Policejní vir

[Veriti]

Zdravím, mám problém s policejním virem, někde tady na stránkách jsem našla jak se ho zbavit a došla jsem až do kroku kdy mám FRST.txt a addition.txt a dál nevím co s tím. Děkuji předem za radu

[Rudy]

Zdravím!
Ty logy sem zkopírujte.

[Veriti]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-11-2013
Ran by Lucinka at 2013-11-13 16:50:32
Running from D:\
Boot Mode: Safe Mode (minimal)
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader XI (11.0.05) - Czech (x32 Version: 11.0.05)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (x32)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (x32)
ArcSoft TotalMedia (x32 Version: 1.0.61.25)
ArcSoft TotalMedia (x32 Version: 2.0.39.42)
ArcSoft Webcam Sharing Manager (x32 Version: 2.0.0.38)
Atheros Bluetooth Suite (64) (Version: 7.4.0.120)
avast! Free Antivirus (x32 Version: 9.0.2006)
AVS Screen Capture version 2.0.2 (x32)
AVS Update Manager 1.0 (x32)
AVS Video Editor 6 (x32)
AVS Video Recorder 2.5 (x32)
AVS4YOU Software Navigator 1.4 (x32)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (Version: 02/25/2011 4.7)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (Version: 02/25/2011 7.01.0.9)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (Version: 05/31/2012 7.1.2.0)
Bontia Studio 4.5 (x32 Version: 4.5.4220.0)
Brother's Keeper 6.5 (x32)
D3DX10 (x32 Version: 15.4.2368.0902)
Device Access Manager for HP ProtectTools (Version: 7.0.0.4)
dm paradies foto 3 (x32)
Drive Encryption For HP ProtectTools (Version: 7.0.28.30376)
EA Download Manager (x32 Version: 5.0.0.255)
Energy Star Digital Logo (x32 Version: 1.0.1)
Evernote v. 4.5.4 (x32 Version: 4.5.4.6487)
Face Recognition for HP ProtectTools (Version: 7.01.4525)
File Sanitizer For HP ProtectTools (x32 Version: 7.0.0.5)
Google Chrome (x32 Version: 30.0.1599.101)
Google Update Helper (x32 Version: 1.3.21.165)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000)
HF Designer 4.4 (x32)
HP 3D DriveGuard (Version: 5.0.8.0)
HP Auto (Version: 1.0.12935.3667)
HP Connection Manager (x32 Version: 4.2.50.1)
HP Customer Experience Enhancements (x32 Version: 6.0.1.8)
HP Documentation (x32 Version: 1.1.1.0)
HP ESU for Microsoft Windows 7 (x32 Version: 2.0.6.1)
HP HD Webcam Driver (x32 Version: 3.3.8.12)
HP Hotkey Support (x32 Version: 4.5.9.1)
HP Power Assistant (Version: 2.5.0.16)
HP ProtectTools Security Manager (Version: 7.0.0.1177)
HP Setup (x32 Version: 9.1.15453.4066)
HP SoftPaq Download Manager (x32 Version: 3.4.3.0)
HP Software Framework (x32 Version: 4.5.10.1)
HP Software Setup (x32 Version: 8.5.2.1)
HP Support Assistant (x32 Version: 7.0.39.15)
HP System Default Settings (x32 Version: 2.4.1.2)
HP Wallpaper (x32 Version: 3.0.0.1)
IDT Audio (x32 Version: 1.0.6392.0)
Intel(R) Management Engine Components (x32 Version: 8.0.10.1464)
Intel(R) OpenCL CPU Runtime (x32)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2712)
Intel(R) Rapid Storage Technology (x32 Version: 11.1.0.1006)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.4.225)
Intel® Trusted Connect Service Client (Version: 1.23.943.1)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
JMicron Flash Media Controller Driver (x32 Version: 1.0.68.0)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Excel MUI (Czech) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (Czech) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (Czech) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Czech) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Slovak) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (Czech) 2007 (x32 Version: 12.0.4518.1025)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Shared 64-bit MUI (Czech) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (Czech) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (Czech) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)
Mozilla Firefox 20.0.1 (x86 cs) (x32 Version: 20.0.1)
Mozilla Firefox 25.0 (x86 cs) (HKCU Version: 25.0)
Mozilla Maintenance Service (x32 Version: 20.0.1)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (x32 Version: 1.0.1.2)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
Nokia Connectivity Cable Driver (x32 Version: 7.1.78.0)
Nokia PC Suite (x32 Version: 7.1.180.94)
Nokia Software Updater (x32 Version: 3.0.655)
Notepad++ (x32 Version: 6.2.2)
O2 (x32)
opensource (x32 Version: 1.0.14960.3876)
PC Connectivity Solution (x32 Version: 12.0.27.0)
PicPick (x32 Version: 3.2.2)
PMB (x32 Version: 5.6.02.06270)
Polda III (x32)
Privacy Manager for HP ProtectTools (Version: 7.0.0.865)
RealDownloader (x32 Version: 1.3.0)
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0)
RealPlayer (x32 Version: 16.0.0)
Realtek Ethernet Controller All-In-One Windows Driver (x32 Version: 7.50.1123.2011)
RealUpgrade 1.1 (x32 Version: 1.1.0)
SDK (x32 Version: 2.30.042)
Skype Click to Call (x32 Version: 6.13.13771)
Skype™ 6.6 (x32 Version: 6.6.106)
SoftwareUpdater (x32)
SpyHunter (Version: 4.16.5.4290)
Stellarium 0.11.4 (Version: 0.11.4)
Synaptics Pointing Device Driver (Version: 16.0.3.0)
The Sims™ 3 (x32 Version: 1.57.62)
Theft Recovery for HP ProtectTools (x32 Version: 7.0.0.10)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Validity Fingerprint Sensor Driver (Version: 4.4.213.0)
Video Converter Bundle by SweetPacks (x32 Version: 1.0.0.0)
VLC media player 2.0.8 (x32 Version: 2.0.8)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)

==================== Restore Points =========================


==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {2CEA4398-E837-4714-AA7C-4B8050576170} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-794480102-2804555483-2920555207-1004 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2012-11-29] (RealNetworks, Inc.)
Task: {3F72C6E1-0C3E-4637-A412-C6CE8B956D3F} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-794480102-2804555483-2920555207-1004 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {4E5FC35B-56E3-4DC8-A594-6B3B98692DF6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-10-30] (AVAST Software)
Task: {51621A35-0F09-4E23-ADCB-5AC518FA84C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-02] (Google Inc.)
Task: {5B3875C5-8B88-4A79-BF42-3243EACFC952} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {634B408A-0509-4603-8626-A85184E171F6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {697BBAF6-B837-4B2F-BBA9-4F1B85CC56B8} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-794480102-2804555483-2920555207-1004 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {6B681AC9-04F7-440A-926F-40F0E0E53A61} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-02] (Google Inc.)
Task: {8E34C2FD-A40F-45CA-AB07-D67FB2A8F805} - System32\Tasks\HPCeeScheduleForLucinka => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {94E977A9-8387-4E8C-BE48-6BB7CA9B3E94} - System32\Tasks\{7B01B6EA-C2D0-4328-BA02-4BB2DDD3B961} => F:\Driver\Setup.exe
Task: {A31C3CE0-A150-46E8-B732-0BDB2E331A77} - System32\Tasks\HPCeeScheduleForPetr => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {A4CE9A7A-8324-475B-ABB5-7D71F0DA8CE0} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation)
Task: {AF121D07-9CF5-495E-93E2-50CE327AFEEB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-11-29] (Hewlett-Packard Company)
Task: {C7BE6B1D-10F5-4F08-B1C5-2C0CE31FAD35} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-08] (Adobe Systems Incorporated)
Task: {F20BABD6-127C-4F8E-A545-29B376D751CE} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-794480102-2804555483-2920555207-1004 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2012-11-29] (RealNetworks, Inc.)
Task: {F84FB8A4-54EE-490E-8114-ED2DD555D844} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-794480102-2804555483-2920555207-1004 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2012-11-29] (RealNetworks, Inc.)
Task: {F867CEA1-4BAA-483F-BABA-AEC0E66B3621} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\Dependencies\RemEngine.exe [2012-03-21] ()
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForLucinka.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\windows\Tasks\HPCeeScheduleForPetr.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (whitelisted) =============


==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "UseAlternateShell"="1"

==================== Faulty Device Manager Devices =============

Name: aswVmm
Description: aswVmm
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswVmm
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: aswRvrt
Description: aswRvrt
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswRvrt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/13/2013 04:47:44 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/13/2013 04:29:11 PM) (Source: SignInAssistant) (User: )
Description: StartService failed with hr = 0x8007043c

Error: (11/13/2013 03:38:47 PM) (Source: System Restore) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\windows\system32\msiexec.exe /V; Popis = Installed SpyHunter; Chyba = 0x8007043c).

Error: (11/13/2013 03:38:39 PM) (Source: System Restore) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\windows\system32\msiexec.exe /V; Popis = Installed SpyHunter; Chyba = 0x8007043c).

Error: (11/13/2013 03:37:59 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/13/2013 03:11:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (11/13/2013 04:47:15 PM) (Source: Service Control Manager) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (11/13/2013 04:47:15 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{D3DCB472-7261-43CE-924B-0704BD730D5F}

Error: (11/13/2013 04:47:15 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (11/13/2013 04:47:15 PM) (Source: DCOM) (User: )
Description: 1068netprofm{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (11/13/2013 04:46:13 PM) (Source: Service Control Manager) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
AFD
aswRdr
aswRvrt
aswSnx
aswSP
aswTdi
aswVmm
DfsC
discache
NetBIOS
NetBT
nsiproxy
Psched
rdbss
spldr
tdx
vwififlt
Wanarpv6
WfpLwf

Error: (11/13/2013 04:46:13 PM) (Source: Service Control Manager) (User: )
Description: Služba Sledování umístění v síti (NLA) závisí na službě Služba rozhraní síťového úložiště, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (11/13/2013 04:46:13 PM) (Source: Service Control Manager) (User: )
Description: Služba Mini-přesměrovač SMB 2.0 závisí na službě Obálka a jádro minipřesměrovačů SMB, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (11/13/2013 04:46:13 PM) (Source: Service Control Manager) (User: )
Description: Služba Mini-přesměrovač SMB 1.x závisí na službě Obálka a jádro minipřesměrovačů SMB, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (11/13/2013 04:46:13 PM) (Source: Service Control Manager) (User: )
Description: Služba Obálka a jádro minipřesměrovačů SMB závisí na službě Podsystém přesměrovaného ukládání do vyrovnávací paměti, která neuspěla při spuštění v důsledku následující chyby:
%%31

Error: (11/13/2013 04:46:13 PM) (Source: Service Control Manager) (User: )
Description: Služba Pomocná služba protokolu IP závisí na službě Služba rozhraní síťového úložiště, která neuspěla při spuštění v důsledku následující chyby:
%%1068


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 14%
Total physical RAM: 3979.73 MB
Available physical RAM: 3414.73 MB
Total Pagefile: 6941.87 MB
Available Pagefile: 6407.98 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:443.16 GB) (Free:0.98 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HITMANPRO) (Removable) (Total:3.72 GB) (Free:3.72 GB) FAT32
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.97 GB) FAT32
Drive g: (HP_RECOVERY) (Fixed) (Total:20.31 GB) (Free:3.1 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 25955A44)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=443 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0C)

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: CE4EC266)
Partition 1: (Active) - (Size=4 GB) - (Type=0B)

==================== End Of Log ============================

[Veriti]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-11-2013
Ran by Lucinka (administrator) on MARKÉTA-HP on 13-11-2013 16:49:45
Running from D:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Safe Mode (minimal)

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\system32\cmd.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2887440 2012-03-09] (Synaptics Incorporated)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1016992 2012-01-19] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2012-01-19] (Atheros Commnucations)
HKLM\...\Run: [HotKeysCmds] - C:\windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [HPPowerAssistant] - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [3488640 2012-03-14] (Hewlett-Packard Company)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-03-05] (IDT, Inc.)
HKLM\...\Run: [MfeEpePcMonitor] - "C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Runonce: [GrpConv] - grpconv -o
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Yontoo Desktop] - "C:\Users\Lucinka\AppData\Roaming\Yontoo\YontooDesktop.exe"
HKCU\...\Run: [EA Core] - C:\Program Files (x86)\Electronic Arts\EADM\Core.exe [3325952 2009-03-28] (Electronic Arts)
HKCU\...\Run: [GoogleChromeAutoLaunch_70CFCDAA12E04322B43D9D0732F07881] - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [844752 2013-10-09] (Google Inc.)
MountPoints2: {62a69171-6d2c-11e2-b088-74e543e13736} - D:\AutoRun.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-03-01] (Intel Corporation)
HKLM-x32\...\Run: [QLBController] - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [319360 2012-03-14] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation)
HKLM-x32\...\Run: [DTRun] - C:\Program Files (x86)\Arcsoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [517456 2010-11-24] (ArcSoft Inc.)
HKLM-x32\...\Run: [HPConnectionManager] - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [184704 2012-03-15] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [File Sanitizer] - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe [12310616 2012-03-22] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [TkBellExe] - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295072 2012-12-19] (RealNetworks, Inc.)
HKLM-x32\...\Run: [NSU_agent] - C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe [190768 2012-02-28] ()
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\avastui.exe [3567800 2013-10-31] (AVAST Software)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [650080 2011-03-15] (Sony Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\Markéta\...\Run: [PicPick Start] - C:\Program Files (x86)\PicPick\picpick.exe [11476824 2013-01-25] (NTeWORKS)
HKU\Petr\...\Run: [PicPick Start] - C:\Program Files (x86)\PicPick\picpick.exe [11476824 2013-01-25] (NTeWORKS)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.live.com/1rewlive4startup/home
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com?pc=CMNTDF
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKCU - DefaultScope {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = http://start.iminent.com/?appId=011DB26 ... earchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchT ... e543e0f17c
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKCU - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = http://start.iminent.com/?appId=011DB26 ... earchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: File Sanitizer for HP ProtectTools - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\vmho1ue4.default
FF user.js: detected! => C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\vmho1ue4.default\user.js
FF NewTab: hxxp://www.delta-search.com/?affID=119403&babs ... e543e0f17c
FF Homepage: hxxp://www.google.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @real.com/nppl3260;version=16.0.0.282 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.0 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.0 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.0 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.0.282 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\vmho1ue4.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\vmho1ue4.default\searchplugins\BrowserProtect.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [{34712C68-7391-4c47-94F3-8F88D49AD632}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext

Chrome:
=======
CHR HomePage: hxxp://start.iminent.com/?appId=011DB266-B39D-4E01-9348-9AF1377F8A0F
CHR RestoreOnStartup: "hxxp://start.iminent.com/?appId=011DB266-B39D-4E01-9348-9AF1377F8A0F"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\windows\SysWOW64\npDeployJava1.dll No File
CHR Extension: (Dark Legends) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\acfbekphmapfjpdkfedomagjpccekhaa\2.0.0.0_0
CHR Extension: (Google Docs) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Agent Perry) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgnmgidpipdhjghciljjlghkniklejnk\1_0
CHR Extension: (Google Search) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Plants vs Zombies HD Reloaded) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjkhoacaklmakefhjplfdnadddjfhaof\1.1.4_0
CHR Extension: (Game of Thrones Ascent) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmlmehpiikmcdamekkndkbkcefnfefai\1.1.0.0_0
CHR Extension: (RealDownloader) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.0_0
CHR Extension: (Prince Of Persia) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\imgflohfjhdbomdlkbnecogoncdlhjfg\4_0
CHR Extension: (Little Alchemy) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd\0.0.15.7_0
CHR Extension: (Sprocket Rocket) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpdichmkdadfihhbgllepglgbkonlehe\1.0_0
CHR Extension: (Prince Of Persia) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggiaigoohapbpeddfpckgjjjdmpogbb\0.0.1.1_0
CHR Extension: (Lumosity) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffmfbhcjemfledhndnpllechagamlfp\1.1_0
CHR Extension: (Google Wallet) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Origami Player) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiomepakkenneiifjocbinkmmampfbdn\2.4_0
CHR Extension: (GoPhoto.it) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.6_0
CHR Extension: (Gmail) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Gangs of Boomtown) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pllbjhofadlgfiimfgbiifkonijklnmg\1.0.1_0
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM-x32\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files (x86)\TornTV.com\torn11.crx
CHR HKLM-x32\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files (x86)\Gophoto.it\gophotoit14.crx

==================== Services (Whitelisted) =================

S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-30] (AVAST Software)
S2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [493904 2012-03-15] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [477056 2012-01-31] (Hewlett-Packard Company)
S2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [365440 2012-03-14] (Hewlett-Packard Company)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-28] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165144 2012-03-28] (Intel Corporation)
S2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2012-03-21] ()
S2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [38608 2012-11-29] ()
S2 SpyHunter 4 Service; C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [1025408 2013-10-18] (Enigma Software Group USA, LLC.)
S2 SrvUpdater; C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe [31744 2013-02-18] ()
S2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [498352 2012-02-03] (ArcSoft, Inc.)
S2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2012-01-19] (Atheros)

==================== Drivers (Whitelisted) ====================

S3 ARCVCAM; C:\Windows\System32\DRIVERS\ArcSoftVCapture.sys [42816 2012-02-03] (ArcSoft, Inc.)
S2 aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [38984 2013-10-30] (AVAST Software)
S2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [84328 2013-10-30] (AVAST Software)
S1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [92544 2013-10-30] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-30] ()
S1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [1032416 2013-10-30] (AVAST Software)
S1 aswSP; C:\windows\system32\drivers\aswSP.sys [409832 2013-11-10] (AVAST Software)
S1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [65264 2013-10-30] (AVAST Software)
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-30] ()
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [64312 2012-01-31] (Hewlett-Packard Company)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [29696 2009-12-15] (Huawei Tech. Co., Ltd.)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-12-15] (Huawei Technologies Co., Ltd.)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [93640 2012-03-22] (McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158792 2012-03-22] (McAfee, Inc.)
S3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2891512 2012-03-26] (Sunplus Technology)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-12-15] (Huawei Technologies Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-13 16:31 - 2013-11-13 16:31 - 00000000 ____D C:\FRST
2013-11-13 16:26 - 2013-11-13 16:26 - 00000000 ____D C:\Users\Lucinka\Desktop\0001
2013-11-13 16:22 - 2013-11-13 16:22 - 10264904 _____ (SurfRight B.V.) C:\Users\Lucinka\Desktop\HitmanPro_x64.exe
2013-11-13 16:20 - 2013-11-13 16:22 - 00000000 ____D C:\ProgramData\HitmanPro
2013-11-13 15:38 - 2013-11-13 15:38 - 00002258 _____ C:\Users\Lucinka\Desktop\SpyHunter.lnk
2013-11-13 15:38 - 2013-11-13 15:38 - 00000000 ____D C:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-13 15:38 - 2013-11-13 15:38 - 00000000 ____D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2013-11-13 15:38 - 2013-11-13 15:38 - 00000000 ____D C:\sh4ldr
2013-11-13 15:38 - 2013-11-13 15:38 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-13 15:38 - 2012-06-22 11:01 - 00022704 _____ C:\windows\system32\Drivers\EsgScanner.sys
2013-11-13 15:37 - 2013-11-13 15:37 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Lucinka\Downloads\sh-remover.exe
2013-11-13 12:09 - 2013-11-13 13:43 - 894090386 _____ C:\Users\Lucinka\Downloads\Blondata-bestie-DVDRip.avi
2013-11-13 12:05 - 2013-11-13 12:05 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{9FEF6F05-909C-4C91-85D5-5BC981EFEB26}
2013-11-12 18:47 - 2013-11-12 18:50 - 00000000 ____D C:\Users\Lucinka\Desktop\2013_11_12 - Lucinka blbinky
2013-11-12 15:55 - 2013-11-12 15:56 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{84EB8FD5-0E6A-44B1-8C9D-7F6D2A105DE6}
2013-11-11 20:07 - 2013-11-11 20:07 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{5CA5C768-B227-4287-8550-C9C16272558F}
2013-11-10 22:17 - 2013-11-10 22:17 - 00000000 ____D C:\Users\Lucinka\Desktop\2013_11_08
2013-11-10 12:41 - 2013-11-10 12:41 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Sony Corporation
2013-11-10 12:40 - 2013-11-10 12:40 - 00000000 ____D C:\ProgramData\Oracle
2013-11-10 12:40 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-10 12:40 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2013-11-10 12:40 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2013-11-10 12:40 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2013-11-10 12:39 - 2013-11-10 12:40 - 00004746 _____ C:\windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-11-10 12:33 - 2013-11-10 12:33 - 00000000 ____D C:\Users\Petr\AppData\Roaming\AVAST Software
2013-11-08 14:00 - 2013-11-08 14:01 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{1D594E3D-40CE-4946-8A36-9CA4AEE1FDC5}
2013-11-07 18:18 - 2013-11-07 18:18 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{85FCDCF0-650C-4025-8403-61C0CAE2914B}
2013-11-06 23:17 - 2013-11-06 23:17 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{A73D146F-D5C6-4C8D-ADCA-D113771F568F}
2013-11-06 15:46 - 2013-11-06 15:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-02 16:40 - 2013-11-02 16:40 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{C28CE360-DFD6-4264-87A3-CBDD4252134D}
2013-11-01 15:39 - 2013-11-01 15:42 - 00000000 ____D C:\Users\Lucinka\AppData\Roaming\Sony Corporation
2013-11-01 15:39 - 2013-11-01 15:39 - 00000000 ____D C:\Users\Lucinka\Documents\Sony PMB
2013-11-01 15:37 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_35.dll
2013-11-01 15:37 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_35.dll
2013-11-01 15:37 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_30.dll
2013-11-01 15:37 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_30.dll
2013-11-01 15:36 - 2013-11-01 15:36 - 00000000 ____D C:\ProgramData\Sony Corporation
2013-11-01 15:36 - 2013-11-01 15:36 - 00000000 ____D C:\Program Files (x86)\Sony
2013-11-01 15:27 - 2013-11-01 15:29 - 203163704 _____ (Microsoft Corporation) C:\Users\Lucinka\Downloads\PMB56_Installer1108a.exe
2013-11-01 15:11 - 2013-11-01 15:11 - 00002912 _____ C:\windows\System32\Tasks\{7B01B6EA-C2D0-4328-BA02-4BB2DDD3B961}
2013-10-31 10:40 - 2013-10-31 10:40 - 00000000 ____D C:\Users\Lucinka\AppData\Roaming\AVAST Software
2013-10-30 19:34 - 2013-11-10 22:16 - 00002010 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-30 19:34 - 2013-11-10 22:16 - 00002010 _____ C:\ProgramData\Desktop\avast! Free Antivirus.lnk
2013-10-30 19:28 - 2013-10-30 19:28 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{1AB0B5E3-07A2-4EEE-B702-9E17A5029005}
2013-10-24 12:38 - 2013-10-31 00:27 - 00000000 ____D C:\Users\Lucinka\Desktop\5. série
2013-10-23 11:26 - 2013-10-24 12:38 - 00000000 ____D C:\Users\Lucinka\Desktop\4. série
2013-10-22 17:11 - 2013-10-22 17:11 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{EBE5EB53-E036-485A-B252-B6C25CB2AA9A}
2013-10-16 10:01 - 2013-10-16 10:01 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{CB19CB10-0E66-446F-9E7A-3134C5BDCECA}
2013-10-15 12:08 - 2013-10-15 12:08 - 00000000 ____D C:\Users\Lucinka\Documents\Electronic Arts
2013-10-15 02:18 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-10-15 02:18 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-10-15 02:18 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-10-15 02:18 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-10-15 02:18 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-10-15 02:18 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-10-15 02:18 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-10-15 02:18 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-10-15 02:18 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-10-15 02:18 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-10-15 02:18 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-10-15 02:18 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-14 21:39 - 2013-10-14 21:40 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{18BE1815-F22A-4274-B432-D7A17E9B9EB4}

==================== One Month Modified Files and Folders =======

2013-11-13 16:31 - 2013-11-13 16:31 - 00000000 ____D C:\FRST
2013-11-13 16:29 - 2012-04-17 05:18 - 00666194 _____ C:\windows\system32\perfh005.dat
2013-11-13 16:29 - 2012-04-17 05:18 - 00139890 _____ C:\windows\system32\perfc005.dat
2013-11-13 16:29 - 2009-07-14 06:13 - 01576554 _____ C:\windows\system32\PerfStringBackup.INI
2013-11-13 16:26 - 2013-11-13 16:26 - 00000000 ____D C:\Users\Lucinka\Desktop\0001
2013-11-13 16:22 - 2013-11-13 16:22 - 10264904 _____ (SurfRight B.V.) C:\Users\Lucinka\Desktop\HitmanPro_x64.exe
2013-11-13 16:22 - 2013-11-13 16:20 - 00000000 ____D C:\ProgramData\HitmanPro
2013-11-13 16:14 - 2013-10-06 23:04 - 00010646 _____ C:\Users\Lucinka\Desktop\MCP.xlsx
2013-11-13 15:56 - 2012-11-20 16:11 - 00000000 ____D C:\Users\Lucinka\AppData\Roaming\vlc
2013-11-13 15:38 - 2013-11-13 15:38 - 00002258 _____ C:\Users\Lucinka\Desktop\SpyHunter.lnk
2013-11-13 15:38 - 2013-11-13 15:38 - 00000000 ____D C:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-13 15:38 - 2013-11-13 15:38 - 00000000 ____D C:\Users\Lucinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2013-11-13 15:38 - 2013-11-13 15:38 - 00000000 ____D C:\sh4ldr
2013-11-13 15:38 - 2013-11-13 15:38 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-13 15:37 - 2013-11-13 15:37 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Lucinka\Downloads\sh-remover.exe
2013-11-13 15:35 - 2012-08-21 23:44 - 01721101 _____ C:\windows\WindowsUpdate.log
2013-11-13 15:27 - 2012-04-17 06:34 - 00000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-11-13 15:17 - 2009-07-14 05:45 - 00028576 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-13 15:17 - 2009-07-14 05:45 - 00028576 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-13 15:10 - 2013-09-02 17:44 - 00000950 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-13 15:09 - 2009-07-14 06:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-11-13 15:09 - 2009-07-14 05:51 - 00094577 _____ C:\windows\setupact.log
2013-11-13 14:54 - 2013-09-02 17:44 - 00000954 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-13 13:43 - 2013-11-13 12:09 - 894090386 _____ C:\Users\Lucinka\Downloads\Blondata-bestie-DVDRip.avi
2013-11-13 12:05 - 2013-11-13 12:05 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{9FEF6F05-909C-4C91-85D5-5BC981EFEB26}
2013-11-12 22:27 - 2012-10-30 23:35 - 00003924 _____ C:\windows\System32\Tasks\avast! Emergency Update
2013-11-12 18:50 - 2013-11-12 18:47 - 00000000 ____D C:\Users\Lucinka\Desktop\2013_11_12 - Lucinka blbinky
2013-11-12 15:56 - 2013-11-12 15:55 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{84EB8FD5-0E6A-44B1-8C9D-7F6D2A105DE6}
2013-11-11 20:07 - 2013-11-11 20:07 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{5CA5C768-B227-4287-8550-C9C16272558F}
2013-11-10 22:17 - 2013-11-10 22:17 - 00000000 ____D C:\Users\Lucinka\Desktop\2013_11_08
2013-11-10 22:16 - 2013-10-30 19:34 - 00002010 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-10 22:16 - 2013-10-30 19:34 - 00002010 _____ C:\ProgramData\Desktop\avast! Free Antivirus.lnk
2013-11-10 19:31 - 2012-10-30 23:35 - 00409832 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2013-11-10 12:41 - 2013-11-10 12:41 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Sony Corporation
2013-11-10 12:40 - 2013-11-10 12:40 - 00000000 ____D C:\ProgramData\Oracle
2013-11-10 12:40 - 2013-11-10 12:39 - 00004746 _____ C:\windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-11-10 12:40 - 2013-07-13 10:51 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-10 12:33 - 2013-11-10 12:33 - 00000000 ____D C:\Users\Petr\AppData\Roaming\AVAST Software
2013-11-08 14:01 - 2013-11-08 14:00 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{1D594E3D-40CE-4946-8A36-9CA4AEE1FDC5}
2013-11-07 18:18 - 2013-11-07 18:18 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{85FCDCF0-650C-4025-8403-61C0CAE2914B}
2013-11-06 23:17 - 2013-11-06 23:17 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{A73D146F-D5C6-4C8D-ADCA-D113771F568F}
2013-11-06 15:47 - 2013-11-06 15:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-04 20:10 - 2012-11-13 20:53 - 00000000 ____D C:\Users\Lucinka\AppData\Roaming\Skype
2013-11-04 20:05 - 2013-06-18 18:16 - 00000000 ____D C:\Users\Lucinka\Documents\WebCam Media
2013-11-03 15:22 - 2013-10-03 08:18 - 00000000 ____D C:\Users\Lucinka\Desktop\Škola
2013-11-02 16:40 - 2013-11-02 16:40 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{C28CE360-DFD6-4264-87A3-CBDD4252134D}
2013-11-01 15:42 - 2013-11-01 15:39 - 00000000 ____D C:\Users\Lucinka\AppData\Roaming\Sony Corporation
2013-11-01 15:39 - 2013-11-01 15:39 - 00000000 ____D C:\Users\Lucinka\Documents\Sony PMB
2013-11-01 15:37 - 2012-11-21 21:51 - 00038211 _____ C:\windows\DirectX.log
2013-11-01 15:36 - 2013-11-01 15:36 - 00000000 ____D C:\ProgramData\Sony Corporation
2013-11-01 15:36 - 2013-11-01 15:36 - 00000000 ____D C:\Program Files (x86)\Sony
2013-11-01 15:29 - 2013-11-01 15:27 - 203163704 _____ (Microsoft Corporation) C:\Users\Lucinka\Downloads\PMB56_Installer1108a.exe
2013-11-01 15:11 - 2013-11-01 15:11 - 00002912 _____ C:\windows\System32\Tasks\{7B01B6EA-C2D0-4328-BA02-4BB2DDD3B961}
2013-10-31 10:40 - 2013-10-31 10:40 - 00000000 ____D C:\Users\Lucinka\AppData\Roaming\AVAST Software
2013-10-31 10:40 - 2013-03-05 15:25 - 00001858 _____ C:\windows\wininit.ini
2013-10-31 10:38 - 2010-11-21 04:47 - 00083802 _____ C:\windows\PFRO.log
2013-10-31 00:27 - 2013-10-24 12:38 - 00000000 ____D C:\Users\Lucinka\Desktop\5. série
2013-10-30 19:33 - 2013-03-13 21:33 - 00205320 _____ C:\windows\system32\Drivers\aswVmm.sys
2013-10-30 19:33 - 2013-03-13 21:33 - 00065776 _____ C:\windows\system32\Drivers\aswRvrt.sys
2013-10-30 19:33 - 2012-10-30 23:35 - 01032416 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2013-10-30 19:33 - 2012-10-30 23:35 - 00334648 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2013-10-30 19:33 - 2012-10-30 23:35 - 00092544 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2013-10-30 19:33 - 2012-10-30 23:35 - 00084328 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2013-10-30 19:33 - 2012-10-30 23:35 - 00065264 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2013-10-30 19:33 - 2012-10-30 23:35 - 00038984 _____ (AVAST Software) C:\windows\system32\Drivers\aswFsBlk.sys
2013-10-30 19:33 - 2012-10-30 23:34 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2013-10-30 19:32 - 2012-10-30 23:34 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-30 19:31 - 2012-10-30 23:35 - 00000000 _____ C:\windows\SysWOW64\config.nt
2013-10-30 19:28 - 2013-10-30 19:28 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{1AB0B5E3-07A2-4EEE-B702-9E17A5029005}
2013-10-24 13:54 - 2013-03-19 09:40 - 00000000 ____D C:\Program Files (x86)\Artopik
2013-10-24 12:38 - 2013-10-23 11:26 - 00000000 ____D C:\Users\Lucinka\Desktop\4. série
2013-10-23 08:42 - 2013-06-17 22:12 - 00000000 ____D C:\Users\Lucinka\Hry
2013-10-22 17:11 - 2013-10-22 17:11 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{EBE5EB53-E036-485A-B252-B6C25CB2AA9A}
2013-10-20 12:56 - 2013-06-03 09:51 - 00000000 ____D C:\Users\Lucinka\Documents\Bluetooth Folder
2013-10-19 17:08 - 2013-04-16 17:18 - 00000000 ____D C:\Users\Lucinka\Desktop\Warcraft III
2013-10-19 08:32 - 2013-02-28 19:06 - 00000000 ____D C:\Users\Lucinka\AppData\Local\CrashDumps
2013-10-16 10:01 - 2013-10-16 10:01 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{CB19CB10-0E66-446F-9E7A-3134C5BDCECA}
2013-10-15 20:19 - 2013-07-25 12:34 - 00000000 ____D C:\Users\Lucinka\Desktop\Nová složka
2013-10-15 18:50 - 2009-07-14 04:20 - 00000000 ____D C:\windows\rescache
2013-10-15 12:08 - 2013-10-15 12:08 - 00000000 ____D C:\Users\Lucinka\Documents\Electronic Arts
2013-10-15 02:39 - 2009-07-14 05:45 - 00328168 _____ C:\windows\system32\FNTCACHE.DAT
2013-10-15 02:20 - 2012-11-04 21:57 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-15 02:16 - 2012-04-17 06:24 - 01555776 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2013-10-15 02:11 - 2013-07-15 10:36 - 00000000 ____D C:\windows\system32\MRT
2013-10-15 02:08 - 2012-11-04 10:12 - 80541720 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-10-14 22:48 - 2013-02-26 20:04 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-14 21:40 - 2013-10-14 21:39 - 00000000 ____D C:\Users\Lucinka\AppData\Local\{18BE1815-F22A-4274-B432-D7A17E9B9EB4}

Some content of TEMP:
====================
C:\Users\Lucinka\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Lucinka\AppData\Local\Temp\EAD1860.exe
C:\Users\Lucinka\AppData\Local\Temp\EAD3A8F.exe
C:\Users\Lucinka\AppData\Local\Temp\EAD5169.exe
C:\Users\Lucinka\AppData\Local\Temp\EAD9D47.exe
C:\Users\Lucinka\AppData\Local\Temp\EADCDF1.exe
C:\Users\Lucinka\AppData\Local\Temp\EADCF8D.exe
C:\Users\Lucinka\AppData\Local\Temp\HitmanPro.exe
C:\Users\Lucinka\AppData\Local\Temp\Kickstarter.exe
C:\Users\Lucinka\AppData\Local\Temp\ResetDevice.exe
C:\Users\Lucinka\AppData\Local\Temp\SHSetup.exe
C:\Users\Markéta\AppData\Local\Temp\ose00000.exe
C:\Users\Markéta\AppData\Local\Temp\ose00002.exe
C:\Users\Markéta\AppData\Local\Temp\uninstall.exe
C:\Users\Petr\AppData\Local\Temp\1366473385itinstallerp.exe
C:\Users\Petr\AppData\Local\Temp\26384-671274-skype.exe
C:\Users\Petr\AppData\Local\Temp\installerp.exe
C:\Users\Petr\AppData\Local\Temp\instloffer.exe
C:\Users\Petr\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe
C:\Users\Petr\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
C:\Users\Petr\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Petr\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Petr\AppData\Local\Temp\lowproc.exe
C:\Users\Petr\AppData\Local\Temp\stubhelper.dll
C:\Users\Petr\AppData\Local\Temp\uninst1.exe
C:\Users\Petr\AppData\Local\Temp\vlc-2.0.7-win32.exe
C:\Users\Petr\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-04-14 01:38

==================== End Of Log ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKCU\...\Run: [Yontoo Desktop] - "C:\Users\Lucinka\AppData\Roaming\Yontoo\YontooDesktop.exe"
C:\Users\Lucinka\AppData\Roaming\Yontoo
HKCU\...\Run: [Yontoo Desktop] - "C:\Users\Lucinka\AppData\Roaming\Yontoo\YontooDesktop.exe"
MountPoints2: {62a69171-6d2c-11e2-b088-74e543e13736} - D:\AutoRun.exe
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.live.com/1rewlive4startup/home
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com?pc=CMNTDF
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKCU - DefaultScope {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = http://start.iminent.com/?appId=011DB26 ... toolbox&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchT ... e543e0f17c
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKCU - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = http://start.iminent.com/?appId=011DB26 ... toolbox&q={searchTerms}
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
C:\Program Files (x86)\Skype\Toolbars
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
FF ProfilePath: C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\vmho1ue4.default
FF NewTab: hxxp://www.delta-search.com/?affID=1194 ... e543e0f17c
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
C:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Lucinka\AppData\Local\Temp
Task: {6B681AC9-04F7-440A-926F-40F0E0E53A61} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-02] (Google Inc.)
Task: {94E977A9-8387-4E8C-BE48-6BB7CA9B3E94} - System32\Tasks\{7B01B6EA-C2D0-4328-BA02-4BB2DDD3B961} => F:\Driver\Setup.exe
Task: {F20BABD6-127C-4F8E-A545-29B376D751CE} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-794480102-2804555483-2920555207-1004 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2012-11-29] (RealNetworks, Inc.)
Task: {F84FB8A4-54EE-490E-8114-ED2DD555D844} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-794480102-2804555483-2920555207-1004 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2012-11-29] (RealNetworks, Inc.)
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End

Uložte do stejného adresáře, jako máte FRST jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Veriti]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-11-2013
Ran by Lucinka at 2013-11-13 19:00:14 Run:1
Running from C:\Users\Lucinka\Desktop\FRST
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKCU\...\Run: [Yontoo Desktop] - "C:\Users\Lucinka\AppData\Roaming\Yontoo\YontooDesktop.exe"
C:\Users\Lucinka\AppData\Roaming\Yontoo
HKCU\...\Run: [Yontoo Desktop] - "C:\Users\Lucinka\AppData\Roaming\Yontoo\YontooDesktop.exe"
MountPoints2: {62a69171-6d2c-11e2-b088-74e543e13736} - D:\AutoRun.exe
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.live.com/1rewlive4startup/home
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com?pc=CMNTDF
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKCU - DefaultScope {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = http://start.iminent.com/?appId=011DB26 ... toolbox&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchT ... e543e0f17c
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKCU - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = http://start.iminent.com/?appId=011DB26 ... toolbox&q={searchTerms}
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
C:\Program Files (x86)\Skype\Toolbars
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
FF ProfilePath: C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\vmho1ue4.default
FF NewTab: hxxp://www.delta-search.com/?affID=1194 ... e543e0f17c
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
C:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Lucinka\AppData\Local\Temp
Task: {6B681AC9-04F7-440A-926F-40F0E0E53A61} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-02] (Google Inc.)
Task: {94E977A9-8387-4E8C-BE48-6BB7CA9B3E94} - System32\Tasks\{7B01B6EA-C2D0-4328-BA02-4BB2DDD3B961} => F:\Driver\Setup.exe
Task: {F20BABD6-127C-4F8E-A545-29B376D751CE} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-794480102-2804555483-2920555207-1004 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2012-11-29] (RealNetworks, Inc.)
Task: {F84FB8A4-54EE-490E-8114-ED2DD555D844} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-794480102-2804555483-2920555207-1004 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2012-11-29] (RealNetworks, Inc.)
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End
*****************

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Yontoo Desktop => Value deleted successfully.
"C:\Users\Lucinka\AppData\Roaming\Yontoo" => File/Directory not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Yontoo Desktop => Value not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{62a69171-6d2c-11e2-b088-74e543e13736} => Key deleted successfully.
HKCR\CLSID\{62a69171-6d2c-11e2-b088-74e543e13736} => Key not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\First Home Page => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} => Key deleted successfully.
HKCR\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} => Key deleted successfully.
HKCR\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} => Key deleted successfully.
HKCR\CLSID\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => Key deleted successfully.
HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{3049C3E9-B461-4BC5-8870-4C09146192CA} => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars => Moved successfully.
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => Key deleted successfully.
HKCR\PROTOCOLS\Handler\skype-ie-addon-data => Key deleted successfully.
HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => Key deleted successfully.
HKCR\Wow6432Node\PROTOCOLS\Handler\skype-ie-addon-data => Key not found.
HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => Key deleted successfully.
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll => Should not be moved.
Firefox newtab deleted successfully.
HKLM\Software\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1 => Key deleted successfully.
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll => Moved successfully.
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll => Moved successfully.
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll => Moved successfully.
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll => Moved successfully.
C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll not found.
C:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.

"C:\Users\Lucinka\AppData\Local\Temp" directory move:

C:\Users\Lucinka\AppData\Local\Temp\.Sony_PMBrowser3000_BrowserDiskCache => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\.Sony_PMBrowser3000_BrowserDiskCache.idx => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\121715895.od => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\18821_5839.xml => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\30019_14487.xml => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\30088_10827.xml => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\3355_16474.xml => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\AdobeARM.log => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\AdobeARM_NotLocked.log => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\au-descriptor-1.7.0_45-b18.xml => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\chrome_installer.log => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\CVR3CB7.tmp.cvr => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\DataCard_Setup64.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD144A.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD144A.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD1860.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD1860.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD3A8F.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD3A8F.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD5169.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD5169.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD9D47.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EAD9D47.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EADCDF1.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EADCDF1.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EADCF8D.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EADCF8D.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\error105840_01.xml => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\EsgScanner.inf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\ESGScanner.sys => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_772pMXwd8LTGXn4 => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_87v8Jt5JqhJic5a => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_9hT5i3fhbeObcMi => Moved successfully.
Could not move "C:\Users\Lucinka\AppData\Local\Temp\etilqs_fQp1sbC2d36h3WC" => Scheduled to move on reboot.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_MfPB5TYbn59PAhn => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_mvrSiyYngIP6qnv => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_oDyExRrm58dL8Ha => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_oiyf6KhiC47wWtM => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_rN0npYkcJa0yrPd => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_sXIQReYIr7Fb1wM => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_u2Bz8Rf5KNGAUL9 => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\etilqs_VyWF4AzLTOsZvVk => Moved successfully.
Could not move "C:\Users\Lucinka\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\Lucinka\AppData\Local\Temp\HitmanPro.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\JavaDeployReg.log => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\jusched.log => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Kickstarter.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\MAG10_TestovySesit_NJ-PP-Z.pdf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Mluvnické kategorie sloves + slohové styly.docx => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\MSI87ba5.LOG => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\nsaE8B8.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\nslA7B.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\nslCE17.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\PCW13ED.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\PCW13ED.xml => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\ppt7822.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\prijeti-do-cirkve.doc => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\ResetDevice.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\SHSetup.exe => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\SysConfig.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\testik.doc => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\users00 => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\wmplog01.sqm => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\wmplog02.sqm => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\wmplog03.sqm => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\wmsetup.log => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Úlohy-z-názvosloví-a-chemických-výpočtů-v-anorganické-chemii-(Flemr-Vratislav,-Holečková-Eva).pdf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Temporary Internet Files\Content.IE5\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Temporary Internet Files\Content.IE5\ZSJWUZZV\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Temporary Internet Files\Content.IE5\RCTVYLT2\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Temporary Internet Files\Content.IE5\CJ7OSAA8\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Temporary Internet Files\Content.IE5\6A9NUUDV\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Origin\installerdll134301.dll => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\NGLATempNokia\Nokia Sans Wide Bold v3.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\NGLATempNokia\Nokia Sans Wide BolIta v3.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\NGLATempNokia\Nokia Sans Wide Italic v3.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\NGLATempNokia\Nokia Sans Wide v3.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\nCommsTempNokia\Nokia Sans Wide Bold v3.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\nCommsTempNokia\Nokia Sans Wide BolIta v3.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\nCommsTempNokia\Nokia Sans Wide Italic v3.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\nCommsTempNokia\Nokia Sans Wide v3.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\nCommsTempNokia\Nokia Standard Multi Bold v2.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\nCommsTempNokia\Nokia Standard Multi v2.1.ttf => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\NccTemp\ncc0000.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\NccTemp\ncc0001.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\HP Support Framework\HPSF_Config1.dll => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\History\History.IE5\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\History\History.IE5\index.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\Cookies\index.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\fla3D14.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\fla5AA9.tmp => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5\index.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5\SKNDXABC\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5\PF126TBK\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5\CFBCXNQK\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5\7EGZ3FDV\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\History\History.IE5\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\History\History.IE5\index.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acro_rd_dir\Cookies\index.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5\index.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5\J6GGKOSZ\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5\7L29RYLG\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5\2BSEWUVQ\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5\0QPLLUHD\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acrord32_sbx\History\History.IE5\desktop.ini => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acrord32_sbx\History\History.IE5\index.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\acrord32_sbx\Cookies\index.dat => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_25393\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_25393\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_25393\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_2414\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_2414\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_2414\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_16554\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_16554\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_16554\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_12775\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_12775\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\9368_12775\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\3916_14583\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\3916_14583\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\3916_14583\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\3544_21369\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\3544_21369\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\3544_21369\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_28817\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_28817\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_28817\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_26112\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_26112\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_26112\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_15231\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_15231\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_15231\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_13412\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_13412\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_13412\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_11638\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_11638\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_11638\manifest.json => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_10078\crl-set => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_10078\manifest.fingerprint => Moved successfully.
C:\Users\Lucinka\AppData\Local\Temp\2544_10078\manifest.json => Moved successfully.
Could not move "C:\Users\Lucinka\AppData\Local\Temp" directory. => Scheduled to move on reboot.

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6B681AC9-04F7-440A-926F-40F0E0E53A61} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B681AC9-04F7-440A-926F-40F0E0E53A61} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{94E977A9-8387-4E8C-BE48-6BB7CA9B3E94} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94E977A9-8387-4E8C-BE48-6BB7CA9B3E94} => Key deleted successfully.
C:\Windows\System32\Tasks\{7B01B6EA-C2D0-4328-BA02-4BB2DDD3B961} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7B01B6EA-C2D0-4328-BA02-4BB2DDD3B961} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F20BABD6-127C-4F8E-A545-29B376D751CE} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F20BABD6-127C-4F8E-A545-29B376D751CE} => Key deleted successfully.
C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-794480102-2804555483-2920555207-1004 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RealDownloaderRealUpgradeLogonTaskS-1-5-21-794480102-2804555483-2920555207-1004 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F84FB8A4-54EE-490E-8114-ED2DD555D844} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F84FB8A4-54EE-490E-8114-ED2DD555D844} => Key deleted successfully.
C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-794480102-2804555483-2920555207-1004 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-794480102-2804555483-2920555207-1004 => Key deleted successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.

=========== Result of Scheduled Files to move ===========

C:\Users\Lucinka\AppData\Local\Temp\etilqs_fQp1sbC2d36h3WC => Is moved successfully.
"C:\Users\Lucinka\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => File could not move.
"C:\Users\Lucinka\AppData\Local\Temp" => Directory could not move.

==== End of Fixlog ====

[Rudy]

Smazáno. Nebylo tam ale nic, co by tomu viru patřilo. Je stále problém?

[Veriti]

ne ne ja nemela zaseknuty pc jen se mi zasekl na te strance a kdyz jsem ho vypla natvrdo tak to pak uz bylo v pohode, tak vam mo dekuji za ochotu a pomoc

[Rudy]

Nemáte zač!