01-24 15:48

==================== End of FRST.txt ============================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119672
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím kontrolu logu.

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: G - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {01e8e7bd-80f7-11e6-ab33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {01e8e7eb-80f7-11e6-ab33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {e8aab3ec-9dd3-11e6-aa33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {f3180335-f0d5-11e3-86ed-3085a980afd2} - G:\setup_vmb_lite.exe /checkApplicationPresence
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: No Name -> {4154552D-5341-5400-76A7-7A786E7484D7} -> No File
BHO: No Name -> {41545534-0076-A76A-76A7-7A786E7484D7} -> No File
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20121109110134.dll => No File
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll => No File
C:\Program Files\McAfee Security Scan
Toolbar: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> No Name - {4154552D-5341-5400-76A7-7A786E7484D7} - No File
Toolbar: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> No Name - {41545534-0076-A76A-76A7-7A786E7484D7} - No File
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\yvx8jvrc.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\yvx8jvrc.default -> Bing
FF Keyword.URL: Mozilla\Firefox\Profiles\yvx8jvrc.default -> hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe" [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f1e74dc9bfd.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f1e74b36882.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d15e45c9467eb0.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d12f36886cff46.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf44af3eb9e1.job
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001UA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d040393c4f0f4.job
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001Core.job
C:\Users\Lucie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Lucie\AppData\Local\Temp

EmptyTemp:
End
Uložte do C:\Users\Lucie\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
KaLaXeL
Návštěvník
Návštěvník
Příspěvky: 60
Registrován: 10 dub 2014 18:33

Re: Prosím kontrolu logu.

#7 Příspěvek od KaLaXeL »

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-01-2017
Ran by Lucie (30-01-2017 15:54:52) Run:1
Running from C:\Users\Lucie\Downloads
Loaded Profiles: Lucie (Available Profiles: Lucie)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: G - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {01e8e7bd-80f7-11e6-ab33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {01e8e7eb-80f7-11e6-ab33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {e8aab3ec-9dd3-11e6-aa33-dc85de23362f} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\...\MountPoints2: {f3180335-f0d5-11e3-86ed-3085a980afd2} - G:\setup_vmb_lite.exe /checkApplicationPresence
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: No Name -> {4154552D-5341-5400-76A7-7A786E7484D7} -> No File
BHO: No Name -> {41545534-0076-A76A-76A7-7A786E7484D7} -> No File
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20121109110134.dll => No File
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll => No File
C:\Program Files\McAfee Security Scan
Toolbar: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> No Name - {4154552D-5341-5400-76A7-7A786E7484D7} - No File
Toolbar: HKU\S-1-5-21-2891975063-4093424103-33966677-1001 -> No Name - {41545534-0076-A76A-76A7-7A786E7484D7} - No File
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\yvx8jvrc.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\yvx8jvrc.default -> Bing
FF Keyword.URL: Mozilla\Firefox\Profiles\yvx8jvrc.default -> hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe" [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f1e74dc9bfd.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f1e74b36882.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d15e45c9467eb0.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d12f36886cff46.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf44af3eb9e1.job
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001UA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d040393c4f0f4.job
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001Core.job
C:\Users\Lucie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Lucie\AppData\Local\Temp

EmptyTemp:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G => key removed successfully
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01e8e7bd-80f7-11e6-ab33-dc85de23362f} => key removed successfully
HKCR\CLSID\{01e8e7bd-80f7-11e6-ab33-dc85de23362f} => key not found.
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01e8e7eb-80f7-11e6-ab33-dc85de23362f} => key removed successfully
HKCR\CLSID\{01e8e7eb-80f7-11e6-ab33-dc85de23362f} => key not found.
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e8aab3ec-9dd3-11e6-aa33-dc85de23362f} => key removed successfully
HKCR\CLSID\{e8aab3ec-9dd3-11e6-aa33-dc85de23362f} => key not found.
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f3180335-f0d5-11e3-86ed-3085a980afd2} => key removed successfully
HKCR\CLSID\{f3180335-f0d5-11e3-86ed-3085a980afd2} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4154552D-5341-5400-76A7-7A786E7484D7} => key removed successfully
HKCR\CLSID\{4154552D-5341-5400-76A7-7A786E7484D7} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41545534-0076-A76A-76A7-7A786E7484D7} => key removed successfully
HKCR\CLSID\{41545534-0076-A76A-76A7-7A786E7484D7} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} => key removed successfully
HKCR\CLSID\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => key removed successfully
HKCR\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => key not found.
"C:\Program Files\McAfee Security Scan" => not found.
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4154552D-5341-5400-76A7-7A786E7484D7} => value removed successfully
HKCR\CLSID\{4154552D-5341-5400-76A7-7A786E7484D7} => key not found.
HKU\S-1-5-21-2891975063-4093424103-33966677-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{41545534-0076-A76A-76A7-7A786E7484D7} => value removed successfully
HKCR\CLSID\{41545534-0076-A76A-76A7-7A786E7484D7} => key not found.
Firefox SearchEngineOrder.3 removed successfully
Firefox SelectedSearchEngine removed successfully
Firefox "Keyword.URL" removed successfully
HKLM\Software\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60} => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => value removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\System\CurrentControlSet\Services\McComponentHostService => key removed successfully
McComponentHostService => service removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f1e74dc9bfd.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f1e74b36882.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d15e45c9467eb0.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d12f36886cff46.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf44af3eb9e1.job => moved successfully
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001UA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d040393c4f0f4.job => moved successfully
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2891975063-4093424103-33966677-1001Core.job => moved successfully
C:\Users\Lucie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

"C:\Users\Lucie\AppData\Local\Temp" folder move:

Could not move "C:\Users\Lucie\AppData\Local\Temp" => Scheduled to move on reboot.


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7070704 B
Java, Flash, Steam htmlcache => 66587 B
Windows/system/drivers => 39153532131 B
Edge => 0 B
Chrome => 837501795 B
Firefox => 93961599 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 42371405 B
systemprofile32 => 50311985 B
LocalService => 0 B
NetworkService => 1048860 B
UpdatusUser => 0 B
Lucie => 1283855091 B

RecycleBin => 0 B
EmptyTemp: => 38.6 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-01-2017 16:04:28)

"C:\Users\Lucie\AppData\Local\Temp" => Could not move

==== End of Fixlog 16:04:37 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119672
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím kontrolu logu.

#8 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“