avast hlasi ze zablokoval web stranku z duvodu nakazy

[dusan1234]

ahoj mam problem avast mi pri najeti na jakoukoliv stranku hlasi ze nasl nejakou infekci a at odejdu pak me sam presmeruj na nejakou reklamu..
Dale se mi pocitac chova dost zbrzdene ... LOG Z RSIT !

Logfile of random's system information tool 1.10 (written by random/random)
Run by dusan at 2015-08-01 23:02:50
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 72 GB (15%) free of 469 GB
Total RAM: 3070 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:03:48, on 1.8.2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16669)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Kodak\KODAK Share Button App\Listener.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Genius\ioTablet\gTabTaskBar.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Users\dusan\Bluebirds\BlueBirds.exe
C:\Windows\System32\spool\drivers\w32x86\3\E_FATIHAE.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Genius\ioTablet\gIoTabletFunMgm.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\Taskmgr.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_18_0_0_209_ActiveX.exe
C:\Users\dusan\Desktop\RSIT.exe
C:\Program Files\trend micro\dusan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.globasearch.com/?serie=3209& ... awr0B8FjCm
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.globasearch.com/?serie=3209& ... awr0B8FjCm
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8118
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SimilarWeb - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files\SimilarWeb\SimilarWeb.dll
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
O2 - BHO: (no name) - {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O3 - Toolbar: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - (no file)
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: SimilarWeb - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - C:\Program Files\SimilarWeb\SimilarWeb.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [zzzHPSETUP] D:\Setup.exe
O4 - HKLM\..\Run: [ioTablet] "C:\Genius\ioTablet\gTabTaskBar.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [bluebirds] C:\Users\dusan\Bluebirds\BlueBirds.exe
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIHAE.EXE /EPT "EPLTarget\P0000000000000000" /M "Epson Stylus SX430"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\dusan\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\dusan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\dusan\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: SimilarWeb - {5D06ED6E-DA78-4486-A246-B131A2C39807} - C:\Program Files\SimilarWeb\SimilarWeb.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Privoxy (PrivoxyService) (PrivoxyService) - The Privoxy team - www.privoxy.org - C:\Program Files\SmartComp Safe Network\privoxy.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe
O23 - Service: TabletService - Unknown owner - C:\Genius\ioTablet\TabletService.exe

--
End of file - 12700 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\FinalTorrent Update Checker.job - C:\Program Files\FinalTorrent\FTCheckForUpdates.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\RMSchedule.job - C:\Program Files\PC Tools Registry Mechanic\RegMech.exe /SS
C:\Windows\tasks\User_Feed_Synchronization-{4FBDF4E9-10CD-4D70-AB66-E34D245C5EB2}.job - C:\Windows\system32\msfeedssync.exe sync
C:\Windows\tasks\WebReg 20111111092243.job - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqwrg.exe /TaskName 20111111092243 /N "" /M /S

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-27 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-30 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14 4533120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{EEE6C35B-6118-11DC-9C72-001320C79847}
{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
{D4027C7F-154A-4066-A1AD-4243D8127440}
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-30 266240]
{74198672-5F7D-4FE9-A611-4AC1D5A66A15} - SimilarWeb - C:\Program Files\SimilarWeb\SimilarWeb.dll [2013-01-28 320888]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-03-30 7289376]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-03-30 1833504]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2001-07-09 155648]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2010-04-19 106496]
""= []
"SSDMonitor"=C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2012-02-03 103896]
"EEventManager"=C:\Program Files\Epson Software\Event Manager\EEventManager.exe [2010-10-12 979328]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-07-27 6109776]
"zzzHPSETUP"=D:\Setup.exe []
"ioTablet"=C:\Genius\ioTablet\gTabTaskBar.exe [2011-02-25 49152]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"bluebirds"=C:\Users\dusan\Bluebirds\BlueBirds.exe [2009-04-29 270336]
"EPLTarget\P0000000000000000"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIHAE.EXE [2012-02-29 249440]
"cz.seznam.software.autoupdate"=C:\Users\dusan\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\dusan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"AdobeBridge"= []
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-06-29 53282944]
"uTorrent"=C:\Users\dusan\AppData\Roaming\uTorrent\uTorrent.exe [2015-05-06 1694560]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-08-01 23:02:51 ----D---- C:\Program Files\trend micro
2015-08-01 23:02:50 ----D---- C:\rsit
2015-07-27 09:58:35 ----A---- C:\Windows\system32\drivers\aswStmXP.sys
2015-07-27 09:58:23 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2015-07-27 09:58:20 ----A---- C:\Windows\system32\drivers\ngvss.sys
2015-07-27 09:58:19 ----A---- C:\Windows\system32\drivers\aswNdis2.sys
2015-07-27 09:57:44 ----A---- C:\Windows\system32\aswBoot.exe
2015-07-27 09:57:19 ----A---- C:\Windows\avastSS.scr
2015-07-27 09:54:47 ----A---- C:\Windows\system32\drivers\aswNdis.sys
2015-07-26 10:34:32 ----A---- C:\Windows\system32\atmlib.dll
2015-07-26 10:34:32 ----A---- C:\Windows\system32\atmfd.dll
2015-07-24 18:31:49 ----D---- C:\R.G. Catalyst
2015-07-24 09:35:31 ----D---- C:\Program Files\SmartComp Safe Network
2015-07-24 09:35:14 ----D---- C:\Users\dusan\AppData\Roaming\Updater
2015-07-16 13:14:30 ----A---- C:\Windows\system32\win32k.sys
2015-07-16 13:14:01 ----A---- C:\Windows\system32\ole32.dll
2015-07-16 13:13:01 ----A---- C:\Windows\system32\msiexec.exe
2015-07-16 13:13:00 ----A---- C:\Windows\system32\msi.dll
2015-07-16 13:12:32 ----A---- C:\Windows\system32\gdi32.dll
2015-07-16 12:47:31 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-16 12:44:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-16 12:44:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-16 12:44:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-16 12:44:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-16 12:44:38 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-16 12:44:38 ----A---- C:\Windows\system32\kerberos.dll
2015-07-16 12:44:37 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-07-16 12:44:37 ----A---- C:\Windows\system32\advapi32.dll
2015-07-16 12:39:16 ----A---- C:\Windows\system32\msfeedssync.exe
2015-07-16 12:39:16 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-07-16 12:39:15 ----A---- C:\Windows\system32\mshta.exe
2015-07-16 12:39:15 ----A---- C:\Windows\system32\jsproxy.dll
2015-07-16 12:39:15 ----A---- C:\Windows\system32\dxtmsft.dll
2015-07-16 12:39:14 ----A---- C:\Windows\system32\ieUnatt.exe
2015-07-16 12:39:14 ----A---- C:\Windows\system32\iertutil.dll
2015-07-16 12:39:13 ----A---- C:\Windows\system32\vbscript.dll
2015-07-16 12:39:13 ----A---- C:\Windows\system32\urlmon.dll
2015-07-16 12:39:08 ----A---- C:\Windows\system32\wininet.dll
2015-07-16 12:39:08 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-16 12:39:08 ----A---- C:\Windows\system32\jscript.dll
2015-07-16 12:39:05 ----A---- C:\Windows\system32\url.dll
2015-07-16 12:39:05 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-16 12:39:04 ----A---- C:\Windows\system32\ieui.dll
2015-07-16 12:39:03 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-16 12:39:01 ----A---- C:\Windows\system32\jscript9.dll
2015-07-16 12:38:58 ----A---- C:\Windows\system32\ieframe.dll
2015-07-16 12:38:39 ----A---- C:\Windows\system32\mshtml.dll
2015-07-07 14:51:39 ----D---- C:\Program Files\X-note

======List of files/folders modified in the last 1 month======

2015-08-01 23:03:19 ----D---- C:\Windows\Prefetch
2015-08-01 23:03:12 ----D---- C:\Windows\Temp
2015-08-01 23:02:51 ----D---- C:\Program Files
2015-08-01 22:55:22 ----SHD---- C:\System Volume Information
2015-08-01 22:42:32 ----D---- C:\Users\dusan\AppData\Roaming\Skype
2015-08-01 22:32:42 ----D---- C:\Users\dusan\AppData\Roaming\Seznam.cz
2015-08-01 22:32:01 ----D---- C:\Users\dusan\AppData\Roaming\uTorrent
2015-08-01 22:24:31 ----D---- C:\Windows
2015-07-31 16:52:08 ----D---- C:\Windows\system32\Tasks
2015-07-30 13:41:33 ----D---- C:\Windows\System32
2015-07-30 13:41:33 ----D---- C:\Windows\inf
2015-07-30 13:41:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-27 15:45:58 ----D---- C:\Windows\system32\vbox
2015-07-27 11:28:59 ----SHD---- C:\$Recycle.Bin
2015-07-27 11:23:01 ----D---- C:\Windows\system32\drivers
2015-07-26 10:34:59 ----D---- C:\Windows\winsxs
2015-07-26 10:34:55 ----D---- C:\Windows\system32\catroot
2015-07-25 17:51:54 ----D---- C:\Program Files\Electronic Arts
2015-07-24 20:02:48 ----D---- C:\Windows\Logs
2015-07-24 16:02:21 ----D---- C:\Windows\system32\catroot2
2015-07-24 15:57:26 ----D---- C:\Windows\system32\Msdtc
2015-07-24 15:57:22 ----D---- C:\Windows\system32\wbem
2015-07-24 15:49:45 ----D---- C:\Windows\system32\config
2015-07-24 15:49:24 ----D---- C:\Windows\Tasks
2015-07-24 15:49:24 ----D---- C:\Windows\system32\spool
2015-07-24 15:49:22 ----D---- C:\Users\dusan\AppData\Roaming\FinalTorrent
2015-07-24 15:49:19 ----D---- C:\Program Files\NetSoftware
2015-07-24 15:49:19 ----D---- C:\Program Files\MyPC Backup
2015-07-24 15:49:18 ----D---- C:\Program Files\FinalTorrent
2015-07-24 15:49:11 ----D---- C:\Casino
2015-07-24 15:49:07 ----D---- C:\Windows\registration
2015-07-24 09:41:55 ----D---- C:\Program Files\Google
2015-07-24 09:36:32 ----D---- C:\Program Files\Mozilla Firefox
2015-07-16 22:06:11 ----D---- C:\Windows\system32\migration
2015-07-16 22:06:11 ----D---- C:\Program Files\Internet Explorer
2015-07-16 15:54:03 ----SHD---- C:\Windows\Installer
2015-07-16 13:12:31 ----D---- C:\Windows\system32\MRT
2015-07-16 12:57:03 ----D---- C:\ProgramData\Microsoft Help
2015-07-15 15:01:35 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-07-13 19:19:13 ----D---- C:\Program Files\Common Files\Adobe AIR
2015-07-05 12:54:42 ----D---- C:\ProgramData\Skype
2015-07-03 08:49:12 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2015-07-27 12112]
R0 aswNdis2;avast! Firewall NDIS Driver; C:\Windows\system32\drivers\aswNdis2.sys [2015-07-27 256160]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-07-27 49776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-07-27 208664]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-07-27 95112]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-12 320120]
R1 {0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gt;{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gt; C:\Windows\system32\drivers\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gt.sys [2014-07-09 55224]
R1 {814594ff-4ba3-41b4-b6ea-512a5cf4468d}Gt;{814594ff-4ba3-41b4-b6ea-512a5cf4468d}Gt; C:\Windows\system32\drivers\{814594ff-4ba3-41b4-b6ea-512a5cf4468d}Gt.sys [2015-06-16 55816]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2015-07-27 26096]
R1 AswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2015-07-27 55200]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-07-27 788784]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-07-27 433264]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-13 243128]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-07-27 24016]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-07-27 76000]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2010-04-10 278984]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2010-04-10 25416]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-07-27 220752]
R3 aswStmXP;Avast StreamFilter Driver; C:\Windows\system32\drivers\aswStmXP.sys [2015-07-27 161472]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-12-02 4179968]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-03-30 2350624]
R3 ioFakDrv;ioVirtual Device; C:\Windows\system32\DRIVERS\ioFakDrv.sys [2010-12-15 21888]
R3 ioFakMap;MiniHid Driver Service for ioFakeDrv Interface layer; C:\Windows\system32\DRIVERS\ioFakMap.sys [2010-12-15 10624]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-11-10 135680]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-21 9216]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2008-01-21 45696]
S3 aoujzz7c;aoujzz7c; C:\Windows\system32\drivers\aoujzz7c.sys []
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2014-07-06 35144]
S3 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2015-07-27 57888]
S3 athur;Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athur.sys [2010-01-05 1387008]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2008-01-21 40448]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 EagleNT;EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys []
S3 EagleXNt;EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 39272]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 ioTablet;Tablet Minidriver for ioTablet; C:\Windows\system32\DRIVERS\ioTablet.sys [2011-03-03 34696]
S3 ioTblMap;Mini Mapper for ioCentre; C:\Windows\system32\DRIVERS\ioTblMap.sys [2011-03-03 10632]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2008-01-21 52608]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-12-01 720896]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-07-27 146600]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2015-07-27 109008]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 PanService;PandoraService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-02-03 793048]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-01-13 75064]
R2 TabletService;TabletService; C:\Genius\ioTablet\TabletService.exe [2011-02-25 18944]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-07-27 3218624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe /svc []
S2 PrivoxyService;Privoxy (PrivoxyService); C:\Program Files\SmartComp Safe Network\privoxy.exe [2015-07-24 371200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-15 268976]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc []
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-21 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-12 772296]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-12 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------


Dekuji za radu

[vyosek]

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[dusan1234]

# AdwCleaner v4.208 - Log vytvořen 02/08/2015 v 10:03:21
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-09.2 [Local]
# Operační system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Uživatelské jméno : dusan - DUSAN-PC
# Spuštěno z : C:\Users\dusan\Desktop\adwcleaner_4.208.exe
# Nastavení : Čištění

***** [ Služby ] *****

[#] Služba Smazáno : PanService
[#] Služba Smazáno : PrivoxyService
[#] Služba Smazáno : {0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gt
[#] Služba Smazáno : {814594ff-4ba3-41b4-b6ea-512a5cf4468d}Gt

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\apn
Složka Smazáno : C:\ProgramData\ICQ\ICQToolbar
Složka Smazáno : C:\ProgramData\SweetIM
Složka Smazáno : C:\ProgramData\SimilarWeb
Složka Smazáno : C:\ProgramData\IHProtectUpDate
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZDownloader
Složka Smazáno : C:\Program Files\Ask.com
Složka Smazáno : C:\Program Files\Crawler
Složka Smazáno : C:\Program Files\EZDownloader
Složka Smazáno : C:\Program Files\File Type Assistant
Složka Smazáno : C:\Program Files\FinalTorrent
Složka Smazáno : C:\Program Files\ICQ6Toolbar
Složka Smazáno : C:\Program Files\Mobogenie
Složka Smazáno : C:\Program Files\MyPC Backup
Složka Smazáno : C:\Program Files\SimilarSites
Složka Smazáno : C:\Program Files\SweetIM
Složka Smazáno : C:\Program Files\PANDORA.TV
Složka Smazáno : C:\Program Files\SimilarWeb
Složka Smazáno : C:\Program Files\SmartComp Safe Network
Složka Smazáno : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Složka Smazáno : C:\Users\dusan\AppData\Local\genienext
Složka Smazáno : C:\Users\dusan\AppData\Local\Mobogenie
Složka Smazáno : C:\Users\dusan\AppData\LocalLow\AskToolbar
Složka Smazáno : C:\Users\dusan\AppData\LocalLow\SweetIM
Složka Smazáno : C:\Users\dusan\AppData\Roaming\AD ON Multimedia
Složka Smazáno : C:\Users\dusan\AppData\Roaming\EZDownloader
Složka Smazáno : C:\Users\dusan\AppData\Roaming\FinalTorrent
Složka Smazáno : C:\Users\dusan\AppData\Roaming\newnext.me
Složka Smazáno : C:\Users\dusan\AppData\Roaming\registry mechanic
Složka Smazáno : C:\Users\dusan\AppData\Roaming\Systweak
Složka Smazáno : C:\Users\dusan\AppData\Roaming\Updater
Složka Smazáno : C:\Users\dusan\AppData\Roaming\SimilarWeb
Složka Smazáno : C:\Users\dusan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Složka Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Složka Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
Složka Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\Extensions\toolbar@ask.com
Složka Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Soubor Smazáno : C:\Users\Public\Desktop\EZDownloader.lnk
Soubor Smazáno : C:\Users\Public\Desktop\iLivid.lnk
Soubor Smazáno : C:\Windows\AppPatch\Custom\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb
Soubor Smazáno : C:\Windows\AppPatch\nbin\VC32Loader.dll
Soubor Smazáno : C:\Windows\system32\roboot.exe
Soubor Smazáno : C:\Windows\system32\drivers\{0c0bb4a8-45a4-4685-9c1d-08d98af4b926}Gt.sys
Soubor Smazáno : C:\Windows\system32\drivers\{814594ff-4ba3-41b4-b6ea-512a5cf4468d}Gt.sys
Soubor Smazáno : C:\Windows\system32\drivers\SPPD.sys
Soubor Smazáno : C:\Windows\system32\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT
Soubor Smazáno : C:\Users\dusan\daemonprocess.txt
Soubor Smazáno : C:\Users\dusan\AppData\Local\GDIPFONTCACHEV1.DAT
Soubor Smazáno : C:\Users\dusan\AppData\Roaming\GDIPFONTCACHEV1.DAT
Soubor Smazáno : C:\Users\dusan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\eBay.lnk
Soubor Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\searchplugins\Askcom.xml
Soubor Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\searchplugins\crawlersrch.xml
Soubor Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\searchplugins\SweetIm.xml
Soubor Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\user.js
Soubor Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\searchplugins\icqplugin.gif
Soubor Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\searchplugins\icqplugin.src
Soubor Smazáno : C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\searchplugins\icqplugin.xml

***** [ Naplánované úlohy ] *****

Úloha Smazáno : FinalTorrent Update Checker
Úloha Smazáno : LaunchSignup
Úloha Smazáno : Scheduled Update for Ask Toolbar

***** [ Zástupci ] *****

Zástupce Vyléčeno : C:\Users\dusan\Desktop\Amnesia.lnk
Zástupce Vyléčeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta\Nápověda pro lištu.lnk
Zástupce Vyléčeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta\Více produktů Crawler.lnk
Zástupce Vyléčeno : C:\Users\dusan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Zástupce Vyléčeno : C:\Users\dusan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amnesia\Spustit hru Amnesia vs. Justine.lnk
Zástupce Vyléčeno : C:\Users\dusan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk

***** [ Registry ] *****

Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Crawler Search
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\ctbr.R404Pro
Klíč Smazáno : HKLM\SOFTWARE\Classes\CToolbar.TB4Client
Klíč Smazáno : HKLM\SOFTWARE\Classes\CToolbar.TB4Script
Klíč Smazáno : HKLM\SOFTWARE\Classes\CToolbar.TB4Server
Klíč Smazáno : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Klíč Smazáno : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Klíč Smazáno : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Klíč Smazáno : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\tbr
Klíč Smazáno : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Klíč Smazáno : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Klíč Smazáno : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Klíč Smazáno : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\Crawler
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\InstalledsDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C379EAD1-CB34-4B09-AF6B-7E587F8BCD80}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A36BCB13-778D-4A40-99C1-D686086D268F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{04006843-5199-4CE4-B3CD-8092CC91706E}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{CCA8F2AB-BE4E-41F0-A289-4D960CEA58EA}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{E79BB61D-7F1A-41DF-8AD0-402795E3B566}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7459F1D0-9FB6-4D71-AA7B-9DECB34EB704}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBF1B8D2-9A06-4174-A8B5-E38606DDB92B}
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{20B9D1AE-AD1A-38B4-87FE-AF278DA9861D}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{20B9D1AE-AD1A-38B4-87FE-AF278DA9861D}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Klíč Smazáno : HKCU\Software\APN PIP
Klíč Smazáno : HKCU\Software\APN
Klíč Smazáno : HKCU\Software\Ask.com
Klíč Smazáno : HKCU\Software\Bitberry
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\CToolbar
Klíč Smazáno : HKCU\Software\dt soft\daemon tools toolbar
Klíč Smazáno : HKCU\Software\FileTypeAssistant
Klíč Smazáno : HKCU\Software\HomeTab
Klíč Smazáno : HKCU\Software\IM
Klíč Smazáno : HKCU\Software\InstallCore
Klíč Smazáno : HKCU\Software\simplytech
Klíč Smazáno : HKCU\Software\Softonic
Klíč Smazáno : HKCU\Software\SweetIM
Klíč Smazáno : HKCU\Software\systweak
Klíč Smazáno : HKCU\Software\TNT2
Klíč Smazáno : HKCU\Software\WajIntEnhance
Klíč Smazáno : HKCU\Software\SearchProtectWS
Klíč Smazáno : HKCU\Software\Linkey
Klíč Smazáno : HKCU\Software\Kromtech
Klíč Smazáno : HKCU\Software\AppDataLow\AskToolbarInfo
Klíč Smazáno : HKCU\Software\AppDataLow\Software\AskToolbar
Klíč Smazáno : HKLM\SOFTWARE\APN
Klíč Smazáno : HKLM\SOFTWARE\AskPartnerNetwork
Klíč Smazáno : HKLM\SOFTWARE\AskToolbar
Klíč Smazáno : HKLM\SOFTWARE\Conduit
Klíč Smazáno : HKLM\SOFTWARE\CToolbar
Klíč Smazáno : HKLM\SOFTWARE\Freeze.com
Klíč Smazáno : HKLM\SOFTWARE\ICQ\ICQToolbar
Klíč Smazáno : HKLM\SOFTWARE\Iminent
Klíč Smazáno : HKLM\SOFTWARE\PIP
Klíč Smazáno : HKLM\SOFTWARE\SearchProtect
Klíč Smazáno : HKLM\SOFTWARE\SupDp
Klíč Smazáno : HKLM\SOFTWARE\SupTab
Klíč Smazáno : HKLM\SOFTWARE\supWindowsMangerProtect
Klíč Smazáno : HKLM\SOFTWARE\SweetIM
Klíč Smazáno : HKLM\SOFTWARE\systweak
Klíč Smazáno : HKLM\SOFTWARE\IHProtect
Klíč Smazáno : HKLM\SOFTWARE\SPPDCOM
Klíč Smazáno : HKLM\SOFTWARE\WajIntEnhance
Klíč Smazáno : HKLM\SOFTWARE\SpeedBit
Klíč Smazáno : HKLM\SOFTWARE\AIM Toolbar
Klíč Smazáno : HKLM\SOFTWARE\oursurfingSoftware
Klíč Smazáno : HKLM\SOFTWARE\W3I
Klíč Smazáno : HKLM\SOFTWARE\SecureWebChannel
Klíč Smazáno : HKU\.DEFAULT\Software\AVG Security Toolbar
Klíč Smazáno : HKU\.DEFAULT\Software\CToolbar
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0F44DC3A-6E62-4961-A14B-95323C512F9B}_is1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Trusted Software Assistant_is1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{0F44DC3A-6E62-4961-A14B-95323C512F9B}_is1
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\CToolbar_UNINSTALL
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\daemon tools toolbar
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Mobogenie
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Trusted Software Assistant_is1
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\oursurfing uninstall
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - 127.0.0.1:8118
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1

***** [ Prohlížeče ] *****

-\\ Internet Explorer v9.0.8112.16669

Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v

[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.InstallDir", "C:\\Program Files\\Ask.com\\");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.abar-war-timeout", "4000");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.cbid", "H3");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.config-updated", false);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.crumb", "2011.02.03+03.30.51-toolbar003iad-CZ-UHJhZ3VlLEN6ZWNoIFJlcHVibGlj");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://eu.ask.com/web?qsrc={qsrc}&o={o}&l={l}&q={query}&dm=all");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.dtid", "YYYYYYYYCZ");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://www.crawler.com/search/dispatcher.aspx? ... 60341&qkw=");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.first-restart-after-config-update", true);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.guid", "3209A648-FF73-4A39-97CA-2DD730649D4F");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.hxxp-header-whitelist-hosts", "[\"static-dev.en.dev.ask.com\", \"ask.com\", \"www.facebook.com\", \"www.playsushi.com\", \"WWW.google.com\", \"hxxps://websearch.ask.com\", [...]
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.if", "su");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.l", "dis");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.last-config-req", "1306266224614");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.locale", "en_EU");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.location", "Prague,Czech Republic");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.o", "15851");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.qsrc", "2871");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.sa", "YES");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.saguid", "2A4D5534-0C4B-47F2-BC23-40826FC48668");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.search-suggestions-enabled", false);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.silent-upgrade", true);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.silent-upgrade-from-pre-newtabs-build", true);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.socialmini-first", true);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.socialmini-interval", "1200000");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.socialmini-max-char-ticker", "33");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.socialmini-max-items", "30");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.socialmini-native-on", true);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.socialmini-speed", "5000");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.socialmini-transition-first-open", false);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.themeid", "");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asktb.to", "");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.allowSendURL", false);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.engineVerified", false);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.hiddenElements", "itb_options");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.history", "ZOO%20Ostravateletextoprava%20pra%C4%8Dek%20zanussi%20Karvin%C3%A1oprava%20pra%C4%8Dek%20%20zanussi%20Karvin%C3%A1oprava%20pra%C4%8Dek%20%20zynussi%20Karvin%C3[...]
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.installTime", "1279110139");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.installsource", "1");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.newtab_state", "1");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.numberOfSearches", 0);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.previousFFVersion", "1.5.0.12");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.skip_default_search", "yes");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.suggestions", false);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.uniqueID", "127904820612790482061279110139322");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.usageStatstTimestamp", 1300728614);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.xmlLanguage", "cs");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.order.1", "Ask.com");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultengine", "Ask.com");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("browser.startup.homepage", "hxxp://www.globasearch.com/?serie=3209&b=2&ins ... awr0B8FjCm");
[8er77r7c.default\prefs.js] - Řádek Smazáno : user_pref("browser.newtab.url", "hxxp://www.globasearch.com/?serie=3209&b=2&ins ... jCm&newtab");

-\\ Google Chrome v43.0.2357.134


*************************

AdwCleaner[R0].txt - [37781 bytů] - [02/08/2015 09:57:03]
AdwCleaner[S0].txt - [37141 bytů] - [02/08/2015 10:03:21]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [37200 bytů] ##########

[vyosek]

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[dusan1234]

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by dusan on ne 02.08.2015 at 10:47:52,62.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\dusan\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

2.8.2015 10:50:17 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Program Files\GUMF8B5.tmp deleted successfully
C:\Program Files\ICQ6.5 deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\Program Files\Telltale Games deleted successfully
C:\Program Files\Common Files\Nero deleted successfully
C:\Program Files\Common Files\Symantec Shared deleted successfully
C:\PROGRA~2\BioWare deleted successfully
C:\PROGRA~2\Data aplikacĆđ deleted successfully
C:\PROGRA~2\Solid State Networks deleted successfully
C:\Users\dusan\AppData\Roaming\Slo§ka odesˇl nˇ Share-to-Web deleted successfully
C:\Users\dusan\AppData\Roaming\WinRAR deleted successfully
C:\Users\dusan\AppData\Local\cache deleted successfully
C:\Users\dusan\AppData\Local\FEMAP deleted successfully
C:\Users\dusan\AppData\Local\GHISLER deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_USERS\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{74198672-5F7D-4FE9-A611-4AC1D5A66A15} deleted successfully
HKEY_USERS\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{74198672-5F7D-4FE9-A611-4AC1D5A66A15} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2CE72F9B-331A-4B58-9B19-6416CAC6E750} deleted successfully
HKEY_USERS\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} deleted successfully
HKEY_USERS\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB4E186B-5A09-4B68-9320-A3FE0731C9D6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{74198672-5F7D-4FE9-A611-4AC1D5A66A15} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{74198672-5F7D-4FE9-A611-4AC1D5A66A15} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{74198672-5F7D-4FE9-A611-4AC1D5A66A15} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{74198672-5F7D-4FE9-A611-4AC1D5A66A15} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{74198672-5F7D-4FE9-A611-4AC1D5A66A15} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gupdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gupdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\gupdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\gupdatem deleted successfully

==== FireFox Fix ======================

Deleted from C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.globasearch.com/?serie=3209& ... awr0B8FjCm");
user_pref("browser.newtab.url", "http://www.globasearch.com/?serie=3209& ... jCm&newtab");
user_pref("browser.search.defaultenginename", "Google");

Added to C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_02.08.2015_1141_.backup

==== Deleting Files \ Folders ======================

C:\Program Files\GUMF8B5.tmp not found
C:\Program Files\ICQ6.5 not found
C:\Program Files\Telltale Games not found
C:\Program Files\Hemera Products deleted
C:\Users\dusan\.android deleted
C:\install.exe deleted
C:\Users\dusan\AppData\Roaming\bitlord_log.txt deleted
C:\Users\dusan\AppData\Roaming\BitLord deleted
C:\Users\dusan\RarExt64.dll deleted
C:\Users\dusan\update-Remember-Me.bat deleted
C:\PROGRA~2\Second Reproduction deleted
C:\PROGRA~2\ICQ deleted
C:\PROGRA~2\InstallMate deleted
C:\PROGRA~2\Package Cache deleted
C:\Users\dusan\AppData\Local\BitLord deleted
C:\Windows\System32\Tasks\avastBCLRestartS-1-5-21-818463529-1547308680-1770911220-1000 deleted
C:\Users\dusan\AppData\LocalLow\AVGTOOLBAR deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\AskToolbar deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVGTOOLBAR deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\SweetIM deleted
C:\Windows\wininit.ini deleted
C:\Windows\system32\config\systemprofile\Searches deleted
C:\Windows\system32\GroupPolicy\Machine deleted
C:\Windows\system32\GroupPolicy\gpt.ini deleted
C:\Windows\System32\AI_RecycleBin deleted
C:\Users\dusan\Documents\BitLord deleted
C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\ICQToolbarData deleted
C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\staged deleted
C:\Users\dusan\FreeMOV2AVI.exe deleted
C:\Users\dusan\Rar.exe deleted
C:\Users\dusan\RarExtLoader.exe deleted
C:\Users\dusan\tcmd750a.exe deleted
C:\Users\dusan\Uninstall.exe deleted
C:\Users\dusan\UnRAR.exe deleted
C:\Users\dusan\Visual_2012.exe deleted
C:\Users\dusan\WinRAR.exe deleted
C:\Users\dusan\wrar380b5cz.exe deleted
"C:\Windows\Installer\2a2adb9.msi" deleted
"C:\Windows\Installer\2a2adf4.msi" deleted
"C:\Users\dusan\AppData\Local\LumaEmu" deleted
"C:\Users\dusan\RarExt.dll" deleted
"C:\Users\dusan\rarlng.dll" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Proxy Settings ======================

ProfilePath: C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default
user_pref("network.proxy.type", 5);

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [27.07.2015 09:56]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"gemgecko@gemius.com"="C:\Program Files\NetSoftware\gemgecko" [09.05.2010 18:15]

==== Firefox Extensions ======================

ProfilePath: C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default
- Undetermined - C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org
- Undetermined - C:\Program Files\Crawler\Toolbar\firefox
- Vzkum NetMonitor - C:\Program Files\NetSoftware\gemgecko
- Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

AppDir: C:\Program Files\Mozilla Firefox
- Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
- Firefox Helper - %AppDir%\distribution\bundles\a244e58627c8690acf73e196f6280d51

==== Firefox Plugins ======================


==== Deleted Firefox Extensions ======================

C:\Program Files\Mozilla Firefox\distribution\bundles\a244e58627c8690acf73e196f6280d51 deleted

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx[04.08.2014 19:54]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[20.03.2015 20:37]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[14.08.2013 11:12]

AdZap | Block ads across the web - dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojnpdahnhojlgimjfcpnfmajngaljogh

==== Chromium Startpages ======================

C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Preferences
"startup_urls": [ "http://www.globasearch.com/?b=1" ]


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.globasearch.com/?serie=3209& ... awr0B8FjCm"
"ICQ Search"="http://www.google.com"
"Search Page"="https://www.google.com/search?trackid=s ... earchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.globasearch.com/?serie=3209& ... awr0B8FjCm"
"Search Page"="https://www.google.com/search?trackid=s ... earchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"ICQ Search"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7ACD727FB7B45FC4388488B13F0B0D64 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B46772A74345AAD4DB34A3FCF4CF7DEF deleted successfully
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
HKEY_CURRENT_USER\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F727DCA7-4B7B-4CF5-8348-881BF3B0D046} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7A27764B-5434-4DAA-BD43-3ACF4FFCD7FE} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\7ACD727FB7B45FC4388488B13F0B0D64 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\B46772A74345AAD4DB34A3FCF4CF7DEF deleted successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\dusan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\dusan\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\dusan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Mozilla\Firefox\Profiles\cdrl4ugf.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=428 folders=128 21831622479 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\dusan\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\dusan\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\dusan\RarExt.dllsearch" not found
"C:\Users\dusan\rarlng.dllsearch" not found
"C:\Users\dusan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on ne 02.08.2015 at 12:28:07,08 ======================

[vyosek]

Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

[dusan1234]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:02-08-2015
Ran by dusan (administrator) on DUSAN-PC (02-08-2015 12:48:24)
Running from C:\Users\dusan\Desktop
Loaded Profiles: dusan (Available Profiles: dusan)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Eastman Kodak Company) C:\Program Files\Kodak\KODAK Share Button App\Listener.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(InterVideo Inc.) C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Genius\ioTablet\TabletService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Genius\ioTablet\gTabletTask.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Genius\ioTablet\gTabTaskBar.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(LG Electronics) C:\Users\dusan\Bluebirds\BlueBirds.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
() C:\Genius\ioTablet\gIoTabletFunMgm.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7289376 2009-03-30] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-03-30] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NeroFilterCheck] => C:\Windows\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [SSDMonitor] => C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2012-02-03] (PC Tools)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-07-27] (AVAST Software)
HKLM\...\Run: [zzzHPSETUP] => D:\Setup.exe
HKLM\...\Run: [ioTablet] => C:\Genius\ioTablet\gTabTaskBar.exe [49152 2011-02-25] ()
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [bluebirds] => C:\Users\dusan\Bluebirds\BlueBirds.exe [270336 2009-04-29] (LG Electronics)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\dusan\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\dusan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53282944 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [uTorrent] => C:\Users\dusan\AppData\Roaming\uTorrent\uTorrent.exe [1693024 2015-08-02] (BitTorrent Inc.)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-07-27] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dusan\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dusan\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\dusan\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKU\S-1-5-21-818463529-1547308680-1770911220-1000 - Default Value = {74198672-5F7D-4FE9-A611-4AC1D5A66A15}
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKLM -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search.yahoo.com/avg/sear ... earchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = http://www.crawler.com/search/dispatche ... tbid=60341
SearchScopes: HKU\.DEFAULT -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search.yahoo.com/avg/sear ... earchTerms}
SearchScopes: HKU\.DEFAULT -> {EB2710A4-164D-480A-BE31-8685421F7519} URL = http://websearch.ask.com/redirect?clien ... 826FC48668
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-818463529-1547308680-1770911220-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-27] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-30] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14] (Skype Technologies S.A.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-30] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKU\.DEFAULT -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKU\.DEFAULT -> No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKU\.DEFAULT -> No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14] (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-01-21] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 46.228.16.1 46.228.16.2
Tcpip\..\Interfaces\{02381A19-8C8C-44EC-BB4E-2796AD9E99E1}: [DhcpNameServer] 46.228.16.1 46.228.16.2
Tcpip\..\Interfaces\{EBB3D70B-FA06-4E91-AEF6-6D5215829AFE}: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default
FF NewTab: about:newtab
FF Homepage: about:home
FF NetworkProxy: "type", 5
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2012-02-21] (Adobe Systems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll No File
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-818463529-1547308680-1770911220-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\dusan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-12-05] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2011-06-07] (Adobe Systems Inc.)
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011-06-20]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-05-05]
FF HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Firefox\Extensions: [gemgecko@gemius.com] - C:\Program Files\NetSoftware\gemgecko
FF Extension: Výzkum NetMonitor - C:\Program Files\NetSoftware\gemgecko [2010-04-10]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org [not found]
FF Extension: No Name - C:\Program Files\Crawler\Toolbar\firefox [not found]
FF Extension: No Name - C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\DTToolbar@toolbarnet.com [not found]
FF Extension: No Name - C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\toolbar@ask.com [not found]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]

Chrome:
=======
CHR Profile: C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-02]
CHR Extension: (Google Docs) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-02]
CHR Extension: (Google Drive) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-02]
CHR Extension: (YouTube) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-02]
CHR Extension: (Google Search) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-02]
CHR Extension: (Google Sheets) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-02]
CHR Extension: (Google Wallet) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-02]
CHR Extension: (AdZap
Block ads across the web) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojnpdahnhojlgimjfcpnfmajngaljogh [2015-08-02]
CHR Extension: (Gmail) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-02]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-04]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-20]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-08-14]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-27] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109008 2015-07-27] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624 2015-07-27] (Avast Software)
R2 Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 PCToolsSSDMonitorSvc; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2012-02-03] (PC Tools)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75064 2010-01-13] ()
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 TabletService; C:\Genius\ioTablet\TabletService.exe [18944 2011-02-25] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [45696 2008-01-21] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-07-27] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [26096 2015-07-27] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [76000 2015-07-27] (AVAST Software)
R0 aswNdis; C:\Windows\System32\DRIVERS\aswNdis.sys [12112 2015-07-27] (ALWIL Software)
R0 aswNdis2; C:\Windows\system32\Drivers\aswNdis2.sys [256160 2015-07-27] (AVAST Software)
R1 AswRdr; C:\Windows\system32\drivers\aswRdr.sys [55200 2015-07-27] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-07-27] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [788784 2015-07-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [433264 2015-07-27] (AVAST Software)
R3 aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [161472 2015-07-27] (AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [35144 2014-07-06] (The OpenVPN Project)
S3 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57888 2015-07-27] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208664 2015-07-27] (AVAST Software)
S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1387008 2010-01-05] (Atheros Communications, Inc.)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [278984 2010-04-10] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-07-13] (Disc Soft Ltd)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R3 ioFakDrv; C:\Windows\System32\DRIVERS\ioFakDrv.sys [21888 2010-12-15] (KYE System Corp.)
R3 ioFakMap; C:\Windows\System32\DRIVERS\ioFakMap.sys [10624 2010-12-15] (KYE System Corp.)
S3 ioTablet; C:\Windows\System32\DRIVERS\ioTablet.sys [34696 2011-03-03] (KYE System Corp.)
S3 ioTblMap; C:\Windows\System32\DRIVERS\ioTblMap.sys [10632 2011-03-03] (KYE System Corp.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25416 2010-04-10] ()
R0 ngvss; C:\Windows\system32\Drivers\ngvss.sys [95112 2015-07-27] (AVAST Software)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-07-12] (Duplex Secure Ltd.)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220752 2015-07-27] (Avast Software)
S3 EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U3 a5iexe3e; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-02 12:48 - 2015-08-02 12:49 - 00021619 _____ C:\Users\dusan\Desktop\FRST.txt
2015-08-02 12:48 - 2015-08-02 12:48 - 00000000 ____D C:\FRST
2015-08-02 12:46 - 2015-08-02 12:46 - 01673216 _____ (Farbar) C:\Users\dusan\Desktop\FRST.exe
2015-08-02 12:24 - 2015-08-02 10:46 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-08-02 10:49 - 2015-08-02 12:28 - 00017255 _____ C:\zoek-results.log
2015-08-02 10:46 - 2015-08-02 12:20 - 00000000 ____D C:\zoek_backup
2015-08-02 10:36 - 2015-08-02 10:36 - 01308672 _____ C:\Users\dusan\Desktop\zoek.exe
2015-08-02 10:08 - 2015-08-02 10:08 - 00121736 _____ C:\Users\dusan\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-02 09:55 - 2015-08-02 10:04 - 00000000 ____D C:\AdwCleaner
2015-08-02 09:53 - 2015-08-02 09:53 - 02248704 _____ C:\Users\dusan\Desktop\adwcleaner_4.208.exe
2015-08-01 23:02 - 2015-08-01 23:03 - 00000000 ____D C:\rsit
2015-08-01 23:02 - 2015-08-01 23:03 - 00000000 ____D C:\Program Files\trend micro
2015-08-01 23:01 - 2015-08-01 23:01 - 01107968 _____ C:\Users\dusan\Desktop\RSIT.exe
2015-08-01 22:44 - 2015-08-01 22:45 - 00000000 ____D C:\Users\dusan\Documents\AAAZaloha
2015-08-01 22:24 - 2015-08-01 22:27 - 00000034 _____ C:\Windows\setupact.log
2015-08-01 22:24 - 2015-08-01 22:24 - 00000000 _____ C:\Windows\setuperr.log
2015-07-27 10:00 - 2015-07-27 10:00 - 00001855 _____ C:\Users\Public\Desktop\Avast SafeZone.lnk
2015-07-27 10:00 - 2015-07-27 10:00 - 00001795 _____ C:\Users\Public\Desktop\Avast Internet Security.lnk
2015-07-27 09:58 - 2015-07-27 09:57 - 00161472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStmXP.sys
2015-07-27 09:58 - 2015-07-27 09:56 - 00026096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2015-07-27 09:58 - 2015-07-27 09:55 - 00095112 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys
2015-07-27 09:58 - 2015-07-27 09:54 - 00256160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdis2.sys
2015-07-27 09:57 - 2015-07-27 09:57 - 00313472 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-07-27 09:57 - 2015-07-27 09:57 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-07-27 09:54 - 2015-07-27 09:54 - 00012112 _____ (ALWIL Software) C:\Windows\system32\Drivers\aswNdis.sys
2015-07-26 12:26 - 2015-07-27 10:51 - 00000000 ____D C:\Users\dusan\Downloads\ANTM
2015-07-26 10:34 - 2015-07-14 18:02 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-26 10:34 - 2015-07-14 16:23 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-24 20:05 - 2015-07-25 12:12 - 00000000 ____D C:\Users\dusan\Documents\Witcher 2
2015-07-24 20:05 - 2015-07-24 20:05 - 00000000 ____D C:\Users\dusan\AppData\Local\The Witcher 2
2015-07-24 20:01 - 2015-07-24 20:01 - 00002039 _____ C:\Users\dusan\Desktop\The Witcher 2 - Assassins of Kings - Enhanced Edition.lnk
2015-07-24 20:01 - 2015-07-24 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Catalyst
2015-07-24 18:31 - 2015-07-24 18:31 - 00000000 ____D C:\R.G. Catalyst
2015-07-24 11:13 - 2015-07-24 16:13 - 00000000 ____D C:\Users\dusan\Downloads\Witcher 2_RU.EN.PL_[R.G. Catalyst]
2015-07-16 13:14 - 2015-07-03 18:04 - 01316864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-16 13:14 - 2015-06-25 04:57 - 02066432 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-16 13:13 - 2015-06-17 18:50 - 02264576 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-16 13:13 - 2015-06-17 17:09 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-16 13:12 - 2015-06-12 18:01 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-16 12:47 - 2015-05-31 10:11 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-07-16 12:44 - 2015-06-27 18:03 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-16 12:44 - 2015-06-27 18:02 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-16 12:44 - 2015-06-27 18:02 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-16 12:44 - 2015-06-27 18:01 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-07-16 12:44 - 2015-06-27 16:21 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-16 12:44 - 2015-06-27 16:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-16 12:44 - 2015-06-12 15:13 - 00440768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-07-16 12:44 - 2015-01-09 02:17 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-16 12:39 - 2015-06-17 03:14 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-16 12:39 - 2015-06-17 03:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-07-16 12:39 - 2015-06-17 03:10 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-16 12:39 - 2015-06-17 03:09 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-16 12:39 - 2015-06-17 03:09 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-16 12:39 - 2015-06-17 03:09 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-16 12:39 - 2015-06-17 03:09 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-07-16 12:39 - 2015-06-17 03:08 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-07-16 12:39 - 2015-06-17 03:08 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-07-16 12:39 - 2015-06-17 03:08 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-07-16 12:38 - 2015-07-03 07:31 - 12386304 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-16 12:38 - 2015-07-03 07:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-07-16 12:38 - 2015-06-17 03:12 - 09750528 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-07 14:51 - 2015-07-24 15:49 - 00000000 ____D C:\Users\dusan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X-note
2015-07-07 14:51 - 2015-07-24 15:49 - 00000000 ____D C:\Program Files\X-note
2015-07-07 14:51 - 2015-07-07 14:51 - 00000742 _____ C:\Users\dusan\Desktop\Play X-note.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-02 12:39 - 2015-02-09 19:56 - 00000000 ____D C:\Users\dusan\AppData\Roaming\uTorrent
2015-08-02 12:34 - 2008-01-21 03:35 - 01130057 _____ C:\Windows\WindowsUpdate.log
2015-08-02 12:33 - 2014-07-12 15:48 - 00000000 ____D C:\Users\dusan\AppData\Roaming\Seznam.cz
2015-08-02 12:30 - 2010-01-31 09:32 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-02 12:30 - 2010-01-31 09:32 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-02 12:25 - 2015-06-17 14:32 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-08-02 12:25 - 2015-06-01 16:17 - 00026438 _____ C:\Windows\PFRO.log
2015-08-02 12:25 - 2009-07-10 22:01 - 00000000 ____D C:\Users\dusan
2015-08-02 12:25 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-02 12:25 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-02 12:25 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-02 12:24 - 2009-07-11 12:45 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-08-02 12:24 - 2006-11-02 15:01 - 00032630 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-08-02 12:18 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\GroupPolicy
2015-08-02 12:01 - 2013-02-23 16:59 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-02 10:10 - 2009-07-10 22:03 - 00000915 _____ C:\Users\dusan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-02 10:10 - 2009-07-09 10:24 - 00000000 ____D C:\Program Files\Google
2015-08-02 10:04 - 2013-08-17 14:25 - 00000889 _____ C:\Users\dusan\Desktop\Amnesia.lnk
2015-08-02 10:04 - 2013-08-17 14:25 - 00000000 ____D C:\Users\dusan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amnesia
2015-08-02 10:04 - 2009-10-24 22:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta
2015-08-02 09:43 - 2011-01-18 20:23 - 00000000 ____D C:\Users\dusan\AppData\Roaming\Skype
2015-08-01 23:12 - 2009-07-11 20:42 - 00114176 _____ C:\Users\dusan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-07-30 19:00 - 2012-03-09 20:52 - 00000274 _____ C:\Windows\Tasks\RMSchedule.job
2015-07-30 13:41 - 2008-01-21 08:47 - 01532794 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-29 17:38 - 2015-02-12 18:22 - 00000000 ____D C:\Users\dusan\Desktop\Co se našlo
2015-07-27 15:45 - 2015-03-21 10:01 - 00000000 ____D C:\Windows\system32\vbox
2015-07-27 11:23 - 2015-01-10 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-07-27 09:57 - 2014-05-23 16:03 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-07-27 09:57 - 2013-05-05 09:48 - 00433264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-07-27 09:57 - 2013-05-05 09:48 - 00208664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-07-27 09:57 - 2013-05-05 09:48 - 00076000 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-07-27 09:57 - 2013-05-05 09:48 - 00057888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2015-07-27 09:57 - 2013-05-05 09:48 - 00055200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2015-07-27 09:57 - 2013-05-05 09:48 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-07-27 09:56 - 2013-05-05 09:48 - 00788784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-07-26 12:51 - 2014-04-17 19:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2015-07-26 10:50 - 2006-11-02 14:47 - 03776360 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-25 17:51 - 2011-04-02 17:46 - 00000000 ____D C:\Program Files\Electronic Arts
2015-07-24 15:57 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\Msdtc
2015-07-24 15:56 - 2006-11-02 12:22 - 62914560 _____ C:\Windows\system32\config\software_previous
2015-07-24 15:56 - 2006-11-02 12:22 - 45613056 _____ C:\Windows\system32\config\components_previous
2015-07-24 15:56 - 2006-11-02 12:22 - 39059456 _____ C:\Windows\system32\config\system_previous
2015-07-24 15:56 - 2006-11-02 12:22 - 00524288 _____ C:\Windows\system32\config\default_previous
2015-07-24 15:56 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\security_previous
2015-07-24 15:56 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\sam_previous
2015-07-24 15:49 - 2015-03-08 11:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WB Games
2015-07-24 15:49 - 2011-11-29 21:55 - 00000000 ____D C:\Casino
2015-07-24 15:49 - 2010-04-10 09:31 - 00000000 ____D C:\Program Files\NetSoftware
2015-07-24 15:49 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2015-07-24 15:49 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2015-07-24 09:36 - 2009-10-15 13:43 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-07-17 09:22 - 2011-11-11 10:22 - 00000360 _____ C:\Windows\Tasks\WebReg 20111111092243.job
2015-07-16 15:53 - 2012-02-25 21:36 - 00002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2015-07-16 13:12 - 2013-09-01 13:50 - 00000000 ____D C:\Windows\system32\MRT
2015-07-16 12:57 - 2009-07-09 10:16 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-07-15 15:01 - 2013-02-23 16:59 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-15 15:01 - 2011-06-11 09:35 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-13 19:19 - 2011-08-07 13:42 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2015-07-13 12:37 - 2014-04-17 19:03 - 00000000 ____D C:\Users\dusan\Documents\Gameforge Live
2015-07-05 12:54 - 2011-01-18 20:22 - 00000000 ____D C:\ProgramData\Skype
2015-07-03 08:49 - 2006-11-02 12:24 - 127070192 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe

==================== Files in the root of some directories =======

2002-08-29 17:33 - 2002-08-29 17:33 - 0319488 ____R () C:\Users\dusan\AppData\Roaming\MafiaSetup.exe
2010-01-13 12:04 - 2010-01-13 12:04 - 0139152 _____ () C:\Users\dusan\AppData\Roaming\PnkBstrK.sys
2013-09-05 14:23 - 2015-05-30 11:47 - 0000680 _____ () C:\Users\dusan\AppData\Local\d3d9caps.dat
2009-07-11 20:42 - 2015-08-01 23:12 - 0114176 _____ () C:\Users\dusan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-24 11:09 - 2015-01-24 11:09 - 0000218 _____ () C:\Users\dusan\AppData\Local\recently-used.xbel
2011-01-18 20:27 - 2011-01-18 20:27 - 0000056 ____H () C:\ProgramData\ezsidmv.dat

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-02 12:32

==================== End of log ============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  HKLM\...\Run: [NeroFilterCheck] => C:\Windows\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
  HKLM\...\Run: [] => [X]
  HKLM\...\Run: [zzzHPSETUP] => D:\Setup.exe
  HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
  HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
  HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
  HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
  HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\dusan\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
  HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\dusan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
  HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [AdobeBridge] => [X]
  HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53282944 2015-06-29] (Skype Technologies S.A.)
  HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [uTorrent] => C:\Users\dusan\AppData\Roaming\uTorrent\uTorrent.exe [1693024 2015-08-02] (BitTorrent Inc.)
  HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
  
  HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
  HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
  URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
  URLSearchHook: HKU\S-1-5-21-818463529-1547308680-1770911220-1000 - Default Value = {74198672-5F7D-4FE9-A611-4AC1D5A66A15}
  SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKLM -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = 
  SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
  SearchScopes: HKLM -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search.yahoo.com/avg/sear ... rome_us&p={searchTerms}
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKU\.DEFAULT -> {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = http://www.crawler.com/search/dispatche ... tp=bs&qkw={searchTerms}&tbid=60341
  SearchScopes: HKU\.DEFAULT -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search.yahoo.com/avg/sear ... rome_us&p={searchTerms}
  SearchScopes: HKU\.DEFAULT -> {EB2710A4-164D-480A-BE31-8685421F7519} URL = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_EU&apn_ptnrs=H3&apn_dtid=YYYYYYYYCZ&apn_uid=3209A648-FF73-4A39-97CA-2DD730649D4F&apn_sauid=2A4D5534-0C4B-47F2-BC23-40826FC48668
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14] (Skype Technologies S.A.)
  Toolbar: HKU\.DEFAULT -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
  Toolbar: HKU\.DEFAULT -> No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
  Toolbar: HKU\.DEFAULT -> No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
  Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14] (Skype Technologies S.A.)
  Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
  
  FF Extension: No Name - C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\DTToolbar@toolbarnet.com [not found]
  FF Extension: No Name - C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
  FF Extension: No Name - C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\toolbar@ask.com [not found]
  FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]
  FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011-06-20]
  
  CHR Extension: (AdZap Block ads across the web) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojnpdahnhojlgimjfcpnfmajngaljogh [2015-08-02]
  CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-08-14]
  
  S3 EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys [X]
  S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
  S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
  S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
  S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
  U3 a5iexe3e; No ImagePath
  
  C:\Program Files\Skype\Toolbars
  2015-08-02 12:48 - 2015-08-02 12:49 - 00021619 _____ C:\Users\dusan\Desktop\FRST.txt
  2015-08-02 12:24 - 2015-08-02 10:46 - 00024064 _____ C:\Windows\zoek-delete.exe
  2015-08-02 10:49 - 2015-08-02 12:28 - 00017255 _____ C:\zoek-results.log
  2015-08-02 10:46 - 2015-08-02 12:20 - 00000000 ____D C:\zoek_backup
  2015-08-02 10:36 - 2015-08-02 10:36 - 01308672 _____ C:\Users\dusan\Desktop\zoek.exe
  2015-08-02 09:55 - 2015-08-02 10:04 - 00000000 ____D C:\AdwCleaner
  2015-08-02 09:53 - 2015-08-02 09:53 - 02248704 _____ C:\Users\dusan\Desktop\adwcleaner_4.208.exe
  2015-08-01 23:02 - 2015-08-01 23:03 - 00000000 ____D C:\rsit
  2015-08-01 23:02 - 2015-08-01 23:03 - 00000000 ____D C:\Program Files\trend micro
  2015-08-01 23:01 - 2015-08-01 23:01 - 01107968 _____ C:\Users\dusan\Desktop\RSIT.exe
  2015-08-01 22:24 - 2015-08-01 22:27 - 00000034 _____ C:\Windows\setupact.log
  2015-08-01 22:24 - 2015-08-01 22:24 - 00000000 _____ C:\Windows\setuperr.log
  
  C:\Windows\tasks\Adobe Flash Player Updater.job
  C:\Windows\tasks\FinalTorrent Update Checker.job
  C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  C:\Windows\tasks\RMSchedule.job
  C:\Windows\tasks\WebReg 20111111092243.job
  
  Hosts:
  EmptyTemp:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[dusan1234]

Fix result of Farbar Recovery Scan Tool (x86) Version:02-08-2015
Ran by dusan (2015-08-02 13:14:39) Run:1
Running from C:\Users\dusan\Desktop
Loaded Profiles: dusan (Available Profiles: dusan)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [NeroFilterCheck] => C:\Windows\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [zzzHPSETUP] => D:\Setup.exe
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\dusan\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\dusan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53282944 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [uTorrent] => C:\Users\dusan\AppData\Roaming\uTorrent\uTorrent.exe [1693024 2015-08-02] (BitTorrent Inc.)
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKU\S-1-5-21-818463529-1547308680-1770911220-1000 - Default Value = {74198672-5F7D-4FE9-A611-4AC1D5A66A15}
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKLM -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search.yahoo.com/avg/sear ... rome_us&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = http://www.crawler.com/search/dispatche ... tp=bs&qkw={searchTerms}&tbid=60341
SearchScopes: HKU\.DEFAULT -> {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search.yahoo.com/avg/sear ... rome_us&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> {EB2710A4-164D-480A-BE31-8685421F7519} URL = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=en_EU&apn_ptnrs=H3&apn_dtid=YYYYYYYYCZ&apn_uid=3209A648-FF73-4A39-97CA-2DD730649D4F&apn_sauid=2A4D5534-0C4B-47F2-BC23-40826FC48668
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14] (Skype Technologies S.A.)
Toolbar: HKU\.DEFAULT -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKU\.DEFAULT -> No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKU\.DEFAULT -> No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14] (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FF Extension: No Name - C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\DTToolbar@toolbarnet.com [not found]
FF Extension: No Name - C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\toolbar@ask.com [not found]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011-06-20]

CHR Extension: (AdZap Block ads across the web) - C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojnpdahnhojlgimjfcpnfmajngaljogh [2015-08-02]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-08-14]

S3 EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U3 a5iexe3e; No ImagePath

C:\Program Files\Skype\Toolbars
2015-08-02 12:48 - 2015-08-02 12:49 - 00021619 _____ C:\Users\dusan\Desktop\FRST.txt
2015-08-02 12:24 - 2015-08-02 10:46 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-08-02 10:49 - 2015-08-02 12:28 - 00017255 _____ C:\zoek-results.log
2015-08-02 10:46 - 2015-08-02 12:20 - 00000000 ____D C:\zoek_backup
2015-08-02 10:36 - 2015-08-02 10:36 - 01308672 _____ C:\Users\dusan\Desktop\zoek.exe
2015-08-02 09:55 - 2015-08-02 10:04 - 00000000 ____D C:\AdwCleaner
2015-08-02 09:53 - 2015-08-02 09:53 - 02248704 _____ C:\Users\dusan\Desktop\adwcleaner_4.208.exe
2015-08-01 23:02 - 2015-08-01 23:03 - 00000000 ____D C:\rsit
2015-08-01 23:02 - 2015-08-01 23:03 - 00000000 ____D C:\Program Files\trend micro
2015-08-01 23:01 - 2015-08-01 23:01 - 01107968 _____ C:\Users\dusan\Desktop\RSIT.exe
2015-08-01 22:24 - 2015-08-01 22:27 - 00000034 _____ C:\Windows\setupact.log
2015-08-01 22:24 - 2015-08-01 22:24 - 00000000 _____ C:\Windows\setuperr.log

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FinalTorrent Update Checker.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\RMSchedule.job
C:\Windows\tasks\WebReg 20111111092243.job

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\zzzHPSETUP => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\BCSSync => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value removed successfully.
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully.
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value removed successfully.
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value removed successfully.
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully.
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value removed successfully.
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => value removed successfully.
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Windows\CurrentVersion\Run\\WMPNSCFG => value removed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Microsoft\Internet Explorer\URLSearchHooks\\ => value removed successfully.
HKU\S-1-5-21-818463529-1547308680-1770911220-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\ => value removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" => key removed successfully.
HKCR\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} => key not found.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => key removed successfully.
HKCR\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} => key not found.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}" => key removed successfully.
HKCR\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}" => key removed successfully.
HKCR\CLSID\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} => key not found.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}" => key removed successfully.
HKCR\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => key not found.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EB2710A4-164D-480A-BE31-8685421F7519}" => key removed successfully.
HKCR\CLSID\{EB2710A4-164D-480A-BE31-8685421F7519} => key not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully.
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => key removed successfully.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => value removed successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => key not found.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} => value removed successfully.
HKCR\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847} => key not found.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} => value removed successfully.
HKCR\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} => key not found.
"HKCR\PROTOCOLS\Handler\skype-ie-addon-data" => key removed successfully.
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => key removed successfully.
"HKCR\PROTOCOLS\Handler\skype4com" => key removed successfully.
"HKCR\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}" => key removed successfully.
C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\DTToolbar@toolbarnet.com => not found.
C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} => not found.
C:\Users\dusan\AppData\Roaming\Mozilla\Firefox\Profiles\8er77r7c.default\extensions\toolbar@ask.com => not found.
C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} => not found.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => moved successfully.
C:\Users\dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojnpdahnhojlgimjfcpnfmajngaljogh => moved successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => key removed successfully.
C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx => moved successfully.
EagleNT => service removed successfully.
EagleXNt => service removed successfully.
IpInIp => service removed successfully.
NwlnkFlt => service removed successfully.
NwlnkFwd => service removed successfully.
a5iexe3e => service removed successfully.
C:\Program Files\Skype\Toolbars => moved successfully.
C:\Users\dusan\Desktop\FRST.txt => moved successfully.
C:\Windows\zoek-delete.exe => moved successfully.
C:\zoek-results.log => moved successfully.
C:\zoek_backup => moved successfully.
C:\Users\dusan\Desktop\zoek.exe => moved successfully.
C:\AdwCleaner => moved successfully.
C:\Users\dusan\Desktop\adwcleaner_4.208.exe => moved successfully.
C:\rsit => moved successfully.
C:\Program Files\trend micro => moved successfully.
C:\Users\dusan\Desktop\RSIT.exe => moved successfully.
C:\Windows\setupact.log => moved successfully.
C:\Windows\setuperr.log => moved successfully.
C:\Windows\tasks\Adobe Flash Player Updater.job => moved successfully.
"C:\Windows\tasks\FinalTorrent Update Checker.job" => File/Folder not found.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\Windows\tasks\RMSchedule.job => moved successfully.
C:\Windows\tasks\WebReg 20111111092243.job => moved successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.
EmptyTemp: => 137.2 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 13:19:39 ====

[vyosek]

Jak se chova PC??

[dusan1234]

Pocitac bych si troufal rict ze uz jede spravne ..
Jeste drobnost pri tomhle uklidu jsem odinstaloval chrome abych se sem na viry.cz mohl dostat tedka uz zpetne mi nejde naistalovat. pise to "Instalace se nezdarila. Instalacni program se nespustil."
nevim jeslti to co jsme tedka provedli na to mel nejaky vliv ale nevite jak to nahodit ?
Kazdopadne i tak moc dekuji

[vyosek]

Tak jeste uklidime

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standard
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Zkuste si stahnout novou instalacku Chrome a zkusit jej nainstalovat.

[dusan1234]

Super dekuji moc

[vyosek]

Nemate zac, rad jsem pomohl Zase nekdy


A na zaklade Pravidla o zamykani temat