Při načítání stránek se načtou přesměrování a vyskakují okna casín atd.
Logfile of random's system information tool 1.10 (written by random/random)
Run by ROMAN at 2014-11-17 16:05:39
Microsoft Windows 8.1
System drive C: has 18 GB (4%) free of 428 GB
Total RAM: 1914 MB (13% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:06:35, on 17. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Program Files (x86)\WinRAR\WinRAR.exe
C:\Program Files\trend micro\ROMAN.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: 166090e0f32601317e4e5118752c52d60061752 - {11111111-1111-1111-1111-110611171152} - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-bho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: MaintainerSvc2.69.9464532 - Unknown owner - C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c\maintainer.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 10070 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {f089f548-cc50-47de-9765aece597d7ae9}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9d2cf200-3154-4f6a-986a-63502f293354 -SystemEventPortName:HostProcess-cb475c6d-2db7-43cf-98e4-1285aec8a81e -IoCancelEventPortName:HostProcess-a2ec6b6a-1c45-4408-a825-703d29a98aed -NonStateChangingEventPortName:HostProcess-3700cd96-5268-4032-b846-b08b41f37a0f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b4070640-03ef-4363-9002-d68b9e79671b -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskeng.exe {9AEEA028-6EB7-4F5F-955D-5E8465D82B07}
"C:\Program Files (x86)\Internet Speed Checker\dd3c92bf-b702-4c80-8ea4-d47a5415f9fc.exe" /agentregpath='Internet Speed Checker' /appid=61752 /srcid='001726' /subid='0' /zdata='0' /bic=9D62B4BD6D8D4AABB21302591638E73AIE /verifier=6ce6c5ddcaaedc05fdf581dd31400f1c /installerversion=1_35_09_29 /installationtime=1416170505 /statsdomain=http://stats.newonlinedatastack.com /errorsdomain=http://errors.newonlinedatastack.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newonlinedatastack.com /runfrom='task' /externallog=''
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "0x20d8_0x211c_0xe53a922a"
"C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c\maintainer.exe"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
taskeng.exe {CC572421-FBA6-40AD-B87C-253725F8CD1D}
taskhostex.exe
"C:\Program Files (x86)\Internet Speed Checker\c1976e07-87ba-46e7-a77b-fdc48d47a57e.exe" 001726 9D62B4BD6D8D4AABB21302591638E73AIE 61752 1416170505 93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 Internet Speed Checker
C:\WINDOWS\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {9BA05972-F6A8-11CF-A442-00A0C90A8F39} -Embedding
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Windows\RTFTrack.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Windows\System32\MSTM64_Q.EXE"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=20524.13514820.817415116 "C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 20524 "\\.\pipe\gecko-crash-server-pipe.20524" plugin
"C:\windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe" --proxy-stub-channel=Flash20692.6F81E980.22932 --host-broker-channel=Flash20692.6F81E980.25303 --host-pid=20692 --host-npapi-version=27 --plugin-path="C:\windows\SYSTEM32\Macromed\Flash\NPSWF32_11_9_900_117.dll"
"C:\windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe" --channel=17872.0027F7EC.1926676218 --proxy-stub-channel=Flash20692.6F81E980.22932 --plugin-path="C:\windows\SYSTEM32\Macromed\Flash\NPSWF32_11_9_900_117.dll" --host-npapi-version=27 --type=renderer
"C:\Program Files (x86)\WinRAR\WinRAR.exe" a -ieml. -ep1 -scul -r0 -iext -- . "@C:\Users\ROMAN\AppData\Local\Temp\Rar$LS0.952"
"C:\Users\ROMAN\Downloads\RSITx64.exe"
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\WINDOWS\tasks\5114d3e9-968e-4f55-ba04-43b2497c37ca-1.job - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-codedownloader.exe /rawdata=ZUItHPgJG4+ITSffUvbg67rrztIlFqpkb9OCXauBouUxlFywlTmmwPv4qmQ+AV2oGwl34yZVIkTYgOW95U3NpPegFKvxe8bUqcuzH7B+7MdFe7dDlmpsDluXT1xhvh53pPaojtGC41XpMNCBuRD6XHhLYfLm/NET4OI3+zR/lQ8dMztniPzHIWkT/haSKo80y+U33WHwdUawoWxkO3yeK9B5pd/0mV1PIZAU65+LftiAmCAP6zjRX6+LcOT8oGLtkGIgfmfw4/CRxIysk7LO9x3LK+0RrlRtm1QHBnoxsqX3f9ArJNOrfvp0ZesAZYmDHm/pcZa4uqzlHChtES3COQweET7uNIRAw3MD7YiyyZ7xSyU3/OFvOb27VDcN+6D5+zMiPGiFdpjHNlXt60/jfYPYxfQA0PbAniLFKvtKUXbx1aIrgjTI5ASdYADgCu1paT6txzKfO0RDCZfgF/N8txiluDek6K2AvSdkHlYvYRUvmpmgOyp4b+lOJqkq+ZWjteRK/Kcg9m1twhmdvWGPFM+k0U1MdQ16KR9YGAaVE4g1TUUAdZ1Zph6GUcso/FOOQVtI0te6qgPWOOvuYmUqCC2jrJ6cM2qW2tNHSRMxfbJiJvWCXG4rMYkIO55IeuSnmnIeU/ur3LTj1SHa4GrxOSYBGGGb5eIYDan+1a0W1rqkoRwIvdoMRai4tkndaJbFUkDfFh0wQfEAbTy3nqLQdB+Cc7EuPa91A+O8YnOEX79Pd7UyJ4/L1WG04YlNWBuc/rmF65l9evdYVw00NCDR+5GuPCQs7pyiLRm9c+GXqxLEroLSvnj0VeJlNryJ4xCMXOQvgfiZFB/6OHoK+XQOGgOx2X4L9dqsCBIfG1CRuOOrUhxbLrkRhvGYS92p0a2H1RpzunBT+NhwtQg12fBhcjZwW3Vnl7FUy8OAKvYFBjOdnZUXYQWEm8/IVfHvfZ5+HSfRkHD2rJbGP5Dc9q0OwEwuQTcIUH6oMUKKKG7Nd7uTKyr6Rx2dATA0MHeijJy1BowSV0+8ra7eTNaJ0EsHScZ2Qq2w8JPGRFKEMA8Tw6Skr3pGtW6YrFjHh0mYhL+Wlaqw+CEa3CKqdIIhyQP86U1zmGxpyxEr78zfUC4vYIQPbhG2vmn1QY0fGB1fw6Q7aqEkykm0pHsJYvJ/lzmBzeKZnfRUgs3SX6VhKCxTqtdHanMt1FhzVHM09AUlAzfYMaKd1JJGfHSjAjDnfhZBRJQL/mmle951SO0WaehZn5k2wn3qQuA90A47ap2UnY0Vdf/fA3eDrU2qX0ILoOP+ytvjRvAtSvWoHcJcx+OSxx57kSs01taP9Zd98IqvhkI/hJx5rbgHkmC16XmXJr9KFg==
C:\WINDOWS\tasks\5114d3e9-968e-4f55-ba04-43b2497c37ca-11.job - C:\Program Files (x86)\Internet Speed Checker\5114d3e9-968e-4f55-ba04-43b2497c37ca-11.exe /rawdata=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
C:\WINDOWS\tasks\5114d3e9-968e-4f55-ba04-43b2497c37ca-2.job - C:\Program Files (x86)\Internet Speed Checker\5114d3e9-968e-4f55-ba04-43b2497c37ca-2.exe /rawdata=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
C:\WINDOWS\tasks\5114d3e9-968e-4f55-ba04-43b2497c37ca-4.job - C:\Program Files (x86)\Internet Speed Checker\5114d3e9-968e-4f55-ba04-43b2497c37ca-4.exe /rawdata=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
C:\WINDOWS\tasks\5114d3e9-968e-4f55-ba04-43b2497c37ca-5.job - C:\Program Files (x86)\Internet Speed Checker\5114d3e9-968e-4f55-ba04-43b2497c37ca-5.exe /rawdata=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
C:\WINDOWS\tasks\5114d3e9-968e-4f55-ba04-43b2497c37ca-5_user.job - C:\Program Files (x86)\Internet Speed Checker\5114d3e9-968e-4f55-ba04-43b2497c37ca-5.exe /rawdata=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
C:\WINDOWS\tasks\5114d3e9-968e-4f55-ba04-43b2497c37ca-6.job - C:\Program Files (x86)\Internet Speed Checker\5114d3e9-968e-4f55-ba04-43b2497c37ca-6.exe /rawdata=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
C:\WINDOWS\tasks\5114d3e9-968e-4f55-ba04-43b2497c37ca-7.job - C:\Program Files (x86)\Internet Speed Checker\5114d3e9-968e-4f55-ba04-43b2497c37ca-7.exe /rawdata=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
C:\WINDOWS\tasks\c1976e07-87ba-46e7-a77b-fdc48d47a57e.job - C:\Program Files (x86)\Internet Speed Checker\c1976e07-87ba-46e7-a77b-fdc48d47a57e.exe 001726 9D62B4BD6D8D4AABB21302591638E73AIE 61752 1416170505 93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 Internet Speed Checker
C:\WINDOWS\tasks\dd3c92bf-b702-4c80-8ea4-d47a5415f9fc.job - C:\Program Files (x86)\Internet Speed Checker\dd3c92bf-b702-4c80-8ea4-d47a5415f9fc.exe /agentregpath='Internet Speed Checker' /appid=61752 /srcid='001726' /subid='0' /zdata='0' /bic=9D62B4BD6D8D4AABB21302591638E73AIE /verifier=6ce6c5ddcaaedc05fdf581dd31400f1c /installerversion=1_35_09_29 /installationtime=1416170505 /statsdomain=http://stats.newonlinedatastack.com /errorsdomain=http://errors.newonlinedatastack.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newonlinedatastack.com /runfrom='task' /externallog=''
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll
C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\extensions\
sepherdwilbur@aol.com
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\searchplugins\
ask-web-search.xml
firmycz.xml
seznam-avast.xml
zbocz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]
Internet Speed Checker - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-bho64.dll [2014-11-16 754592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5054562D-5247-006A-76A7-7A786E7484D7}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]
Internet Speed Checker - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-bho.dll [2014-11-16 558496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-12-21 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-12-21 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-12-21 770520]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-03-05 2876816]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2013-04-10 6339656]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-01-31 36352]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-02-04 899680]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2013-03-05 1647616]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-05-09 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-05-09 191544]
"KONICA MINOLTA PagePro 1350WStatusDisplay"=C:\WINDOWS\system32\MSTM64_Q.EXE [2011-03-09 247224]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-10-31 168464]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-12-21 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-17 16:05:41 ----D---- C:\Program Files\trend micro
2014-11-17 16:05:39 ----D---- C:\rsit
2014-11-16 22:25:25 ----D---- C:\d593ad8b68ca11be09577e32f191
2014-11-16 22:22:00 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2014-11-16 22:18:52 ----D---- C:\ProgramData\Lenovo
2014-11-16 22:18:00 ----SHD---- C:\Config.Msi
2014-11-16 22:11:13 ----D---- C:\Program Files\CCleaner
2014-11-16 21:42:06 ----D---- C:\Program Files (x86)\879317df-3572-4088-bf6c-9f7acf4c5347
2014-11-16 21:41:55 ----D---- C:\Program Files (x86)\globalUpdate
2014-11-16 21:41:51 ----D---- C:\Program Files (x86)\Internet Speed Checker
2014-11-16 16:58:29 ----D---- C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c
2014-11-16 16:29:24 ----A---- C:\WINDOWS\system32\drivers\{e223215e-2f9f-47a5-8264-4b12e6d7c1d7}Gw64.sys
2014-11-15 17:59:42 ----A---- C:\WINDOWS\system32\drivers\{96611316-9343-40cf-a1ee-299e0bfa2140}Gw64.sys
2014-11-15 17:49:36 ----D---- C:\Program Files (x86)\Ttessab
2014-11-15 17:46:05 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-11-15 17:43:36 ----D---- C:\Program Files (x86)\Seznam.cz
2014-11-15 17:42:36 ----D---- C:\Users\ROMAN\AppData\Roaming\Seznam.cz
2014-11-15 17:42:34 ----D---- C:\Users\ROMAN\AppData\Roaming\SEAT LEON II 1.9 TDI user guide
2014-11-12 08:36:02 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-12 08:36:01 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-12 08:36:00 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-12 08:35:58 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-12 08:35:58 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-12 08:35:57 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-12 08:35:57 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-12 08:35:57 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-12 08:35:50 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-12 08:35:46 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-12 08:35:45 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-12 08:35:44 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-12 08:35:43 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-12 08:35:39 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-12 08:35:39 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-12 08:34:49 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 08:34:44 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 08:33:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 08:33:39 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 08:33:30 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 08:33:27 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 08:33:24 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 08:33:23 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 08:33:22 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 08:33:22 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 08:33:21 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 08:33:21 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 08:33:20 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 08:33:20 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 08:33:19 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 08:33:18 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 08:33:18 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 08:33:17 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 08:33:17 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 08:33:15 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 08:33:15 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 08:33:14 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 08:33:14 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 08:33:13 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 08:33:13 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 08:33:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 08:33:11 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 08:33:11 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 08:33:11 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 08:33:11 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 08:33:10 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 08:33:08 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 08:33:08 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 08:33:08 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 08:33:07 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 08:33:04 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 08:33:03 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 08:33:03 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 08:33:03 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 08:33:02 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 08:33:02 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 08:33:02 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 08:33:02 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 08:33:01 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 08:33:01 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 08:33:01 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 08:33:01 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 08:33:01 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 08:33:00 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 08:33:00 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 08:32:59 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 08:32:57 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 08:32:57 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 08:32:57 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 08:32:56 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:32:55 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 08:32:54 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 08:32:54 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 08:32:54 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 08:32:54 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 08:32:53 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 08:32:53 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 08:32:53 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 08:32:53 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 08:32:52 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 08:32:52 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 08:32:52 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 08:32:51 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 08:32:51 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 08:32:51 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 08:32:50 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 08:32:50 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 08:32:49 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 08:32:49 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 08:32:49 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 08:32:48 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 08:32:48 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 08:32:48 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 08:31:51 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 08:31:51 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 08:31:50 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 08:31:50 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 08:31:50 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 08:31:18 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 08:31:17 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 08:31:17 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 08:31:17 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 08:31:16 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 08:31:16 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 08:31:16 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 08:31:16 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 08:31:15 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 08:31:15 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 08:31:14 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 08:31:14 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 08:31:14 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 08:30:20 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 08:30:20 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 08:30:11 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-12 08:30:10 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-12 08:30:10 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-12 08:30:09 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-12 08:30:09 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-12 08:30:09 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-12 08:30:09 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 08:30:09 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-12 08:30:08 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-12 08:30:08 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-12 08:30:08 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-12 08:30:08 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-12 08:30:07 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-12 08:30:07 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-12 08:30:07 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-12 08:30:07 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-12 08:28:56 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 08:28:55 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 08:28:43 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 08:28:43 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 08:28:43 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 08:28:43 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 08:28:42 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 08:28:42 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 08:28:42 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 08:28:42 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 08:28:42 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 08:28:41 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 08:28:41 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 08:28:34 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-12 08:28:33 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 08:28:18 ----A---- C:\WINDOWS\system32\shell32.dll
2014-11-12 08:28:12 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-11-12 08:28:12 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-11-12 08:28:07 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-12 08:28:06 ----A---- C:\WINDOWS\system32\twinui.dll
2014-11-12 08:28:05 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-11-12 08:28:04 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-12 08:28:04 ----A---- C:\WINDOWS\system32\localspl.dll
2014-11-12 08:28:03 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-12 08:28:02 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-11-12 08:28:02 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-11-12 08:28:01 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-11-12 08:28:01 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-11-12 08:28:00 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-11-12 08:28:00 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-11-12 08:27:59 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-11-12 08:27:58 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-11-12 08:27:58 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-11-12 08:27:54 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-11-12 08:27:53 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-11-12 08:27:52 ----A---- C:\WINDOWS\system32\untfs.dll
2014-11-12 08:27:51 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-11-12 08:27:49 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 08:27:43 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2014-11-12 08:27:42 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2014-11-11 09:25:42 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-11-01 03:22:54 ----D---- C:\foto - NAROZKY
======List of files/folders modified in the last 1 month======
2014-11-17 16:05:41 ----D---- C:\Program Files
2014-11-17 16:05:40 ----D---- C:\WINDOWS\Prefetch
2014-11-17 16:00:03 ----D---- C:\WINDOWS\system32\sru
2014-11-17 15:57:21 ----D---- C:\WINDOWS\Temp
2014-11-17 15:57:19 ----D---- C:\Windows
2014-11-17 15:51:50 ----D---- C:\WINDOWS\SoftwareDistribution
2014-11-17 15:51:50 ----D---- C:\WINDOWS\debug
2014-11-17 14:19:46 ----D---- C:\WINDOWS\System32
2014-11-17 14:19:46 ----D---- C:\WINDOWS\Inf
2014-11-17 14:19:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-17 10:01:35 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-17 08:41:38 ----D---- C:\WINDOWS\system32\drivers
2014-11-17 08:40:46 ----RSD---- C:\WINDOWS\assembly
2014-11-16 22:24:43 ----SD---- C:\ProgramData\Microsoft
2014-11-16 22:22:31 ----D---- C:\WINDOWS\system32\Tasks
2014-11-16 22:22:31 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-16 22:22:00 ----D---- C:\WINDOWS\SysWOW64
2014-11-16 22:19:38 ----SHD---- C:\WINDOWS\Installer
2014-11-16 22:18:52 ----HD---- C:\ProgramData
2014-11-16 22:18:52 ----D---- C:\Users\ROMAN\AppData\Roaming\LSC
2014-11-16 22:18:43 ----D---- C:\Program Files\Lenovo
2014-11-16 22:17:42 ----SHD---- C:\System Volume Information
2014-11-16 22:16:54 ----D---- C:\WINDOWS\Downloaded Installations
2014-11-16 22:15:59 ----D---- C:\Users\ROMAN\AppData\Roaming\Dropbox
2014-11-16 22:14:49 ----D---- C:\Program Files (x86)\AskPartnerNetwork
2014-11-16 22:14:44 ----RD---- C:\Program Files (x86)
2014-11-16 22:12:43 ----DC---- C:\WINDOWS\Panther
2014-11-16 22:12:42 ----D---- C:\WINDOWS\Minidump
2014-11-16 21:47:53 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-16 21:43:28 ----D---- C:\WINDOWS\Tasks
2014-11-16 16:29:24 ----A---- C:\WINDOWS\win.ini
2014-11-16 12:28:21 ----D---- C:\WINDOWS\system32\config
2014-11-16 01:36:11 ----D---- C:\WINDOWS\system32\GroupPolicy
2014-11-14 08:33:29 ----D---- C:\WINDOWS\AppReadiness
2014-11-14 08:33:28 ----HD---- C:\Program Files\WindowsApps
2014-11-12 17:16:03 ----D---- C:\WINDOWS\WinSxS
2014-11-12 16:09:18 ----D---- C:\Program Files\Windows Defender
2014-11-12 16:09:18 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-12 16:09:17 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-12 16:09:17 ----D---- C:\WINDOWS\system32\wbem
2014-11-12 16:09:17 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-12 16:09:16 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-12 16:09:16 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 16:09:15 ----D---- C:\WINDOWS\system32\migration
2014-11-12 16:09:15 ----D---- C:\Program Files\Internet Explorer
2014-11-12 09:10:58 ----D---- C:\WINDOWS\CbsTemp
2014-11-12 08:50:05 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-12 08:47:53 ----RD---- C:\WINDOWS\ToastData
2014-11-12 08:47:52 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-11-12 08:47:51 ----D---- C:\WINDOWS\apppatch
2014-11-12 08:42:17 ----D---- C:\WINDOWS\system32\MRT
2014-11-12 08:42:02 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-12 08:09:38 ----D---- C:\WINDOWS\system32\catroot2
2014-11-08 13:51:13 ----D---- C:\WINDOWS\system32\wdi
2014-10-30 12:25:26 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-10-30 01:55:02 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-10-20 08:15:37 ----D---- C:\WINDOWS\rescache
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-01-31 652784]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-05-09 39008]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R3 ACPIVPC;@oem53.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-05-09 33560]
R3 AMPPAL;@oem62.inf,%AMPPAL.SVCDESC%;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® + High Speed; C:\WINDOWS\System32\drivers\AMPPAL.sys [2013-02-13 164832]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 BTATH_HCRP;@oem52.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
R3 BTATH_RCP;@oem56.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 CnxtHdAudService;@oem68.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-03-05 1680992]
R3 ETD;@oem51.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2013-02-27 355664]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-12-21 4216320]
R3 IntcDAud;@oem57.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-04-22 342528]
R3 iwdbus;@oem71.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-15 27032]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem24.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 RSUSBVSTOR;@oem67.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2013-01-15 327240]
R3 rtsuvc;@oem37.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-04-10 8243272]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S2 MLPTDR_Q;MLPTDR_Q; \??\C:\WINDOWS\system32\ []
S3 AthBTPort;@oem50.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
S3 BTATH_A2DP;@oem49.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
S3 btath_avdt;@oem49.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
S3 BTATH_LWFLT;@oem57.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 NuidFltr;@oem78.inf,%NuidFltr.SvcDesc%;NUID filter driver; C:\WINDOWS\System32\drivers\NuidFltr.sys [2007-08-31 20392]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 WinUSB;@winusb.inf,%WinUSB_SvcDesc%;Ovladač WinUsb; C:\WINDOWS\System32\drivers\WinUSB.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2013-02-13 770528]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2013-03-05 202400]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-02-08 621296]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-01-31 15344]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-20 634632]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-08-21 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-09-11 277792]
R2 MaintainerSvc2.69.9464532;MaintainerSvc2.69.9464532; C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c\maintainer.exe [2014-11-17 123672]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-02-08 149744]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-09-11 365344]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-11-16 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-17 116648]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-12-21 279000]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-11-16 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-17 116648]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-10-16 272776]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-11 114288]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-02-08 273136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím kontrolu, vyskakující okna nežádoucích stránek
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Zdravim 
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Po spusteni probehne stazeni databaze
- Kliknete na Scan a nasledne Clean
- Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
- Do okna vlozte skript nize
Kód: Vybrat vše
autoclean; emptyclsid; iedefaults; FFdefaults; CHRdefaults; emptyalltemp; resethosts;- Nasledne kliknete na Run Script
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
# AdwCleaner v4.101 - Report created 17/11/2014 at 16:46:40
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : ROMAN - IDEA-PC
# Running from : C:\Users\ROMAN\Downloads\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
Service Deleted : {96611316-9343-40cf-a1ee-299e0bfa2140}Gw64
Service Deleted : {e223215e-2f9f-47a5-8264-4b12e6d7c1d7}Gw64
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Internet Speed Checker
Folder Deleted : C:\Users\ROMAN\AppData\Local\globalUpdate
Folder Deleted : C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\Extensions\sepherdwilbur@aol.com
File Deleted : C:\WINDOWS\System32\\drivers\{96611316-9343-40cf-a1ee-299e0bfa2140}Gw64.sys
File Deleted : C:\WINDOWS\System32\\drivers\{e223215e-2f9f-47a5-8264-4b12e6d7c1d7}Gw64.sys
File Deleted : C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\searchplugins\ask-web-search.xml
File Deleted : C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\user.js
***** [ Scheduled Tasks ] *****
Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-1
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-11
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-2
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-4
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-5
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-5_user
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-6
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-7
Task Deleted : c1976e07-87ba-46e7-a77b-fdc48d47a57e
Task Deleted : dd3c92bf-b702-4c80-8ea4-d47a5415f9fc
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622172252}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655175552}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666176652}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644174452}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611171152}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622172252}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655175552}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666176652}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Internet Speed Checker
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\Iminent
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\Clara
Key Deleted : HKLM\SOFTWARE\Internet Speed Checker
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Speed Checker
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v33.1 (x86 cs)
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_meta.value", "%7B%22images/icon_255x255.png%22%3A%7B%22id%22%3A750126%2C%22ver%22%3A1%2C%22status%22%3A1%2C%22name%22%3A%22im[...]
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22dealply_p%22%3A%7B%22urls[...]
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.crossrider.bic", "149ba5b7b99d7fd15a079d9bb3cd7f69");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.mywebsearch.prevKwdEnabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.savedPrev", "true");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.tb", "Ask Web Search");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.savedPrev", "true");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.tb", "Ask Web Search");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.prev", "seznam.cz");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.savedPrev", "true");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.tb", "hxxp://home.tb.ask.com/index.jhtml?ptb=D8716B49-A172-4C13-A58F-81244F3C81E2&n=780bd350&p2=^HJ^xdm073^YYA^cz&si=pconvF[...]
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.page.savedPrev", 1);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.page.tb", 1);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.firstKnownVersion", "6.33.3.42825");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=D8716B49-A172-4C13-A58F-81244F3C81E2&n=780bd350&p2=^HJ^xdm073^YYA^cz&si=pconvFF");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.enabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.initialized", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installKeysSource", "LocalStorage");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installType", "XPI");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.contextKey", "");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.installDate", "2014040912");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerId", "^HJ^xdm073^YYA^cz");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerSubId", "pconvFF");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.pixelUrl", "hxxp://videodownloadconverter.dl.tb.ask.com/install_pixels.jhtml?partner=^HJ^xdm073^YYA^cz&coId=bf337cf29c64462f94013003812[...]
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.success", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.toolbarId", "D8716B49-A172-4C13-A58F-81244F3C81E2");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.isCompliantUninstallImplementation", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.lastActivePing", "1397110048412");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.lastKnownVersion", "6.33.3.42825");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.defaultSearch", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.homePageEnabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.keywordEnabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.tabEnabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.partnerPixelFired", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.successUrl", "hxxp://pconverter.com/thankyou.php");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.toolbarCollapsed", false);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.weather.location", "10001");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "videodownloadconverter@mindspark.com");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "videodownloadconverter@mindspark.com");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar_PTV-RG@apn.ask.com.install-event-fired", true);
-\\ Google Chrome v38.0.2125.111
*************************
AdwCleaner[R0].txt - [16307 octets] - [17/11/2014 16:42:10]
AdwCleaner[S0].txt - [15629 octets] - [17/11/2014 16:46:40]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15690 octets] ##########
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : ROMAN - IDEA-PC
# Running from : C:\Users\ROMAN\Downloads\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
Service Deleted : {96611316-9343-40cf-a1ee-299e0bfa2140}Gw64
Service Deleted : {e223215e-2f9f-47a5-8264-4b12e6d7c1d7}Gw64
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Internet Speed Checker
Folder Deleted : C:\Users\ROMAN\AppData\Local\globalUpdate
Folder Deleted : C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\Extensions\sepherdwilbur@aol.com
File Deleted : C:\WINDOWS\System32\\drivers\{96611316-9343-40cf-a1ee-299e0bfa2140}Gw64.sys
File Deleted : C:\WINDOWS\System32\\drivers\{e223215e-2f9f-47a5-8264-4b12e6d7c1d7}Gw64.sys
File Deleted : C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\searchplugins\ask-web-search.xml
File Deleted : C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\user.js
***** [ Scheduled Tasks ] *****
Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-1
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-11
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-2
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-4
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-5
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-5_user
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-6
Task Deleted : 5114d3e9-968e-4f55-ba04-43b2497c37ca-7
Task Deleted : c1976e07-87ba-46e7-a77b-fdc48d47a57e
Task Deleted : dd3c92bf-b702-4c80-8ea4-d47a5415f9fc
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622172252}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655175552}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666176652}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644174452}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611171152}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622172252}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655175552}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666176652}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Internet Speed Checker
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\Iminent
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\Clara
Key Deleted : HKLM\SOFTWARE\Internet Speed Checker
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Speed Checker
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v33.1 (x86 cs)
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_meta.value", "%7B%22images/icon_255x255.png%22%3A%7B%22id%22%3A750126%2C%22ver%22%3A1%2C%22status%22%3A1%2C%22name%22%3A%22im[...]
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22dealply_p%22%3A%7B%22urls[...]
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.crossrider.bic", "149ba5b7b99d7fd15a079d9bb3cd7f69");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.mywebsearch.prevKwdEnabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.savedPrev", "true");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.tb", "Ask Web Search");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.savedPrev", "true");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.tb", "Ask Web Search");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.prev", "seznam.cz");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.savedPrev", "true");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.tb", "hxxp://home.tb.ask.com/index.jhtml?ptb=D8716B49-A172-4C13-A58F-81244F3C81E2&n=780bd350&p2=^HJ^xdm073^YYA^cz&si=pconvF[...]
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.page.savedPrev", 1);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.page.tb", 1);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.firstKnownVersion", "6.33.3.42825");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=D8716B49-A172-4C13-A58F-81244F3C81E2&n=780bd350&p2=^HJ^xdm073^YYA^cz&si=pconvFF");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.enabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.initialized", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installKeysSource", "LocalStorage");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installType", "XPI");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.contextKey", "");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.installDate", "2014040912");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerId", "^HJ^xdm073^YYA^cz");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerSubId", "pconvFF");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.pixelUrl", "hxxp://videodownloadconverter.dl.tb.ask.com/install_pixels.jhtml?partner=^HJ^xdm073^YYA^cz&coId=bf337cf29c64462f94013003812[...]
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.success", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.toolbarId", "D8716B49-A172-4C13-A58F-81244F3C81E2");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.isCompliantUninstallImplementation", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.lastActivePing", "1397110048412");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.lastKnownVersion", "6.33.3.42825");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.defaultSearch", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.homePageEnabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.keywordEnabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.tabEnabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.partnerPixelFired", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.successUrl", "hxxp://pconverter.com/thankyou.php");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.toolbarCollapsed", false);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.weather.location", "10001");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled", true);
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "videodownloadconverter@mindspark.com");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "videodownloadconverter@mindspark.com");
[zw535ur1.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar_PTV-RG@apn.ask.com.install-event-fired", true);
-\\ Google Chrome v38.0.2125.111
*************************
AdwCleaner[R0].txt - [16307 octets] - [17/11/2014 16:42:10]
AdwCleaner[S0].txt - [15629 octets] - [17/11/2014 16:46:40]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15690 octets] ##########
Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Pokracujte Zoekem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Zoek.exe v5.0.0.0 Updated 16-November-2014
Tool run by ROMAN on po 17. 11. 2014 at 18:39:07,43.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\ROMAN\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
17. 11. 2014 18:40:42 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F436C-5CD4-405C-A0F2-65CA812A94DA} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2F2334E3-7C9B-4626-9D95-CA7BB9C135B} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3F3BAAD4-6DF7-4859-B7EF-65D72D3B20A3} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43C57845-CAF1-4694-A8E-C73FDA2E7D48} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4CCCADA0-1689-4607-84F6-99E8F917E41} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E6DF6DA-6B72-4A87-9774-B8486BA7146} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5217a948-c48f-4091-a9e8-dfc33d5302c8} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62CD7C9E-DE76-46C6-AF22-D7BC6E1CF0F9} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6CA8B5DA-CF7E-4641-B6CC-A6FB7EAFE83} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{707FDCD8-EDF2-4FF3-9120-2E349778D5F9} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{71CA5CE4-DAEB-4AA4-A552-8285EA7119} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{776FF2E1-8F48-4AA8-8E5A-418B22FF7E6F} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A2101B1-8921-454C-A3EC-D335462341BD} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7BF9A45A-FFC9-40A5-AE57-692F8FF82F8} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7e131231-9eca-4662-ab46-58a7e33067b7} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7E82672B-DDAB-4C71-ADF2-91B54FAC8D0} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{94451DB0-C717-4B47-9F43-E78E6F2A3F62} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9EF5F818-9D8C-4070-912B-F87E67822DB7} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A25D03BE-BC0C-40C0-B37A-6365D5BBD957} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C703E737-98D8-4D19-90D9-3ED9C67A6AAD} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CE252A72-DE91-4418-B39B-15D9FE4936E} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F3C33C77-1D75-431C-B240-C5B42299A0E6} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{fe0b47d7-16c7-4bfc-b21d-b378fdbcba54} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5217a948-c48f-4091-a9e8-dfc33d5302c8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7e131231-9eca-4662-ab46-58a7e33067b7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{fe0b47d7-16c7-4bfc-b21d-b378fdbcba54} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/");
user_pref("browser.search.defaulturl", "http://search.seznam.cz/?sourceid=quick ... earchTerms}&");
user_pref("browser.search.defaultengine", "Seznam");
user_pref("browser.search.order.1", "Seznam");
user_pref("browser.search.useDBForOrder", true);
Added to C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\prefs.js:
Deleted from C:\Users\ROMAN\AppData\Roaming\Thunderbird\Profiles\jrswipux.default\prefs.js:
Added to C:\Users\ROMAN\AppData\Roaming\Thunderbird\Profiles\jrswipux.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);
ProfilePath: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_201417.11._1851_.backup
ProfilePath: C:\Users\ROMAN\AppData\Roaming\Thunderbird\Profiles\jrswipux.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_201417.11._1851_.backup
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~2\879317df-3572-4088-bf6c-9f7acf4c5347 deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\windows\SysNative\GroupPolicy\machine deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Users\ROMAN\Desktop\Continue installation - FreeMake Video Downloader Installation.lnk deleted
C:\Users\ROMAN\Desktop\FLV Player.lnk deleted
==== Firefox Extensions ======================
ProfilePath: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default
- Seznam litika - %ProfilePath%\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default
4BF70B35B943BD73BD6E13EB7C1BA4B3 - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll - Shockwave Flash
==== Chromium Look ======================
Ttessab - ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eopkijkcgpoililocaolmakddpiekljc
avast Online Security - ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
==== Chromium Fix ======================
C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eopkijkcgpoililocaolmakddpiekljc deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{FA3EF1C1-8E5F-4D4C-8841-C96D8585603D}"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"
{FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} Unknown Url="Not_Found"
==== Reset Google Chrome ======================
C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\SearchScopes\{FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_CURRENT_USER\Software\Policies\Google deleted successfully
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\ROMAN\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\ROMAN\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\ROMAN\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\ROMAN\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
C:\Users\ROMAN\AppData\Local\Mozilla\Firefox\Profiles\zw535ur1.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=26 folders=13 101642815 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\ROMAN\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\ROMAN\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on po 17. 11. 2014 at 19:18:55,97 ======================
Tool run by ROMAN on po 17. 11. 2014 at 18:39:07,43.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\ROMAN\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
17. 11. 2014 18:40:42 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F436C-5CD4-405C-A0F2-65CA812A94DA} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2F2334E3-7C9B-4626-9D95-CA7BB9C135B} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3F3BAAD4-6DF7-4859-B7EF-65D72D3B20A3} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43C57845-CAF1-4694-A8E-C73FDA2E7D48} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4CCCADA0-1689-4607-84F6-99E8F917E41} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E6DF6DA-6B72-4A87-9774-B8486BA7146} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5217a948-c48f-4091-a9e8-dfc33d5302c8} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62CD7C9E-DE76-46C6-AF22-D7BC6E1CF0F9} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6CA8B5DA-CF7E-4641-B6CC-A6FB7EAFE83} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{707FDCD8-EDF2-4FF3-9120-2E349778D5F9} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{71CA5CE4-DAEB-4AA4-A552-8285EA7119} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{776FF2E1-8F48-4AA8-8E5A-418B22FF7E6F} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A2101B1-8921-454C-A3EC-D335462341BD} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7BF9A45A-FFC9-40A5-AE57-692F8FF82F8} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7e131231-9eca-4662-ab46-58a7e33067b7} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7E82672B-DDAB-4C71-ADF2-91B54FAC8D0} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{94451DB0-C717-4B47-9F43-E78E6F2A3F62} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9EF5F818-9D8C-4070-912B-F87E67822DB7} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A25D03BE-BC0C-40C0-B37A-6365D5BBD957} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C703E737-98D8-4D19-90D9-3ED9C67A6AAD} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CE252A72-DE91-4418-B39B-15D9FE4936E} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F3C33C77-1D75-431C-B240-C5B42299A0E6} deleted successfully
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{fe0b47d7-16c7-4bfc-b21d-b378fdbcba54} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5217a948-c48f-4091-a9e8-dfc33d5302c8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7e131231-9eca-4662-ab46-58a7e33067b7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{fe0b47d7-16c7-4bfc-b21d-b378fdbcba54} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} deleted successfully
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/");
user_pref("browser.search.defaulturl", "http://search.seznam.cz/?sourceid=quick ... earchTerms}&");
user_pref("browser.search.defaultengine", "Seznam");
user_pref("browser.search.order.1", "Seznam");
user_pref("browser.search.useDBForOrder", true);
Added to C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\prefs.js:
Deleted from C:\Users\ROMAN\AppData\Roaming\Thunderbird\Profiles\jrswipux.default\prefs.js:
Added to C:\Users\ROMAN\AppData\Roaming\Thunderbird\Profiles\jrswipux.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);
ProfilePath: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_201417.11._1851_.backup
ProfilePath: C:\Users\ROMAN\AppData\Roaming\Thunderbird\Profiles\jrswipux.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_201417.11._1851_.backup
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~2\879317df-3572-4088-bf6c-9f7acf4c5347 deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\windows\SysNative\GroupPolicy\machine deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Users\ROMAN\Desktop\Continue installation - FreeMake Video Downloader Installation.lnk deleted
C:\Users\ROMAN\Desktop\FLV Player.lnk deleted
==== Firefox Extensions ======================
ProfilePath: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default
- Seznam litika - %ProfilePath%\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default
4BF70B35B943BD73BD6E13EB7C1BA4B3 - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll - Shockwave Flash
==== Chromium Look ======================
Ttessab - ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eopkijkcgpoililocaolmakddpiekljc
avast Online Security - ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
==== Chromium Fix ======================
C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eopkijkcgpoililocaolmakddpiekljc deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{FA3EF1C1-8E5F-4D4C-8841-C96D8585603D}"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"
{FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} Unknown Url="Not_Found"
==== Reset Google Chrome ======================
C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\SearchScopes\{FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_CURRENT_USER\Software\Policies\Google deleted successfully
==== Empty IE Cache ======================
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\ROMAN\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\ROMAN\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\ROMAN\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\ROMAN\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
C:\Users\ROMAN\AppData\Local\Mozilla\Firefox\Profiles\zw535ur1.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=26 folders=13 101642815 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\ROMAN\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\ROMAN\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on po 17. 11. 2014 at 19:18:55,97 ======================
Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2014
Ran by ROMAN at 2014-11-21 19:03:29
Running from C:\Users\ROMAN\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.293 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.9.900.117 - Adobe Systems Incorporated)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{fad118b4-798f-4755-9e67-a622eec95b62}) (Version: 15.6.1 - Intel Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.64.49.0 - Conexant)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo)
Energy Management (x32 Version: 8.0.2.4 - Lenovo) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.65 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3379 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
KONICA MINOLTA PagePro 1350W (HKLM\...\KONICA MINOLTA PagePro 1350W) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10227 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.14.1 - ELAN Microelectronic Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4331.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.4331.52 - CyberLink Corp.) Hidden
Lenovo Solution Center (HKLM\...\{4C2B6F96-3AED-4E3F-8DCE-917863D1E6B1}) (Version: 2.7.003.00 - Lenovo Group Limited)
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3423 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 33.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 33.1 (x86 cs)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
Mozilla Thunderbird 24.1.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 24.1.0 (x86 cs)) (Version: 24.1.0 - Mozilla)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.12 - Qualcomm Atheros Communications Inc.)
Realtek USB Card Reader (HKLM-x32\...\{1E496A68-4943-424E-829D-5C3C85B7B8F2}) (Version: 6.2.9200.39041 - Realtek Semiconductor Corp.)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
UserGuide (x32 Version: 1.0.0.9 - Lenovo) Hidden
Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
21-11-2014 11:25:24 Naplánovaný kontrolní bod
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2014-11-17 18:40 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0B504582-D0BA-462B-B76B-461828E48781} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-10-16] (Lenovo)
Task: {44346801-C297-42E2-9F67-987F5C5A7250} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-11-12] (Microsoft Corporation)
Task: {52D7BA0E-4C47-4656-9E28-CC152C85C895} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] ()
Task: {58C7150B-DEAF-4A03-A251-1D54DB2DFC79} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] ()
Task: {8A353F52-0AD3-494D-8754-3E4DCE8283D8} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] ()
Task: {8E9B89CA-73A7-49A3-AA83-B8E71757221F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {A2BC9645-8E38-4F76-BFAF-3A6996600F40} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2014-10-16] (Lenovo)
Task: {A325E35D-AB0A-4A63-A872-34C31DB56BB5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-17] (Google Inc.)
Task: {AAB24DBF-539B-4E15-9010-0DDE2B95D0BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-17] (Google Inc.)
Task: {E1909D73-03A4-4CF1-BAB5-8B76B752EBE8} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-09-01] (Dolby Laboratories Inc.)
Task: {EEA0BC8D-4BD3-4822-AEC5-0F2AC58DCC0A} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-10-16] (Lenovo)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-11-16 15:29 - 2014-11-21 18:42 - 00123672 _____ () C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c\maintainer.exe
2013-01-25 08:09 - 2013-01-25 08:09 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-01-25 08:05 - 2013-01-25 08:05 - 00084992 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-01-25 08:12 - 2013-01-25 08:12 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-09-25 19:44 - 2014-09-25 19:44 - 00043008 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2013-05-09 00:20 - 2012-07-18 14:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-11-11 09:25 - 2014-11-11 09:26 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\ROMAN\OneDrive:ms-properties
AlternateDataStreams: C:\Users\ROMAN\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\ROMAN\SkyDrive.old:ms-properties
AlternateDataStreams: C:\Users\ROMAN\Downloads\Setup.FreeMake.Video.Downloader__8420_i1253292458_il27844.exe:typelib
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run32: => "mcui_exe"
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\...\StartupApproved\Run: => "SeznamInstall-uninstall:464b0f52d326c3c521840c6f10c2c83f"
========================= Accounts: ==========================
Administrator (S-1-5-21-1082381123-2358903656-3127633694-500 - Administrator - Disabled)
Guest (S-1-5-21-1082381123-2358903656-3127633694-501 - Limited - Disabled)
ROMAN (S-1-5-21-1082381123-2358903656-3127633694-1001 - Administrator - Enabled) => C:\Users\ROMAN
==================== Faulty Device Manager Devices =============
Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Event log errors: =========================
Application errors:
==================
Error: (11/21/2014 07:01:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 54a0
Čas spuštění: 01d005b472354129
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 65b3f3a2-71a8-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 06:53:19 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 3f70
Čas spuštění: 01d005b3523dab67
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 460f431e-71a7-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 06:19:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1cfc
Čas spuštění: 01d005ae90518a9c
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 83f7cf4a-71a2-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 04:01:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 5d60
Čas spuštění: 01d0059b5a67094a
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 4e25b565-718f-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 03:26:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 5530
Čas spuštění: 01d005965cf3aaaa
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 508e9d3c-718a-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 02:54:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 4460
Čas spuštění: 01d0059205520626
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: f913111f-7185-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 02:38:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 3e80
Čas spuštění: 01d0058dc700c4c6
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: b6ab1927-7183-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 01:54:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 3038
Čas spuštění: 01d00589961d7bba
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 899b60e4-717d-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 01:24:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 2034
Čas spuštění: 01d00585653c85e2
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 58d82b5d-7179-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 00:54:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1410
Čas spuštění: 01d00581345977ca
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 27d475ec-7175-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
System errors:
=============
Error: (11/21/2014 05:42:39 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: NuidFltr.sys
Error: (11/21/2014 00:22:22 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (11/21/2014 00:04:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_Q neuspěla při spuštění v důsledku následující chyby:
%%193
Error: (11/21/2014 00:03:35 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Superfetch byla ukončena s následující chybou:
%%1062
Error: (11/21/2014 11:47:00 AM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: NT AUTHORITY)
Description: Kontrola šifrovaného svazku: Informace o svazku F: nelze přečíst.
Error: (11/20/2014 08:46:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) PROSet/Wireless Zero Configuration Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (11/20/2014 08:46:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_Q neuspěla při spuštění v důsledku následující chyby:
%%193
Error: (11/20/2014 08:45:41 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: NuidFltr.sys
Error: (11/20/2014 08:45:47 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:03:56, 20. 11. 2014) bylo neočekávané.
Error: (11/19/2014 08:49:01 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: NuidFltr.sys
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2014-11-17 10:03:52.709
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Celeron(R) CPU 1005M @ 1.90GHz
Percentage of memory in use: 61%
Total physical RAM: 1913.77 MB
Available physical RAM: 740.34 MB
Total Pagefile: 2745.77 MB
Available Pagefile: 1354.97 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:418.09 GB) (Free:17.15 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:19.17 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: A0B0EC24)
Partition: GPT Partition Type.
==================== End Of Log ============================
Ran by ROMAN at 2014-11-21 19:03:29
Running from C:\Users\ROMAN\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.293 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.9.900.117 - Adobe Systems Incorporated)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{fad118b4-798f-4755-9e67-a622eec95b62}) (Version: 15.6.1 - Intel Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.64.49.0 - Conexant)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo)
Energy Management (x32 Version: 8.0.2.4 - Lenovo) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.65 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3379 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
KONICA MINOLTA PagePro 1350W (HKLM\...\KONICA MINOLTA PagePro 1350W) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10227 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.14.1 - ELAN Microelectronic Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4331.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.4331.52 - CyberLink Corp.) Hidden
Lenovo Solution Center (HKLM\...\{4C2B6F96-3AED-4E3F-8DCE-917863D1E6B1}) (Version: 2.7.003.00 - Lenovo Group Limited)
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3423 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 33.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 33.1 (x86 cs)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
Mozilla Thunderbird 24.1.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 24.1.0 (x86 cs)) (Version: 24.1.0 - Mozilla)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.12 - Qualcomm Atheros Communications Inc.)
Realtek USB Card Reader (HKLM-x32\...\{1E496A68-4943-424E-829D-5C3C85B7B8F2}) (Version: 6.2.9200.39041 - Realtek Semiconductor Corp.)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
UserGuide (x32 Version: 1.0.0.9 - Lenovo) Hidden
Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
21-11-2014 11:25:24 Naplánovaný kontrolní bod
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2014-11-17 18:40 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0B504582-D0BA-462B-B76B-461828E48781} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-10-16] (Lenovo)
Task: {44346801-C297-42E2-9F67-987F5C5A7250} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-11-12] (Microsoft Corporation)
Task: {52D7BA0E-4C47-4656-9E28-CC152C85C895} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] ()
Task: {58C7150B-DEAF-4A03-A251-1D54DB2DFC79} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] ()
Task: {8A353F52-0AD3-494D-8754-3E4DCE8283D8} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] ()
Task: {8E9B89CA-73A7-49A3-AA83-B8E71757221F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {A2BC9645-8E38-4F76-BFAF-3A6996600F40} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2014-10-16] (Lenovo)
Task: {A325E35D-AB0A-4A63-A872-34C31DB56BB5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-17] (Google Inc.)
Task: {AAB24DBF-539B-4E15-9010-0DDE2B95D0BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-17] (Google Inc.)
Task: {E1909D73-03A4-4CF1-BAB5-8B76B752EBE8} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-09-01] (Dolby Laboratories Inc.)
Task: {EEA0BC8D-4BD3-4822-AEC5-0F2AC58DCC0A} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-10-16] (Lenovo)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-11-16 15:29 - 2014-11-21 18:42 - 00123672 _____ () C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c\maintainer.exe
2013-01-25 08:09 - 2013-01-25 08:09 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-01-25 08:05 - 2013-01-25 08:05 - 00084992 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-01-25 08:12 - 2013-01-25 08:12 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-09-25 19:44 - 2014-09-25 19:44 - 00043008 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2013-05-09 00:20 - 2012-07-18 14:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-11-11 09:25 - 2014-11-11 09:26 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\ROMAN\OneDrive:ms-properties
AlternateDataStreams: C:\Users\ROMAN\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\ROMAN\SkyDrive.old:ms-properties
AlternateDataStreams: C:\Users\ROMAN\Downloads\Setup.FreeMake.Video.Downloader__8420_i1253292458_il27844.exe:typelib
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run32: => "mcui_exe"
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\...\StartupApproved\Run: => "SeznamInstall-uninstall:464b0f52d326c3c521840c6f10c2c83f"
========================= Accounts: ==========================
Administrator (S-1-5-21-1082381123-2358903656-3127633694-500 - Administrator - Disabled)
Guest (S-1-5-21-1082381123-2358903656-3127633694-501 - Limited - Disabled)
ROMAN (S-1-5-21-1082381123-2358903656-3127633694-1001 - Administrator - Enabled) => C:\Users\ROMAN
==================== Faulty Device Manager Devices =============
Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Event log errors: =========================
Application errors:
==================
Error: (11/21/2014 07:01:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 54a0
Čas spuštění: 01d005b472354129
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 65b3f3a2-71a8-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 06:53:19 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 3f70
Čas spuštění: 01d005b3523dab67
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 460f431e-71a7-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 06:19:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1cfc
Čas spuštění: 01d005ae90518a9c
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 83f7cf4a-71a2-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 04:01:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 5d60
Čas spuštění: 01d0059b5a67094a
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 4e25b565-718f-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 03:26:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 5530
Čas spuštění: 01d005965cf3aaaa
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 508e9d3c-718a-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 02:54:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 4460
Čas spuštění: 01d0059205520626
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: f913111f-7185-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 02:38:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 3e80
Čas spuštění: 01d0058dc700c4c6
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: b6ab1927-7183-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 01:54:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 3038
Čas spuštění: 01d00589961d7bba
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 899b60e4-717d-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 01:24:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 2034
Čas spuštění: 01d00585653c85e2
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 58d82b5d-7179-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
Error: (11/21/2014 00:54:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20605 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1410
Čas spuštění: 01d00581345977ca
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe
ID hlášení: 27d475ec-7175-11e4-becd-24fd52263b8d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1
System errors:
=============
Error: (11/21/2014 05:42:39 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: NuidFltr.sys
Error: (11/21/2014 00:22:22 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (11/21/2014 00:04:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_Q neuspěla při spuštění v důsledku následující chyby:
%%193
Error: (11/21/2014 00:03:35 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Superfetch byla ukončena s následující chybou:
%%1062
Error: (11/21/2014 11:47:00 AM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: NT AUTHORITY)
Description: Kontrola šifrovaného svazku: Informace o svazku F: nelze přečíst.
Error: (11/20/2014 08:46:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) PROSet/Wireless Zero Configuration Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (11/20/2014 08:46:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_Q neuspěla při spuštění v důsledku následující chyby:
%%193
Error: (11/20/2014 08:45:41 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: NuidFltr.sys
Error: (11/20/2014 08:45:47 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:03:56, 20. 11. 2014) bylo neočekávané.
Error: (11/19/2014 08:49:01 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: NuidFltr.sys
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2014-11-17 10:03:52.709
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Celeron(R) CPU 1005M @ 1.90GHz
Percentage of memory in use: 61%
Total physical RAM: 1913.77 MB
Available physical RAM: 740.34 MB
Total Pagefile: 2745.77 MB
Available Pagefile: 1354.97 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:418.09 GB) (Free:17.15 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:19.17 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: A0B0EC24)
Partition: GPT Partition Type.
==================== End Of Log ============================
Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-11-2014
Ran by ROMAN (administrator) on IDEA-PC on 21-11-2014 19:04:18
Running from C:\Users\ROMAN\Desktop
Loaded Profile: ROMAN (Available profiles: ROMAN)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c\maintainer.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) C:\Windows\System32\MSTM64_Q.EXE
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(forum.viry.cz) C:\Users\ROMAN\Downloads\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2876816 2013-03-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6339656 2013-04-10] (Realtek semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [899680 2013-02-04] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2013-03-05] (Conexant Systems, Inc.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2013-05-09] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2013-05-09] (Lenovo(beijing) Limited)
HKLM\...\Run: [KONICA MINOLTA PagePro 1350WStatusDisplay] => C:\WINDOWS\system32\MSTM64_Q.EXE [247224 2011-03-09] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-31] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [131712 2013-01-25] ( (Qualcomm Atheros Commnucations))
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\...\MountPoints2: {ff0e2186-31d7-11e4-beac-24fd52263b8d} - "F:\LG_PC_Programs.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKLM -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL =
SearchScopes: HKLM-x32 -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL =
SearchScopes: HKU\S-1-5-21-1082381123-2358903656-3127633694-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1082381123-2358903656-3127633694-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\searchplugins\firmycz.xml
FF SearchPlugin: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\searchplugins\seznam-avast.xml
FF SearchPlugin: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\searchplugins\zbocz.xml
FF Extension: Seznam lištička - C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-11-16]
Chrome:
=======
CHR Profile: C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-17]
CHR Extension: (Disk Google) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-17]
CHR Extension: (YouTube) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-17]
CHR Extension: (Vyhledávání Google) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-17]
CHR Extension: (avast! Online Security) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-11-17]
CHR Extension: (Peněženka Google) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-17]
CHR Extension: (Gmail) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-17]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-25] (Qualcomm Atheros Commnucations)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272776 2014-10-16] ()
R2 MaintainerSvc2.69.9464532; C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c\maintainer.exe [123672 2014-11-21] ()
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-02-08] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-01-25] (Atheros) [File not signed]
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3386608 2013-02-08] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-25] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S2 MLPTDR_Q; \??\C:\WINDOWS\system32\ [0 ] () [File not signed]
S2 MLPTDR_Q; \??\C:\WINDOWS\SysWOW64\ [0 ] () [File not signed]
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243272 2013-04-10] (Realtek Semiconductor Corp.)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 19:04 - 2014-11-21 19:04 - 00048135 _____ () C:\Users\ROMAN\Desktop\FRST3.txt
2014-11-21 19:03 - 2014-11-21 19:04 - 00024278 _____ () C:\Users\ROMAN\Desktop\Addition.txt
2014-11-21 19:01 - 2014-11-21 19:04 - 00014030 _____ () C:\Users\ROMAN\Desktop\FRST.txt
2014-11-21 19:01 - 2014-11-21 19:04 - 00000000 ____D () C:\FRST
2014-11-21 19:01 - 2014-11-21 19:01 - 00015327 _____ () C:\Users\ROMAN\Desktop\LM.bat
2014-11-21 18:58 - 2014-11-21 18:58 - 00112640 _____ (forum.viry.cz) C:\Users\ROMAN\Downloads\FRSTLauncher.exe
2014-11-21 18:57 - 2014-11-21 18:58 - 02117632 _____ (Farbar) C:\Users\ROMAN\Desktop\FRST64.exe
2014-11-19 08:11 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-11-19 08:11 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-11-19 08:11 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2014-11-19 08:11 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2014-11-17 18:54 - 2014-11-17 18:39 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-11-17 18:40 - 2014-11-17 19:18 - 00014295 _____ () C:\zoek-results.log
2014-11-17 18:39 - 2014-11-17 18:53 - 00000000 ____D () C:\zoek_backup
2014-11-17 18:38 - 2014-11-17 18:38 - 01294848 _____ () C:\Users\ROMAN\Downloads\zoek.exe
2014-11-17 16:49 - 2014-11-21 18:48 - 00583262 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-17 16:48 - 2014-11-17 19:15 - 00650604 _____ () C:\WINDOWS\PFRO.log
2014-11-17 16:42 - 2014-11-17 16:47 - 00000000 ____D () C:\AdwCleaner
2014-11-17 16:41 - 2014-11-17 16:41 - 02140160 _____ () C:\Users\ROMAN\Downloads\adwcleaner_4.101.exe
2014-11-17 16:37 - 2014-11-17 16:38 - 00584232 _____ () C:\Users\ROMAN\Downloads\Installation.exe
2014-11-17 16:05 - 2014-11-17 16:07 - 00000000 ____D () C:\rsit
2014-11-17 16:05 - 2014-11-17 16:06 - 00000000 ____D () C:\Program Files\trend micro
2014-11-17 16:02 - 2014-11-17 16:02 - 01222144 _____ () C:\Users\ROMAN\Downloads\RSITx64.exe
2014-11-17 15:57 - 2014-11-21 18:58 - 00001937 _____ () C:\WINDOWS\setupact.log
2014-11-17 15:57 - 2014-11-17 15:57 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-11-17 08:41 - 2014-11-17 08:41 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2014-11-16 22:25 - 2014-11-16 22:25 - 00002259 _____ () C:\WINDOWS\epplauncher.mif
2014-11-16 22:24 - 2014-11-16 22:25 - 14108320 _____ (Microsoft Corporation) C:\Users\ROMAN\Downloads\mseinstall(1).exe
2014-11-16 22:24 - 2014-11-16 22:24 - 11475768 _____ (Microsoft Corporation) C:\Users\ROMAN\Downloads\mseinstall.exe
2014-11-16 22:18 - 2014-11-16 22:18 - 00001978 _____ () C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2014-11-16 22:18 - 2014-11-16 22:18 - 00000000 ____D () C:\ProgramData\Lenovo
2014-11-16 22:14 - 2014-11-16 22:14 - 00152072 _____ () C:\Users\ROMAN\Documents\cc_20141116_221406.reg
2014-11-16 22:11 - 2014-11-16 22:11 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-11-16 22:11 - 2014-11-16 22:11 - 00000805 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-16 22:11 - 2014-11-16 22:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-11-16 22:11 - 2014-11-16 22:11 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-16 22:10 - 2014-11-16 22:10 - 04965896 _____ (Piriform Ltd) C:\Users\ROMAN\Downloads\ccsetup418.exe
2014-11-16 22:05 - 2014-11-16 22:07 - 00000000 ____D () C:\Users\ROMAN\Desktop\Nová složka
2014-11-16 22:04 - 2014-11-16 22:04 - 00493058 _____ () C:\Users\ROMAN\Downloads\CPP.zip
2014-11-16 21:54 - 2014-11-16 21:54 - 01055936 _____ (Adobe) C:\Users\ROMAN\Downloads\install_flashplayer15x32_mssd_aaa_aih.exe
2014-11-16 21:45 - 2014-11-17 19:16 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-11-16 16:58 - 2014-11-21 18:42 - 00000000 ____D () C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c
2014-11-15 17:49 - 2014-11-16 21:39 - 00000000 ____D () C:\Program Files (x86)\Ttessab
2014-11-15 17:46 - 2014-11-15 17:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-11-15 17:46 - 2014-11-15 17:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-11-15 17:43 - 2014-11-16 22:18 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-11-15 17:42 - 2014-11-16 22:19 - 00000000 ____D () C:\Users\ROMAN\AppData\Roaming\Seznam.cz
2014-11-15 17:42 - 2014-11-15 17:42 - 00000000 ____D () C:\Users\ROMAN\AppData\Roaming\SEAT LEON II 1.9 TDI user guide
2014-11-15 17:40 - 2014-11-15 17:41 - 00697144 _____ (Live Soft Action S.R.L.) C:\Users\ROMAN\Downloads\SEAT LEON II 1.9 TDI user guide provided through pdfretriever.com.exe
2014-11-12 11:54 - 2014-11-12 11:54 - 00000202 _____ () C:\Users\ROMAN\Downloads\fofrtisk.vcf
2014-11-12 11:25 - 2014-11-12 11:26 - 00012816 _____ () C:\Users\ROMAN\Downloads\rajcevrak.cz(1).odt
2014-11-12 08:36 - 2014-10-11 01:58 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-11-12 08:36 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-11-12 08:36 - 2014-10-08 06:32 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-11-12 08:35 - 2014-10-13 03:33 - 00116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-11-12 08:35 - 2014-10-08 08:30 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-11-12 08:35 - 2014-10-08 08:09 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-11-12 08:35 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2014-11-12 08:35 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-11-12 08:35 - 2014-09-22 05:38 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-11-12 08:35 - 2014-09-22 04:06 - 00258368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-11-12 08:35 - 2014-09-22 04:06 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-11-12 08:35 - 2014-09-22 03:49 - 00035320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-11-12 08:35 - 2014-09-19 01:16 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-11-12 08:35 - 2014-09-02 23:08 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2014-11-12 08:35 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2014-11-12 08:34 - 2014-10-31 06:28 - 25110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-11-12 08:34 - 2014-10-31 04:42 - 19781632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-11-12 08:33 - 2014-10-31 06:06 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-11-12 08:33 - 2014-10-31 06:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 08:33 - 2014-10-31 06:05 - 02884096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-11-12 08:33 - 2014-10-31 06:05 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-11-12 08:33 - 2014-10-31 05:53 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2014-11-12 08:33 - 2014-10-31 05:52 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2014-11-12 08:33 - 2014-10-31 05:51 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-11-12 08:33 - 2014-10-31 05:51 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 08:33 - 2014-10-31 05:51 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 08:33 - 2014-10-31 05:50 - 06040064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-11-12 08:33 - 2014-10-31 05:50 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 08:33 - 2014-10-31 05:38 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 08:33 - 2014-10-31 05:29 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2014-11-12 08:33 - 2014-10-31 05:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2014-11-12 08:33 - 2014-10-31 05:25 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-11-12 08:33 - 2014-10-31 05:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-11-12 08:33 - 2014-10-31 05:21 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-11-12 08:33 - 2014-10-31 05:15 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-11-12 08:33 - 2014-10-31 05:08 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-11-12 08:33 - 2014-10-31 05:06 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 08:33 - 2014-10-31 05:05 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-11-12 08:33 - 2014-10-31 05:05 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 08:33 - 2014-10-31 05:03 - 02124288 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-11-12 08:33 - 2014-10-31 04:59 - 14390272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-11-12 08:33 - 2014-10-31 04:45 - 02365440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-11-12 08:33 - 2014-10-31 04:44 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-11-12 08:33 - 2014-10-31 04:32 - 01550336 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-11-12 08:33 - 2014-10-31 04:24 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-11-12 08:33 - 2014-10-31 04:23 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-11-12 08:33 - 2014-10-31 04:20 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 08:33 - 2014-10-31 04:18 - 02277376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-11-12 08:33 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2014-11-12 08:33 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2014-11-12 08:33 - 2014-10-31 04:12 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-11-12 08:33 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-11-12 08:33 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-11-12 08:33 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-11-12 08:33 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2014-11-12 08:33 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2014-11-12 08:33 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-11-12 08:33 - 2014-10-31 03:51 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-11-12 08:33 - 2014-10-31 03:50 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-11-12 08:33 - 2014-10-31 03:46 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-11-12 08:33 - 2014-10-31 03:46 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-11-12 08:33 - 2014-10-31 03:42 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-11-12 08:33 - 2014-10-31 03:40 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-11-12 08:33 - 2014-10-31 03:40 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-11-12 08:33 - 2014-10-31 03:39 - 02051072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-11-12 08:33 - 2014-10-31 03:30 - 12819456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-11-12 08:33 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-11-12 08:33 - 2014-10-31 03:17 - 01892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-11-12 08:33 - 2014-10-31 03:13 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-11-12 08:33 - 2014-10-31 03:11 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-11-12 08:32 - 2014-10-31 06:12 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2014-11-12 08:32 - 2014-10-31 06:12 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2014-11-12 08:32 - 2014-10-31 06:10 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2014-11-12 08:32 - 2014-10-31 06:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-11-12 08:32 - 2014-10-31 06:08 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 08:32 - 2014-10-31 06:06 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-11-12 08:32 - 2014-10-31 06:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-11-12 08:32 - 2014-10-31 06:04 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 08:32 - 2014-10-31 05:57 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-11-12 08:32 - 2014-10-31 05:56 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-11-12 08:32 - 2014-10-31 05:54 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 08:32 - 2014-10-31 05:40 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-11-12 08:32 - 2014-10-31 05:30 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:32 - 2014-10-31 05:28 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2014-11-12 08:32 - 2014-10-31 05:24 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-11-12 08:32 - 2014-10-31 05:24 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 08:32 - 2014-10-31 05:19 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-11-12 08:32 - 2014-10-31 04:42 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2014-11-12 08:32 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2014-11-12 08:32 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2014-11-12 08:32 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2014-11-12 08:32 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2014-11-12 08:32 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2014-11-12 08:32 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2014-11-12 08:32 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-11-12 08:32 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-11-12 08:32 - 2014-10-31 04:22 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-11-12 08:32 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-11-12 08:32 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-11-12 08:32 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2014-11-12 08:32 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2014-11-12 08:32 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:32 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2014-11-12 08:32 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2014-11-12 08:32 - 2014-10-31 03:52 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-11-12 08:32 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-11-12 08:32 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2014-11-12 08:31 - 2014-10-10 02:58 - 00177472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-11-12 08:31 - 2014-10-10 02:58 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2014-11-12 08:31 - 2014-10-10 02:44 - 00563976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-11-12 08:31 - 2014-10-08 08:37 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-11-12 08:31 - 2014-10-08 08:37 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2014-11-12 08:31 - 2014-10-08 08:34 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-11-12 08:31 - 2014-10-08 08:24 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 08:31 - 2014-10-08 07:56 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-11-12 08:31 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-11-12 08:31 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2014-11-12 08:31 - 2014-10-08 07:18 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-11-12 08:31 - 2014-10-08 07:17 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-11-12 08:31 - 2014-10-08 06:23 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 08:31 - 2014-09-27 08:13 - 00104336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 08:31 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-11-12 08:31 - 2014-09-27 04:38 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-11-12 08:31 - 2014-09-27 04:30 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 08:31 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-11-12 08:30 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-11-12 08:30 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-11-12 08:30 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-11-12 08:30 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-11-12 08:30 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2014-11-12 08:30 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-11-12 08:30 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-11-12 08:30 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-11-12 08:30 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 08:30 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-11-12 08:30 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-11-12 08:30 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-11-12 08:30 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-11-12 08:30 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-11-12 08:30 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-11-12 08:30 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-11-12 08:30 - 2014-10-17 08:01 - 00789184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-11-12 08:30 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-11-12 08:28 - 2014-10-23 06:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2014-11-12 08:28 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2014-11-12 08:28 - 2014-10-07 07:28 - 00500016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-11-12 08:28 - 2014-10-07 07:27 - 00482872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-11-12 08:28 - 2014-10-07 07:27 - 00394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 08:28 - 2014-10-07 07:27 - 00272248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-11-12 08:28 - 2014-10-07 07:27 - 00108432 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2014-11-12 08:28 - 2014-10-07 04:34 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-11-12 08:28 - 2014-10-07 04:34 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-11-12 08:28 - 2014-10-07 04:33 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-11-12 08:28 - 2014-10-07 04:30 - 04182016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-11-12 08:28 - 2014-10-07 02:54 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 08:28 - 2014-10-07 02:46 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-11-12 08:28 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-11-12 08:28 - 2014-09-08 04:07 - 02497344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-11-12 08:28 - 2014-09-04 23:30 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-11-12 08:28 - 2014-09-04 23:21 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-11-12 08:28 - 2014-09-04 04:05 - 00836176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-12 08:28 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-11-12 08:28 - 2014-08-31 01:15 - 21197152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-11-12 08:28 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-11-12 08:28 - 2014-08-30 22:04 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-12 08:28 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-11-12 08:28 - 2014-08-28 03:55 - 07484224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-11-12 08:28 - 2014-08-28 01:21 - 02480128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-11-12 08:28 - 2014-08-23 06:18 - 02149376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-11-12 08:28 - 2014-08-23 06:14 - 13424128 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-11-12 08:28 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-11-12 08:28 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-11-12 08:28 - 2014-08-23 05:50 - 02714112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-12 08:27 - 2014-09-08 04:07 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-11-12 08:27 - 2014-09-07 23:08 - 00389176 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-11-12 08:27 - 2014-09-04 02:01 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-11-12 08:27 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-11-12 08:27 - 2014-08-31 01:17 - 00148800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-11-12 08:27 - 2014-08-30 23:05 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 08:27 - 2014-08-30 22:58 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2014-11-12 08:27 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2014-11-12 08:27 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-11-12 08:27 - 2014-08-02 01:51 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-11-12 08:27 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-11-11 09:25 - 2014-11-11 09:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-07 23:11 - 2014-11-07 23:11 - 00000214 _____ () C:\Users\ROMAN\Desktop\Analytics.URL
2014-11-06 11:04 - 2014-11-06 11:04 - 00012816 _____ () C:\Users\ROMAN\Downloads\rajcevrak.cz.odt
2014-11-06 08:23 - 2014-11-06 08:25 - 157514544 _____ () C:\Users\ROMAN\Downloads\Satis.rar
2014-11-01 03:22 - 2014-11-01 03:28 - 00000000 ____D () C:\foto - NAROZKY
2014-10-26 18:14 - 2014-10-26 18:18 - 91302277 _____ () C:\Users\ROMAN\Downloads\zasilka-BBR8R7HYYN6M32I4.zip
2014-10-23 16:46 - 2014-10-23 16:46 - 01054912 _____ (Adobe) C:\Users\ROMAN\Downloads\install_flashplayer15x32au_mssd_aaa_aih.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 19:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-11-21 18:48 - 2014-04-24 10:10 - 00000000 ___RD () C:\Users\ROMAN\OneDrive
2014-11-21 18:48 - 2013-11-17 08:40 - 00000972 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-21 18:23 - 2013-11-12 12:42 - 10243818 _____ () C:\Users\Public\CAFADEBUG.log
2014-11-21 15:34 - 2013-11-17 08:40 - 00000976 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-21 12:04 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-21 12:03 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-11-21 11:45 - 2013-11-14 13:40 - 01749406 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-21 11:45 - 2013-11-14 13:24 - 00740962 _____ () C:\WINDOWS\system32\perfh005.dat
2014-11-21 11:45 - 2013-11-14 13:24 - 00152146 _____ () C:\WINDOWS\system32\perfc005.dat
2014-11-21 08:46 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-11-21 00:17 - 2014-02-13 15:29 - 00000000 ____D () C:\Users\ROMAN
2014-11-20 14:15 - 2014-03-20 14:33 - 00003966 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D9CB69B0-4B5B-4423-879C-803F3AB412BA}
2014-11-19 09:21 - 2013-11-17 08:13 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1082381123-2358903656-3127633694-1001
2014-11-19 08:39 - 2013-11-17 08:41 - 00002272 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-19 08:23 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-11-18 14:46 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-11-17 18:52 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\GroupPolicy
2014-11-17 16:48 - 2013-11-17 08:38 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-11-16 22:18 - 2013-11-12 12:52 - 00000000 ____D () C:\Users\ROMAN\AppData\Local\LSC
2014-11-16 22:18 - 2013-11-12 12:51 - 00000000 ____D () C:\Users\ROMAN\AppData\Roaming\LSC
2014-11-16 22:18 - 2013-05-09 00:41 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Lenovo
2014-11-16 22:18 - 2013-05-09 00:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-11-16 22:18 - 2013-05-09 00:41 - 00000000 ____D () C:\Program Files\Lenovo
2014-11-16 22:16 - 2013-05-09 00:41 - 00000000 ____D () C:\WINDOWS\Downloaded Installations
2014-11-16 22:12 - 2014-05-22 08:32 - 00000000 ____D () C:\WINDOWS\Minidump
2014-11-16 22:12 - 2014-02-13 15:19 - 00000000 ___DC () C:\WINDOWS\Panther
2014-11-16 22:12 - 2014-01-22 12:54 - 00000000 ____D () C:\Users\ROMAN\AppData\Local\CrashDumps
2014-11-16 16:29 - 2012-07-26 06:26 - 00000269 _____ () C:\WINDOWS\win.ini
2014-11-16 09:29 - 2013-11-17 08:40 - 00003948 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-16 09:29 - 2013-11-17 08:40 - 00003712 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-12 17:15 - 2013-08-22 15:44 - 00485016 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-11-12 16:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-12 16:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-12 16:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-12 16:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-12 08:50 - 2013-11-12 23:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-12 08:47 - 2013-11-24 14:15 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-12 08:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-11-12 08:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-11-12 08:42 - 2013-11-24 14:15 - 103374192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-10-30 12:25 - 2013-11-17 08:20 - 00275080 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-10-30 01:55 - 2014-08-15 08:25 - 00714208 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-10-30 01:55 - 2014-08-15 08:25 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-21 12:14
==================== End Of Log ============================
Ran by ROMAN (administrator) on IDEA-PC on 21-11-2014 19:04:18
Running from C:\Users\ROMAN\Desktop
Loaded Profile: ROMAN (Available profiles: ROMAN)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c\maintainer.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) C:\Windows\System32\MSTM64_Q.EXE
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(forum.viry.cz) C:\Users\ROMAN\Downloads\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2876816 2013-03-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6339656 2013-04-10] (Realtek semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [899680 2013-02-04] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2013-03-05] (Conexant Systems, Inc.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2013-05-09] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2013-05-09] (Lenovo(beijing) Limited)
HKLM\...\Run: [KONICA MINOLTA PagePro 1350WStatusDisplay] => C:\WINDOWS\system32\MSTM64_Q.EXE [247224 2011-03-09] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-31] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [131712 2013-01-25] ( (Qualcomm Atheros Commnucations))
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\...\MountPoints2: {ff0e2186-31d7-11e4-beac-24fd52263b8d} - "F:\LG_PC_Programs.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKLM -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL =
SearchScopes: HKLM-x32 -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL =
SearchScopes: HKU\S-1-5-21-1082381123-2358903656-3127633694-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1082381123-2358903656-3127633694-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\searchplugins\firmycz.xml
FF SearchPlugin: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\searchplugins\seznam-avast.xml
FF SearchPlugin: C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\searchplugins\zbocz.xml
FF Extension: Seznam lištička - C:\Users\ROMAN\AppData\Roaming\Mozilla\Firefox\Profiles\zw535ur1.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-11-16]
Chrome:
=======
CHR Profile: C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-17]
CHR Extension: (Disk Google) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-17]
CHR Extension: (YouTube) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-17]
CHR Extension: (Vyhledávání Google) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-17]
CHR Extension: (avast! Online Security) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-11-17]
CHR Extension: (Peněženka Google) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-17]
CHR Extension: (Gmail) - C:\Users\ROMAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-17]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-25] (Qualcomm Atheros Commnucations)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272776 2014-10-16] ()
R2 MaintainerSvc2.69.9464532; C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c\maintainer.exe [123672 2014-11-21] ()
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-02-08] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-01-25] (Atheros) [File not signed]
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3386608 2013-02-08] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-25] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S2 MLPTDR_Q; \??\C:\WINDOWS\system32\ [0 ] () [File not signed]
S2 MLPTDR_Q; \??\C:\WINDOWS\SysWOW64\ [0 ] () [File not signed]
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243272 2013-04-10] (Realtek Semiconductor Corp.)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 19:04 - 2014-11-21 19:04 - 00048135 _____ () C:\Users\ROMAN\Desktop\FRST3.txt
2014-11-21 19:03 - 2014-11-21 19:04 - 00024278 _____ () C:\Users\ROMAN\Desktop\Addition.txt
2014-11-21 19:01 - 2014-11-21 19:04 - 00014030 _____ () C:\Users\ROMAN\Desktop\FRST.txt
2014-11-21 19:01 - 2014-11-21 19:04 - 00000000 ____D () C:\FRST
2014-11-21 19:01 - 2014-11-21 19:01 - 00015327 _____ () C:\Users\ROMAN\Desktop\LM.bat
2014-11-21 18:58 - 2014-11-21 18:58 - 00112640 _____ (forum.viry.cz) C:\Users\ROMAN\Downloads\FRSTLauncher.exe
2014-11-21 18:57 - 2014-11-21 18:58 - 02117632 _____ (Farbar) C:\Users\ROMAN\Desktop\FRST64.exe
2014-11-19 08:11 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-11-19 08:11 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-11-19 08:11 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2014-11-19 08:11 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2014-11-17 18:54 - 2014-11-17 18:39 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-11-17 18:40 - 2014-11-17 19:18 - 00014295 _____ () C:\zoek-results.log
2014-11-17 18:39 - 2014-11-17 18:53 - 00000000 ____D () C:\zoek_backup
2014-11-17 18:38 - 2014-11-17 18:38 - 01294848 _____ () C:\Users\ROMAN\Downloads\zoek.exe
2014-11-17 16:49 - 2014-11-21 18:48 - 00583262 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-17 16:48 - 2014-11-17 19:15 - 00650604 _____ () C:\WINDOWS\PFRO.log
2014-11-17 16:42 - 2014-11-17 16:47 - 00000000 ____D () C:\AdwCleaner
2014-11-17 16:41 - 2014-11-17 16:41 - 02140160 _____ () C:\Users\ROMAN\Downloads\adwcleaner_4.101.exe
2014-11-17 16:37 - 2014-11-17 16:38 - 00584232 _____ () C:\Users\ROMAN\Downloads\Installation.exe
2014-11-17 16:05 - 2014-11-17 16:07 - 00000000 ____D () C:\rsit
2014-11-17 16:05 - 2014-11-17 16:06 - 00000000 ____D () C:\Program Files\trend micro
2014-11-17 16:02 - 2014-11-17 16:02 - 01222144 _____ () C:\Users\ROMAN\Downloads\RSITx64.exe
2014-11-17 15:57 - 2014-11-21 18:58 - 00001937 _____ () C:\WINDOWS\setupact.log
2014-11-17 15:57 - 2014-11-17 15:57 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-11-17 08:41 - 2014-11-17 08:41 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2014-11-16 22:25 - 2014-11-16 22:25 - 00002259 _____ () C:\WINDOWS\epplauncher.mif
2014-11-16 22:24 - 2014-11-16 22:25 - 14108320 _____ (Microsoft Corporation) C:\Users\ROMAN\Downloads\mseinstall(1).exe
2014-11-16 22:24 - 2014-11-16 22:24 - 11475768 _____ (Microsoft Corporation) C:\Users\ROMAN\Downloads\mseinstall.exe
2014-11-16 22:18 - 2014-11-16 22:18 - 00001978 _____ () C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2014-11-16 22:18 - 2014-11-16 22:18 - 00000000 ____D () C:\ProgramData\Lenovo
2014-11-16 22:14 - 2014-11-16 22:14 - 00152072 _____ () C:\Users\ROMAN\Documents\cc_20141116_221406.reg
2014-11-16 22:11 - 2014-11-16 22:11 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-11-16 22:11 - 2014-11-16 22:11 - 00000805 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-16 22:11 - 2014-11-16 22:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-11-16 22:11 - 2014-11-16 22:11 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-16 22:10 - 2014-11-16 22:10 - 04965896 _____ (Piriform Ltd) C:\Users\ROMAN\Downloads\ccsetup418.exe
2014-11-16 22:05 - 2014-11-16 22:07 - 00000000 ____D () C:\Users\ROMAN\Desktop\Nová složka
2014-11-16 22:04 - 2014-11-16 22:04 - 00493058 _____ () C:\Users\ROMAN\Downloads\CPP.zip
2014-11-16 21:54 - 2014-11-16 21:54 - 01055936 _____ (Adobe) C:\Users\ROMAN\Downloads\install_flashplayer15x32_mssd_aaa_aih.exe
2014-11-16 21:45 - 2014-11-17 19:16 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-11-16 16:58 - 2014-11-21 18:42 - 00000000 ____D () C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c
2014-11-15 17:49 - 2014-11-16 21:39 - 00000000 ____D () C:\Program Files (x86)\Ttessab
2014-11-15 17:46 - 2014-11-15 17:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-11-15 17:46 - 2014-11-15 17:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-11-15 17:43 - 2014-11-16 22:18 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-11-15 17:42 - 2014-11-16 22:19 - 00000000 ____D () C:\Users\ROMAN\AppData\Roaming\Seznam.cz
2014-11-15 17:42 - 2014-11-15 17:42 - 00000000 ____D () C:\Users\ROMAN\AppData\Roaming\SEAT LEON II 1.9 TDI user guide
2014-11-15 17:40 - 2014-11-15 17:41 - 00697144 _____ (Live Soft Action S.R.L.) C:\Users\ROMAN\Downloads\SEAT LEON II 1.9 TDI user guide provided through pdfretriever.com.exe
2014-11-12 11:54 - 2014-11-12 11:54 - 00000202 _____ () C:\Users\ROMAN\Downloads\fofrtisk.vcf
2014-11-12 11:25 - 2014-11-12 11:26 - 00012816 _____ () C:\Users\ROMAN\Downloads\rajcevrak.cz(1).odt
2014-11-12 08:36 - 2014-10-11 01:58 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-11-12 08:36 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-11-12 08:36 - 2014-10-08 06:32 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-11-12 08:35 - 2014-10-13 03:33 - 00116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-11-12 08:35 - 2014-10-08 08:30 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-11-12 08:35 - 2014-10-08 08:09 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-11-12 08:35 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2014-11-12 08:35 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-11-12 08:35 - 2014-09-22 05:38 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-11-12 08:35 - 2014-09-22 04:06 - 00258368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-11-12 08:35 - 2014-09-22 04:06 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-11-12 08:35 - 2014-09-22 03:49 - 00035320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-11-12 08:35 - 2014-09-19 01:16 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-11-12 08:35 - 2014-09-02 23:08 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2014-11-12 08:35 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2014-11-12 08:34 - 2014-10-31 06:28 - 25110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-11-12 08:34 - 2014-10-31 04:42 - 19781632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-11-12 08:33 - 2014-10-31 06:06 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-11-12 08:33 - 2014-10-31 06:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 08:33 - 2014-10-31 06:05 - 02884096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-11-12 08:33 - 2014-10-31 06:05 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-11-12 08:33 - 2014-10-31 05:53 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2014-11-12 08:33 - 2014-10-31 05:52 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2014-11-12 08:33 - 2014-10-31 05:51 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-11-12 08:33 - 2014-10-31 05:51 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 08:33 - 2014-10-31 05:51 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 08:33 - 2014-10-31 05:50 - 06040064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-11-12 08:33 - 2014-10-31 05:50 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 08:33 - 2014-10-31 05:38 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 08:33 - 2014-10-31 05:29 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2014-11-12 08:33 - 2014-10-31 05:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2014-11-12 08:33 - 2014-10-31 05:25 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-11-12 08:33 - 2014-10-31 05:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-11-12 08:33 - 2014-10-31 05:21 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-11-12 08:33 - 2014-10-31 05:15 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-11-12 08:33 - 2014-10-31 05:08 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-11-12 08:33 - 2014-10-31 05:06 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 08:33 - 2014-10-31 05:05 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-11-12 08:33 - 2014-10-31 05:05 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 08:33 - 2014-10-31 05:03 - 02124288 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-11-12 08:33 - 2014-10-31 04:59 - 14390272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-11-12 08:33 - 2014-10-31 04:45 - 02365440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-11-12 08:33 - 2014-10-31 04:44 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-11-12 08:33 - 2014-10-31 04:32 - 01550336 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-11-12 08:33 - 2014-10-31 04:24 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-11-12 08:33 - 2014-10-31 04:23 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-11-12 08:33 - 2014-10-31 04:20 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 08:33 - 2014-10-31 04:18 - 02277376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-11-12 08:33 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2014-11-12 08:33 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2014-11-12 08:33 - 2014-10-31 04:12 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-11-12 08:33 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-11-12 08:33 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-11-12 08:33 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-11-12 08:33 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2014-11-12 08:33 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2014-11-12 08:33 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-11-12 08:33 - 2014-10-31 03:51 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-11-12 08:33 - 2014-10-31 03:50 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-11-12 08:33 - 2014-10-31 03:46 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-11-12 08:33 - 2014-10-31 03:46 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-11-12 08:33 - 2014-10-31 03:42 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-11-12 08:33 - 2014-10-31 03:40 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-11-12 08:33 - 2014-10-31 03:40 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-11-12 08:33 - 2014-10-31 03:39 - 02051072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-11-12 08:33 - 2014-10-31 03:30 - 12819456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-11-12 08:33 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-11-12 08:33 - 2014-10-31 03:17 - 01892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-11-12 08:33 - 2014-10-31 03:13 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-11-12 08:33 - 2014-10-31 03:11 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-11-12 08:32 - 2014-10-31 06:12 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2014-11-12 08:32 - 2014-10-31 06:12 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2014-11-12 08:32 - 2014-10-31 06:10 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2014-11-12 08:32 - 2014-10-31 06:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-11-12 08:32 - 2014-10-31 06:08 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 08:32 - 2014-10-31 06:06 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-11-12 08:32 - 2014-10-31 06:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-11-12 08:32 - 2014-10-31 06:04 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 08:32 - 2014-10-31 05:57 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-11-12 08:32 - 2014-10-31 05:56 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-11-12 08:32 - 2014-10-31 05:54 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 08:32 - 2014-10-31 05:40 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-11-12 08:32 - 2014-10-31 05:30 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:32 - 2014-10-31 05:28 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2014-11-12 08:32 - 2014-10-31 05:24 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-11-12 08:32 - 2014-10-31 05:24 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 08:32 - 2014-10-31 05:19 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-11-12 08:32 - 2014-10-31 04:42 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2014-11-12 08:32 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2014-11-12 08:32 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2014-11-12 08:32 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2014-11-12 08:32 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2014-11-12 08:32 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2014-11-12 08:32 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2014-11-12 08:32 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-11-12 08:32 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-11-12 08:32 - 2014-10-31 04:22 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-11-12 08:32 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-11-12 08:32 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-11-12 08:32 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2014-11-12 08:32 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2014-11-12 08:32 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:32 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2014-11-12 08:32 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2014-11-12 08:32 - 2014-10-31 03:52 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-11-12 08:32 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-11-12 08:32 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2014-11-12 08:31 - 2014-10-10 02:58 - 00177472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-11-12 08:31 - 2014-10-10 02:58 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2014-11-12 08:31 - 2014-10-10 02:44 - 00563976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-11-12 08:31 - 2014-10-08 08:37 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-11-12 08:31 - 2014-10-08 08:37 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2014-11-12 08:31 - 2014-10-08 08:34 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-11-12 08:31 - 2014-10-08 08:24 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 08:31 - 2014-10-08 07:56 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-11-12 08:31 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-11-12 08:31 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2014-11-12 08:31 - 2014-10-08 07:18 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-11-12 08:31 - 2014-10-08 07:17 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-11-12 08:31 - 2014-10-08 06:23 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 08:31 - 2014-09-27 08:13 - 00104336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 08:31 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-11-12 08:31 - 2014-09-27 04:38 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-11-12 08:31 - 2014-09-27 04:30 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 08:31 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-11-12 08:30 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-11-12 08:30 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-11-12 08:30 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-11-12 08:30 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-11-12 08:30 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2014-11-12 08:30 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-11-12 08:30 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-11-12 08:30 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-11-12 08:30 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 08:30 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-11-12 08:30 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-11-12 08:30 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-11-12 08:30 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-11-12 08:30 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-11-12 08:30 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-11-12 08:30 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-11-12 08:30 - 2014-10-17 08:01 - 00789184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-11-12 08:30 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-11-12 08:28 - 2014-10-23 06:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2014-11-12 08:28 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2014-11-12 08:28 - 2014-10-07 07:28 - 00500016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-11-12 08:28 - 2014-10-07 07:27 - 00482872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-11-12 08:28 - 2014-10-07 07:27 - 00394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 08:28 - 2014-10-07 07:27 - 00272248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-11-12 08:28 - 2014-10-07 07:27 - 00108432 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2014-11-12 08:28 - 2014-10-07 04:34 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-11-12 08:28 - 2014-10-07 04:34 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-11-12 08:28 - 2014-10-07 04:33 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-11-12 08:28 - 2014-10-07 04:30 - 04182016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-11-12 08:28 - 2014-10-07 02:54 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 08:28 - 2014-10-07 02:46 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-11-12 08:28 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-11-12 08:28 - 2014-09-08 04:07 - 02497344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-11-12 08:28 - 2014-09-04 23:30 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-11-12 08:28 - 2014-09-04 23:21 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-11-12 08:28 - 2014-09-04 04:05 - 00836176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-12 08:28 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-11-12 08:28 - 2014-08-31 01:15 - 21197152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-11-12 08:28 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-11-12 08:28 - 2014-08-30 22:04 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-12 08:28 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-11-12 08:28 - 2014-08-28 03:55 - 07484224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-11-12 08:28 - 2014-08-28 01:21 - 02480128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-11-12 08:28 - 2014-08-23 06:18 - 02149376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-11-12 08:28 - 2014-08-23 06:14 - 13424128 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-11-12 08:28 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-11-12 08:28 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-11-12 08:28 - 2014-08-23 05:50 - 02714112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-12 08:27 - 2014-09-08 04:07 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-11-12 08:27 - 2014-09-07 23:08 - 00389176 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-11-12 08:27 - 2014-09-04 02:01 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-11-12 08:27 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-11-12 08:27 - 2014-08-31 01:17 - 00148800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-11-12 08:27 - 2014-08-30 23:05 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 08:27 - 2014-08-30 22:58 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2014-11-12 08:27 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2014-11-12 08:27 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-11-12 08:27 - 2014-08-02 01:51 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-11-12 08:27 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-11-11 09:25 - 2014-11-11 09:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-07 23:11 - 2014-11-07 23:11 - 00000214 _____ () C:\Users\ROMAN\Desktop\Analytics.URL
2014-11-06 11:04 - 2014-11-06 11:04 - 00012816 _____ () C:\Users\ROMAN\Downloads\rajcevrak.cz.odt
2014-11-06 08:23 - 2014-11-06 08:25 - 157514544 _____ () C:\Users\ROMAN\Downloads\Satis.rar
2014-11-01 03:22 - 2014-11-01 03:28 - 00000000 ____D () C:\foto - NAROZKY
2014-10-26 18:14 - 2014-10-26 18:18 - 91302277 _____ () C:\Users\ROMAN\Downloads\zasilka-BBR8R7HYYN6M32I4.zip
2014-10-23 16:46 - 2014-10-23 16:46 - 01054912 _____ (Adobe) C:\Users\ROMAN\Downloads\install_flashplayer15x32au_mssd_aaa_aih.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 19:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-11-21 18:48 - 2014-04-24 10:10 - 00000000 ___RD () C:\Users\ROMAN\OneDrive
2014-11-21 18:48 - 2013-11-17 08:40 - 00000972 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-21 18:23 - 2013-11-12 12:42 - 10243818 _____ () C:\Users\Public\CAFADEBUG.log
2014-11-21 15:34 - 2013-11-17 08:40 - 00000976 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-21 12:04 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-21 12:03 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-11-21 11:45 - 2013-11-14 13:40 - 01749406 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-21 11:45 - 2013-11-14 13:24 - 00740962 _____ () C:\WINDOWS\system32\perfh005.dat
2014-11-21 11:45 - 2013-11-14 13:24 - 00152146 _____ () C:\WINDOWS\system32\perfc005.dat
2014-11-21 08:46 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-11-21 00:17 - 2014-02-13 15:29 - 00000000 ____D () C:\Users\ROMAN
2014-11-20 14:15 - 2014-03-20 14:33 - 00003966 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D9CB69B0-4B5B-4423-879C-803F3AB412BA}
2014-11-19 09:21 - 2013-11-17 08:13 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1082381123-2358903656-3127633694-1001
2014-11-19 08:39 - 2013-11-17 08:41 - 00002272 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-19 08:23 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-11-18 14:46 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-11-17 18:52 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\GroupPolicy
2014-11-17 16:48 - 2013-11-17 08:38 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-11-16 22:18 - 2013-11-12 12:52 - 00000000 ____D () C:\Users\ROMAN\AppData\Local\LSC
2014-11-16 22:18 - 2013-11-12 12:51 - 00000000 ____D () C:\Users\ROMAN\AppData\Roaming\LSC
2014-11-16 22:18 - 2013-05-09 00:41 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Lenovo
2014-11-16 22:18 - 2013-05-09 00:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-11-16 22:18 - 2013-05-09 00:41 - 00000000 ____D () C:\Program Files\Lenovo
2014-11-16 22:16 - 2013-05-09 00:41 - 00000000 ____D () C:\WINDOWS\Downloaded Installations
2014-11-16 22:12 - 2014-05-22 08:32 - 00000000 ____D () C:\WINDOWS\Minidump
2014-11-16 22:12 - 2014-02-13 15:19 - 00000000 ___DC () C:\WINDOWS\Panther
2014-11-16 22:12 - 2014-01-22 12:54 - 00000000 ____D () C:\Users\ROMAN\AppData\Local\CrashDumps
2014-11-16 16:29 - 2012-07-26 06:26 - 00000269 _____ () C:\WINDOWS\win.ini
2014-11-16 09:29 - 2013-11-17 08:40 - 00003948 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-16 09:29 - 2013-11-17 08:40 - 00003712 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-12 17:15 - 2013-08-22 15:44 - 00485016 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-11-12 16:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-12 16:09 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-12 16:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-12 16:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-12 08:50 - 2013-11-12 23:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-12 08:47 - 2013-11-24 14:15 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-12 08:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-11-12 08:47 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-11-12 08:42 - 2013-11-24 14:15 - 103374192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-10-30 12:25 - 2013-11-17 08:20 - 00275080 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-10-30 01:55 - 2014-08-15 08:25 - 00714208 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-10-30 01:55 - 2014-08-15 08:25 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-21 12:14
==================== End Of Log ============================
Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start CloseProcesses: HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.) HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.) HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\...\MountPoints2: {ff0e2186-31d7-11e4-beac-24fd52263b8d} - "F:\LG_PC_Programs.exe" ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com SearchScopes: HKLM -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL = SearchScopes: HKLM-x32 -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL = C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c 2014-11-21 19:04 - 2014-11-21 19:04 - 00048135 _____ () C:\Users\ROMAN\Desktop\FRST3.txt 2014-11-21 19:03 - 2014-11-21 19:04 - 00024278 _____ () C:\Users\ROMAN\Desktop\Addition.txt 2014-11-21 19:01 - 2014-11-21 19:04 - 00014030 _____ () C:\Users\ROMAN\Desktop\FRST.txt 2014-11-21 19:01 - 2014-11-21 19:01 - 00015327 _____ () C:\Users\ROMAN\Desktop\LM.bat 2014-11-21 18:58 - 2014-11-21 18:58 - 00112640 _____ (forum.viry.cz) C:\Users\ROMAN\Downloads\FRSTLauncher.exe 2014-11-17 18:54 - 2014-11-17 18:39 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe 2014-11-17 18:40 - 2014-11-17 19:18 - 00014295 _____ () C:\zoek-results.log 2014-11-17 18:39 - 2014-11-17 18:53 - 00000000 ____D () C:\zoek_backup 2014-11-17 18:38 - 2014-11-17 18:38 - 01294848 _____ () C:\Users\ROMAN\Downloads\zoek.exe 2014-11-17 16:48 - 2014-11-17 19:15 - 00650604 _____ () C:\WINDOWS\PFRO.log 2014-11-17 16:42 - 2014-11-17 16:47 - 00000000 ____D () C:\AdwCleaner 2014-11-17 16:41 - 2014-11-17 16:41 - 02140160 _____ () C:\Users\ROMAN\Downloads\adwcleaner_4.101.exe 2014-11-17 16:37 - 2014-11-17 16:38 - 00584232 _____ () C:\Users\ROMAN\Downloads\Installation.exe 2014-11-17 16:05 - 2014-11-17 16:07 - 00000000 ____D () C:\rsit 2014-11-17 16:05 - 2014-11-17 16:06 - 00000000 ____D () C:\Program Files\trend micro 2014-11-17 16:02 - 2014-11-17 16:02 - 01222144 _____ () C:\Users\ROMAN\Downloads\RSITx64.exe 2014-11-17 15:57 - 2014-11-21 18:58 - 00001937 _____ () C:\WINDOWS\setupact.log 2014-11-17 15:57 - 2014-11-17 15:57 - 00000000 _____ () C:\WINDOWS\setuperr.log 2014-11-16 22:10 - 2014-11-16 22:10 - 04965896 _____ (Piriform Ltd) C:\Users\ROMAN\Downloads\ccsetup418.exe 2014-11-16 16:58 - 2014-11-21 18:42 - 00000000 ____D () C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c Hosts: EmptyTemp: Reboot: End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-11-2014 01
Ran by ROMAN at 2014-11-25 17:18:51 Run:1
Running from C:\Users\ROMAN\Desktop
Loaded Profile: ROMAN (Available profiles: ROMAN)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\...\MountPoints2: {ff0e2186-31d7-11e4-beac-24fd52263b8d} - "F:\LG_PC_Programs.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKLM -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL =
SearchScopes: HKLM-x32 -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL =
C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c
2014-11-21 19:04 - 2014-11-21 19:04 - 00048135 _____ () C:\Users\ROMAN\Desktop\FRST3.txt
2014-11-21 19:03 - 2014-11-21 19:04 - 00024278 _____ () C:\Users\ROMAN\Desktop\Addition.txt
2014-11-21 19:01 - 2014-11-21 19:04 - 00014030 _____ () C:\Users\ROMAN\Desktop\FRST.txt
2014-11-21 19:01 - 2014-11-21 19:01 - 00015327 _____ () C:\Users\ROMAN\Desktop\LM.bat
2014-11-21 18:58 - 2014-11-21 18:58 - 00112640 _____ (forum.viry.cz) C:\Users\ROMAN\Downloads\FRSTLauncher.exe
2014-11-17 18:54 - 2014-11-17 18:39 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-11-17 18:40 - 2014-11-17 19:18 - 00014295 _____ () C:\zoek-results.log
2014-11-17 18:39 - 2014-11-17 18:53 - 00000000 ____D () C:\zoek_backup
2014-11-17 18:38 - 2014-11-17 18:38 - 01294848 _____ () C:\Users\ROMAN\Downloads\zoek.exe
2014-11-17 16:48 - 2014-11-17 19:15 - 00650604 _____ () C:\WINDOWS\PFRO.log
2014-11-17 16:42 - 2014-11-17 16:47 - 00000000 ____D () C:\AdwCleaner
2014-11-17 16:41 - 2014-11-17 16:41 - 02140160 _____ () C:\Users\ROMAN\Downloads\adwcleaner_4.101.exe
2014-11-17 16:37 - 2014-11-17 16:38 - 00584232 _____ () C:\Users\ROMAN\Downloads\Installation.exe
2014-11-17 16:05 - 2014-11-17 16:07 - 00000000 ____D () C:\rsit
2014-11-17 16:05 - 2014-11-17 16:06 - 00000000 ____D () C:\Program Files\trend micro
2014-11-17 16:02 - 2014-11-17 16:02 - 01222144 _____ () C:\Users\ROMAN\Downloads\RSITx64.exe
2014-11-17 15:57 - 2014-11-21 18:58 - 00001937 _____ () C:\WINDOWS\setupact.log
2014-11-17 15:57 - 2014-11-17 15:57 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-11-16 22:10 - 2014-11-16 22:10 - 04965896 _____ (Piriform Ltd) C:\Users\ROMAN\Downloads\ccsetup418.exe
2014-11-16 16:58 - 2014-11-21 18:42 - 00000000 ____D () C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdateP2GShortCut => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => value deleted successfully.
"HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ff0e2186-31d7-11e4-beac-24fd52263b8d}" => Key deleted successfully.
"HKCR\CLSID\{ff0e2186-31d7-11e4-beac-24fd52263b8d}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Key deleted successfully.
"HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}" => Key not found.
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages => value deleted successfully.
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL => value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c => Moved successfully.
"C:\Users\ROMAN\Desktop\FRST3.txt" => File/Directory not found.
C:\Users\ROMAN\Desktop\Addition.txt => Moved successfully.
C:\Users\ROMAN\Desktop\FRST.txt => Moved successfully.
"C:\Users\ROMAN\Desktop\LM.bat" => File/Directory not found.
"C:\Users\ROMAN\Downloads\FRSTLauncher.exe" => File/Directory not found.
C:\WINDOWS\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\ROMAN\Downloads\zoek.exe => Moved successfully.
C:\WINDOWS\PFRO.log => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\ROMAN\Downloads\adwcleaner_4.101.exe => Moved successfully.
C:\Users\ROMAN\Downloads\Installation.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Users\ROMAN\Downloads\RSITx64.exe => Moved successfully.
C:\WINDOWS\setupact.log => Moved successfully.
C:\WINDOWS\setuperr.log => Moved successfully.
C:\Users\ROMAN\Downloads\ccsetup418.exe => Moved successfully.
"C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 396 MB temporary data.
The system needed a reboot.
==== End of Fixlog ====
Ran by ROMAN at 2014-11-25 17:18:51 Run:1
Running from C:\Users\ROMAN\Desktop
Loaded Profile: ROMAN (Available profiles: ROMAN)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\...\MountPoints2: {ff0e2186-31d7-11e4-beac-24fd52263b8d} - "F:\LG_PC_Programs.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKLM -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL =
SearchScopes: HKLM-x32 -> DefaultScope {FA3EF1C1-8E5F-4D4C-8841-C96D8585603D} URL =
C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c
2014-11-21 19:04 - 2014-11-21 19:04 - 00048135 _____ () C:\Users\ROMAN\Desktop\FRST3.txt
2014-11-21 19:03 - 2014-11-21 19:04 - 00024278 _____ () C:\Users\ROMAN\Desktop\Addition.txt
2014-11-21 19:01 - 2014-11-21 19:04 - 00014030 _____ () C:\Users\ROMAN\Desktop\FRST.txt
2014-11-21 19:01 - 2014-11-21 19:01 - 00015327 _____ () C:\Users\ROMAN\Desktop\LM.bat
2014-11-21 18:58 - 2014-11-21 18:58 - 00112640 _____ (forum.viry.cz) C:\Users\ROMAN\Downloads\FRSTLauncher.exe
2014-11-17 18:54 - 2014-11-17 18:39 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-11-17 18:40 - 2014-11-17 19:18 - 00014295 _____ () C:\zoek-results.log
2014-11-17 18:39 - 2014-11-17 18:53 - 00000000 ____D () C:\zoek_backup
2014-11-17 18:38 - 2014-11-17 18:38 - 01294848 _____ () C:\Users\ROMAN\Downloads\zoek.exe
2014-11-17 16:48 - 2014-11-17 19:15 - 00650604 _____ () C:\WINDOWS\PFRO.log
2014-11-17 16:42 - 2014-11-17 16:47 - 00000000 ____D () C:\AdwCleaner
2014-11-17 16:41 - 2014-11-17 16:41 - 02140160 _____ () C:\Users\ROMAN\Downloads\adwcleaner_4.101.exe
2014-11-17 16:37 - 2014-11-17 16:38 - 00584232 _____ () C:\Users\ROMAN\Downloads\Installation.exe
2014-11-17 16:05 - 2014-11-17 16:07 - 00000000 ____D () C:\rsit
2014-11-17 16:05 - 2014-11-17 16:06 - 00000000 ____D () C:\Program Files\trend micro
2014-11-17 16:02 - 2014-11-17 16:02 - 01222144 _____ () C:\Users\ROMAN\Downloads\RSITx64.exe
2014-11-17 15:57 - 2014-11-21 18:58 - 00001937 _____ () C:\WINDOWS\setupact.log
2014-11-17 15:57 - 2014-11-17 15:57 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-11-16 22:10 - 2014-11-16 22:10 - 04965896 _____ (Piriform Ltd) C:\Users\ROMAN\Downloads\ccsetup418.exe
2014-11-16 16:58 - 2014-11-21 18:42 - 00000000 ____D () C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UpdateP2GShortCut => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => value deleted successfully.
"HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ff0e2186-31d7-11e4-beac-24fd52263b8d}" => Key deleted successfully.
"HKCR\CLSID\{ff0e2186-31d7-11e4-beac-24fd52263b8d}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Key deleted successfully.
"HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}" => Key not found.
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages => value deleted successfully.
HKU\S-1-5-21-1082381123-2358903656-3127633694-1001\Software\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL => value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c => Moved successfully.
"C:\Users\ROMAN\Desktop\FRST3.txt" => File/Directory not found.
C:\Users\ROMAN\Desktop\Addition.txt => Moved successfully.
C:\Users\ROMAN\Desktop\FRST.txt => Moved successfully.
"C:\Users\ROMAN\Desktop\LM.bat" => File/Directory not found.
"C:\Users\ROMAN\Downloads\FRSTLauncher.exe" => File/Directory not found.
C:\WINDOWS\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\ROMAN\Downloads\zoek.exe => Moved successfully.
C:\WINDOWS\PFRO.log => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\ROMAN\Downloads\adwcleaner_4.101.exe => Moved successfully.
C:\Users\ROMAN\Downloads\Installation.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Users\ROMAN\Downloads\RSITx64.exe => Moved successfully.
C:\WINDOWS\setupact.log => Moved successfully.
C:\WINDOWS\setuperr.log => Moved successfully.
C:\Users\ROMAN\Downloads\ccsetup418.exe => Moved successfully.
"C:\ProgramData\843b4758-3acb-424f-b9d5-728e4257d28c" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 396 MB temporary data.
The system needed a reboot.
==== End of Fixlog ====
Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Tak jeste uklidime 
DelFix https://toolslib.net/downloads/finish/2/
Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standard
Panel čistič
A pokud nejsou problemy ci dotazy, je to z me strany vse 
DelFix https://toolslib.net/downloads/finish/2/
- Stahnete a spustte
- Ponechte zatrzitkou pouze u volby Remote disinfection tools
- Kliknete na Run
Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standardPanel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
A pokud nejsou problemy ci dotazy, je to z me strany vse "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
Děkuji Děkuji Děkuji, vše je vyřešeno, Vaše pomoc byla vyčerpávající a účinná, už jede vše ok..
ještě jednou díky za Váš čas..
ještě jednou díky za Váš čas..
Re: Prosím kontrolu, vyskakující okna nežádoucích stránek
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?