qvo6 a další adware

[Pixe]

Dobrý den, potřebuji se zbavit adwaru "qvo6" a případně i další havěti v tomto PC. Děkuji.

Log z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Vojta at 2013-12-30 02:58:35
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 60 GB (12%) free of 476 GB
Total RAM: 4095 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 02:58:42, on 30.12.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Windows\PixArt\Pac7302\Monitor.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\inf\msdrvqk\msdrvqk.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Vojta.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/UP97_FRPage
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [NtVdmSrv] C:\Windows\inf\ntvdm.vbe
O4 - HKCU\..\Run: [TBPanel] C:\Program Files (x86)\Vtune\TBPanel.exe /A
O4 - HKCU\..\Run: [Google Update] "C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Startup: RollerCoaster Tycoon 3 Registration.lnk = Vojta\AppData\Local\Temp\{2593FD81-C977-4F29-A9A1-23EB03CF2AE7}\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\ATR1.exe
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Tor Win32 Service (tor) - Unknown owner - C:\Program Files (x86)\Tor\tor.exe
O23 - Service: TurboBoost - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater13.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12325 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x2d0
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\Explorer.EXE
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Secunia\PSI\PSIA.exe" --start-service
"C:\Windows\PixArt\Pac7302\Monitor.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Tor\tor.exe" --nt-service "-ControlPort" "9051"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
WLIDSvcM.exe 2804
"C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000468
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
C:\Windows\inf\msdrvqk\msdrvqk.exe -o stratum+tcp://mint.bitminter.com:3333 -u trinkrapek_chuck01 -p pioneer123
\??\C:\Windows\system32\conhost.exe "-1685620600525804117-1536771153605529827-1367358475768079009281272000675562465
"C:\Program Files (x86)\Secunia\PSI\sua.exe" --start-service
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8abf3786-7bc2-4265-8135-74d9a4de6453 -SystemEventPortName:HostProcess-a8e34899-ca0c-410b-9281-d291fceda380 -IoCancelEventPortName:HostProcess-a9e83225-8c69-43c4-87a2-971b87bb35a2 -NonStateChangingEventPortName:HostProcess-a750f5f4-94af-455a-8ea2-b6e1f1c136fd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5c05ddc9-153c-4c1c-958e-b51cf5b25bba -DeviceGroupId:WpdFsGroup
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Steam\Steam.exe"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3848.0.1399834589\1374215313" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22,26 --gpu-vendor-id=0x10de --gpu-device-id=0x0640 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.1106 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group15 pct:1h stable:r3 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_52/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="3848.1.2045976252\877825889" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group15 pct:1h stable:r3 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_52/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="3848.4.128011328\1502434547" /prefetch:673131151
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group15 pct:1h stable:r3 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_52/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="3848.9.1614212807\201425412" /prefetch:673131151
taskeng.exe {09668A08-2BCD-4494-80BD-232AD955A4AB}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3848.12.1164605114\1147072126" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\Vojta\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\Desk 365 RunAsStdUser.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job
C:\Windows\tasks\ReclaimerUpdateFiles_Vojta.job
C:\Windows\tasks\ReclaimerUpdateXML_Vojta.job
C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Vojta.job
C:\Windows\tasks\RunOW.job
C:\Windows\tasks\SmartPCFix Task.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

"{336D0C35-8A85-403a-B9D2-65C292C39087}"=C:\Program Files\Web Assistant\Firefox


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=12.0.1.669]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprjplug;version=12.0.1.669]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.669]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.669]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.669]
"Description"=12.0.1.669
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Program Files (x86)\Mozilla Firefox\components\
flashplayer.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
NPOFF12.DLL
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
nsjsrealplayerplugin.xpt
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
babylon.xml
delta-homes.xml
qvo6.xml
Web Search.xml

C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\extensions\
donottrackplus@abine.com
plugin@starstable.com

C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\searchplugins\
bingp.xml
BrowserProtect.xml
softonic.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-05-14 6307960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-09-25 449512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-09-25 155384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2007-12-10 323584]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-25 2726728]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TBPanel"=C:\Program Files (x86)\Vtune\TBPanel.exe [2009-10-05 2158592]
"Google Update"=C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-14 116648]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2013-12-11 1823656]
"Handy Updater"=C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe [2013-07-05 370176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-02 20472992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Vojta^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE [2009-02-26 97680]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2010-01-18 2787840]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"TkBellExe"=C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [2011-10-16 273528]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2011-10-24 421888]
""= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-12-17 684600]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-11-29 3806544]
"NtVdmSrv"=C:\Windows\inf\ntvdm.vbe [2013-06-14 884]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Secunia PSI Tray.lnk - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe

C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
RollerCoaster Tycoon 3 Registration.lnk - C:\Users\Vojta\AppData\Local\Temp\{2593FD81-C977-4F29-A9A1-23EB03CF2AE7}\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\ATR1.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-07-21 258560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux4"=wdmaud.drv
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux5"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-12-30 02:58:35 ----D---- C:\rsit
2013-12-30 02:49:31 ----D---- C:\AdwCleaner
2013-12-27 13:24:55 ----D---- C:\Program Files (x86)\Goldwave 5.13 CZ Full
2013-12-27 12:45:38 ----D---- C:\Users\Vojta\AppData\Roaming\Audacity
2013-12-27 12:45:20 ----D---- C:\Program Files (x86)\Audacity
2013-12-26 18:52:42 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-12-26 18:52:42 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-12-26 18:52:42 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-12-26 18:52:42 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-12-26 18:52:41 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-12-26 18:52:41 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-12-26 18:52:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-12-26 18:52:40 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-12-26 18:52:39 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-12-26 18:52:39 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-12-26 18:52:38 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-12-26 18:52:38 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-12-26 18:52:37 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-12-26 18:52:37 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-12-26 18:52:36 ----A---- C:\Windows\system32\D3DX9_43.dll
2013-12-20 11:17:19 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-12-15 19:30:13 ----D---- C:\Users\Vojta\AppData\Roaming\inkscape
2013-12-12 12:32:37 ----D---- C:\Program Files\Paint.NET
2013-12-12 09:32:21 ----D---- C:\Program Files (x86)\HyperCam 3
2013-12-11 20:11:34 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-11 20:11:33 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-11 20:11:33 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-11 20:11:32 ----A---- C:\Windows\system32\wmp.dll
2013-12-11 20:10:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-12-11 20:10:03 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-11 20:10:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-11 20:10:03 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-11 20:10:03 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-11 20:10:03 ----A---- C:\Windows\system32\ieui.dll
2013-12-11 20:10:03 ----A---- C:\Windows\system32\iernonce.dll
2013-12-11 20:10:03 ----A---- C:\Windows\system32\ie4uinit.exe
2013-12-11 20:10:02 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-12-11 20:10:02 ----A---- C:\Windows\system32\mshtml.dll
2013-12-11 20:10:02 ----A---- C:\Windows\system32\jscript9diag.dll
2013-12-11 20:10:02 ----A---- C:\Windows\system32\iesetup.dll
2013-12-11 20:10:02 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-12-11 20:10:02 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-12-11 20:10:02 ----A---- C:\Windows\system32\ieapfltr.dll
2013-12-11 20:10:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-11 20:10:01 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-11 20:10:01 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-12-11 20:10:01 ----A---- C:\Windows\system32\wininet.dll
2013-12-11 20:10:01 ----A---- C:\Windows\system32\iertutil.dll
2013-12-11 20:10:00 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-11 20:10:00 ----A---- C:\Windows\system32\urlmon.dll
2013-12-11 20:10:00 ----A---- C:\Windows\system32\ieframe.dll
2013-12-11 20:09:59 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-11 20:09:59 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-11 20:09:58 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-11 20:09:58 ----A---- C:\Windows\system32\jscript9.dll
2013-12-11 07:20:35 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-11 07:20:35 ----A---- C:\Windows\system32\msieftp.dll
2013-12-11 07:20:33 ----A---- C:\Windows\system32\win32k.sys
2013-12-11 07:20:31 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-11 07:20:31 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-11 07:20:31 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-11 07:20:31 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-11 07:20:28 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-11 07:20:28 ----A---- C:\Windows\system32\tzres.dll
2013-12-11 07:20:23 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-11 07:20:23 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-12-11 07:20:22 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-11 07:20:22 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-11 07:20:22 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-11 07:20:22 ----A---- C:\Windows\system32\wscript.exe
2013-12-11 07:20:22 ----A---- C:\Windows\system32\scrrun.dll
2013-12-11 07:20:22 ----A---- C:\Windows\system32\cscript.exe
2013-12-07 07:50:14 ----D---- C:\Program Files (x86)\LogMeIn Hamachi

======List of files/folders modified in the last 1 month======

2013-12-30 02:58:42 ----D---- C:\Windows\Temp
2013-12-30 02:58:37 ----D---- C:\Program Files\trend micro
2013-12-30 01:41:34 ----D---- C:\Program Files (x86)\Steam
2013-12-30 01:33:10 ----D---- C:\Windows\system32\config
2013-12-29 21:33:30 ----D---- C:\Windows\tracing
2013-12-29 18:49:03 ----D---- C:\Windows\Tasks
2013-12-29 15:39:12 ----D---- C:\Windows\system32\Tasks
2013-12-29 15:36:48 ----D---- C:\ProgramData\NVIDIA
2013-12-28 08:26:51 ----D---- C:\Windows\System32
2013-12-28 08:26:51 ----D---- C:\Windows\inf
2013-12-28 08:26:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-12-27 13:24:55 ----D---- C:\Program Files (x86)
2013-12-27 01:25:05 ----SHD---- C:\Windows\Installer
2013-12-27 01:25:05 ----SHD---- C:\Config.Msi
2013-12-27 01:24:45 ----D---- C:\Windows\SysWOW64
2013-12-27 01:19:07 ----D---- C:\Windows
2013-12-26 18:52:02 ----RSD---- C:\Windows\assembly
2013-12-26 18:50:35 ----SHD---- C:\System Volume Information
2013-12-26 18:50:21 ----D---- C:\Windows\Logs
2013-12-26 14:17:27 ----D---- C:\Users\Vojta\AppData\Roaming\uTorrent
2013-12-26 14:08:13 ----D---- C:\Users\Vojta\AppData\Roaming\.minecraft
2013-12-26 14:02:41 ----D---- C:\Program Files (x86)\Ubisoft
2013-12-26 13:50:36 ----D---- C:\Program Files (x86)\Electronic Arts
2013-12-26 13:47:18 ----D---- C:\Program Files (x86)\Ashampoo
2013-12-26 13:05:22 ----D---- C:\Users\Vojta\AppData\Roaming\Vso
2013-12-26 13:05:22 ----D---- C:\ProgramData\VSO
2013-12-26 13:05:21 ----D---- C:\Users\Vojta\AppData\Roaming\TS3Client
2013-12-26 13:04:51 ----D---- C:\Windows\Panther
2013-12-26 13:04:50 ----D---- C:\Windows\debug
2013-12-26 13:02:39 ----D---- C:\Program Files (x86)\CCleaner
2013-12-26 07:49:01 ----D---- C:\Users\Vojta\AppData\Roaming\Skype
2013-12-25 17:47:08 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-12-23 18:04:40 ----D---- C:\Users\Vojta\AppData\Roaming\Mumble
2013-12-23 14:58:43 ----D---- C:\Windows\system32\drivers
2013-12-23 14:58:42 ----D---- C:\Windows\system32\drivers\UMDF
2013-12-23 14:51:36 ----D---- C:\Windows\system32\DriverStore
2013-12-23 14:51:36 ----D---- C:\Windows\system32\catroot
2013-12-21 08:30:31 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-20 09:48:29 ----D---- C:\Windows\system32\MRT
2013-12-17 16:47:40 ----D---- C:\Users\Vojta\AppData\Roaming\ultrastardx
2013-12-16 11:51:52 ----HD---- C:\ProgramData
2013-12-15 20:16:01 ----A---- C:\Windows\system32\MRT.exe
2013-12-15 20:15:45 ----D---- C:\Windows\system32\catroot2
2013-12-12 12:32:37 ----D---- C:\Program Files
2013-12-12 07:43:55 ----D---- C:\Windows\winsxs
2013-12-12 07:41:05 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-12 07:41:04 ----D---- C:\Program Files\Windows Media Player
2013-12-12 07:41:03 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-12 07:41:02 ----D---- C:\Program Files\Internet Explorer
2013-12-12 07:40:59 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-12-12 07:40:59 ----D---- C:\Windows\system32\cs-CZ
2013-12-11 20:11:15 ----D---- C:\ProgramData\Microsoft Help
2013-12-10 09:10:41 ----D---- C:\Program Files (x86)\Google
2013-12-01 21:35:41 ----D---- C:\ProgramData\CanonIJPLM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-01-05 503352]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2012-12-06 30568]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-12-17 131576]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-10-01 28600]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2012-08-24 126944]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-12-17 108440]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]
R3 CamSuiteVAC;CamSuite Virtual Audio; C:\Windows\system32\DRIVERS\CamSuiteVAC.sys [2008-09-18 56320]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-11-27 67072]
R3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf.sys [2010-09-01 17976]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-01-11 1290752]
S2 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys []
S3 a42tsglb;a42tsglb; C:\Windows\system32\drivers\a42tsglb.sys []
S3 a9ufyjtp;a9ufyjtp; C:\Windows\system32\drivers\a9ufyjtp.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\drivers\atikmdag.sys [2009-07-13 5020672]
S3 DualCoreCenter;DualCoreCenter; \??\C:\Program Files (x86)\MSI\GreenPowerCenterII\NTGLM7X64.sys [2010-02-08 44344]
S3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K; C:\Windows\system32\DRIVERS\e1k62x64.sys [2010-04-05 301232]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-22 48488]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-07-21 7345344]
S3 ioatdma1;ioatdma1; C:\Windows\System32\Drivers\qd162x64.sys [2009-11-16 40144]
S3 ioatdma2;Intel(R) QuickData Technology device ver.2; C:\Windows\System32\Drivers\qd262x64.sys [2009-11-16 42192]
S3 ManyCam;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [2012-10-11 44928]
S3 mcaudrv_simple;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv_x64.sys [2013-01-31 28160]
S3 MSILiveVirtualCamera;MSI Live Virtual Camera; C:\Windows\system32\DRIVERS\MSILiveVirtualCamera.sys [2007-01-29 456192]
S3 PAC7302;iLook 300; C:\Windows\system32\DRIVERS\PAC7302.SYS [2009-04-28 532480]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RushTopDevice_J;RushTopDevice_J; \??\C:\Program Files (x86)\MSI\GreenPowerCenterII\RushJ64.sys [2009-03-05 33080]
S3 RushTopDevice2;RushTopDevice2; \??\C:\Program Files (x86)\MSI\GreenPowerCenterII\RushTop64.sys [2008-12-18 75576]
S3 SMARTMouseFilterx64;HID-compliant mouse; C:\Windows\system32\DRIVERS\SMARTMouseFilterx64.sys [2012-03-21 13168]
S3 SMARTVHidMiniVistaAmd64;SMART HID Device; C:\Windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [2012-03-21 16368]
S3 SMARTVTabletPCx64;SMART Virtual TabletPC; C:\Windows\system32\DRIVERS\SMARTVTabletPCx64.sys [2012-03-21 24944]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys [2008-11-11 17920]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys [2008-11-11 27136]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys [2008-11-11 33792]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-11-19 440376]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-12-17 440376]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-11-29 2210640]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2013-10-11 377104]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 884512]
R2 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [2011-04-19 993848]
R2 Secunia Update Agent;Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [2011-04-19 399416]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]
R2 tor;Tor Win32 Service; C:\Program Files (x86)\Tor\tor.exe [2013-08-31 3233806]
R2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [2012-12-06 711112]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-12-11 569768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-11 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-25 1260320]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-22 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-11 136176]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2010-04-05 116104]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-20 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TurboBoost;TurboBoost; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 126352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-08-10 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

[vyosek]

Zdravim

Stahnete Shortcut Cleaner http://www.bleepingcomputer.com/downloa ... t-cleaner/

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Spustte tradicne dvouklikem
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v miste spusteni jako sc-cleaner.txt, ten sem vlozte

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[Pixe]

Shortcut Cleaner log


Shortcut Cleaner 1.2.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
http://www.bleepingcomputer.com/downloa ... t-cleaner/

Windows Version: Windows 7 Home Premium Service Pack 1
Program started at: 12/30/2013 01:31:02 PM.

Scanning for registry hijacks:

* No issues found in the Registry.

Searching for Hijacked Shortcuts:

Searching C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\

* Shortcut Cleaned: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk => C:\Program Files\Internet Explorer\iexplore.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

* Shortcut Cleaned: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => C:\Program Files\Internet Explorer\iexplore.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

Searching C:\ProgramData\Microsoft\Windows\Start Menu\

* Shortcut Cleaned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

* Shortcut Cleaned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk => C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

Searching C:\Users\Vojta\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

* Shortcut Cleaned: C:\Users\Vojta\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

* Shortcut Cleaned: C:\Users\Vojta\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

* Shortcut Cleaned: C:\Users\Vojta\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk => C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

* Shortcut Cleaned: C:\Users\Vojta\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Mozilla Firefox.lnk => C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

* Shortcut Cleaned: C:\Users\Vojta\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk => C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

Searching C:\Users\Public\Desktop\

* Shortcut Cleaned: C:\Users\Public\Desktop\Google Chrome.lnk => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453

Searching C:\Users\Vojta\Desktop

* Shortcut Cleaned: Mozilla Firefox.lnk => C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.qvo6.com/?utm_source=b&utm_m ... 1378052453


11 bad shortcuts found.

Program finished at: 12/30/2013 01:31:30 PM
Execution time: 0 hours(s), 0 minute(s), and 27 seconds(s)

[Pixe]

JRT log


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Vojta on po 30.12.2013 at 13:32:29,31
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-245253757-1308271664-2816636852-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully deleted [Registry Value] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\bProtectTabs
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babsolution
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babylontoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\dt soft\daemon tools toolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\filescout
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\powerpack
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yahoopartnertoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\simplytech
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-245253757-1308271664-2816636852-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-245253757-1308271664-2816636852-1000\Software\web assistant
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\desksvc
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\dt soft\daemon tools toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\esafeseccontrol
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\qvo6software
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\optimizerpro_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\optimizerpro_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetimsetup_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetimsetup_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1ae46c09-2ab8-4ee5-88fb-08cd0ff7f2df}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askChecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askChecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstallChecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstallChecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_bandicam_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_bandicam_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_bluestacks-app-player_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_bluestacks-app-player_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_imvu_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_imvu_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_inkscape_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_inkscape_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_vdownloader[1]_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_vdownloader[1]_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_chr_1-8-19-3_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\askChecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\askChecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_bandicam_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_bandicam_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_bluestacks-app-player_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_bluestacks-app-player_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_hypercam_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_imvu_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_imvu_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_inkscape_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_inkscape_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_vdownloader[1]_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_vdownloader[1]_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Softonic_chr_1-8-19-3_RASAPI32
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{26F42CDF-6A8A-4092-B429-A55229E9CECA}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{5a15c091-f3c2-4c8f-8964-e3434a2a4a95}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{5a15c091-f3c2-4c8f-8964-e3434a2a4a95}



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\amiupdxp.job
Successfully deleted: [File] "C:\Users\Vojta\appdata\local\google\chrome\user data\default\bprotector web data"
Successfully deleted: [File] "C:\Users\Vojta\appdata\local\google\chrome\user data\default\bprotectorpreferences"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\babylon"
Successfully deleted: [Folder] "C:\ProgramData\esafe"
Successfully deleted: [Folder] "C:\Users\Vojta\AppData\Roaming\babylon"
Successfully deleted: [Folder] "C:\Users\Vojta\AppData\Roaming\file scout"
Successfully deleted: [Folder] "C:\Users\Vojta\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Vojta\appdata\local\swvupdater"
Successfully deleted: [Folder] "C:\Users\Vojta\appdata\locallow\softonic"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{048C1FC5-E0B5-45D5-BD48-264A36C7C1B2}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{05C763FF-FCFF-4830-9D17-AA0221EE3C95}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{06DA4245-05AE-411C-9242-33D9C50EB7F4}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{075E9456-1B47-4B35-B79C-8251CDB1A846}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{089E1783-B1C2-49B7-90A7-0DE0D3D399B9}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{0AB74097-581B-4454-9BA3-1CDE4637585E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{0AD7F429-9C10-4014-9C93-3F61506AF948}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{0CB8194B-F0DD-4A70-87FB-3F0FD55800DE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{0CDA1098-39ED-4DFE-8C13-348A6708236C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{0D71CA2E-99EA-4027-9DDE-22BB67719794}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{0DC2056B-8F17-4CF4-9BF3-08C803852111}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{0EE7B0A6-67F9-4677-A7A9-00454C158725}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{109A2F8B-EE84-46FF-9B8A-6B74A276A5C1}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{11BFC577-84CB-4273-B126-329383584561}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{124DCF1C-32EA-4A6E-A471-E6DEEAD78A40}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{13159A2D-BC2A-43C4-B528-368C87F9E17C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{134E5FBA-908B-4F50-B984-FCC74AF63CE4}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{15292316-1863-48B0-8A4E-F88BDDEE0DB0}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{180E1D27-CCE5-420E-B31C-7BBD952C3291}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{18F6D105-5434-4136-BD1A-3D238EAD58E0}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{194F6967-71AD-4112-9406-89C5E19853FE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{196F93CA-F3C1-45C9-8D1E-ADD7E2C2A498}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{1A4C67C2-4FC1-4585-A9A4-E16CD33AF341}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{1BA8C5DC-3739-4B1A-BAF3-895743097072}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{1D42E47C-9F4A-4BA6-9229-BFB362287E89}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{1E865A9F-8FB0-4C71-A0A3-743A55966DCD}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{1FDA16AC-F3EE-4372-86FD-51561E1E3A42}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{202DB432-1150-4E3C-9A93-A06307B3483A}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{20555B99-1373-4726-AB75-704E19DD0781}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{209557E2-1EB1-4D72-B069-B43FFDE1A7AE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{2321A7AC-3F57-41CC-B35B-5E8D680DC32E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{23E20C51-39E4-42B4-A374-77F400CB859E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{23EF8BC7-0830-40EB-8532-B042E3F400E7}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{2660C7F2-0764-4DE7-84AE-FC9CE7508BD2}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{28ED6132-84F1-46A9-8E69-453C0EAE50BF}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{295CA6D3-AA1F-42F2-A172-EDA96F060D74}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{2B704EC6-6FE1-4015-8666-D71737B9BA3F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{2BD5A32F-8B46-468B-8B8A-277405AD02FD}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{2C022CAA-F206-4A7D-85A8-E852ECEA7D35}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{2D0AA9FC-47D2-4B48-A7AA-E011EEFEF70E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{2EB02523-78D8-4489-B6CC-EC0D28ABB73B}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{31427CC7-1503-4A82-8155-F7B6DDF81500}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{31D259F8-997B-4D2D-9C7E-51BD2A9D794F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{36158FE2-B0E9-4BF4-ACF5-C47C0BF1A63F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{3658567C-7A50-4D4E-8D07-D970A63C26A9}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{381066A9-88CE-4DB3-BBD2-0E6E48B47213}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{38227CB6-A477-4250-8BE4-8BDEFC793BFB}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{3945830C-E37E-474E-AB20-5FD3ACFAB2FD}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{394ACE22-048F-4318-9432-8566172A2B8C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{3992CDAB-72BA-40E0-A0D2-F540C3C9A77F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{39D38CA2-DFCD-48FB-A0B8-996EC7956B9D}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{3A5AB67D-D125-43E3-AE16-50A9D8DE2A34}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{3BF5FCD9-9E21-4EBB-9F24-EE3E12EC99A4}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{3BFCEEC7-E4B5-4C8E-8D23-FAA6FF82EC18}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{3CAAA8AA-DB2A-46D2-9886-DB6B5E0DCE56}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{3DAF2269-D615-4439-AA13-488EDF6F96C1}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{3F2E7980-41A8-453E-847E-D7F10F256979}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{404F04BA-91DB-4465-95F5-2F8B22D2ABD8}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{4263A776-535F-4381-BB83-D42B294AC0D3}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{43C6409E-E5B2-4791-946A-764A2EC8FE71}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{45D0283A-2023-4C3D-A0D0-CBA6204B1E00}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{46E2B964-F8B1-4981-9BA7-06AC5BD17820}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{4730395D-BBF1-45DB-A40F-85F5DA11E4DE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{4770C4F3-55B2-40E9-8C8E-559ADE81A9C9}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{489681CD-73F3-4CBE-B9F4-BC2D68A772E9}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{4A428258-6312-4BD9-91C7-145A93043EED}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{4B58571B-F1D1-42A3-92ED-8CCACA888BB5}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{4D23F41F-7B54-4CE5-AADA-F7DB9EEE6DEC}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{4D45C9AD-DDCB-4DE0-A475-62C6306EF5E7}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{4EE44448-26B0-4BA2-A657-9F0CB438D1C6}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{5054814B-8125-4A73-B514-9CD249E90A68}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{50A7D89A-86F0-4539-B2C3-36AB23596332}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{517AD6B9-AF24-47F8-ADC1-6866F22477AE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{53CC7A37-5E59-4C90-9BA4-97190731325E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{550FAC29-EBF0-4418-8BE0-D19C2DDCC5CD}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{554CD10D-CB8C-4351-B39A-01FD54E9E28D}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{557013F0-72DE-4BAA-89AF-24182886A497}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{569687D9-D244-4FD7-AA19-07D57D9092C5}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{56AF2ADC-867B-4ACA-A04B-B3FD52056900}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{5779BB7E-7DCA-48A9-B921-B1E8C24AB04E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{5C598818-E4DF-4264-B89A-904A8342A2F8}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{5DB67F3E-5637-4C08-A2F2-7A52602ACBAC}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{5DD8D742-CC50-47D1-9A02-BCF73109540B}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{61004DC7-2A52-41C1-B69B-E91D6F578F7D}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{633BA0C3-9FD0-43BF-A2B7-77EB4F378DF5}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{64B69990-CB2E-44C1-8C55-2588F2E39E8C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{66ABF12D-AC72-4165-B319-DF54AB174EEE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{678AC6E6-9022-4741-B133-FE5538AA097C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{67DAA797-1912-469C-AF39-B494FD01B904}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{681EBB82-926F-460D-9D23-3C0E3D33F714}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{697CCCD9-7994-430A-A2E9-79677DDDAEE3}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{6C69AABE-3DDB-44FA-8651-D2B7EF3B1197}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{6CED6E91-DB1D-4338-A586-5651825B9286}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{6F50A364-EECC-4044-9FE1-930E0577207B}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{713E65E0-E1B0-45EE-98BA-50B08973CF61}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{7215028D-850A-4F7D-A945-6E8C51ECB16E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{7417B5B9-94F7-46DD-AB92-E4A91B3E7202}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{742D5BFE-CFA7-456C-B6A4-EBC9DBAA1D62}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{74D96450-5DD5-47BA-BA00-FDA07F5A2079}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{7875F667-6DD4-43FB-9498-8A2D6D0710CE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{7C6B46F7-F1D1-4A66-A24D-EF92F976024C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{7D96EC71-3997-4C4C-BD12-5AAAF430267F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{7E14D7D1-9E6C-4D69-AD9C-096CF3219185}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{7E7175A9-C66E-4669-8CCB-DEAB4F99762C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{8083A09C-CD4F-4AA8-BD3A-5D94AAFC5F90}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{80C67F3F-D2A3-4688-BC06-FF85394B2424}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{80FE80F3-2787-4AB7-98ED-784BAB3FD537}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{847455C7-13B7-4A12-AAD8-0CC9BF079610}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{8574C896-5DC6-44A0-BE21-4BF87DB50250}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{886FE988-5815-4582-B14C-61D1A9A47FB4}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{88AA35A2-0FF7-4927-8A11-9D939A77809A}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{88D5F96E-2B2F-4A2E-89E4-3C121404DFC6}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{89A99EAB-ED9E-4084-9C3B-EAD2C55E4268}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{8D491360-96ED-4778-AEB3-CE05E3C9FA49}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{8F0EE37A-CB23-4F45-8706-ACE6F02F6650}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{8FF4ABF8-802A-49A0-BA82-2C3F020C4137}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{9079555C-C9C2-45C9-8869-25491CE67A40}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{935FE5C9-EBD0-446A-9632-64F84A743239}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{9469A787-1706-44C1-BCDB-BF70F4822512}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{9482C0B9-A719-45D3-8451-F4B4E78989E6}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{9547DB01-C479-4CF7-8BE7-F7BDF027D2C3}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{95C92E27-94BC-4424-851B-208B22605EBB}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{977F138D-A214-4600-80FB-A0879C14B139}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{983DCF06-14AB-480F-81FF-994D6A395085}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{9B4673FC-FB8D-4A90-A663-D72834DC6C85}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{9D7560D8-A0BC-42DF-9F5A-395AD7612DD1}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{9F5E41FC-0039-4AE1-9279-480284457E69}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{9FD9BEF7-B7B4-486C-8B41-7F5C5F5E794D}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{9FE4B494-D055-4E11-A747-E8918CEEF2EA}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A028141D-AEF9-4986-90B2-A9C86F1010C2}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A0E7C806-A7D5-4AEB-8A40-7731FD85184A}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A0EFE552-24F8-4BB6-85CE-78B080587BB7}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A1D14D61-47D0-4CAA-93E4-ACB3CA160B3C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A2A66104-378B-406D-A851-344A7EA7CC7B}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A4FD3591-D6DD-48D1-975D-56EBC0373488}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A5BD4385-03B2-4083-841B-6F3934C65A9F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A5FA8227-41D7-4351-8C06-C2DCBB0E2035}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A76AE94C-1C26-401C-8541-FB7E193BBCDA}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A8064C88-88EB-4A3C-8923-6FF88AC08883}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A8597515-AE66-440C-A4A5-8DDCAF0DD608}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A92AE584-DE64-4781-A5DD-48FA3265C672}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{A96311B9-471A-43E4-89FD-2377D23E42BE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{AA51CAD8-D821-459F-9BD9-04A62C0AD2DE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{AB9C8562-3093-4CAB-83EA-B3ECB6464081}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{AC152B62-560B-4BCA-99B1-711B4976D816}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{ACC8DDE9-B4A4-4A71-B824-2F5E38B7F1FC}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{AE104460-7EE6-49E0-87AE-F5D28105E422}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B05047A6-E805-45FE-8E42-72BD604D2996}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B1FBA628-E94E-4200-87AC-B3BED13A07CF}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B2C6F5D8-9ACD-47BA-A53F-664EC09BC2E6}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B2E2C0AB-B8F6-4AC6-B384-52866D74AAF3}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B4728378-3732-42E8-9BCE-888E56702CDF}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B58B2A00-3666-4657-838F-CC54AFA60CA2}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B60D0183-CF93-453C-B36B-152A3A171072}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B72E9953-25EB-4C19-BA74-53B848AEBAC3}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B7B08678-097E-4A92-B240-1A05C6BD210D}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B7C59500-DD33-4CA4-8782-C7A225CCCD6D}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{B99717C3-2150-42E5-A30B-410AB2107452}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{BA3AC66B-DFAC-44FE-9105-CFCB6032F76B}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{BA694F2C-F6AB-4121-B348-7A87A4C2098C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{BBDC3BE0-109C-4395-9D16-8A586A7F51D6}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{BC689820-BDF8-4A1F-9695-646F87B0DEB4}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{BC68CE34-D550-4034-988D-5BA560851312}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{BE0F2A06-A99B-443D-AC71-17C49B55D4F1}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{BE110D7D-4990-43C9-B64E-9C72419003CE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{C123315B-4807-4409-9D9F-938A74770A9D}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{C1450F69-7ED6-4963-8960-88190EF865C6}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{C2C98A8C-00E2-4E1A-AEF0-46F326470ACC}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{C56AB57D-2CEE-4F70-985F-F16B70EF0797}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{C740611C-51E2-4BD7-9C89-F6F40F9562EA}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{C9F29BE1-D3BE-4818-815E-FE7A341BDE30}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{CA2C3CDC-8066-47C2-9A93-6C68AEC211C2}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{CB0B77B8-C611-472B-9AAC-D3B429CF3CBB}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{CBB0D656-D0B2-4331-AFCA-955EE55CB786}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{CCA57B3E-FFEC-453F-A318-DB6F9E8B04C5}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{CD384231-681B-4866-9363-93FB81A4BF74}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{CDFD7348-8EFF-4CC2-ACCC-93DF21D555F6}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{CE36829C-C2F6-4D02-AB2B-500C406F09F2}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D094D903-0699-4C81-BA31-00C9F4B0A8EA}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D0CB878E-40CA-4FC0-A501-24ABDFBB0CBC}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D166B8D2-8EB3-457C-B89F-E9935859368E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D1DE587E-7AFF-44EE-9C40-40B34C6C0646}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D36E868F-5AA1-4C01-8057-5EE9726617E1}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D3CE8A0D-B7B3-4DEC-9DB8-39A973B3F7DA}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D4C45FD0-3839-4C45-B1D6-5205D40385FC}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D52CE692-DA4F-44D6-920F-7D2F258F3AF4}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D589DD49-C6DF-4E3C-85A4-BB82144E96B7}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D6502B70-D965-4405-842F-3C4F055D6CE6}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D6CE74B8-0F27-4010-BD33-7E151978D807}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D7556EF3-BF3E-483D-8C13-B006A14211F3}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{D78589A0-ADD7-4E92-8B9D-99E3E6F78AEC}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DA41A493-CDDF-42F6-A034-1655E4889A9F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DB46CE75-A9F8-4005-AFB8-A5152B145805}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DB4BE8F1-731F-4A00-9A6C-3E9440FE09F8}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DBB19C7B-66B6-4A29-A515-D6D82F6313C5}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DC9CB142-B0AE-4D7E-96F7-C803B3B5F534}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DD496467-6DC4-4D5C-B8BD-E48E0AA3FCFD}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DDA3717D-0C83-417D-BE8A-5D46F429CF5A}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DE55FE84-8653-40DC-B22B-BD87474017BE}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DF457AB2-AB4A-4CC8-8CBA-17F4A78E74D2}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{DFD76325-31C1-4820-B61E-3508BC908D7D}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E055890D-8B06-4C86-A760-63D638E9A010}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E0B6AD74-01A3-440E-80C5-49F455918CC4}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E17354CC-6DA6-4C7A-8353-499B8A04B8CF}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E23B4F9C-E36A-45E1-8324-11AEB8385B7F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E3C89ECA-FE85-4812-A2F3-7C3C7CED94DB}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E4027E26-EA08-4330-B49F-F08038BB9907}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E675F4E7-666B-4F28-9BA6-A568A1BF8303}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E6E67A69-DE63-48ED-8407-5910EA9AA896}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E78172A3-FB52-44A2-B9A9-E9040632A87C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E7A97169-62CA-459B-B90F-DF12696E58DD}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E8EDF1EE-8B6B-4DFC-B315-41182B11B3F9}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{E9F4BB59-069A-45E3-AB79-9D76B447B198}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{EA938470-ECCB-4841-9F95-B32279F09DFD}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{EB37C344-16EA-4D54-98B6-3ED3A2E2BDD3}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{EB750E4D-E2C0-4C0E-BC52-465B339D95A8}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{EC5603AE-66CE-44C5-A6A4-445F38001F8F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{EC62F71F-5179-4604-856D-022CEA75A333}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{ECC3C21F-30B2-4F2D-B812-02CECCE1EC30}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{ECEFB5EF-D843-4C69-818B-8FBB2167B87E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{ED15487B-A233-4E49-867F-1131D7CDA486}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{EF188ED9-532D-4474-86ED-5517B100E61F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F02C1322-E2AF-4EF0-9E9E-17405A813A7A}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F2DB3EB0-9F66-49B3-A4D0-BF3458D1D4B2}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F3FA61EB-D0CF-485C-AC9C-4BB29059E667}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F4D50B5E-F1A8-4DA2-907E-67CD93A3E266}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F4E95A51-6394-4D80-904D-3992B30C6A75}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F5600AD8-A26A-46C7-AED2-6DF2FB8AB3A3}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F5B023BD-B501-4CDC-AB8E-B85019436D59}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F5E04BFA-34F9-49C0-A220-EEB893108A05}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F6C1AC8B-73C6-48B3-875A-7B9F801DA99D}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F7C26B1A-5539-418B-A1C9-679255EBCA0F}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{F8B47DF0-F4A2-43A1-ADF8-5C448A337111}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{FAC1E134-808B-4047-BFE8-E603DD27DE0E}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{FAC6C50B-09D3-4C18-B09D-25DA5F2827D6}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{FC33B971-B623-4FEA-B153-078EE443892C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{FDF36DE1-54B5-405D-923A-BCFD7635FD5C}
Successfully deleted: [Empty Folder] C:\Users\Vojta\appdata\local\{FEC54D85-F83F-4143-8DC4-9E3DBDDD9D92}



~~~ FireFox

Failed to delete: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml"
Failed to delete: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml"
Failed to delete: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\web search.xml"
Successfully deleted: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml"
Successfully deleted: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml"
Successfully deleted: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\web search.xml"
Successfully deleted: [File] C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\user.js
Successfully deleted: [File] C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\bprotector_extensions.sqlite
Successfully deleted: [File] C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\bprotector_prefs.js
Successfully deleted: [File] C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\invalidprefs.js
Successfully deleted: [File] C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\searchplugins\browserprotect.xml
Successfully deleted: [File] C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\searchplugins\softonic.xml
Successfully deleted the following from C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\prefs.js

user_pref("extensions.Softonic.admin", false);
user_pref("extensions.Softonic.aflt", "SD");
user_pref("extensions.Softonic.appId", "{7ABBFE1C-E485-44AA-8F36-353751B4124D}");
user_pref("extensions.Softonic.autoRvrt", "false");
user_pref("extensions.Softonic.dfltLng", "");
user_pref("extensions.Softonic.dfltSrch", true);
user_pref("extensions.Softonic.dnsErr", true);
user_pref("extensions.Softonic.excTlbr", false);
user_pref("extensions.Softonic.ffxUnstlRst", false);
user_pref("extensions.Softonic.hmpg", true);
user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=13&cc=&mi=b804733c0000000000006c626d55336b");
user_pref("extensions.Softonic.hpOld0", "");
user_pref("extensions.Softonic.id", "b804733c0000000000006c626d55336b");
user_pref("extensions.Softonic.instlDay", "15892");
user_pref("extensions.Softonic.instlRef", "INF00176");
user_pref("extensions.Softonic.kw_url", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=b804733c0000000000006c626d55336b&q=");
user_pref("extensions.Softonic.newTab", true);
user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/INF00176/tb_v1/?SearchSource=15&cc=&mi=b804733c0000000000006c626d55336b");
user_pref("extensions.Softonic.prdct", "Softonic");
user_pref("extensions.Softonic.prtnrId", "softonic");
user_pref("extensions.Softonic.rvrt", "false");
user_pref("extensions.Softonic.smplGrp", "none");
user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
user_pref("extensions.Softonic.tlbrId", "BASEirobinhoodActive");
user_pref("extensions.Softonic.tlbrSrchUrl", "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=1&cc=&mi=b804733c0000000000006c626d55336b&q=");
user_pref("extensions.Softonic.vrsn", "1.8.19.3");
user_pref("extensions.Softonic.vrsnTs", "1.8.19.310:08:57");
user_pref("extensions.Softonic.vrsni", "1.8.19.3");
Emptied folder: C:\Users\Vojta\AppData\Roaming\mozilla\firefox\profiles\skz3rplt.default-1369055093059\minidumps [181 files]



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 30.12.2013 at 13:40:37,85
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[Pixe]

AdwCleaner log

# AdwCleaner v3.016 - Report created 30/12/2013 at 13:44:25
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Vojta - VOJTA-PC
# Running from : C:\Users\Vojta\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AlawarWrapper
Folder Deleted : C:\Program Files (x86)\Common Files\337
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Vojta\AppData\Local\AlawarWrapper
Folder Deleted : C:\Users\Vojta\AppData\Roaming\NCdownloader
Folder Deleted : C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\donottrackplus@abine.com
Folder Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\plugin@starstable.com
File Deleted : C:\Users\Vojta\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Vojta\Desktop\Uninstall.exe
File Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\gmorizz4.default\bProtector_extensions.rdf
File Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\gmorizz4.default\bprotector_extensions.sqlite
File Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\gmorizz4.default\searchplugins\Babylon.xml
File Deleted : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\searchplugins\bingp.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\delta-homes.xml
File Deleted : C:\Windows\Tasks\Desk 365 RunAsStdUser.job
File Deleted : C:\Windows\System32\Tasks\ProtectedSearch

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\desk365_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\desk365_RASMANCS
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKCU\Software\9ededdb33fef12
Key Deleted : HKLM\SOFTWARE\9ededdb33fef12
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Handy Updater]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A2773ED4-83BD-488A-A186-73590706C916}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DB507187-9746-458C-97DA-C458131EEDE7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{77AA6435-2488-4A94-9FE5-49519DD2ED9B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DB507187-9746-458C-97DA-C458131EEDE7}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\DeviceVM
Key Deleted : HKCU\Software\V9
Key Deleted : HKLM\Software\delta-homesSoftware
Key Deleted : HKLM\Software\DeviceVM
Key Deleted : HKLM\Software\hdcode
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\Trymedia Systems
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD
Key Deleted : HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\gmorizz4.default\prefs.js ]

Line Deleted : user_pref("dom.ipc.plugins.enabled.npmywebs.dll", false);
Line Deleted : user_pref("DownTango4SToolbar_2938.global.ClearSearchHistoryOnClose", "false");
Line Deleted : user_pref("DownTango4SToolbar_2938.global.CurrentLanguageSelection", "English");
Line Deleted : user_pref("DownTango4SToolbar_2938.global.CurrentNavigationSelection", "Current window");
Line Deleted : user_pref("DownTango4SToolbar_2938.global.CurrentSearchEngineSelection", "US: United States of America");
Line Deleted : user_pref("DownTango4SToolbar_2938.global.DisplayRecentSearches", "true");
Line Deleted : user_pref("DownTango4SToolbar_2938.global.setupExtension", "true");
Line Deleted : user_pref("DownTango4SToolbar_2938.global.ShowButtonText2", "true");
Line Deleted : user_pref("DownTango4SToolbar_2938.global.UpdateTime", "1364640485730");
Line Deleted : user_pref("DownTango4SToolbar_2938.global.userEnable", true);
Line Deleted : user_pref("DownTango4SToolbar_2938.global.userID", "83bf2bf0e94e060bc199e069dd7dc852");
Line Deleted : user_pref("extensions.51334befcf0d2.scode", "(function(){try{if('aol.com,mail.google.com,premiumreports.info,search.babylon.com,search.gboxapp.com'.indexOf(window.self.location.hostname)>-1) return;}c[...]
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.hp.enabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.hp.user.defined", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.initialized", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.installation.contextKey", "");
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.installation.installDate", "2012111919");
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.installation.partnerId", "ZJxdm988YYcz");
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.installation.partnerSubId", "");
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.installation.success", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.installation.toolbarId", "76016DFB-13B6-4A18-BB9C-7E573A0E5A16");
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.lastActivePing", "1364139833871");
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.searchHistory", "twitch.tv/Crafak||For Players\r\n\r\nYou can join different types of matches and events, where you can fight it out in a 1v1 or as [...]
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.tab.date", "1353348561461");
Line Deleted : user_pref("extensions.toolbar.mindspark._5qMembers_.weather.location", "10001");
Line Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "");
Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "zwinky@mindspark.com");
Line Deleted : user_pref("extensions.toolbar.mindspark.sa.enabled", true);
Line Deleted : user_pref("extensions.toolbar.mindspark.sa.owner", "zwinky@mindspark.com");
Line Deleted : user_pref("extensions.toolbar.mindspark.tab.enabled", true);

[ File : C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\prefs.js ]


-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [22730 octets] - [30/12/2013 02:49:36]
AdwCleaner[R1].txt - [10344 octets] - [30/12/2013 13:43:47]
AdwCleaner[S0].txt - [9786 octets] - [30/12/2013 13:44:25]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9846 octets] ##########

[vyosek]

Poprosim o log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100

[Pixe]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Vojta (administrator) on VOJTA-PC on 30-12-2013 21:53:34
Running from C:\Users\Vojta\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac7302\Monitor.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
() C:\Program Files (x86)\Tor\tor.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
() C:\Windows\inf\msdrvqk\msdrvqk.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [PAC7302_Monitor] - C:\Windows\PixArt\Pac7302\Monitor.exe [323584 2007-12-10] (PixArt Imaging Incorporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE [2726728 2010-03-25] (CANON INC.)
HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2787840 2010-01-18] (VIA)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [TkBellExe] - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [273528 2011-10-16] (RealNetworks, Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.)
HKLM-x32\...\Run: [NtVdmSrv] - C:\Windows\inf\ntvdm.vbe [884 2013-06-14] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [TBPanel] - C:\Program Files (x86)\Vtune\TBPANEL.exe [2158592 2009-10-05] ()
HKCU\...\Run: [Google Update] - C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-09-14] (Google Inc.)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
MountPoints2: E - E:\Autorun.exe
MountPoints2: F - F:\Autorun.exe
MountPoints2: J - J:\Autorun.exe
MountPoints2: {009d2d5f-ccd1-11df-89eb-6c626d55336b} - G:\Autorun.exe
MountPoints2: {fbe7e223-25e9-11e0-8463-6c626d55336b} - I:\PXRoute.exe
AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll [ ] ()
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RollerCoaster Tycoon 3 Registration.lnk
ShortcutTarget: RollerCoaster Tycoon 3 Registration.lnk -> C:\Users\Vojta\AppData\Local\Temp\{2593FD81-C977-4F29-A9A1-23EB03CF2AE7}\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\ATR1.exe (No File)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/UP97_FRPage
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - 5413AE58576444209751E538953F3899 URL = http://search.softonic.com/INF00176/tb_ ... 5336b&r=53
SearchScopes: HKCU - {109D2343-7DA6-428a-B0CC-5E3685A84425} URL = http://www.google.com/cse?cx=partner-pu ... 4067623346
SearchScopes: HKCU - {8E02D41C-5924-4816-9490-33CCD28BEB72} URL = http://search.yahoo.com/search?ei=ISO-8 ... earchTerms}
SearchScopes: HKCU - {E2536F79-3B4B-4416-804F-5A1E8724F434} URL = http://search.yahoo.com/search?p={searc ... type=STDVM
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059
FF DefaultSearchEngine: Bing
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @real.com/nppl3260;version=12.0.1.669 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=12.0.1.669 - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=12.0.1.669 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=12.0.1.669 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=12.0.1.669 - c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Vojta\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Vojta\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Vojta\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Extension: Stylish - C:\Users\Vojta\AppData\Roaming\Mozilla\Firefox\Profiles\skz3rplt.default-1369055093059\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

Chrome:
=======
CHR HomePage: homepage_is_newtabpage
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Microsoft Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (Unity Player) - C:\Users\Vojta\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Vojta\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Google Update) - C:\Users\Vojta\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Google Talk Plugin) - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\Vojta\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.70.11) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealJukebox NS Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
CHR Extension: (Skype Click to Call) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.9.0.12585_2
CHR Extension: (Google Wallet) - C:\Users\Vojta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
S3 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [993848 2011-04-19] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [399416 2011-04-19] (Secunia)
R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-08-31] ()
S2 vToolbarUpdater13.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [x]

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [30568 2012-12-06] (AVG Technologies)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-01] (Avira Operations GmbH & Co. KG)
R3 CamSuiteVAC; C:\Windows\System32\DRIVERS\CamSuiteVAC.sys [56320 2008-09-18] ()
S3 DualCoreCenter; C:\Program Files (x86)\MSI\GreenPowerCenterII\NTGLM7X64.sys [44344 2010-02-08] (MICRO-STAR INT'L CO., LTD.)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
S3 MSILiveVirtualCamera; C:\Windows\System32\DRIVERS\MSILiveVirtualCamera.sys [456192 2007-01-29] (MSI Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc.)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [532480 2009-04-28] (PixArt Imaging Inc.)
S3 RushTopDevice2; C:\Program Files (x86)\MSI\GreenPowerCenterII\RushTop64.sys [75576 2008-12-18] (Your Corporation)
S3 RushTopDevice_J; C:\Program Files (x86)\MSI\GreenPowerCenterII\RushJ64.sys [33080 2009-03-05] (Your Corporation)
S3 SMARTMouseFilterx64; C:\Windows\System32\DRIVERS\SMARTMouseFilterx64.sys [13168 2012-03-21] (SMART Technologies ULC)
S3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [16368 2012-03-21] (SMART Technologies ULC)
S3 SMARTVTabletPCx64; C:\Windows\System32\DRIVERS\SMARTVTabletPCx64.sys [24944 2012-03-21] (SMART Technologies ULC)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [503352 2011-01-05] ()
S2 TBPanel; No ImagePath
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-11] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-11] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-11] (LG Electronics Inc.)
U3 aa0cq3ds; C:\Windows\System32\Drivers\aa0cq3ds.sys [0 ] (Advanced Micro Devices)
U3 ar8ea875; C:\Windows\System32\Drivers\ar8ea875.sys [0 ] (Advanced Micro Devices)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-30 21:53 - 2013-12-30 21:54 - 00020676 _____ C:\Users\Vojta\Desktop\FRST.txt
2013-12-30 21:52 - 2013-12-30 21:52 - 00000000 ____D C:\FRST
2013-12-30 21:49 - 2013-12-30 21:49 - 01931302 _____ (Farbar) C:\Users\Vojta\Desktop\FRST64.exe
2013-12-30 21:49 - 2013-12-30 21:49 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher.exe
2013-12-30 13:40 - 2013-12-30 13:40 - 00040980 _____ C:\Users\Vojta\Desktop\JRT.txt
2013-12-30 13:32 - 2013-12-30 13:32 - 00000000 ____D C:\Windows\ERUNT
2013-12-30 13:31 - 2013-12-30 13:31 - 00008558 _____ C:\sc-cleaner.txt
2013-12-30 13:18 - 2013-12-30 13:18 - 01233962 _____ C:\Users\Vojta\Desktop\adwcleaner.exe
2013-12-30 13:18 - 2013-12-30 13:18 - 01034531 _____ (Thisisu) C:\Users\Vojta\Desktop\JRT.exe
2013-12-30 13:16 - 2013-12-30 13:22 - 99854275 _____ C:\Users\Vojta\Downloads\ANDY-GIBB---1980---After-Dark-UK-Australia-Pop-Rock-s.a.-BEE-GEES-THE-BEATLES-QUEEN-ABBA-BONEY-M-ELTON-JOHN.zip
2013-12-30 13:05 - 2013-12-30 13:05 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\Vojta\Desktop\sc-cleaner.exe
2013-12-30 12:57 - 2013-12-30 13:05 - 132999539 _____ C:\Users\Vojta\Downloads\SHOCKING-BLUE---1971---3rd-Album-Netherlands-Pop-Rock-s.a.-ABBA-THE-BEATLES-QUEEN-ELTON-JOHN-T.REX-SMOKIE-SWEET-SLADE-THE-ROLLING-STONES.zip
2013-12-30 11:06 - 2013-12-30 11:13 - 110787293 _____ C:\Users\Vojta\Downloads\SHOCKING-BLUE---1970---Scorpio's-Dance-Netherlands-Pop-Rock-s.a.-ABBA-THE-BEATLES-QUEEN-ELTON-JOHN-T.REX-SMOKIE-SWEET-SLADE-THE-ROLLING-STONES.zip
2013-12-30 10:09 - 2013-12-30 10:15 - 106119905 _____ C:\Users\Vojta\Downloads\SHOCKING-BLUE---1969---At-Home-Netherlands-Pop-Rock-s.a.-ABBA-THE-BEATLES-QUEEN-ELTON-JOHN-T.REX-SMOKIE-SWEET-SLADE-THE-ROLLING-STONES.zip
2013-12-30 10:00 - 2013-12-30 10:05 - 97581972 _____ C:\Users\Vojta\Downloads\SHOCKING-BLUE---1968---Beat-With-Us-Netherlands-Pop-Rock-s.a.-ABBA-THE-BEATLES-QUEEN-ELTON-JOHN-T.REX-SMOKIE-SWEET-SLADE-THE-ROLLING-STONES.zip
2013-12-30 09:49 - 2013-12-30 09:56 - 125222751 _____ C:\Users\Vojta\Downloads\Abba.rar
2013-12-30 02:58 - 2013-12-30 02:58 - 00000000 ____D C:\rsit
2013-12-30 02:49 - 2013-12-30 13:44 - 00000000 ____D C:\AdwCleaner
2013-12-28 08:00 - 2013-12-28 08:00 - 02991609 _____ C:\Users\Vojta\Desktop\Bez názvuMluvený komentář_0002.wma
2013-12-27 18:02 - 2013-12-27 18:02 - 00024966 _____ C:\Users\Vojta\Desktop\may the best pet win Cover.aup
2013-12-27 18:02 - 2013-12-27 18:02 - 00000000 ____D C:\Users\Vojta\Desktop\may the best pet win Cover_data
2013-12-27 16:03 - 2013-12-27 16:03 - 00000000 ____D C:\Users\Vojta\Desktop\True True Friend Cover_data
2013-12-27 15:24 - 2013-12-27 15:00 - 00055726 _____ C:\Users\Vojta\Desktop\Equestria Girls Cover.wma
2013-12-27 15:22 - 2013-12-27 15:24 - 00005941 _____ C:\Users\Vojta\Desktop\Equestria Girls Cover.mp3.rar
2013-12-27 15:00 - 2013-12-27 15:01 - 63894011 _____ C:\Users\Vojta\Downloads\MLPEQG.zip
2013-12-27 15:00 - 2013-12-27 15:00 - 00055726 _____ C:\Users\Vojta\Desktop\Equestria Girls Cover.mp3.aup
2013-12-27 15:00 - 2013-12-27 15:00 - 00000000 ____D C:\Users\Vojta\Desktop\Equestria Girls Cover_data
2013-12-27 13:24 - 2013-12-27 13:24 - 06223879 _____ ( ) C:\Users\Vojta\Downloads\Goldwave-5.13-CZ-Full-[bcm]-setup.exe
2013-12-27 13:24 - 2013-12-27 13:24 - 00001134 _____ C:\Users\Public\Desktop\Goldwave 5.13 CZ Full.lnk
2013-12-27 13:24 - 2013-12-27 13:24 - 00000000 ____D C:\Program Files (x86)\Goldwave 5.13 CZ Full
2013-12-27 12:45 - 2013-12-30 09:22 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Audacity
2013-12-27 12:45 - 2013-12-27 12:45 - 00000974 _____ C:\Users\Public\Desktop\Audacity.lnk
2013-12-27 12:45 - 2013-12-27 12:45 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-12-27 12:28 - 2013-12-27 12:29 - 28550143 _____ C:\Users\Vojta\Downloads\audacity.exe
2013-12-27 12:25 - 2013-12-27 12:26 - 21316029 _____ C:\Users\Vojta\Downloads\Audacity.zip
2013-12-27 11:44 - 2013-12-27 11:43 - 00211995 _____ C:\Users\Vojta\Desktop\Bez názvuMluvený komentář_0001.wma
2013-12-27 11:42 - 2013-12-27 11:42 - 00279373 _____ C:\Users\Vojta\Desktop\Bez názvuMluvený komentář.wma
2013-12-27 01:19 - 2013-12-30 13:46 - 00000728 _____ C:\Windows\setupact.log
2013-12-27 01:19 - 2013-12-27 01:19 - 00000000 _____ C:\Windows\setuperr.log
2013-12-27 01:18 - 2013-12-27 01:18 - 00000790 _____ C:\Windows\PFRO.log
2013-12-26 18:52 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-12-26 18:52 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2013-12-26 18:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-12-26 18:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-12-26 18:52 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2013-12-26 18:52 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-12-26 18:52 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2013-12-26 18:52 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-12-26 18:52 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-12-26 18:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-12-26 18:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-12-26 18:52 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-12-26 18:52 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-12-26 18:52 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2013-12-26 18:52 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-12-26 18:51 - 2013-12-26 18:52 - 00017513 _____ C:\Windows\DirectX.log
2013-12-26 14:29 - 2013-12-26 14:29 - 00000219 _____ C:\Users\Vojta\Desktop\Dota 2.url
2013-12-26 14:29 - 2013-12-26 14:29 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-12-26 14:18 - 2013-12-26 14:18 - 00100138 _____ C:\Users\Vojta\Desktop\cc_20131226_141840.reg
2013-12-26 13:02 - 2013-12-26 13:02 - 04645232 _____ (Piriform Ltd) C:\Users\Vojta\Downloads\ccsetup409.exe
2013-12-25 11:12 - 2013-12-25 11:53 - 00000000 ____D C:\Users\Vojta\Downloads\The_Sims_3_Into_The_Future-FLT
2013-12-24 12:26 - 2013-12-24 12:26 - 00000000 ____D C:\Users\Vojta\Downloads\promoce_H_K(1)
2013-12-23 17:53 - 2013-12-23 18:03 - 00000000 ____D C:\Users\Vojta\Desktop\Paint.NET
2013-12-23 17:32 - 2010-04-26 16:18 - 48300032 _____ (dotPDN LLC) C:\Users\Vojta\Desktop\Paint.NET.exe
2013-12-23 17:31 - 2013-12-23 17:32 - 16247475 _____ C:\Users\Vojta\Downloads\Paint.NET_v3.5.5.rar
2013-12-23 17:27 - 2013-12-23 17:27 - 03700675 _____ C:\Users\Vojta\Downloads\Paint.NET.3.5.8.Install.rar
2013-12-23 14:58 - 2013-12-23 14:58 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2013-12-23 07:12 - 2013-12-30 13:47 - 00003166 _____ C:\Windows\System32\Tasks\FRAPS
2013-12-22 16:07 - 2013-12-30 08:14 - 00000000 ____D C:\Users\Vojta\Desktop\my mane 6
2013-12-21 18:43 - 2013-12-21 18:43 - 44795308 _____ C:\Users\Vojta\Downloads\promoce_H_K.zip
2013-12-20 11:17 - 2013-12-20 11:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-16 17:06 - 2013-12-16 17:06 - 00295039 _____ C:\Users\Vojta\Downloads\foto.zip
2013-12-16 15:08 - 2013-12-30 09:44 - 00000000 ____D C:\Users\Vojta\Desktop\Sketche
2013-12-16 15:07 - 2013-12-22 09:45 - 00000000 ____D C:\Users\Vojta\Desktop\Canvas Minecraft
2013-12-16 15:06 - 2013-12-16 15:07 - 00000000 ____D C:\Users\Vojta\Desktop\minecraft kresby
2013-12-16 15:05 - 2013-12-22 16:13 - 00000000 ____D C:\Users\Vojta\Desktop\canvas MLP
2013-12-16 15:04 - 2013-12-16 15:05 - 00000000 ____D C:\Users\Vojta\Desktop\Twilight Sparkle kresby
2013-12-16 15:04 - 2013-12-16 15:04 - 00000000 ____D C:\Users\Vojta\Desktop\Rarity kresby
2013-12-16 15:03 - 2013-12-16 15:04 - 00000000 ____D C:\Users\Vojta\Desktop\villain kresby
2013-12-16 15:01 - 2013-12-16 15:03 - 00000000 ____D C:\Users\Vojta\Desktop\Princess ponies kresby
2013-12-16 14:55 - 2013-12-26 12:51 - 00000000 ____D C:\Users\Vojta\Desktop\Background ponies kresby
2013-12-16 14:54 - 2013-12-30 11:52 - 00000000 ____D C:\Users\Vojta\Desktop\Applejack kresby
2013-12-16 14:53 - 2013-12-29 15:25 - 00000000 ____D C:\Users\Vojta\Desktop\Fluttershy kresby
2013-12-16 14:52 - 2013-12-29 15:58 - 00000000 ____D C:\Users\Vojta\Desktop\Pinkie Pie kresby
2013-12-16 14:50 - 2013-12-28 12:15 - 00000000 ____D C:\Users\Vojta\Desktop\Rainbow Dash kresby
2013-12-16 14:49 - 2013-12-16 14:50 - 00000000 ____D C:\Users\Vojta\Desktop\Mane 6 kresby
2013-12-16 14:48 - 2013-12-16 15:10 - 00000000 ____D C:\Users\Vojta\Desktop\more ponies OC,Hl Kresby
2013-12-16 14:45 - 2013-12-16 14:49 - 00000000 ____D C:\Users\Vojta\Desktop\Jiné OC kresby
2013-12-15 19:42 - 2013-12-15 19:42 - 00000745 _____ C:\Users\Vojta\AppData\Local\recently-used.xbel
2013-12-15 19:32 - 2013-12-15 19:34 - 00000000 ____D C:\Users\Vojta\Desktop\Inkscape
2013-12-15 19:30 - 2013-12-26 13:05 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\inkscape
2013-12-15 19:25 - 2013-12-15 19:29 - 69713266 _____ C:\Users\Vojta\Downloads\Inkscape.zip
2013-12-15 17:50 - 2013-12-22 18:30 - 00000000 ____D C:\Users\Vojta\Desktop\Moje OC kresby
2013-12-15 09:41 - 2013-12-15 09:41 - 01106756 _____ C:\Users\Vojta\Downloads\Minecraft-Warez-launcher-1.7.4.exe
2013-12-12 12:32 - 2013-12-12 12:32 - 00000000 ____D C:\Program Files\Paint.NET
2013-12-12 09:32 - 2013-12-12 09:32 - 00001010 _____ C:\Users\Vojta\Desktop\HyperCam 3.lnk
2013-12-12 09:32 - 2013-12-12 09:32 - 00000000 ____D C:\Program Files (x86)\HyperCam 3
2013-12-12 09:22 - 2013-12-12 09:23 - 10627778 _____ C:\Users\Vojta\Downloads\HyperCam-3.zip
2013-12-11 20:11 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-11 20:11 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-11 20:11 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-11 20:11 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-11 20:10 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-11 20:10 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-11 20:10 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-11 20:10 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-11 20:10 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-11 20:10 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-11 20:10 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-11 20:10 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-11 20:10 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-11 20:10 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-11 20:10 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-11 20:10 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-11 20:10 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-11 20:10 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-11 20:10 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-11 20:10 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-11 20:10 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-11 20:10 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-11 20:10 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-11 20:10 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-11 20:10 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-11 20:10 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-11 20:10 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-11 20:10 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-11 20:10 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-11 20:10 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-11 20:10 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-11 20:09 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-11 20:09 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-11 20:09 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-11 20:09 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-11 10:16 - 2013-12-11 10:36 - 119667149 _____ C:\Users\Vojta\Downloads\My-Little-Pony-S04E04-720p.mp4
2013-12-11 09:01 - 2013-12-11 09:01 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
2013-12-11 07:20 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-11 07:20 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-11 07:20 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-11 07:20 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-11 07:20 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-11 07:20 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-11 07:20 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 07:20 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 07:20 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-11 07:20 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 07:20 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 07:20 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-11 07:20 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-11 07:20 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 07:20 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-11 07:20 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-11 07:20 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-11 07:20 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 07:20 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-10 17:43 - 2013-12-10 17:44 - 35621758 _____ C:\Users\Vojta\Downloads\MLP comic #8.rar
2013-12-10 17:43 - 2013-12-10 17:44 - 35008074 _____ C:\Users\Vojta\Downloads\MLP comic #6.rar
2013-12-10 17:43 - 2013-12-10 17:44 - 34494617 _____ C:\Users\Vojta\Downloads\MLP comic #9.rar
2013-12-10 17:43 - 2013-12-10 17:44 - 33041884 _____ C:\Users\Vojta\Downloads\MLP comic #10.rar
2013-12-10 17:43 - 2013-12-10 17:44 - 32785052 _____ C:\Users\Vojta\Downloads\MLP comic #7.rar
2013-12-10 17:43 - 2013-12-10 17:43 - 35293069 _____ C:\Users\Vojta\Downloads\MLP comic #4 [CZ].rar
2013-12-10 17:43 - 2013-12-10 17:43 - 26995165 _____ C:\Users\Vojta\Downloads\MLP comic #5 [CZ].rar
2013-12-10 17:42 - 2013-12-10 17:43 - 42343179 _____ C:\Users\Vojta\Downloads\MLP comic #3 [CZ].rar
2013-12-10 17:42 - 2013-12-10 17:43 - 31513247 _____ C:\Users\Vojta\Downloads\MLP comic #2 [CZ].rar
2013-12-10 17:38 - 2013-12-29 09:58 - 00000000 ____D C:\Users\Vojta\Desktop\mlp comic
2013-12-10 17:38 - 2013-12-10 17:38 - 34000126 _____ C:\Users\Vojta\Downloads\MLP comic #11.rar
2013-12-10 17:37 - 2013-12-10 17:38 - 37818771 _____ C:\Users\Vojta\Downloads\MLP comic #1 [CZ].rar
2013-12-10 13:56 - 2013-12-10 14:01 - 87581032 _____ C:\Users\Vojta\Downloads\Kim-Wilde---Select-(1982).rar
2013-12-07 07:50 - 2013-12-07 07:50 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-12-03 19:40 - 2013-12-03 19:40 - 00029285 _____ C:\Users\Vojta\Downloads\MLP S4 720p.zip

==================== One Month Modified Files and Folders =======

2013-12-30 21:54 - 2013-12-30 21:53 - 00020676 _____ C:\Users\Vojta\Desktop\FRST.txt
2013-12-30 21:52 - 2013-12-30 21:52 - 00000000 ____D C:\FRST
2013-12-30 21:49 - 2013-12-30 21:49 - 01931302 _____ (Farbar) C:\Users\Vojta\Desktop\FRST64.exe
2013-12-30 21:49 - 2013-12-30 21:49 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher.exe
2013-12-30 21:45 - 2012-04-02 22:51 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-30 21:39 - 2010-09-28 10:43 - 01732961 _____ C:\Windows\WindowsUpdate.log
2013-12-30 21:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2013-12-30 21:06 - 2013-05-02 17:28 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-30 20:55 - 2013-05-11 22:03 - 00000962 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job
2013-12-30 18:55 - 2013-07-12 11:18 - 00000910 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job
2013-12-30 18:50 - 2013-11-25 18:15 - 00000366 _____ C:\Windows\Tasks\ReclaimerUpdateXML_Vojta.job
2013-12-30 18:50 - 2013-06-16 16:53 - 00002956 _____ C:\Windows\System32\Tasks\ReclaimerUpdateXML_Vojta
2013-12-30 18:35 - 2013-05-04 17:05 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-30 14:06 - 2013-07-14 15:57 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job
2013-12-30 13:54 - 2009-07-14 05:45 - 00020128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-30 13:54 - 2009-07-14 05:45 - 00020128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-30 13:51 - 2010-10-04 18:45 - 00000000 ____D C:\Users\Vojta\AppData\Local\CrashDumps
2013-12-30 13:50 - 2012-08-03 19:31 - 00000000 ____D C:\Users\Vojta\AppData\Local\LogMeIn Hamachi
2013-12-30 13:47 - 2013-12-23 07:12 - 00003166 _____ C:\Windows\System32\Tasks\FRAPS
2013-12-30 13:47 - 2013-11-25 18:15 - 00000376 _____ C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Vojta.job
2013-12-30 13:47 - 2013-11-23 08:13 - 00000000 ____D C:\Users\Vojta\Desktop\Screenshots
2013-12-30 13:47 - 2013-10-14 17:38 - 00000000 ____D C:\Users\Vojta\Desktop\mlp Czech
2013-12-30 13:46 - 2013-12-27 01:19 - 00000728 _____ C:\Windows\setupact.log
2013-12-30 13:46 - 2013-05-23 16:54 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2013-12-30 13:46 - 2013-04-14 07:31 - 00000376 _____ C:\Windows\Tasks\SmartPCFix Task.job
2013-12-30 13:46 - 2010-09-09 20:00 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-30 13:46 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-30 13:44 - 2013-12-30 02:49 - 00000000 ____D C:\AdwCleaner
2013-12-30 13:44 - 2012-10-25 12:06 - 00000000 ____D C:\Windows\System32\Tasks\ProtectedSearch
2013-12-30 13:40 - 2013-12-30 13:40 - 00040980 _____ C:\Users\Vojta\Desktop\JRT.txt
2013-12-30 13:32 - 2013-12-30 13:32 - 00000000 ____D C:\Windows\ERUNT
2013-12-30 13:31 - 2013-12-30 13:31 - 00008558 _____ C:\sc-cleaner.txt
2013-12-30 13:31 - 2012-12-19 14:05 - 00000928 _____ C:\Users\Vojta\Desktop\Mozilla Firefox.lnk
2013-12-30 13:31 - 2010-10-11 18:54 - 00002150 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-30 13:31 - 2010-09-28 12:26 - 00001360 _____ C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-30 13:22 - 2013-12-30 13:16 - 99854275 _____ C:\Users\Vojta\Downloads\ANDY-GIBB---1980---After-Dark-UK-Australia-Pop-Rock-s.a.-BEE-GEES-THE-BEATLES-QUEEN-ABBA-BONEY-M-ELTON-JOHN.zip
2013-12-30 13:18 - 2013-12-30 13:18 - 01233962 _____ C:\Users\Vojta\Desktop\adwcleaner.exe
2013-12-30 13:18 - 2013-12-30 13:18 - 01034531 _____ (Thisisu) C:\Users\Vojta\Desktop\JRT.exe
2013-12-30 13:05 - 2013-12-30 13:05 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\Vojta\Desktop\sc-cleaner.exe
2013-12-30 13:05 - 2013-12-30 12:57 - 132999539 _____ C:\Users\Vojta\Downloads\SHOCKING-BLUE---1971---3rd-Album-Netherlands-Pop-Rock-s.a.-ABBA-THE-BEATLES-QUEEN-ELTON-JOHN-T.REX-SMOKIE-SWEET-SLADE-THE-ROLLING-STONES.zip
2013-12-30 11:52 - 2013-12-16 14:54 - 00000000 ____D C:\Users\Vojta\Desktop\Applejack kresby
2013-12-30 11:13 - 2013-12-30 11:06 - 110787293 _____ C:\Users\Vojta\Downloads\SHOCKING-BLUE---1970---Scorpio's-Dance-Netherlands-Pop-Rock-s.a.-ABBA-THE-BEATLES-QUEEN-ELTON-JOHN-T.REX-SMOKIE-SWEET-SLADE-THE-ROLLING-STONES.zip
2013-12-30 11:04 - 2012-05-12 17:54 - 00000000 ____D C:\Users\Vojta\AppData\Local\Last.fm
2013-12-30 10:15 - 2013-12-30 10:09 - 106119905 _____ C:\Users\Vojta\Downloads\SHOCKING-BLUE---1969---At-Home-Netherlands-Pop-Rock-s.a.-ABBA-THE-BEATLES-QUEEN-ELTON-JOHN-T.REX-SMOKIE-SWEET-SLADE-THE-ROLLING-STONES.zip
2013-12-30 10:05 - 2013-12-30 10:00 - 97581972 _____ C:\Users\Vojta\Downloads\SHOCKING-BLUE---1968---Beat-With-Us-Netherlands-Pop-Rock-s.a.-ABBA-THE-BEATLES-QUEEN-ELTON-JOHN-T.REX-SMOKIE-SWEET-SLADE-THE-ROLLING-STONES.zip
2013-12-30 09:56 - 2013-12-30 09:49 - 125222751 _____ C:\Users\Vojta\Downloads\Abba.rar
2013-12-30 09:44 - 2013-12-16 15:08 - 00000000 ____D C:\Users\Vojta\Desktop\Sketche
2013-12-30 09:22 - 2013-12-27 12:45 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Audacity
2013-12-30 08:14 - 2013-12-22 16:07 - 00000000 ____D C:\Users\Vojta\Desktop\my mane 6
2013-12-30 02:58 - 2013-12-30 02:58 - 00000000 ____D C:\rsit
2013-12-30 02:58 - 2011-07-31 19:58 - 00000000 ____D C:\Program Files\trend micro
2013-12-29 15:58 - 2013-12-16 14:52 - 00000000 ____D C:\Users\Vojta\Desktop\Pinkie Pie kresby
2013-12-29 15:25 - 2013-12-16 14:53 - 00000000 ____D C:\Users\Vojta\Desktop\Fluttershy kresby
2013-12-29 09:58 - 2013-12-10 17:38 - 00000000 ____D C:\Users\Vojta\Desktop\mlp comic
2013-12-29 06:27 - 2013-11-25 18:15 - 00000370 _____ C:\Windows\Tasks\ReclaimerUpdateFiles_Vojta.job
2013-12-29 06:27 - 2013-06-16 16:53 - 00002960 _____ C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Vojta
2013-12-28 12:15 - 2013-12-16 14:50 - 00000000 ____D C:\Users\Vojta\Desktop\Rainbow Dash kresby
2013-12-28 08:45 - 2011-11-29 17:30 - 18690048 ___SH C:\Users\Vojta\Downloads\Thumbs.db
2013-12-28 08:26 - 2009-07-14 16:18 - 00672138 _____ C:\Windows\system32\perfh005.dat
2013-12-28 08:26 - 2009-07-14 16:18 - 00143408 _____ C:\Windows\system32\perfc005.dat
2013-12-28 08:26 - 2009-07-14 06:13 - 01594316 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-28 08:20 - 2013-04-10 14:57 - 00088576 ___SH C:\Users\Vojta\Thumbs.db
2013-12-28 08:03 - 2013-07-27 15:28 - 01639936 ___SH C:\Users\Vojta\Desktop\Thumbs.db
2013-12-28 08:00 - 2013-12-28 08:00 - 02991609 _____ C:\Users\Vojta\Desktop\Bez názvuMluvený komentář_0002.wma
2013-12-28 08:00 - 2011-12-09 12:41 - 00073216 _____ C:\Users\Vojta\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-27 18:02 - 2013-12-27 18:02 - 00024966 _____ C:\Users\Vojta\Desktop\may the best pet win Cover.aup
2013-12-27 18:02 - 2013-12-27 18:02 - 00000000 ____D C:\Users\Vojta\Desktop\may the best pet win Cover_data
2013-12-27 16:03 - 2013-12-27 16:03 - 00000000 ____D C:\Users\Vojta\Desktop\True True Friend Cover_data
2013-12-27 15:24 - 2013-12-27 15:22 - 00005941 _____ C:\Users\Vojta\Desktop\Equestria Girls Cover.mp3.rar
2013-12-27 15:07 - 2010-10-26 15:39 - 00000000 ____D C:\Users\Vojta\AppData\Local\Windows Live
2013-12-27 15:06 - 2010-10-13 12:10 - 00000282 _____ C:\Users\Vojta\AppData\Roaming\default.rss
2013-12-27 15:01 - 2013-12-27 15:00 - 63894011 _____ C:\Users\Vojta\Downloads\MLPEQG.zip
2013-12-27 15:00 - 2013-12-27 15:24 - 00055726 _____ C:\Users\Vojta\Desktop\Equestria Girls Cover.wma
2013-12-27 15:00 - 2013-12-27 15:00 - 00055726 _____ C:\Users\Vojta\Desktop\Equestria Girls Cover.mp3.aup
2013-12-27 15:00 - 2013-12-27 15:00 - 00000000 ____D C:\Users\Vojta\Desktop\Equestria Girls Cover_data
2013-12-27 13:24 - 2013-12-27 13:24 - 06223879 _____ ( ) C:\Users\Vojta\Downloads\Goldwave-5.13-CZ-Full-[bcm]-setup.exe
2013-12-27 13:24 - 2013-12-27 13:24 - 00001134 _____ C:\Users\Public\Desktop\Goldwave 5.13 CZ Full.lnk
2013-12-27 13:24 - 2013-12-27 13:24 - 00000000 ____D C:\Program Files (x86)\Goldwave 5.13 CZ Full
2013-12-27 12:45 - 2013-12-27 12:45 - 00000974 _____ C:\Users\Public\Desktop\Audacity.lnk
2013-12-27 12:45 - 2013-12-27 12:45 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-12-27 12:29 - 2013-12-27 12:28 - 28550143 _____ C:\Users\Vojta\Downloads\audacity.exe
2013-12-27 12:26 - 2013-12-27 12:25 - 21316029 _____ C:\Users\Vojta\Downloads\Audacity.zip
2013-12-27 11:43 - 2013-12-27 11:44 - 00211995 _____ C:\Users\Vojta\Desktop\Bez názvuMluvený komentář_0001.wma
2013-12-27 11:42 - 2013-12-27 11:42 - 00279373 _____ C:\Users\Vojta\Desktop\Bez názvuMluvený komentář.wma
2013-12-27 01:19 - 2013-12-27 01:19 - 00000000 _____ C:\Windows\setuperr.log
2013-12-27 01:18 - 2013-12-27 01:18 - 00000790 _____ C:\Windows\PFRO.log
2013-12-26 18:52 - 2013-12-26 18:51 - 00017513 _____ C:\Windows\DirectX.log
2013-12-26 14:29 - 2013-12-26 14:29 - 00000219 _____ C:\Users\Vojta\Desktop\Dota 2.url
2013-12-26 14:29 - 2013-12-26 14:29 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-12-26 14:18 - 2013-12-26 14:18 - 00100138 _____ C:\Users\Vojta\Desktop\cc_20131226_141840.reg
2013-12-26 14:17 - 2010-09-30 14:42 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\uTorrent
2013-12-26 14:08 - 2013-05-23 18:53 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\.minecraft
2013-12-26 14:02 - 2010-12-03 22:56 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-12-26 14:02 - 2010-09-06 15:29 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-26 13:50 - 2010-10-01 18:33 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2013-12-26 13:47 - 2010-12-25 17:58 - 00000000 ____D C:\Program Files (x86)\Ashampoo
2013-12-26 13:05 - 2013-12-15 19:30 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\inkscape
2013-12-26 13:05 - 2013-03-31 11:19 - 00000000 ____D C:\ProgramData\VSO
2013-12-26 13:05 - 2011-01-03 16:15 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\TS3Client
2013-12-26 13:05 - 2010-10-26 21:00 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Vso
2013-12-26 13:04 - 2010-08-10 13:50 - 00000000 ____D C:\Windows\Panther
2013-12-26 13:02 - 2013-12-26 13:02 - 04645232 _____ (Piriform Ltd) C:\Users\Vojta\Downloads\ccsetup409.exe
2013-12-26 13:02 - 2010-09-30 21:08 - 00000000 ____D C:\Program Files (x86)\CCleaner
2013-12-26 12:51 - 2013-12-16 14:55 - 00000000 ____D C:\Users\Vojta\Desktop\Background ponies kresby
2013-12-26 07:49 - 2010-10-11 18:53 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Skype
2013-12-25 17:52 - 2013-02-15 13:32 - 00000000 ____D C:\Users\Vojta\Desktop\Sims 3 dodatky
2013-12-25 11:53 - 2013-12-25 11:12 - 00000000 ____D C:\Users\Vojta\Downloads\The_Sims_3_Into_The_Future-FLT
2013-12-25 10:16 - 2013-06-15 18:04 - 00000000 ____D C:\Users\Vojta\Downloads\Garry's-Mod 11
2013-12-25 10:11 - 2013-04-27 17:10 - 00000000 ____D C:\Users\Vojta\Desktop\skechtoy (4)
2013-12-24 12:26 - 2013-12-24 12:26 - 00000000 ____D C:\Users\Vojta\Downloads\promoce_H_K(1)
2013-12-23 18:04 - 2013-07-29 18:13 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Mumble
2013-12-23 18:03 - 2013-12-23 17:53 - 00000000 ____D C:\Users\Vojta\Desktop\Paint.NET
2013-12-23 17:32 - 2013-12-23 17:31 - 16247475 _____ C:\Users\Vojta\Downloads\Paint.NET_v3.5.5.rar
2013-12-23 17:29 - 2013-06-25 08:45 - 00000000 ____D C:\Users\Vojta\AppData\Local\Paint.NET
2013-12-23 17:27 - 2013-12-23 17:27 - 03700675 _____ C:\Users\Vojta\Downloads\Paint.NET.3.5.8.Install.rar
2013-12-23 14:58 - 2013-12-23 14:58 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2013-12-22 19:19 - 2013-06-08 10:35 - 00000000 ____D C:\Users\Vojta\Desktop\My Little Pony Friendship Is Magic 720P
2013-12-22 18:30 - 2013-12-15 17:50 - 00000000 ____D C:\Users\Vojta\Desktop\Moje OC kresby
2013-12-22 16:13 - 2013-12-16 15:05 - 00000000 ____D C:\Users\Vojta\Desktop\canvas MLP
2013-12-22 09:45 - 2013-12-16 15:07 - 00000000 ____D C:\Users\Vojta\Desktop\Canvas Minecraft
2013-12-21 18:43 - 2013-12-21 18:43 - 44795308 _____ C:\Users\Vojta\Downloads\promoce_H_K.zip
2013-12-21 08:30 - 2012-04-26 13:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-20 11:17 - 2013-12-20 11:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-20 09:48 - 2013-08-14 19:40 - 00000000 ____D C:\Windows\system32\MRT
2013-12-17 18:16 - 2013-07-30 08:15 - 00000000 ___RD C:\Users\Vojta\Dropbox
2013-12-17 16:47 - 2013-07-29 09:45 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\ultrastardx
2013-12-17 14:08 - 2010-10-26 21:33 - 00000000 ____D C:\Users\Vojta\Documents\ConvertXToDVD
2013-12-17 12:57 - 2013-05-07 15:23 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-12-17 12:57 - 2013-04-14 19:21 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-12-17 12:57 - 2013-04-14 19:21 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-16 17:11 - 2012-11-12 16:31 - 00000000 ____D C:\Users\Vojta\Desktop\Movies
2013-12-16 17:06 - 2013-12-16 17:06 - 00295039 _____ C:\Users\Vojta\Downloads\foto.zip
2013-12-16 15:11 - 2013-09-19 20:09 - 00000000 ____D C:\Users\Vojta\Desktop\Tuzkou
2013-12-16 15:10 - 2013-12-16 14:48 - 00000000 ____D C:\Users\Vojta\Desktop\more ponies OC,Hl Kresby
2013-12-16 15:09 - 2013-07-06 18:51 - 00000000 ____D C:\Users\Vojta\Desktop\Moje kresby
2013-12-16 15:07 - 2013-12-16 15:06 - 00000000 ____D C:\Users\Vojta\Desktop\minecraft kresby
2013-12-16 15:05 - 2013-12-16 15:04 - 00000000 ____D C:\Users\Vojta\Desktop\Twilight Sparkle kresby
2013-12-16 15:04 - 2013-12-16 15:04 - 00000000 ____D C:\Users\Vojta\Desktop\Rarity kresby
2013-12-16 15:04 - 2013-12-16 15:03 - 00000000 ____D C:\Users\Vojta\Desktop\villain kresby
2013-12-16 15:03 - 2013-12-16 15:01 - 00000000 ____D C:\Users\Vojta\Desktop\Princess ponies kresby
2013-12-16 14:50 - 2013-12-16 14:49 - 00000000 ____D C:\Users\Vojta\Desktop\Mane 6 kresby
2013-12-16 14:49 - 2013-12-16 14:45 - 00000000 ____D C:\Users\Vojta\Desktop\Jiné OC kresby
2013-12-15 20:16 - 2010-08-10 13:23 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-15 19:42 - 2013-12-15 19:42 - 00000745 _____ C:\Users\Vojta\AppData\Local\recently-used.xbel
2013-12-15 19:34 - 2013-12-15 19:32 - 00000000 ____D C:\Users\Vojta\Desktop\Inkscape
2013-12-15 19:29 - 2013-12-15 19:25 - 69713266 _____ C:\Users\Vojta\Downloads\Inkscape.zip
2013-12-15 09:41 - 2013-12-15 09:41 - 01106756 _____ C:\Users\Vojta\Downloads\Minecraft-Warez-launcher-1.7.4.exe
2013-12-14 11:40 - 2013-05-05 18:48 - 00000000 ____D C:\Users\Vojta\Desktop\MLP Titulky
2013-12-14 10:59 - 2012-12-11 14:21 - 00000000 ____D C:\Users\Vojta\Documents\HyperCam3
2013-12-13 07:30 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-13 07:29 - 2009-07-14 06:08 - 00032546 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-12 19:04 - 2011-12-09 12:47 - 00000000 ____D C:\Users\Vojta\AppData\Local\WMTools Downloaded Files
2013-12-12 12:32 - 2013-12-12 12:32 - 00000000 ____D C:\Program Files\Paint.NET
2013-12-12 09:32 - 2013-12-12 09:32 - 00001010 _____ C:\Users\Vojta\Desktop\HyperCam 3.lnk
2013-12-12 09:32 - 2013-12-12 09:32 - 00000000 ____D C:\Program Files (x86)\HyperCam 3
2013-12-12 09:23 - 2013-12-12 09:22 - 10627778 _____ C:\Users\Vojta\Downloads\HyperCam-3.zip
2013-12-12 07:42 - 2009-07-14 05:45 - 05003872 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-11 20:11 - 2010-10-02 07:23 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-11 10:36 - 2013-12-11 10:16 - 119667149 _____ C:\Users\Vojta\Downloads\My-Little-Pony-S04E04-720p.mp4
2013-12-11 09:01 - 2013-12-11 09:01 - 00000000 ____D C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
2013-12-11 09:01 - 2013-09-15 12:00 - 00000513 _____ C:\Users\Vojta\Desktop\Fraps.lnk
2013-12-10 17:44 - 2013-12-10 17:43 - 35621758 _____ C:\Users\Vojta\Downloads\MLP comic #8.rar
2013-12-10 17:44 - 2013-12-10 17:43 - 35008074 _____ C:\Users\Vojta\Downloads\MLP comic #6.rar
2013-12-10 17:44 - 2013-12-10 17:43 - 34494617 _____ C:\Users\Vojta\Downloads\MLP comic #9.rar
2013-12-10 17:44 - 2013-12-10 17:43 - 33041884 _____ C:\Users\Vojta\Downloads\MLP comic #10.rar
2013-12-10 17:44 - 2013-12-10 17:43 - 32785052 _____ C:\Users\Vojta\Downloads\MLP comic #7.rar
2013-12-10 17:43 - 2013-12-10 17:43 - 35293069 _____ C:\Users\Vojta\Downloads\MLP comic #4 [CZ].rar
2013-12-10 17:43 - 2013-12-10 17:43 - 26995165 _____ C:\Users\Vojta\Downloads\MLP comic #5 [CZ].rar
2013-12-10 17:43 - 2013-12-10 17:42 - 42343179 _____ C:\Users\Vojta\Downloads\MLP comic #3 [CZ].rar
2013-12-10 17:43 - 2013-12-10 17:42 - 31513247 _____ C:\Users\Vojta\Downloads\MLP comic #2 [CZ].rar
2013-12-10 17:38 - 2013-12-10 17:38 - 34000126 _____ C:\Users\Vojta\Downloads\MLP comic #11.rar
2013-12-10 17:38 - 2013-12-10 17:37 - 37818771 _____ C:\Users\Vojta\Downloads\MLP comic #1 [CZ].rar
2013-12-10 14:01 - 2013-12-10 13:56 - 87581032 _____ C:\Users\Vojta\Downloads\Kim-Wilde---Select-(1982).rar
2013-12-10 09:10 - 2010-10-11 18:53 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-07 07:50 - 2013-12-07 07:50 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-12-06 14:01 - 2013-10-09 13:54 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe
2013-12-06 14:01 - 2010-10-11 18:53 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-04 18:50 - 2013-10-15 18:44 - 00003536 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913
2013-12-04 18:50 - 2013-02-04 16:16 - 00003932 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA
2013-12-03 19:40 - 2013-12-03 19:40 - 00029285 _____ C:\Users\Vojta\Downloads\MLP S4 720p.zip
2013-12-01 21:35 - 2011-08-16 22:30 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-12-01 14:49 - 2013-11-03 08:47 - 00000649 _____ C:\Users\Vojta\Desktop\My Little Pony Friendship Is Magic 720P.lnk

Files to move or delete:
====================
C:\ProgramData\mazuki.dll


Some content of TEMP:
====================
C:\Users\Vojta\AppData\Local\Temp\avgnt.exe
C:\Users\Vojta\AppData\Local\Temp\KMP_3.7.0.113.exe
C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojta\AppData\Local\Temp\uninst1.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-06-24 14:55




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Windows) (Fixed) (Total:465.32 GB) (Free:56.38 GB) NTFS

Available physical RAM: 2550.05 MB
Total physical RAM: 4095.24 MB
Percentage of memory in use: 37%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 0137BF33)
Partition 1: (Active) - (Size=456 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ReclaimerUpdateFiles_Vojta.job => C:\Users\Vojta\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.70\agent\rnupgagent.exe
Task: C:\Windows\Tasks\ReclaimerUpdateXML_Vojta.job => C:\Users\Vojta\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.70\agent\rnupgagent.exe
Task: C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Vojta.job => C:\Users\Vojta\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.70\agent\rnupgagent.exe
Task: C:\Windows\Tasks\RunOW.job => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
Task: C:\Windows\Tasks\SmartPCFix Task.job => C:\Program Files (x86)\SmartPCFix\SmartPCFix.exe <==== ATTENTION

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:8B51CAAE
AlternateDataStreams: C:\ProgramData\TEMP:9AB338B9
AlternateDataStreams: C:\ProgramData\TEMP:F53A011E

==================== Security Center ==================

AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Vojta\Desktop" je 73909 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Vojta^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^V��ezy obrazovky a spu�t�n� aplikace OneNote 2007.lnk
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [TkBellExe] - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [273528 2011-10-16] (RealNetworks, Inc.)
  HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
  HKLM-x32\...\Run: [] - [x]
  HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
  HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.)
  HKLM-x32\...\Run: [NtVdmSrv] - C:\Windows\inf\ntvdm.vbe [884 2013-06-14] ()
  HKCU\...\Run: [Google Update] - C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-09-14] (Google Inc.)
  HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
  MountPoints2: E - E:\Autorun.exe
  MountPoints2: F - F:\Autorun.exe
  MountPoints2: J - J:\Autorun.exe
  MountPoints2: {009d2d5f-ccd1-11df-89eb-6c626d55336b} - G:\Autorun.exe
  MountPoints2: {fbe7e223-25e9-11e0-8463-6c626d55336b} - I:\PXRoute.exe
  AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll [ ] ()
  Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RollerCoaster Tycoon 3 Registration.lnk
  
  HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/UP97_FRPage
  StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
  SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
  SearchScopes: HKCU - 5413AE58576444209751E538953F3899 URL = http://search.softonic.com/INF00176/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=b804733c0000000000006c626d55336b&r=53
  SearchScopes: HKCU - {109D2343-7DA6-428a-B0CC-5E3685A84425} URL = http://www.google.com/cse?cx=partner-pu ... e=UTF-8&q={searchTerms}&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A4067623346
  SearchScopes: HKCU - {8E02D41C-5924-4816-9490-33CCD28BEB72} URL = http://search.yahoo.com/search?ei=ISO-8 ... mv2yach&q={searchTerms}
  SearchScopes: HKCU - {E2536F79-3B4B-4416-804F-5A1E8724F434} URL = http://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=STDVM
  
  FF DefaultSearchEngine: Bing
  FF SearchEngineOrder.3: Bing
  FF SelectedSearchEngine: Bing 
  FF Plugin: @microsoft.com/GENUINE - disabled No File
  FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
  
  CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
  
  R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-08-31] ()
  S2 vToolbarUpdater13.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [x]
  
  C:\Program Files (x86)\Common Files\AVG Secure Search
  C:\Program Files (x86)\Tor
  C:\Windows\inf\ntvdm.vbe
  2013-12-30 13:31 - 2013-12-30 13:31 - 00008558 _____ C:\sc-cleaner.txt
  2013-12-30 13:18 - 2013-12-30 13:18 - 01233962 _____ C:\Users\Vojta\Desktop\adwcleaner.exe
  2013-12-30 13:18 - 2013-12-30 13:18 - 01034531 _____ (Thisisu) C:\Users\Vojta\Desktop\JRT.exe
  2013-12-30 13:05 - 2013-12-30 13:05 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\Vojta\Desktop\sc-cleaner.exe
  2013-12-30 21:49 - 2013-12-30 21:49 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher.exe
  2013-12-30 13:40 - 2013-12-30 13:40 - 00040980 _____ C:\Users\Vojta\Desktop\JRT.txt
  C:\ProgramData\mazuki.dll
  C:\Program Files (x86)\SmartPCFix
  C:\Users\Vojta\AppData\Local\Temp\avgnt.exe
  C:\Users\Vojta\AppData\Local\Temp\KMP_3.7.0.113.exe
  C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe
  C:\Users\Vojta\AppData\Local\Temp\uninst1.exe
  
  Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\ReclaimerUpdateFiles_Vojta.job => C:\Users\Vojta\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.70\agent\rnupgagent.exe
  Task: C:\Windows\Tasks\ReclaimerUpdateXML_Vojta.job => C:\Users\Vojta\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.70\agent\rnupgagent.exe
  Task: C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Vojta.job => C:\Users\Vojta\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.70\agent\rnupgagent.exe
  Task: C:\Windows\Tasks\RunOW.job => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
  Task: C:\Windows\Tasks\SmartPCFix Task.job => C:\Program Files (x86)\SmartPCFix\SmartPCFix.exe <==== ATTENTION
  
  AlternateDataStreams: C:\ProgramData\TEMP:8B51CAAE
  AlternateDataStreams: C:\ProgramData\TEMP:9AB338B9
  AlternateDataStreams: C:\ProgramData\TEMP:F53A011E
  
  REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype" /f
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[Pixe]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-01-2014 01
Ran by Vojta at 2014-01-02 12:51:19 Run:1
Running from C:\Users\Vojta\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [TkBellExe] - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [273528 2011-10-16] (RealNetworks, Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.)
HKLM-x32\...\Run: [NtVdmSrv] - C:\Windows\inf\ntvdm.vbe [884 2013-06-14] ()
HKCU\...\Run: [Google Update] - C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-09-14] (Google Inc.)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
MountPoints2: E - E:\Autorun.exe
MountPoints2: F - F:\Autorun.exe
MountPoints2: J - J:\Autorun.exe
MountPoints2: {009d2d5f-ccd1-11df-89eb-6c626d55336b} - G:\Autorun.exe
MountPoints2: {fbe7e223-25e9-11e0-8463-6c626d55336b} - I:\PXRoute.exe
AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll [ ] ()
Startup: C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RollerCoaster Tycoon 3 Registration.lnk

HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/UP97_FRPage
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - 5413AE58576444209751E538953F3899 URL = http://search.softonic.com/INF00176/tb_ ... 5336b&r=53
SearchScopes: HKCU - {109D2343-7DA6-428a-B0CC-5E3685A84425} URL = http://www.google.com/cse?cx=partner-pu ... e=UTF-8&q={searchTerms}&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A4067623346
SearchScopes: HKCU - {8E02D41C-5924-4816-9490-33CCD28BEB72} URL = http://search.yahoo.com/search?ei=ISO-8 ... mv2yach&q={searchTerms}
SearchScopes: HKCU - {E2536F79-3B4B-4416-804F-5A1E8724F434} URL = http://search.yahoo.com/search?p={searc ... type=STDVM

FF DefaultSearchEngine: Bing
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Bing
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-08-31] ()
S2 vToolbarUpdater13.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [x]

C:\Program Files (x86)\Common Files\AVG Secure Search
C:\Program Files (x86)\Tor
C:\Windows\inf\ntvdm.vbe
2013-12-30 13:31 - 2013-12-30 13:31 - 00008558 _____ C:\sc-cleaner.txt
2013-12-30 13:18 - 2013-12-30 13:18 - 01233962 _____ C:\Users\Vojta\Desktop\adwcleaner.exe
2013-12-30 13:18 - 2013-12-30 13:18 - 01034531 _____ (Thisisu) C:\Users\Vojta\Desktop\JRT.exe
2013-12-30 13:05 - 2013-12-30 13:05 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\Vojta\Desktop\sc-cleaner.exe
2013-12-30 21:49 - 2013-12-30 21:49 - 00112640 _____ (forum.viry.cz) C:\Users\Vojta\Desktop\FRSTLauncher.exe
2013-12-30 13:40 - 2013-12-30 13:40 - 00040980 _____ C:\Users\Vojta\Desktop\JRT.txt
C:\ProgramData\mazuki.dll
C:\Program Files (x86)\SmartPCFix
C:\Users\Vojta\AppData\Local\Temp\avgnt.exe
C:\Users\Vojta\AppData\Local\Temp\KMP_3.7.0.113.exe
C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe
C:\Users\Vojta\AppData\Local\Temp\uninst1.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job => C:\Users\Vojta\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ReclaimerUpdateFiles_Vojta.job => C:\Users\Vojta\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.70\agent\rnupgagent.exe
Task: C:\Windows\Tasks\ReclaimerUpdateXML_Vojta.job => C:\Users\Vojta\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.70\agent\rnupgagent.exe
Task: C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Vojta.job => C:\Users\Vojta\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.70\agent\rnupgagent.exe
Task: C:\Windows\Tasks\RunOW.job => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
Task: C:\Windows\Tasks\SmartPCFix Task.job => C:\Program Files (x86)\SmartPCFix\SmartPCFix.exe <==== ATTENTION

AlternateDataStreams: C:\ProgramData\TEMP:8B51CAAE
AlternateDataStreams: C:\ProgramData\TEMP:9AB338B9
AlternateDataStreams: C:\ProgramData\TEMP:F53A011E

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype" /f

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\TkBellExe => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\LogMeIn Hamachi Ui => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NtVdmSrv => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Steam => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E => Key deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F => Key deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\J => Key deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{009d2d5f-ccd1-11df-89eb-6c626d55336b} => Key deleted successfully.
HKCR\CLSID\{009d2d5f-ccd1-11df-89eb-6c626d55336b} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fbe7e223-25e9-11e0-8463-6c626d55336b} => Key deleted successfully.
HKCR\CLSID\{fbe7e223-25e9-11e0-8463-6c626d55336b} => Key not found.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
C:\Users\Vojta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RollerCoaster Tycoon 3 Registration.lnk => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\First Home Page => Value deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\5413AE58576444209751E538953F3899 => Key deleted successfully.
HKCR\CLSID\5413AE58576444209751E538953F3899 => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{109D2343-7DA6-428a-B0CC-5E3685A84425} => Key deleted successfully.
HKCR\CLSID\{109D2343-7DA6-428a-B0CC-5E3685A84425} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8E02D41C-5924-4816-9490-33CCD28BEB72} => Key deleted successfully.
HKCR\CLSID\{8E02D41C-5924-4816-9490-33CCD28BEB72} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E2536F79-3B4B-4416-804F-5A1E8724F434} => Key deleted successfully.
HKCR\CLSID\{E2536F79-3B4B-4416-804F-5A1E8724F434} => Key not found.
Firefox DefaultSearchEngine deleted successfully.
Firefox SearchEngineOrder.3 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File => Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx => Moved successfully.
tor => Service deleted successfully.
vToolbarUpdater13.2.0 => Service deleted successfully.
"C:\Program Files (x86)\Common Files\AVG Secure Search" => File/Directory not found.
C:\Program Files (x86)\Tor => Moved successfully.
C:\Windows\inf\ntvdm.vbe => Moved successfully.
C:\sc-cleaner.txt => Moved successfully.
C:\Users\Vojta\Desktop\adwcleaner.exe => Moved successfully.
C:\Users\Vojta\Desktop\JRT.exe => Moved successfully.
C:\Users\Vojta\Desktop\sc-cleaner.exe => Moved successfully.
"C:\Users\Vojta\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\Users\Vojta\Desktop\JRT.txt => Moved successfully.
C:\ProgramData\mazuki.dll => Moved successfully.
"C:\Program Files (x86)\SmartPCFix" => File/Directory not found.
C:\Users\Vojta\AppData\Local\Temp\avgnt.exe => Moved successfully.
C:\Users\Vojta\AppData\Local\Temp\KMP_3.7.0.113.exe => Moved successfully.
C:\Users\Vojta\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Vojta\AppData\Local\Temp\uninst1.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce80a272d47fbe.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000Core1ce7ee924bea913.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-245253757-1308271664-2816636852-1000UA.job => Moved successfully.
C:\Windows\Tasks\ReclaimerUpdateFiles_Vojta.job => Moved successfully.
C:\Windows\Tasks\ReclaimerUpdateXML_Vojta.job => Moved successfully.
C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Vojta.job => Moved successfully.
C:\Windows\Tasks\RunOW.job => Moved successfully.
C:\Windows\Tasks\SmartPCFix Task.job => Moved successfully.
C:\ProgramData\TEMP => ":8B51CAAE" ADS removed successfully.
C:\ProgramData\TEMP => ":9AB338B9" ADS removed successfully.
C:\ProgramData\TEMP => ":F53A011E" ADS removed successfully.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========



The system needs a manual reboot.

==== End of Fixlog ====

[vyosek]

Jak se chova nas pacient???

[Pixe]

Vypadá zdravě, po qvo6 ani stopa a snad odzvonilo i další havěti. Díky!

[vyosek]

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

[Pixe]

Uklidil jsem. Při čištění registrů CCleanerem se však neustále objevuje problém, se kterým si ani napopáté CCleaner neví rady:

Kód: Vybrat vše

Nepoužívaná koncovka souborů	{80b8c23c-16e0-4cd8-bbc3-cecec9a78b79}	HKCR\{80b8c23c-16e0-4cd8-bbc3-cecec9a78b79}

Asi to není nic závažného, ale raději to dávám na vědomí.

[vyosek]

Je to jen drobnost, mala vada na krase, ale nepodstatna vec